playmaster.co.ke/files/i18n/en.json
188.114.97.1200 OK 3 B URL GET HTTP/2 playmaster.co.ke/files/i18n/en.json
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type JSON data\012- , ASCII text
Hash 8a80554c91d9fca8acb82f023de02f11
5f36b2ea290645ee34d943220a14b54ee5ea5be5
ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356
GET /files/i18n/en.json HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:34 GMT
content-type: application/json
content-length: 3
last-modified: Thu, 01 Jun 2023 07:57:54 GMT
etag: "64784f82-3"
expires: Fri, 07 Jul 2023 05:59:34 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1FWNftuULQHHNYoDXgZRoictW66tmxTjPpmTRGHWjqDyZj%2F9B1AQDoXeDzQr7KunKjDMNh4xl5eRNqXknyMdvLO9REeipN59MKRmuFhgL3LxDMW9b1wEHGmccUNfmqMfdzXO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d36ab7a4d270b06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
playmaster.co.ke/files/socialIcons/telegram.svg
188.114.97.1200 OK 16 kB URL GET HTTP/2 playmaster.co.ke/files/socialIcons/telegram.svg
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1575), with no line terminators
Hash 0706cece7c316851b01051ba843abf3f
35141267218a3bc20d928e016099b49a085e6649
4adc325d2771070b7a7637a1cb5fd97bda2ae1933ad21ccd3f6bfa1ef1fdf44e
GET /files/socialIcons/telegram.svg HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:34 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Jun 2023 07:57:56 GMT
etag: W/"64784f84-627"
expires: Fri, 07 Jul 2023 05:59:34 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UJZAjiQuyGapif67EddAzATaqH68J1o%2F6GKtdFBc2zPpILMeSKSS0MRhjgPfx7y5jrI9P9LJK%2B0NxghRkYrT5vmVkf43GjAZzpNeUtuZMmEoBMBxcoLhrhcgxFPPcRLLyZSw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab7aad740b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
104.18.11.207200 OK 51 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
IP 104.18.11.207:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (65325)
Hash 450fc463b8b1a349df717056fbb3e078
895125a4522a3b10ee7ada06ee6503587cbf95c5
2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d
GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:33 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 04/26/2023 08:07:14
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 865
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 864cbb4531be09b629f2a44518e5879f
cdn-cache: HIT
cf-cache-status: HIT
age: 48170
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7d36ab741c430b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&lr=1&partner=458124450432a37bd27e68ab57fa2c7806a129a6e516153febe0dca195779ca0
139.45.195.8200 OK 43 B URL GET HTTP/2 my.rtmark.net/img.gif?f=sync&lr=1&partner=458124450432a37bd27e68ab57fa2c7806a129a6e516153febe0dca195779ca0
IP 139.45.195.8:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&lr=1&partner=458124450432a37bd27e68ab57fa2c7806a129a6e516153febe0dca195779ca0 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=cbf1f65623ff4b06843504b8e968cf03; expires=Thu, 06 Jun 2024 05:59:35 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
playmaster.co.ke/main.f0edd12caeb2129504d8.js
188.114.97.1200 OK 1.1 MB URL GET HTTP/2 playmaster.co.ke/main.f0edd12caeb2129504d8.js
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.1 MB (1058155 bytes)
Hash 4a775988af97948030dd23286bd663ab
2c7753183ffcb1624f358b7311c1bd50e42585d8
83b09975452536fd17025f3c92929b26277e26f3ae7b93c43d3caa0f08107ccc
GET /main.f0edd12caeb2129504d8.js HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:33 GMT
content-type: application/javascript
last-modified: Thu, 01 Jun 2023 08:04:22 GMT
etag: W/"64785106-5cf50d"
expires: Thu, 06 Jul 2023 16:36:43 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 48170
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hUDlbB6ySA%2BgASaWaX1%2Bj1t5XCmkiSaw0WDid1Ji3CNMLK3mn%2FdZ6fdK9%2Bn1al%2Fj0vVWYxy2KNDMQHBnJ1VQkxKFhf4pwtRv3UFAV35BGn6jz31a62qhysSM%2BK5TjSiO1nMX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab739fe60b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
playmaster.co.ke/runtime.ec2944dd8b20ec099bf3.js
188.114.97.1200 OK 1.4 kB URL GET HTTP/2 playmaster.co.ke/runtime.ec2944dd8b20ec099bf3.js
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type ASCII text, with very long lines (1440), with no line terminators
Hash cd1ce3e306bf57f272364d1cc0249d6e
b62956c2192bfe5516d6374e753773901ed50ec5
eb3d5f2600910179bef8b0709214b7c721ea66e92ebb35bc282264beb2631eaf
GET /runtime.ec2944dd8b20ec099bf3.js HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:33 GMT
content-type: application/javascript
last-modified: Thu, 01 Jun 2023 08:04:22 GMT
etag: W/"64785106-5a0"
expires: Fri, 07 Jul 2023 05:59:33 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bXQYd67qv0%2F%2FqqXDsCxds7e6eJXoiC6HPF3Ln%2FgkUpxBamiP4BAAx31D6DsADUOtNetTcl7cAaag9ZoGhNO%2Fzp881E%2FgLknCsSfvBG%2BXB%2BzMuPKA0CultXVcdsr2jjEQWXVt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab738fe10b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&lr=1&partner=0a33899fd0710311f885aa995a362f745b43cf9fa64a57afd98f276247391262
139.45.195.8200 OK 43 B URL GET HTTP/2 my.rtmark.net/img.gif?f=sync&lr=1&partner=0a33899fd0710311f885aa995a362f745b43cf9fa64a57afd98f276247391262
IP 139.45.195.8:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&lr=1&partner=0a33899fd0710311f885aa995a362f745b43cf9fa64a57afd98f276247391262 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=771ba24668fe4a7ea1d901634dbf05f9; expires=Thu, 06 Jun 2024 05:59:35 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
tvbetframe23.com/assets/frame.js
188.114.96.1200 OK 2.9 kB URL GET HTTP/2 tvbetframe23.com/assets/frame.js
IP 188.114.96.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subjecttvbetframe23.com
Fingerprint26:3E:04:1B:91:BC:3A:6D:BF:67:4D:7A:A3:87:76:26:1B:FF:43:CE
ValidityThu, 04 May 2023 07:35:00 GMT - Wed, 02 Aug 2023 07:34:59 GMT
Hash 16ac716ff43d5dfa3217b5be0f78fbd4
cfbdd612840a7f23cb14bb3045f27eb96f007b0d
54b4d2a5daf8ae1b4be4dc2c12867c2a71125e75ca9ae91d265a139fabc5aa24
GET /assets/frame.js HTTP/1.1
Host: tvbetframe23.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:33 GMT
content-type: application/javascript
last-modified: Tue, 06 Jun 2023 14:28:17 GMT
etag: W/"647f4281-21d2"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u1mOwACQ%2Fr8pcR8NM3IW65dRapHZZnC3yUQE6ZTSUKW7G%2F9a%2Bywo3n1xv0Poizd%2F6djg%2Bmy9s2jJXPuANWfEzjaI78Y822I7mFLORTHpMzZwtFYI2bos6a8jRJX8mdVZsQTS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab745eebb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&lr=1&partner=7f41a83d748afa4f865bfe2300b041dc5fdc50c8d7ce5030d4d425f67296d3b7
139.45.195.8200 OK 43 B URL GET HTTP/2 my.rtmark.net/img.gif?f=sync&lr=1&partner=7f41a83d748afa4f865bfe2300b041dc5fdc50c8d7ce5030d4d425f67296d3b7
IP 139.45.195.8:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&lr=1&partner=7f41a83d748afa4f865bfe2300b041dc5fdc50c8d7ce5030d4d425f67296d3b7 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=a449e1c3743b47f9ac9c1fd983d46791; expires=Thu, 06 Jun 2024 05:59:35 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&lr=1&partner=9f7d9fee71938e979ff3c186172fe99af6fed4d05cd2f164407368f8cad38667
139.45.195.8200 OK 43 B URL GET HTTP/2 my.rtmark.net/img.gif?f=sync&lr=1&partner=9f7d9fee71938e979ff3c186172fe99af6fed4d05cd2f164407368f8cad38667
IP 139.45.195.8:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&lr=1&partner=9f7d9fee71938e979ff3c186172fe99af6fed4d05cd2f164407368f8cad38667 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=bfb18832b2164a1f8d8d6ab26bf748a9; expires=Thu, 06 Jun 2024 05:59:35 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
playmaster.co.ke/files/img/royal-win-popup-v2/person-circle-svgrepo-com.png
188.114.97.1200 OK 2.0 kB URL GET HTTP/2 playmaster.co.ke/files/img/royal-win-popup-v2/person-circle-svgrepo-com.png
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type PNG image data, 71 x 71, 8-bit/color RGBA, non-interlaced\012- data
Hash a5bbecf227ed7212e683786f0f9ac9fc
fb7c84a8d9e29434f4bb3b7ecca09dcd8e6236a8
61e2045de5efa067dc0d77ed3d6b89290851f0942b38ca0b5304b91ba56a3433
GET /files/img/royal-win-popup-v2/person-circle-svgrepo-com.png HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/auth/signin
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: image/png
content-length: 1983
last-modified: Thu, 01 Jun 2023 07:57:56 GMT
etag: "64784f84-7bf"
expires: Thu, 06 Jul 2023 16:36:48 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 48167
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NNepjsdDAKAqazD2ktwTsrSyMYK5BYSYVRdDQFZhUgf9TaZKt48aomyIUIrZ6ttV%2FXrDGdSRCW8FSYGrsZC1VSpOzi3fykwAQgjwf43OVpT1lgWN9hMIiHdp8EYDQf%2Bdm959"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab7daf9b0b06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
playmaster.co.ke/files/img/royal-win-popup-v2/logo.png
188.114.97.1200 OK 12 kB URL GET HTTP/2 playmaster.co.ke/files/img/royal-win-popup-v2/logo.png
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type PNG image data, 68 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash b76e910ae1eb1798a3763de30ccdc27c
246ee7138a65e5e62ee9756def4e7134a1548528
c5c0626522b8828c73757bf9e75f297a23ba2b5c8582508cdd090c6285ea8b10
GET /files/img/royal-win-popup-v2/logo.png HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/auth/signin
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: image/png
content-length: 11732
last-modified: Thu, 01 Jun 2023 07:57:56 GMT
etag: "64784f84-2dd4"
expires: Thu, 06 Jul 2023 16:36:47 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 48168
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ah5FDFLADksVQuv6DJxgJ1N3q0u6jdZMgrPvYiyo%2BuZzIW5TdCAGi%2BMBnFfmBu%2B1Y0oeYE0hLa2dumiM7GhueYxaVtiynZANyXvvmTmcW1KiPGAypXbTmLSzsiJQNc%2F3V3CJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab7daf9a0b06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
playmaster.co.ke/files/img/royal-win-popup-v2/banner.png
188.114.97.1200 OK 283 kB URL GET HTTP/2 playmaster.co.ke/files/img/royal-win-popup-v2/banner.png
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type PNG image data, 955 x 818, 8-bit/color RGBA, non-interlaced\012- data
Size 283 kB (283415 bytes)
Hash 4486bfc76506568396cd2b395f8867e4
1ca8f0ab4301539b979cb198cf4ce0b9f9ea15c6
4e4af2965a79c69b73851063fcb429982bd00e38d440c3ee32b35f2709f8a692
GET /files/img/royal-win-popup-v2/banner.png HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: image/png
content-length: 283415
last-modified: Thu, 01 Jun 2023 07:57:56 GMT
etag: "64784f84-45317"
expires: Thu, 06 Jul 2023 16:36:46 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 48169
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QBLo2GMrwDube%2F2kgpel%2Fu2s2z2MNQMfeZy7ACXzYJq9muqZrtXd%2FmscTuXIHZlNRdjL6SJK6SgJRyShpqGWipbNNBc%2B3njC7mPvY3yKBbKgjzM1v%2B4bMXnBHnysSa8SltL%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab7daf9e0b06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
playmaster.co.ke/api/v2/multi
188.114.97.1200 OK 448 B URL POST HTTP/2 playmaster.co.ke/api/v2/multi
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (964), with no line terminators
Hash a360aa43165d12c7646f224b29b9b2b7
38ddfae652c16334b1878a9217132cf53461f34e
22763b45e053f5ef32c72d7b0f93932276dce9ec494c063aa4127bc40c1ce407
POST /api/v2/multi HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
authorization:
Content-Type: application/json
Content-Length: 110
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:34 GMT
content-type: application/json; charset=utf-8
x-xss-protection: 1
strict-transport-security: max-age=3600
access-control-allow-origin: http://localhost:9999
vary: Origin
access-control-allow-credentials: true
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aJVmWwa01%2BNdlwOpuGXHHIJSo4WqPpTemSLBpoefD16fuHEtmwEq8hqMZi6OmGyEyeOWjRoqBK0ZvgiOGTxNUewJ2%2F%2F8nkxw89IzVJsxGnPI11aNfPnddEiIZG2i%2FbQoiKQx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d36ab7a5d350b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&partner=7f41a83d748afa4f865bfe2300b041dc5fdc50c8d7ce5030d4d425f67296d3b7&ttl=&rurl=https%3A%2F%2Fplaymaster.co.ke%2Fen%2Fauth%2Fsignin
139.45.195.8200 OK 43 B URL GET HTTP/2 my.rtmark.net/img.gif?f=sync&partner=7f41a83d748afa4f865bfe2300b041dc5fdc50c8d7ce5030d4d425f67296d3b7&ttl=&rurl=https%3A%2F%2Fplaymaster.co.ke%2Fen%2Fauth%2Fsignin
IP 139.45.195.8:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&partner=7f41a83d748afa4f865bfe2300b041dc5fdc50c8d7ce5030d4d425f67296d3b7&ttl=&rurl=https%3A%2F%2Fplaymaster.co.ke%2Fen%2Fauth%2Fsignin HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Cookie: ID=bfb18832b2164a1f8d8d6ab26bf748a9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=bfb18832b2164a1f8d8d6ab26bf748a9; expires=Thu, 06 Jun 2024 05:59:35 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
playmaster.co.ke/api/v2/multi
188.114.97.1200 OK 49 kB URL POST HTTP/2 playmaster.co.ke/api/v2/multi
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 658179f74c6ff6f5a6480bb95b1356e6
6c8ce846a8a631fd060bfc8bc3a9511dd793408b
73a66a7389b7bc80b15fd7a69ed8a870bad01b90cc27a32da224b1fb70a4d465
POST /api/v2/multi HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
authorization:
Content-Type: application/json
Content-Length: 107
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: application/json; charset=utf-8
x-xss-protection: 1
strict-transport-security: max-age=3600
access-control-allow-origin: http://localhost:9999
vary: Origin
access-control-allow-credentials: true
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FDoHC1i4L7WOy%2FZi5kccR9OEjCc38ZeoFj9Z8HoJnB4mt1EduhoTHVm9t8MVaedZVceQOIkdCKR%2FIGtx4PULcJDElYP6so72FR3O3dq1O2kqjzKdm4gcd9NAy5rYk9MQtWAP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d36ab7b6e0e0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/s/player/b128dda0/fetch-polyfill.vflset/fetch-polyfill.js
142.250.74.142200 OK 2.6 kB URL GET HTTP/3 www.youtube.com/s/player/b128dda0/fetch-polyfill.vflset/fetch-polyfill.js
IP 142.250.74.142:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (552)
Hash 949e94fed78d252b728cdc2aa6ddc56a
d2bfdd653bb3da592097fb4ddb6eabbdc3060562
ac8177161c3038b07597ec544de3c00f46e1a0aa6b4b4c045ff0495553cc5069
GET /s/player/b128dda0/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/NL0OY9ArGlc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2625
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 15:52:52 GMT
expires: Tue, 04 Jun 2024 15:52:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Jun 2023 01:43:52 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 137203
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
playmaster.co.ke/api/v2/multi
188.114.97.1200 OK 95 kB URL POST HTTP/2 playmaster.co.ke/api/v2/multi
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type JSON data\012- , ASCII text, with very long lines (1843), with no line terminators
Hash e3c1014ded64d9997152339e8ab6822b
51b6f67ee847dda2ff021638a4fc9c3ea9da1caa
397a43dd2effd707dc970cca2c71cca75dffd9ba6ad31491e212e105c7841589
POST /api/v2/multi HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
authorization:
Content-Type: application/json
Content-Length: 40
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:34 GMT
content-type: application/json; charset=utf-8
x-xss-protection: 1
strict-transport-security: max-age=3600
access-control-allow-origin: http://localhost:9999
vary: Origin
access-control-allow-credentials: true
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4kta16mB7GHQlooMkBgjaS01MY1vky%2F6jUt3KKOpe%2Feerc5W%2F%2F%2FPwp8x5tmZifGXoP9bVg5D4h1SCz%2B767gC%2F%2BvspHtlfkBMWczWOwowk9%2B8%2FuDym83SsBnLn0rq6dgk%2FzkZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d36ab7a6d3b0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 17:31:32 GMT
expires: Wed, 05 Jun 2024 17:31:32 GMT
cache-control: public, max-age=31536000
age: 44883
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
playmaster.co.ke/api/v2/multi
188.114.97.1200 OK 18 kB URL POST HTTP/2 playmaster.co.ke/api/v2/multi
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type JSON data\012- , ASCII text, with very long lines (16060), with no line terminators
Hash 9e80244a647e30519462ef1627023188
c5636a0d89a9a8179e1a83d3cdacd6d1228d5e02
c560dc27d133c6ded97472b9e97d3d7440d36f14fc5c57305bc566cd55834f2b
POST /api/v2/multi HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
authorization:
Content-Type: application/json
Content-Length: 87
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:34 GMT
content-type: application/json; charset=utf-8
x-xss-protection: 1
strict-transport-security: max-age=3600
access-control-allow-origin: http://localhost:9999
vary: Origin
access-control-allow-credentials: true
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mipuj5HgNO3rD5WPfu4Opl48rp%2B73ukASgWtAtcdhrWHGis6xVICGJ15hpRu7cJk8%2FOsc2BeDImC%2FlLCNHCC1CX8WcYXtRanHav8wmeW3wDXKY6YlS1DUHKnfUZ9GkfzY%2FPq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d36ab7b2de30b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
playmaster.co.ke/files/socialIcons/instagram.svg
188.114.97.1200 OK 760 kB URL GET HTTP/2 playmaster.co.ke/files/socialIcons/instagram.svg
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1424), with no line terminators
Size 760 kB (760153 bytes)
Hash 5e0b2c3f32ba154b65a2db18796915c5
7560c6f71fab8e8f9dd1df6d641a21d387f76094
38fa25dc63de217808ea8375a16c7d622302e9e45da2360140242b4d0197849a
GET /files/socialIcons/instagram.svg HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:34 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Jun 2023 07:57:56 GMT
etag: W/"64784f84-590"
expires: Fri, 07 Jul 2023 05:59:34 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1J%2BwnKsde%2BnLG0dxxl3eKG7wwd9BPJNZutblpvaNmcvnDBlmftWsbKphXHDH4jVSeQZu%2BK9YoS9TOt5ZAbd6RwQ4PGdFlqFnzGOHxSZJOX6WqarJT4TsI133mhPkpgDS1zTm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab7a8d520b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&partner=0a33899fd0710311f885aa995a362f745b43cf9fa64a57afd98f276247391262&ttl=&rurl=https%3A%2F%2Fplaymaster.co.ke%2Fen%2Fauth%2Fsignin
139.45.195.8200 OK 43 B URL GET HTTP/2 my.rtmark.net/img.gif?f=sync&partner=0a33899fd0710311f885aa995a362f745b43cf9fa64a57afd98f276247391262&ttl=&rurl=https%3A%2F%2Fplaymaster.co.ke%2Fen%2Fauth%2Fsignin
IP 139.45.195.8:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&partner=0a33899fd0710311f885aa995a362f745b43cf9fa64a57afd98f276247391262&ttl=&rurl=https%3A%2F%2Fplaymaster.co.ke%2Fen%2Fauth%2Fsignin HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Cookie: ID=bfb18832b2164a1f8d8d6ab26bf748a9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=bfb18832b2164a1f8d8d6ab26bf748a9; expires=Thu, 06 Jun 2024 05:59:35 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&partner=458124450432a37bd27e68ab57fa2c7806a129a6e516153febe0dca195779ca0&ttl=&rurl=https%3A%2F%2Fplaymaster.co.ke%2Fen%2Fauth%2Fsignin
139.45.195.8200 OK 43 B URL GET HTTP/2 my.rtmark.net/img.gif?f=sync&partner=458124450432a37bd27e68ab57fa2c7806a129a6e516153febe0dca195779ca0&ttl=&rurl=https%3A%2F%2Fplaymaster.co.ke%2Fen%2Fauth%2Fsignin
IP 139.45.195.8:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&partner=458124450432a37bd27e68ab57fa2c7806a129a6e516153febe0dca195779ca0&ttl=&rurl=https%3A%2F%2Fplaymaster.co.ke%2Fen%2Fauth%2Fsignin HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Cookie: ID=bfb18832b2164a1f8d8d6ab26bf748a9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=bfb18832b2164a1f8d8d6ab26bf748a9; expires=Thu, 06 Jun 2024 05:59:35 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&partner=9f7d9fee71938e979ff3c186172fe99af6fed4d05cd2f164407368f8cad38667&ttl=&rurl=https%3A%2F%2Fplaymaster.co.ke%2Fen%2Fauth%2Fsignin
139.45.195.8200 OK 43 B URL GET HTTP/2 my.rtmark.net/img.gif?f=sync&partner=9f7d9fee71938e979ff3c186172fe99af6fed4d05cd2f164407368f8cad38667&ttl=&rurl=https%3A%2F%2Fplaymaster.co.ke%2Fen%2Fauth%2Fsignin
IP 139.45.195.8:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&partner=9f7d9fee71938e979ff3c186172fe99af6fed4d05cd2f164407368f8cad38667&ttl=&rurl=https%3A%2F%2Fplaymaster.co.ke%2Fen%2Fauth%2Fsignin HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Cookie: ID=bfb18832b2164a1f8d8d6ab26bf748a9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=bfb18832b2164a1f8d8d6ab26bf748a9; expires=Thu, 06 Jun 2024 05:59:35 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=95799&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL POST HTTP/2 unphionetor.com/vbl?t=95799&bid=undefined&aid=undefined
IP 139.45.197.236:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerLet's Encrypt
Subjectunphionetor.com
FingerprintAE:27:7A:79:D4:BC:FB:08:BD:B3:B0:53:2B:F0:1B:AA:BA:71:94:D4
ValidityTue, 06 Jun 2023 06:58:21 GMT - Mon, 04 Sep 2023 06:58:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /vbl?t=95799&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 07 Jun 2023 05:59:36 GMT
access-control-allow-origin: https://playmaster.co.ke
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: be670947bdab75ea30837d3e52e5f462
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
embed.tawk.to/5d1e2e8d22d70e36c2a42ca4/default
172.67.38.66200 OK 34 kB URL GET HTTP/2 embed.tawk.to/5d1e2e8d22d70e36c2a42ca4/default
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Hash daa7b119e37fa225a2e19a3824b70153
4e67a3cc1066a6f0251e752b27af326dd5fc1627
0dc886cc77df66a9f706fa5c72048c908a0a32484f78c507c34ca80b84116d0d
GET /5d1e2e8d22d70e36c2a42ca4/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-64795e77f7f"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab7b599fb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
playmaster.co.ke/polyfills.0688af4a18ec3a51fe8c.js
188.114.97.1200 OK 24 kB URL GET HTTP/2 playmaster.co.ke/polyfills.0688af4a18ec3a51fe8c.js
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type ASCII text, with very long lines (63231), with no line terminators
Hash 15dadf51ebb4daf0ee19402e538412b8
92796c1570cab0f6fa8964aed4a90ab618aa5e47
79051b879b76040ea89ffa0e38c2e51f26699a0ac993be30873aa45af52d188f
GET /polyfills.0688af4a18ec3a51fe8c.js HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:33 GMT
content-type: application/javascript
last-modified: Thu, 01 Jun 2023 08:04:22 GMT
etag: W/"64785106-f6ff"
expires: Thu, 06 Jul 2023 16:36:43 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 48170
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QUtqxA9%2BeHskMI9Zao3dxEgoumbu32oNFdfWxjSEWoRkhXGwRZs%2BTuJFoqLvKIKMGay5pzTVnpo7z%2BwfRGLlvqRGY5S3gCkuNkjSuodL8pu0%2FHSeMyy7yQgSs6oS9q%2BGmkIU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab738fe20b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
i.ytimg.com/vi/NL0OY9ArGlc/default.jpg?sqp=-oaymwEkCHgQWvKriqkDGvABAfgB8gmAAtAFigIMCAAQARhlIFAoRTAP&rs=AOn4CLBQrz-3L-z_P9-X2EW9x3G3z6IH3A
216.58.211.22200 OK 3.5 kB URL GET HTTP/2 i.ytimg.com/vi/NL0OY9ArGlc/default.jpg?sqp=-oaymwEkCHgQWvKriqkDGvABAfgB8gmAAtAFigIMCAAQARhlIFAoRTAP&rs=AOn4CLBQrz-3L-z_P9-X2EW9x3G3z6IH3A
IP 216.58.211.22:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subjectedgestatic.com
Fingerprint88:9C:B5:85:13:CD:6F:2F:4A:D3:4E:57:DC:0C:99:02:CF:58:E0:C7
ValidityFri, 19 May 2023 12:53:00 GMT - Fri, 11 Aug 2023 12:52:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Hash 0855e616b27b33f6252b3ad6e75b0e3f
f1098ffbef32042587f971da92badc81a81b78a5
fa12fa9b60c39be945a9558d85366755af1f68932530c237ad0dbb7cfd0db52e
GET /vi/NL0OY9ArGlc/default.jpg?sqp=-oaymwEkCHgQWvKriqkDGvABAfgB8gmAAtAFigIMCAAQARhlIFAoRTAP&rs=AOn4CLBQrz-3L-z_P9-X2EW9x3G3z6IH3A HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 3463
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Jun 2023 05:59:36 GMT
expires: Wed, 07 Jun 2023 07:59:36 GMT
cache-control: public, max-age=7200
etag: "0"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 32 kB URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash dfa113e33f5bfd073552634d551bd023
d812024e2b3dcb81c873a6bd4ee1706f302ab729
086a3ad5d339162b21f4dbb6cb2d3b24f5cfa74e248f52af0cbe93c09a81c44b
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 07 Jun 2023 05:59:36 GMT
server: ESF
cache-control: private
content-length: 31742
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/js/th/C-bCu9rGCiFANQBeMy799cjZp_l5fBmx44_SdYfWQak.js
142.250.74.132200 OK 15 kB URL GET HTTP/2 www.google.com/js/th/C-bCu9rGCiFANQBeMy799cjZp_l5fBmx44_SdYfWQak.js
IP 142.250.74.132:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintA8:95:C3:CB:D6:3F:BC:0A:7D:FF:36:72:5E:2F:56:26:9F:EB:77:0E
ValidityFri, 19 May 2023 12:58:13 GMT - Fri, 11 Aug 2023 12:58:12 GMT
File type ASCII text, with very long lines (37436)
Hash adea9aa95591478e427b2c723736e5b3
3bac48b5ae8d8f73f981dea3fa6675ad3ba629b8
0be6c2bbdac60a214035005e332efdf5c8d9a7f9797c19b1e38fd27587d641a9
GET /js/th/C-bCu9rGCiFANQBeMy799cjZp_l5fBmx44_SdYfWQak.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Jun 2023 06:45:31 GMT
expires: Sat, 01 Jun 2024 06:45:31 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 30 May 2023 11:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 429245
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
yt3.ggpht.com/0GhHlbPCeiE5-_4NhHiKO8ZwRJyAPUFqm36WgdrRZASin9oemoXkUb5zrOXDmnA1Fz3GUWW5tA=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.1 kB URL GET HTTP/2 yt3.ggpht.com/0GhHlbPCeiE5-_4NhHiKO8ZwRJyAPUFqm36WgdrRZASin9oemoXkUb5zrOXDmnA1Fz3GUWW5tA=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintAC:83:32:AA:E9:4D:2F:A2:F2:C9:F0:F3:7B:98:49:1B:5B:DE:7E:44
ValidityFri, 19 May 2023 12:57:31 GMT - Fri, 11 Aug 2023 12:57:30 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 2596076bd1c055f60f6fd0c8c9f0b3cc
ab862ee6c33d728b0449f1f3fb37b0382e4f09d3
8db1cf5e912f574eb8a950a5010ef3f42156904a7e3863ac8b842fb3caca15cf
GET /0GhHlbPCeiE5-_4NhHiKO8ZwRJyAPUFqm36WgdrRZASin9oemoXkUb5zrOXDmnA1Fz3GUWW5tA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 2111
x-xss-protection: 0
date: Wed, 07 Jun 2023 05:59:36 GMT
expires: Thu, 08 Jun 2023 05:59:36 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.42200 OK 0 B URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.42:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 07 Jun 2023 05:59:36 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.42200 OK 110 B URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.42:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 71ad296c93cd20465286c5a2a7cc9d08
e9ab7caff71dd4ffbc140ac1e7e2e821cb70d113
12158366e546046e183aacc03730f23bf29f4f7452714a205e927853bc98a376
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 846
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 07 Jun 2023 05:59:37 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/generate_204?47SBFA
142.250.74.142204 No Content 0 B URL GET HTTP/3 www.youtube.com/generate_204?47SBFA
IP 142.250.74.142:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?47SBFA HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/NL0OY9ArGlc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Wed, 07 Jun 2023 05:59:37 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
151.101.65.229200 OK 41 kB URL GET HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP 151.101.65.229:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT
File type ASCII text, with very long lines (32014)
Hash 7bb7aac0cac89a90304af1c72eb4f50d
729f6f8ca5787d89743b0ed7eb27fd76406bf985
f5c06455e539dcd889f7f05d709b5adc76c444099fe57f431365af2fc57e803b
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: br
accept-ranges: bytes
date: Wed, 07 Jun 2023 05:59:38 GMT
age: 5540469
x-served-by: cache-fra-eddf8230136-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 41275
X-Firefox-Spdy: h2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
151.101.65.229200 OK 41 kB URL GET HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP 151.101.65.229:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT
File type ASCII text, with very long lines (32014)
Hash 7bb7aac0cac89a90304af1c72eb4f50d
729f6f8ca5787d89743b0ed7eb27fd76406bf985
f5c06455e539dcd889f7f05d709b5adc76c444099fe57f431365af2fc57e803b
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: br
accept-ranges: bytes
date: Wed, 07 Jun 2023 05:59:38 GMT
age: 5540469
x-served-by: cache-fra-eddf8230136-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 41275
X-Firefox-Spdy: h2
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
142.250.74.142200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 142.250.74.142:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1686117578000
Content-Type: application/json
X-Goog-Visitor-Id: CgtxMDN1X3g4eHktUSjHuYCkBg%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20230604.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1686117575227&flash=0&frm=2&u_tz&u_his=3&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C282%2C154&vis=1&wgl=true&ca_type=image
Content-Length: 15068
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/NL0OY9ArGlc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Wed, 07 Jun 2023 05:59:38 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+892; expires=Fri, 06-Jun-2025 05:59:38 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Wed, 07 Jun 2023 05:59:38 GMT
cache-control: private
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-696bc286.js
172.67.38.66200 OK 5.1 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-696bc286.js
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (17930), with no line terminators
Hash 6dd996f847762fe19aadcbd932a92b08
c1c5edd05a7e437b4d07feed69e2be8cc94e2ad1
a137b6d915c842f317b92af003081805d36f2037062eead04c3cecc3893cc9ab
GET /_s/v4/app/64795e77f7f/js/twk-chunk-696bc286.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 07 Jun 2023 05:59:37 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"6dd996f847762fe19aadcbd932a92b08"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 438833
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab8dea77b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
142.250.74.142200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 142.250.74.142:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1686117591884
Content-Type: application/json
X-Goog-Visitor-Id: CgtxMDN1X3g4eHktUSjHuYCkBg%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20230604.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1686117575227&flash=0&frm=2&u_tz&u_his=3&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C282%2C154&vis=1&wgl=true&ca_type=image
Content-Length: 646
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/NL0OY9ArGlc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Wed, 07 Jun 2023 05:59:52 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+494; expires=Fri, 06-Jun-2025 05:59:52 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Wed, 07 Jun 2023 05:59:52 GMT
cache-control: private
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b383d.js
172.67.38.66200 OK 689 B URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b383d.js
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (715), with no line terminators
Hash 8489b26d8834814d4c645e094bfb1c7f
6b3eba11e5a67137295b00f316698a3e12da1d66
0e3b1c1a3da2e19c8918864752042eaa06885730a0bdd7cd60ee519cfc531412
GET /_s/v4/app/64795e77f7f/js/twk-chunk-2d0b383d.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 05:59:37 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"a6432972b93f7d0476635e7ac224d718"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 438832
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab8dfa87b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.onesignal.com/sdks/OneSignalSDK.js
104.18.215.59200 OK 9.2 kB URL GET HTTP/2 cdn.onesignal.com/sdks/OneSignalSDK.js
IP 104.18.215.59:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint68:AF:AC:17:CA:79:7A:8F:ED:F8:D8:57:93:79:CA:FB:69:50:9B:19
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (9410), with no line terminators
Hash b30f8e0720209139bd8407b8cbbbb308
f91073b3bfd85715e26dce820a38a503bdff9f0f
38f8be9be63b049e818ef7edefd3a09c0724deaaec765aa1aff8d9efc103a585
GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:33 GMT
content-type: application/javascript
etag: W/"06f50014011c1fcd9e21b6b0481979de"
access-control-allow-headers: OneSignal-Subscription-Id
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 2017
expires: Sat, 10 Jun 2023 05:59:33 GMT
cache-control: public, max-age=259200
set-cookie: __cf_bm=ICD4Pf_s.cjwgVTtEvHvGVy4nQzyYHjJI3kgKPx0xBs-1686117573-0-AQHwNq/HRmVt+kzalXgyWAdabO++WmVzAEVmbHVUbG4LlBZOgy/gG17qFmaVgRVFHIg6qMOOW+SbivqqeCD3NYk=; path=/; expires=Wed, 07-Jun-23 06:29:33 GMT; domain=.onesignal.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 7d36ab7448a6b4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
propeller-tracking.com/fv.js?t=95799
139.45.197.240200 OK 5.2 kB URL GET HTTP/2 propeller-tracking.com/fv.js?t=95799
IP 139.45.197.240:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerSectigo Limited
Subjectpropeller-tracking.com
Fingerprint29:14:4F:57:5D:49:BB:13:F2:11:B7:FD:18:B4:E8:63:D4:8B:DC:06
ValidityFri, 04 Nov 2022 00:00:00 GMT - Mon, 06 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (5331), with no line terminators
Hash 061bf31ab8394112d1dffdd5ec872c2a
f87a9877e0b08b1ddcc15351cee29a4d8ba34315
b24829831c07c3a35bc35c242324c3ee90c151e4e53de8e28f579e4161819414
GET /fv.js?t=95799 HTTP/1.1
Host: propeller-tracking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 1805a4b29ccb873985ed99fa2783805a
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
www.youtube.com/s/player/b128dda0/player_ias.vflset/en_US/embed.js
142.250.74.142200 OK 29 kB URL GET HTTP/3 www.youtube.com/s/player/b128dda0/player_ias.vflset/en_US/embed.js
IP 142.250.74.142:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with very long lines (3391)
Hash 2c3de99a218ffbcb625532cd54561ff8
f36467b3882760f1c5206245ee2eef06da76319a
cbf910cb284a4e5c52ea62eb5b1354a568dea36c0d89c09ccb379c6f9d435dee
GET /s/player/b128dda0/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/NL0OY9ArGlc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 8185
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 15:59:19 GMT
expires: Tue, 04 Jun 2024 15:59:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Jun 2023 01:43:52 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 136817
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
playmaster.co.ke/styles.86a8f00fc728bba0b103.css
188.114.97.1200 OK 620 kB URL GET HTTP/2 playmaster.co.ke/styles.86a8f00fc728bba0b103.css
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
Size 620 kB (619975 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /styles.86a8f00fc728bba0b103.css HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:33 GMT
content-type: text/css
last-modified: Thu, 01 Jun 2023 08:04:22 GMT
vary: Accept-Encoding
etag: W/"64785106-975c7"
expires: Thu, 06 Jul 2023 16:36:43 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 48170
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O1y4qacchEC3Bo%2FDlGAHLjmcYFxAy9tgBJFTUDcv%2FNBc6RKSrot4UJmVDbS0E46IayjQEajGhnpXjwq0UD1A3Y0D0P0TqNnMd2rXR5syUY36x0bguQkQ76yyHGcSRp%2BaYMpt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d36ab738fe00b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/s/player/b128dda0/player_ias.vflset/en_US/base.js
142.250.74.142200 OK 2.4 MB URL GET HTTP/3 www.youtube.com/s/player/b128dda0/player_ias.vflset/en_US/base.js
IP 142.250.74.142:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
Size 2.4 MB (2383576 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/player/b128dda0/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/NL0OY9ArGlc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 758835
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 15:58:39 GMT
expires: Tue, 04 Jun 2024 15:58:39 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Jun 2023 01:43:52 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 136856
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 21:40:21 GMT
expires: Wed, 05 Jun 2024 21:40:21 GMT
cache-control: public, max-age=31536000
age: 29954
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2c78ba82.js
172.67.38.66200 OK 7.3 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2c78ba82.js
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (7885), with no line terminators
Hash bcc0ef52169d50e214a2accd9ab5bcb9
7d8c53a2c4f06ee540d1d82d83d06672c94d6e04
5e697f0511d2def1d0e5118cff1577dca11ce12a57a88bc73a85a6f624884c91
GET /_s/v4/app/64795e77f7f/js/twk-chunk-2c78ba82.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 05:59:37 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"a365c34c6cb5f6c0443d0e2a66a93be2"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 438832
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab8dea71b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
vsb3.tawk.to/s/?k=64801cc9a3c8d40bf94fb8f5&cver=0&pop=false&asver=90861&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZDFlMmU4ZDIyZDcwZTM2YzJhNDJjYTQiLCJ2aWQiOiI1ZDFlMmU4ZDIyZDcwZTM2YzJhNDJjYTQtTkhqUTZjeVNBRWtaSWhBbGNSc0lIIiwic2lkIjoiNjQ4MDFjYzlhM2M4ZDQwYmY5NGZiOGY1IiwiaWF0IjoxNjg2MTE3NTc3LCJleHAiOjE2ODYxMTkzNzcsImp0aSI6IldJUTQ4U1BqaEdaRDFNVVcyNmpsNiJ9.yniDtYlS3ZSPNBD8lqIwQWxmAgbzWAvzEYOq7c0sd9x2ZFA5vBfD18dnzskXFN2NLzdBWAU2YI60k0BScG_Ppg&EIO=3&transport=websocket&__t=OYKS7Ae
172.67.38.66101 Switching Protocols 0 B URL GET HTTP/1.1 vsb3.tawk.to/s/?k=64801cc9a3c8d40bf94fb8f5&cver=0&pop=false&asver=90861&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZDFlMmU4ZDIyZDcwZTM2YzJhNDJjYTQiLCJ2aWQiOiI1ZDFlMmU4ZDIyZDcwZTM2YzJhNDJjYTQtTkhqUTZjeVNBRWtaSWhBbGNSc0lIIiwic2lkIjoiNjQ4MDFjYzlhM2M4ZDQwYmY5NGZiOGY1IiwiaWF0IjoxNjg2MTE3NTc3LCJleHAiOjE2ODYxMTkzNzcsImp0aSI6IldJUTQ4U1BqaEdaRDFNVVcyNmpsNiJ9.yniDtYlS3ZSPNBD8lqIwQWxmAgbzWAvzEYOq7c0sd9x2ZFA5vBfD18dnzskXFN2NLzdBWAU2YI60k0BScG_Ppg&EIO=3&transport=websocket&__t=OYKS7Ae
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/?k=64801cc9a3c8d40bf94fb8f5&cver=0&pop=false&asver=90861&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZDFlMmU4ZDIyZDcwZTM2YzJhNDJjYTQiLCJ2aWQiOiI1ZDFlMmU4ZDIyZDcwZTM2YzJhNDJjYTQtTkhqUTZjeVNBRWtaSWhBbGNSc0lIIiwic2lkIjoiNjQ4MDFjYzlhM2M4ZDQwYmY5NGZiOGY1IiwiaWF0IjoxNjg2MTE3NTc3LCJleHAiOjE2ODYxMTkzNzcsImp0aSI6IldJUTQ4U1BqaEdaRDFNVVcyNmpsNiJ9.yniDtYlS3ZSPNBD8lqIwQWxmAgbzWAvzEYOq7c0sd9x2ZFA5vBfD18dnzskXFN2NLzdBWAU2YI60k0BScG_Ppg&EIO=3&transport=websocket&__t=OYKS7Ae HTTP/1.1
Host: vsb3.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://playmaster.co.ke
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YJUfN5dB7zV4nGzeAZGCVw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 07 Jun 2023 05:59:38 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: 4etc7UQ+eOU24taaUDY5JeKxHFw=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 7d36ab8e89201c0e-OSL
alt-svc: h3=":443"; ma=86400
playmaster.co.ke/files/faviconsKenia/favicon.ico
188.114.97.1200 OK 632 B URL GET HTTP/2 playmaster.co.ke/files/faviconsKenia/favicon.ico
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 93fb1cef8eed72f689c446d6c6bf469e
843c073ba6cca4a8808484e60c0fd816c13c50c3
c8d85d6dee2bd5cd73c3ea8f718b208b20e8aebdcd7ff0d697f2081488042ce1
GET /files/faviconsKenia/favicon.ico HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:36 GMT
content-type: image/x-icon
last-modified: Thu, 01 Jun 2023 07:57:54 GMT
etag: W/"64784f82-278"
expires: Fri, 07 Jul 2023 05:59:36 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J%2Bev4DbEcR610R6D6gh7kPQMe2ywiTDDTO4jk8uhA8TZIzJJ30Kgz2ilCYVPLf%2FcpuyNeU3YUZnWjcfdv%2FSJJHBknl45xYQpLNMUclXog3l9guWYR4vAkstEanUaIVUwOb0e"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab81cab20b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
188.114.97.1200 OK 7.4 kB URL User Request GET HTTP/2 playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
IP 188.114.97.1:443
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8024), with no line terminators
Hash 5667172e739370acb9455e41d91cdf30
09c2417907b4188b9b0afc9e279019e0649ecc05
9161d471f62f40e36dd4105ffd55fe0c29c12cca86e1bef78037780d99d7e29c
GET /en/ucasino_ms/h-slots-rio-gems-threeoaks HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:33 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding, Origin
x-xss-protection: 1
strict-transport-security: max-age=3600
access-control-allow-origin: http://localhost:9999
access-control-allow-credentials: true
set-cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA; Path=/; HttpOnly
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BWbjK0woIKc4pJOuFlVksyfWd1pkA4tDCCGC2TO5bQO5ESfn2DIif829idlBW9nCDgjVvDjjMV81Ehn8wFelXL6e8wE11W8lJ2pP4jLhuFbCENvkijRXy0XIM7dmmsXIpBUs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d36ab708dd10b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
playmaster.co.ke/files/socialIcons/youtube.svg
188.114.97.1200 OK 624 B URL GET HTTP/2 playmaster.co.ke/files/socialIcons/youtube.svg
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (644), with no line terminators
Hash cc1c243448731045c5acee32d058f6d5
99ed2576369c6d9da5cc1cf6eccb8b8739077dc8
7536c5f041815f037dda8ce69a02209600b757501ede29cf6aeb879486b9c345
GET /files/socialIcons/youtube.svg HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:34 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Jun 2023 07:57:56 GMT
etag: W/"64784f84-270"
expires: Thu, 06 Jul 2023 16:36:48 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 48166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v7moyylMpHd%2FhprStS18VvYo12Yr%2B4mVuO7fqvPLAkrnWNwrAcGAsZIrJA2JYX4OXVY3SqRDpPISIfgfNbZkivdIA5T8vKzIbIEkA2kUkEzUfYLti9xZcoYXFYpc6kUrPkSi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab7aad800b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-app.js
172.67.38.66200 OK 151 B URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-app.js
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 04a9862af6efaf787bc8fb8e99ba6987
a57bb8f258eb1a60dc3b288a608ad8ef9fbecef3
ecc74c329a700e3e6ca29aed5ffe3c166cf39670c8b11573fa7f837f79a71b5c
GET /_s/v4/app/64795e77f7f/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:36 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab848c69b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
va.tawk.to/v1/session/start
172.67.38.66200 OK 0 B URL OPTIONS HTTP/3 va.tawk.to/v1/session/start
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://playmaster.co.ke/
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 05:59:37 GMT
x-served-by: visitor-application-preemptive-3fxt
access-control-allow-origin: https://playmaster.co.ke
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab88abd0b521-OSL
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Noto+Sans
142.250.74.106200 OK 2.5 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Noto+Sans
IP 142.250.74.106:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (2541), with no line terminators
Hash 9e6d1c1449e1fa4f7b8e6750d9032169
5df1b057b40de0596caa76d744354e696eb5c3fe
c44e1fa2733bcb6e70b7b032d94bf1404d4310301f21c548c05849bbb1291f3a
GET /css?family=Noto+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Jun 2023 05:59:33 GMT
date: Wed, 07 Jun 2023 05:59:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/b128dda0/www-player.css
142.250.74.142200 OK 418 kB URL GET HTTP/3 www.youtube.com/s/player/b128dda0/www-player.css
IP 142.250.74.142:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
Size 418 kB (417996 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/player/b128dda0/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/NL0OY9ArGlc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48997
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 15:52:52 GMT
expires: Tue, 04 Jun 2024 15:52:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Jun 2023 01:43:52 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 137203
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-4fe9d5dd.js
172.67.38.66200 OK 906 B URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-4fe9d5dd.js
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (956), with no line terminators
Hash 7b31fafdf609238b7f4574e44057af5b
f4f849145e5beaff38b9e47e3c5c3e7e4945d70a
2b7dfb20a5ee49b709a4adc3412bd7d5e00539c1ef93a1a58c4ec58816c81ed3
GET /_s/v4/app/64795e77f7f/js/twk-chunk-4fe9d5dd.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 05:59:37 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"1c5ecf371149feca23bd895ba9dfec4d"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 438832
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab8e0a95b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
playmaster.co.ke/files/socialIcons/twitter.svg
188.114.97.1200 OK 556 B URL GET HTTP/2 playmaster.co.ke/files/socialIcons/twitter.svg
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (574), with no line terminators
Hash 6a1ade423c25622efe2fbbf161a85c9c
fd3a507bfee259fac2e831d6c35f6f9cd3a21801
0d81b98e8cb862395427626ee4bbb6e68e2f0b4b2aa399cb75b78e12b3eb859d
GET /files/socialIcons/twitter.svg HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:34 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Jun 2023 07:57:56 GMT
etag: W/"64784f84-22c"
expires: Thu, 06 Jul 2023 16:36:48 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 48166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KDkloxztYoHxGVZaIo2OqnQhv5NCCJecm%2FhN7u1YTMAzw6xgjMS2olvhhWoSUO93%2FKcyj2NlDmo8k8G01coxqRsxEwRcPvPiCIeaoyTGnyM9e153tMgz2sttserISk0IuxmI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab7a8d550b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
playmaster.co.ke/files/webexIconsDesktop/image/header/fire-01.svg
188.114.97.1200 OK 1.3 kB URL GET HTTP/2 playmaster.co.ke/files/webexIconsDesktop/image/header/fire-01.svg
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1305), with no line terminators
Hash bd5e52c0abf5305506479155205ddeb7
bcf59b70552a3ed86c845c50cd58d30f5c1766d3
ceec078d5f32ee41a0cbce8ae991b4727528aa3ed6f97582dcb11b7485480bbc
GET /files/webexIconsDesktop/image/header/fire-01.svg HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/styles.86a8f00fc728bba0b103.css
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:34 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Jun 2023 07:57:56 GMT
etag: W/"64784f84-50d"
expires: Fri, 07 Jul 2023 05:59:34 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z3KinoewpWRykKDb2rbVjWZcU9NlMbZwMLwqLkLUZpOfDvN3UkuU7gjINcRH3KnBda7uO45NBybKVlPk1d4z71tQKMCTlvxfgNl3vkqjzJ%2FYRIH1R%2B5S%2Bs0pRYz0%2B%2B7VZXqw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab7b0dc10b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
va.tawk.to/v1/widget-settings?propertyId=5d1e2e8d22d70e36c2a42ca4&widgetId=default&sv=undefined
172.67.38.66200 OK 2.1 kB URL GET HTTP/3 va.tawk.to/v1/widget-settings?propertyId=5d1e2e8d22d70e36c2a42ca4&widgetId=default&sv=undefined
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (2387), with no line terminators
Hash 672f8a5945885b8053cae814ba42bc95
83d87ef41eb8869e24e712600fa0fbf65720deda
883b3fbaa74b7fdb2aa693c3b3e05fcb483011efcd125f361b68c8831c26bebd
GET /v1/widget-settings?propertyId=5d1e2e8d22d70e36c2a42ca4&widgetId=default&sv=undefined HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://playmaster.co.ke/
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 05:59:37 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-xjkk
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-71-1"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab889bbcb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-07cad36d.js
172.67.38.66200 OK 94 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-07cad36d.js
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash c1f0a7a7efb96bfdcdc443a0d6dfd1ca
2fad289307a1e188576c8a9e3103157239c147dd
c55670ad77526b0eb69b7fab93da3bf979e4197bafffb5e6802d36aed72249fb
GET /_s/v4/app/64795e77f7f/js/twk-chunk-07cad36d.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 05:59:37 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"c1f0a7a7efb96bfdcdc443a0d6dfd1ca"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 438831
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab8e1aa0b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
playmaster.co.ke/files/webexIconsDesktop/assets/image/header/logoKenia.svg
188.114.97.1200 OK 45 kB URL GET HTTP/2 playmaster.co.ke/files/webexIconsDesktop/assets/image/header/logoKenia.svg
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (45339), with no line terminators
Hash e9ff3c2c51c54484b131e898675bc96e
0bf01db094d0d55193464a415dfab2c0f0294327
c3375b64cf1eec9f0a6702edafb7f503eec2a5f7498062265ad3d759d3fd1c49
GET /files/webexIconsDesktop/assets/image/header/logoKenia.svg HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:34 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Jun 2023 07:57:56 GMT
etag: W/"64784f84-b11b"
expires: Thu, 06 Jul 2023 16:36:55 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 48159
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yd9yxNlIFvJEiJoG2f67EdM%2BrbSlIWotN%2Fse06pYorIvNrTaF%2Bedq5lbAtygAQmwJgNeq3V2W78nergjSXD%2B%2BmA3MSN9N3Kz3q4agjnfaY4YkJKa9Iyn8arX1rMlJTl6RnbQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab7acd9e0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
my.rtmark.net/p.js?f=sync&lr=1&partner=9f7d9fee71938e979ff3c186172fe99af6fed4d05cd2f164407368f8cad38667
139.45.195.8200 OK 697 B URL GET HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=9f7d9fee71938e979ff3c186172fe99af6fed4d05cd2f164407368f8cad38667
IP 139.45.195.8:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type ASCII text, with very long lines (749), with no line terminators
Hash aee96ca035701399e9e6d386960a295f
1bf02ec9db47871da59c1dea4f7929af3a44b58a
4699e07d6da0a22865a3a8543de0211db89c332aadd5d6be421434006927640c
GET /p.js?f=sync&lr=1&partner=9f7d9fee71938e979ff3c186172fe99af6fed4d05cd2f164407368f8cad38667 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/css/message-preview.css
172.67.38.66200 OK 38 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/css/message-preview.css
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (38236), with no line terminators
Hash 525e595977273d758b1f8b4b5b45eaff
82823b09d4b64e4e0ead74180c3021937701edfc
788855d7239de368ab83b2a1d743be8504c68659912d8f9aaf67a5a6aac463ed
GET /_s/v4/app/64795e77f7f/css/message-preview.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 05:59:38 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=38369
access-control-allow-origin: *
etag: W/"4ad3afbed0c84d07cd50f865330d4a82"
last-modified: Fri, 02 Jun 2023 03:15:38 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 438832
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab8ebbb7b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/css/max-widget.css
172.67.38.66200 OK 74 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/css/max-widget.css
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash ebb53d03ee18dec4b394c3db6d7292d3
29ff00d5ff9045bddf07fe99e265a3420c3fbf75
a374cd80761045b46086558d2a9449f98c578d9f9bd68cc435ae780a845770c6
GET /_s/v4/app/64795e77f7f/css/max-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 05:59:38 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=74548
access-control-allow-origin: *
etag: W/"f335908186585c187eea3163811286d9"
last-modified: Fri, 02 Jun 2023 03:15:38 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 438832
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab8ecbd2b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
use.fontawesome.com/releases/v5.1.0/css/all.css
172.64.132.15200 OK 46 kB URL GET HTTP/2 use.fontawesome.com/releases/v5.1.0/css/all.css
IP 172.64.132.15:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
FingerprintC8:38:F5:E2:7C:CE:53:71:EB:92:1D:71:F5:78:FE:7C:C4:4D:65:BC
ValiditySat, 06 May 2023 03:15:52 GMT - Fri, 04 Aug 2023 03:15:51 GMT
File type ASCII text, with very long lines (45507)
Hash 826c57385f3d35cfed5478ba7b1f5c03
20d2d431065fc6b38c1187eda564639527e2428e
ce91e2144ea27f82292ef2c87c5d9e1d0b9994df63836130293865aca18fc550
GET /releases/v5.1.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:33 GMT
content-type: text/css
x-amz-id-2: RWAXxYneosWoEaO839RNphsBWWcIdT42W3j1V6X113QWanG5tZpVtFBAflmhtmGnJfYUawLNEs4=
x-amz-request-id: YQQBAZAXP11WXAEZ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:30:31 GMT
etag: W/"826c57385f3d35cfed5478ba7b1f5c03"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1603740
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MnuXhqUNtPRC2OTGGukn9nraKp17gypOP2v1rDTN569DCmxJVuo3wJUQDWmesYgrNnxxc1OkDIDqAhJfQFxCJK3OvlyvNSIYzYvlfNa%2B1%2Bewq3SjKF%2FQNiHynkkK%2B7Qx4nC%2Flgix"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d36ab746fc27509-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-main.js
172.67.38.66200 OK 121 B URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-main.js
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 3b41342f7e3be590563e8e3b5ff770c7
c9ca54d23ea78b320f080b76e22bb6b4e704d55f
ef04d89daeed55613a63a4af62c147ce86e4a7f22c8ce700dd6bdb11ab187e43
GET /_s/v4/app/64795e77f7f/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:36 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab847c4fb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/s/player/b128dda0/player_ias.vflset/en_US/remote.js
142.250.74.142200 OK 119 kB URL GET HTTP/3 www.youtube.com/s/player/b128dda0/player_ias.vflset/en_US/remote.js
IP 142.250.74.142:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with very long lines (538)
Size 119 kB (118833 bytes)
Hash b4d9b9feb7f93451088ea067d053b221
613915b8bf4cf9d1f20a87680da4d43a4aa559e3
90f1b09011800f144eca6146f22ee2e63ed0ca933571e85fe8e7d8aef8ef9838
GET /s/player/b128dda0/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/NL0OY9ArGlc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33428
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 15:58:39 GMT
expires: Tue, 04 Jun 2024 15:58:39 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Jun 2023 01:43:52 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 136857
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
my.rtmark.net/p.js?f=sync&lr=1&partner=7f41a83d748afa4f865bfe2300b041dc5fdc50c8d7ce5030d4d425f67296d3b7
139.45.195.8200 OK 697 B URL GET HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=7f41a83d748afa4f865bfe2300b041dc5fdc50c8d7ce5030d4d425f67296d3b7
IP 139.45.195.8:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type ASCII text, with very long lines (749), with no line terminators
Hash 488f05b24eb922c1c17f11eb5c540948
161d64daba1bf5d0a9e9b41688ab3a4695566748
1607df06dcec9df09dcdf3a1eb01524349f1d2251146d7d649465df8cd2cc61f
GET /p.js?f=sync&lr=1&partner=7f41a83d748afa4f865bfe2300b041dc5fdc50c8d7ce5030d4d425f67296d3b7 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
playmaster.co.ke/files/faviconsKenia/favicon.ico
188.114.97.1200 OK 632 B URL GET HTTP/2 playmaster.co.ke/files/faviconsKenia/favicon.ico
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 93fb1cef8eed72f689c446d6c6bf469e
843c073ba6cca4a8808484e60c0fd816c13c50c3
c8d85d6dee2bd5cd73c3ea8f718b208b20e8aebdcd7ff0d697f2081488042ce1
GET /files/faviconsKenia/favicon.ico HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:36 GMT
content-type: image/x-icon
last-modified: Thu, 01 Jun 2023 07:57:54 GMT
etag: W/"64784f82-278"
expires: Fri, 07 Jul 2023 05:59:36 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=juQUPiMeTGKWRpF%2BesBkPnDFPrWTq9vNXMuVjUo5eQ2YBDoWZY98anTC3aiEa2ryW94puVGeh%2Ffw3B5aKTgrNn%2F0U1%2BMWOvBITg2otTE3lbxpcJ2uLMvL8GztH5QTzg6LEGT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab81cab40b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/embed/NL0OY9ArGlc
142.250.74.142200 OK 74 kB URL GET HTTP/2 www.youtube.com/embed/NL0OY9ArGlc
IP 142.250.74.142:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/NL0OY9ArGlc HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 07 Jun 2023 05:59:35 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=u6qPh6pGA70; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=q03u_x8xy-Q; Domain=.youtube.com; Expires=Mon, 04-Dec-2023 05:59:35 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+025; expires=Fri, 06-Jun-2025 05:59:35 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-common.js
172.67.38.66200 OK 210 kB URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-common.js
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65466)
Size 210 kB (210377 bytes)
Hash 00aa43670bf94cf802dd5797a4416a00
321252add669266027cadb78a82f94d51e3f469e
b9e3acc3ea33954ac74406b8bbd9489bba42631dda3b1ebfa20bb8874226a95a
GET /_s/v4/app/64795e77f7f/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:36 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"00aa43670bf94cf802dd5797a4416a00"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab848c5fb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b9454.js
172.67.38.66200 OK 535 B URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b9454.js
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (557), with no line terminators
Hash 3f4a6312d60391bda06462d7321ffcdc
9f09295297840a36d2ac95344b39b0af1a729f82
28d61df22c079e51c45b6f87db516f03cb85cf3f2c3a970be369944c3f91bcf1
GET /_s/v4/app/64795e77f7f/js/twk-chunk-2d0b9454.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 05:59:37 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"c506281367048d4a134c9affbc68c8c6"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 438832
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab8e0a9fb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
playmaster.co.ke/files/fonts/google/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
188.114.97.1200 OK 15 kB URL GET HTTP/2 playmaster.co.ke/files/fonts/google/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15332, version 1.0\012- data
Hash 587de8ec039052f50e69c9654439b991
dd26304e3095c1ec9f8860e3c5f094d2826f6074
0f961c62a5d3faf422bafd5ce3c490a54b95c68a1bb5aaca37b66a8257fe02ea
GET /files/fonts/google/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/styles.86a8f00fc728bba0b103.css
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:34 GMT
content-type: font/woff2
content-length: 15332
last-modified: Thu, 01 Jun 2023 07:57:54 GMT
etag: "64784f82-3be4"
expires: Fri, 07 Jul 2023 05:59:34 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wBDIXQ6tC2n4cwTt5XqzAkUFPlCyMFMvPp9OpAZ%2FxeBh24tQX%2FviqEHeEAZM4TWP3Cck2Hw%2BHp7uyaFCC1%2BUL6oEVnIgimPXr3W0RJs0nocb7EV2HFZOA36bfqeIYd6MJikA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab7b1dca0b06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
playmaster.co.ke/api/united-casino/game-init-data
0.0.0.0 0 B URL POST playmaster.co.ke/api/united-casino/game-init-data
IP 0.0.0.0:0
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/united-casino/game-init-data HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
authorization:
Content-Type: application/json
Content-Length: 66
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
playmaster.co.ke/files/img/royal-win-popup-v2/close.svg
188.114.97.1200 OK 494 B URL GET HTTP/2 playmaster.co.ke/files/img/royal-win-popup-v2/close.svg
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (510), with no line terminators
Hash e3c2307abe6b090267061582ef7298c2
1cd52d6604d37ff5ec9542d416a1b73fe644f725
6203c55fa7d8b1a6a39c74785c967453b577d29f774af3c572a35362a2e74773
GET /files/img/royal-win-popup-v2/close.svg HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/auth/signin
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Jun 2023 07:57:56 GMT
etag: W/"64784f84-1ee"
expires: Thu, 06 Jul 2023 16:36:47 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 48168
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Ff34AVuhJ5qe%2FKSiSKIjkitj4ButPYsOYDO5rqAq11WsOjBCI03mB6dCAVnRk1LpqzA4SC%2Fu4K6d2hDc%2BXXabjeGwlKRF5md86Ighjv%2Fn8ZF372PMredNkhsjEkEKJRLLtAF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab7daf970b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-vendors.js
172.67.38.66200 OK 215 kB URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-vendors.js
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Size 215 kB (214782 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_s/v4/app/64795e77f7f/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:36 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"01b31f3e100a09c2fbb450c0599a9d8e"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab847c57b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
my.rtmark.net/p.js?f=sync&lr=1&partner=458124450432a37bd27e68ab57fa2c7806a129a6e516153febe0dca195779ca0
139.45.195.8200 OK 697 B URL GET HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=458124450432a37bd27e68ab57fa2c7806a129a6e516153febe0dca195779ca0
IP 139.45.195.8:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type ASCII text, with very long lines (749), with no line terminators
Hash 8a64e5b3091ff90b17bfac3a2d5a074a
98f0091900b92d373246bcd604f25176dd7111b4
605681d7f61940730de379248481c25970a73e75fc2a937dc3942377b0ce3b63
GET /p.js?f=sync&lr=1&partner=458124450432a37bd27e68ab57fa2c7806a129a6e516153febe0dca195779ca0 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
www.youtube.com/s/player/b128dda0/www-embed-player.vflset/www-embed-player.js
142.250.74.142200 OK 313 kB URL GET HTTP/3 www.youtube.com/s/player/b128dda0/www-embed-player.vflset/www-embed-player.js
IP 142.250.74.142:443
Requested by https://www.youtube.com/embed/NL0OY9ArGlc
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with very long lines (660)
Size 313 kB (313339 bytes)
Hash 90c6916311313135e5a145acb9f72be1
31d96a5033220b58208bf681d11d719245cb6d73
02f492b321d49001540a1026fbd54bc785f3178747acac60c4bf8f469f220943
GET /s/player/b128dda0/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/NL0OY9ArGlc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 94029
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 15:52:52 GMT
expires: Tue, 04 Jun 2024 15:52:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Jun 2023 01:43:52 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 137203
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-vendor.js
172.67.38.66200 OK 83 kB URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-vendor.js
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_s/v4/app/64795e77f7f/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:36 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"ce3014b09c6dfbd6f92bc585fd840580"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab847c54b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-runtime.js
172.67.38.66200 OK 2.3 kB URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-runtime.js
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (2349), with no line terminators
Hash 49acd450f7335db03e4b8b9d8423b119
6831ac4658c865e3e9ce7515fe6bba1a5aac9d90
2577e056d13189138961a22563a6df33310803fbe287da14c986b7efc9c3e6e9
GET /_s/v4/app/64795e77f7f/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:36 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"471fc97e0f884da442b8dc6ac18e204a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab848c61b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
playmaster.co.ke/files/socialIcons/tiktok.svg
188.114.97.1200 OK 3.2 kB URL GET HTTP/2 playmaster.co.ke/files/socialIcons/tiktok.svg
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3258), with no line terminators
Hash 4d4fbf1d6f6d8eb2fb8ec6169e1725e6
b6c64c6056bfa3b6597b5b6a1b239d6353df59d2
c49cfbf29c08b5e083cb4aa53a4289bc78734e2863f7e4f0ca79dcd88e8fcebf
GET /files/socialIcons/tiktok.svg HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:34 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Jun 2023 07:57:56 GMT
etag: W/"64784f84-c92"
expires: Thu, 06 Jul 2023 16:36:48 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 48166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QsF%2FM2YPU7RGGHxUJ68TQQ5qJraNGOU92YlPqMIfFqVOtdJ11Mf9AkY9dGF0NmOqs7g07T%2BICeBGoVDxSFCjM7JWrPhH4XcYtIpwpcCKMenbQwuKnKWGUW0OpOaJFo8nUJI5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab7a8d560b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
va.tawk.to/v1/session/start
172.67.38.66200 OK 998 B URL POST HTTP/3 va.tawk.to/v1/session/start
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1082), with no line terminators
Hash 688f73bbee3ee1046873075b22d9d350
37b4fa5727cf75f34e392e5483388ebbe8430a42
9fd46eabb8aec1244eaad082300de04d67e1fc4be024c5bf71633372a0e0576a
POST /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://playmaster.co.ke/
Content-Type: application/json; charset=utf-8
Content-Length: 190
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 05:59:37 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-j7p9
access-control-allow-origin: https://playmaster.co.ke
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab89bd13b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/languages/en.js
172.67.38.66200 OK 17 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/languages/en.js
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with CRLF, LF line terminators
Hash 585ba00b2c167b90c210161454f843b5
89ee8372cc6d5eb307cf5840b70d8f3dab3c57f2
e924ffe8bcc65483510a22a7286bd6d4d204e72ffe5927eec50158f7a7be50c0
GET /_s/v4/app/64795e77f7f/languages/en.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 05:59:37 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"585ba00b2c167b90c210161454f843b5"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 438833
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab8daa21b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-48f46bef.js
172.67.38.66200 OK 20 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-48f46bef.js
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (19655), with no line terminators
Hash cf46dbd8781936ac4cada7e90d8bd7d5
b9d821bc13a46c181ccc8b68b15a352d9e3a3cd6
fb3c890c14210dcec97b3e6dda3a28b4632a1a63a0bea29e421a18a612583031
GET /_s/v4/app/64795e77f7f/js/twk-chunk-48f46bef.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 05:59:37 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"cf46dbd8781936ac4cada7e90d8bd7d5"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 438832
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab8dfa8cb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
playmaster.co.ke/files/socialIcons/facebook.svg
188.114.97.1200 OK 878 B URL GET HTTP/2 playmaster.co.ke/files/socialIcons/facebook.svg
IP 188.114.97.1:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerGoogle Trust Services LLC
Subject*.playmaster.co.ke
Fingerprint22:1C:5F:55:BC:D2:E6:B7:EC:EC:F3:A8:F5:5E:A3:12:41:98:56:43
ValidityMon, 10 Apr 2023 04:18:07 GMT - Sun, 09 Jul 2023 04:18:06 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (900), with no line terminators
Hash 627c866323d06a259f13fdbed9c1ac03
a8277e510648a457c9ee9383d46eb59f66e401c4
31f36e50cfce0eeaf7e34f87c707064532d273c046b0e85d2595bb3d7549c5ba
GET /files/socialIcons/facebook.svg HTTP/1.1
Host: playmaster.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Cookie: web.sid=s%3Ag35rtOoJERJeTeZJHYNBqsAlPfVNxJXZ.Nij7jQfBut%2FZBl%2B4TSvwjhWVTclVjFI3fS5Bjki0zpA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 05:59:34 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Jun 2023 07:57:56 GMT
etag: W/"64784f84-36e"
expires: Thu, 06 Jul 2023 16:36:48 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 48166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZXsjFmnikqDDA9qHagZU6IebyMeoCqburUmC2n5KJY7u9TqLfW6uECZ%2BBPLT9tq1XxIgVlNGvxxrJU1hdGyckiYVMxDICyptG%2F80cQgKMV77%2FyRj2aiDiUKI7xIgIWdV1g8Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36ab7a8d500b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
my.rtmark.net/p.js?f=sync&lr=1&partner=0a33899fd0710311f885aa995a362f745b43cf9fa64a57afd98f276247391262
139.45.195.8200 OK 697 B URL GET HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=0a33899fd0710311f885aa995a362f745b43cf9fa64a57afd98f276247391262
IP 139.45.195.8:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type ASCII text, with very long lines (749), with no line terminators
Hash 7bf585cf7b22c13f1ae95da6692874cb
e9c3f15ae283c3cd710b775d865f6007d62d62a1
0b0aba65014b56895166c5d905893c91751d7ee16fe99d383b66718a05e0615e
GET /p.js?f=sync&lr=1&partner=0a33899fd0710311f885aa995a362f745b43cf9fa64a57afd98f276247391262 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 05:59:35 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/css/min-widget.css
172.67.38.66200 OK 25 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/css/min-widget.css
IP 172.67.38.66:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (24760), with no line terminators
Hash b0b0abe33d92f7a199e2e71fd516ff27
bf6af864e9e26100ae865904a5f5e9c270a63eb5
51e73fb66e2b18f262f86ba2880f9369b6a66d7411a3c8daa1146aaafc2690e6
GET /_s/v4/app/64795e77f7f/css/min-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 05:59:38 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=24840
access-control-allow-origin: *
etag: W/"3d22e9f29d90d6fd0e66aebbeadc0ca2"
last-modified: Fri, 02 Jun 2023 03:15:38 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 438833
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d36ab8eab84b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
unphionetor.com/vctx?t=95799
139.45.197.236204 No Content 0 B URL GET HTTP/2 unphionetor.com/vctx?t=95799
IP 139.45.197.236:443
Requested by https://playmaster.co.ke/en/ucasino_ms/h-slots-rio-gems-threeoaks
Certificate IssuerLet's Encrypt
Subjectunphionetor.com
FingerprintAE:27:7A:79:D4:BC:FB:08:BD:B3:B0:53:2B:F0:1B:AA:BA:71:94:D4
ValidityTue, 06 Jun 2023 06:58:21 GMT - Mon, 04 Sep 2023 06:58:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vctx?t=95799 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://playmaster.co.ke
DNT: 1
Connection: keep-alive
Referer: https://playmaster.co.ke/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Wed, 07 Jun 2023 05:59:35 GMT
access-control-allow-origin: https://playmaster.co.ke
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 22cf5a1ead8955fb8580376a46acab94
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2