blancoshrimp.com/SB/BR/logo.png
947 B URL blancoshrimp.com/SB/BR/logo.png
IP
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 33945cc89eb107c9dc76a136c80d334f
20345714ea8b7a13a5a26b78d76a2d370516d1e8
b7abb33953367ca8cbd7992cfac8d74385407227e3de75105ee9cfbf38070a41
GET /SB/BR/logo.png HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blancoshrimp.com/SB/BR/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:35 GMT
content-type: image/png
content-length: 947
last-modified: Mon, 30 Aug 2021 12:43:11 GMT
etag: "612cd25f-3b3"
expires: Sat, 23 Sep 2023 03:09:49 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 65986
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iIb1llrx5AU4HiJaTUkcE1WY3X40PkSW3kxmB%2FTgOgfjUJlHr%2BEsViQYI0jiugjRCs1mpVuMlN8c445%2BQKmGY3z2wFqSCwhCZ0yMrAlfRBi%2FI0VrXuR2CHYvf7jVP5QFelP6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb10d2bab0b69-OSL
alt-svc: h3=":443"; ma=86400
blancoshrimp.com/SB/BR/bet365.jpg
4.3 kB URL blancoshrimp.com/SB/BR/bet365.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 99x50, components 3\012- data
Hash e45e084e8d23cf8f6464881cba24261c
db7b875f455f5c8b22c1402d82390f94096815e2
63aad7331d7e736a0c7d78bf605358194aed3befe6702c8606b6c5e43f34a469
GET /SB/BR/bet365.jpg HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blancoshrimp.com/SB/BR/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:35 GMT
content-type: image/jpeg
content-length: 4270
last-modified: Mon, 30 Aug 2021 12:43:12 GMT
etag: "612cd260-10ae"
expires: Sat, 23 Sep 2023 03:09:49 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 65986
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y9SRros7scOZbmHGIq5VuCVjeBC8zufuQgCuR7dd63JMGK7V214IQTniM5z%2FT54AarVeavXBRAadvWqbThIWZT182zpspQLcUb0RnbU%2FQ5nvOhqKCGFlewdaxhLTsnIKG9Kd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb10d2bad0b69-OSL
alt-svc: h3=":443"; ma=86400
blancoshrimp.com/SB/BR/
5.7 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (350)
Hash f9ca7dd1a4def78e42cd607d91b19ae0
95e0f86d763e5f7cdb995c8af5420e0d7d4a7e8d
65ad2acfff22cd01fbdba3cfb6d0097f9310f70d1e90566488baa35cd0d729bc
GET /SB/BR/ HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:34 GMT
content-type: text/html
last-modified: Thu, 24 Aug 2023 09:32:55 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ztyVBRHROaej1HfwmRj89pdYYMfLeSt6b9b28Kh9QTE%2F4EVOMocKTam36Sr53DqPpTbD0MYQ6q0Qj3Vhsqm0aRfuppEGw%2FDitxaXz16IGvyVQa2fZK7%2B5KyfECvnZLq1EPtc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7fbeb1091fea0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
blancoshrimp.com/SB/BR/20bet.PNG
2.6 kB URL blancoshrimp.com/SB/BR/20bet.PNG
IP
File type PNG image data, 80 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 65654d730efdffaa8cdd29d5d4a1f5eb
b215ec5964a09d3886bc6d32a655db8f80f9e922
d644490635893763c41e119b177a96cdeddbaeec382d7ceacb7ab9bede3ed212
GET /SB/BR/20bet.PNG HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blancoshrimp.com/SB/BR/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:35 GMT
content-type: image/png
content-length: 2597
last-modified: Tue, 15 Nov 2022 13:30:15 GMT
etag: "63739467-a25"
expires: Sat, 23 Sep 2023 03:09:49 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 65986
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qCk3t8vSG1ZCGnfDi6ExHEkSk2DE%2Bt%2FI%2BQITqI8TibJ4d1w4bnS9c2iTxRHswC32rCfYRDtUlDF9tfEIRUVZaXKjIGhr67JmNsxOjSxDqGzOWFjKq3JsnV1Ccn5xOkINYOYz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb10d3bb70b69-OSL
alt-svc: h3=":443"; ma=86400
blancoshrimp.com/SB/BR/gamcare.png
1.1 kB URL blancoshrimp.com/SB/BR/gamcare.png
IP
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 7bdf9f20366b5636bc698de6e866ffc2
bbef31f004b068961441662ac0e7699905282dd9
70f114ad6d1b1bded9a33e3065aef7d7fbd39da53c8af508321a2ebce6d0e1f7
GET /SB/BR/gamcare.png HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blancoshrimp.com/SB/BR/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:35 GMT
content-type: image/png
content-length: 1100
last-modified: Mon, 30 Aug 2021 12:43:11 GMT
etag: "612cd25f-44c"
expires: Sat, 23 Sep 2023 03:09:49 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 65986
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N9beZmnbfjkW22vE0KMOkCaiS%2BJ5eUTnns%2FEQqW%2BYPJR1ZLszvF3kLJNjla9OSNwF45qG4QR61EbmbCHsaFrfZlQSO9JfbuhAeczg8tYGIhmBrdH3VXtBK5%2FWi7ldWPSHaHo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb10d4bbe0b69-OSL
alt-svc: h3=":443"; ma=86400
blancoshrimp.com/SB/BR/begambleaware.png
2.8 kB URL blancoshrimp.com/SB/BR/begambleaware.png
IP
File type PNG image data, 116 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash c994f474dca6804ccc5d9fcbd825c127
3bef6c2a02045cb8e3643462f11824c4cf3d7832
8afe943621b346d68d17f9764c8b1890d92459d738025bbf7ab6f79f6b2fa89f
GET /SB/BR/begambleaware.png HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blancoshrimp.com/SB/BR/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:35 GMT
content-type: image/png
content-length: 2804
last-modified: Mon, 30 Aug 2021 12:43:11 GMT
etag: "612cd25f-af4"
expires: Sat, 23 Sep 2023 03:09:49 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 65986
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UONQm8wyuhk%2B4WQScgSf5rSg2k1FRQOloZGOx2PPUOTiHcVO1OrgljDeApxd8idbE2XjpuV2LuQtK%2BlbPOHiL86CO504L%2FEJnWb8ZxgVHNbm9DffmRKeV6gQt3wqTMJJZ%2FVn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb10d4bbc0b69-OSL
alt-svc: h3=":443"; ma=86400
blancoshrimp.com/SB/BR/18.png
1.5 kB URL blancoshrimp.com/SB/BR/18.png
IP
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 87d2ca45eb79db526b5d40919e3aabde
0b49095eb96eeff3651587f3a7f985d929227285
c2df13c5fde252964991099d203d6f5f12e0db23d9cf8971e89475fccc8776c1
GET /SB/BR/18.png HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blancoshrimp.com/SB/BR/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:35 GMT
content-type: image/png
content-length: 1468
last-modified: Mon, 30 Aug 2021 12:43:11 GMT
etag: "612cd25f-5bc"
expires: Sat, 23 Sep 2023 03:09:49 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 65986
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0n%2F8Jyehncgfpjb2Rh27h%2F5bWuo2Nun5OKAcUMRMwX0A5d8F0HLVISeAuXQWvhrAyjH6EHQA8c3N75Su9qYTwkBhdHXg%2Bej8B3YbK0oB1jSNHiHdqVIAaoHHDdBBrMaBiOd6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb10d4bc00b69-OSL
alt-svc: h3=":443"; ma=86400
blancoshrimp.com/SB/BR/arrow.png
343 B URL blancoshrimp.com/SB/BR/arrow.png
IP
File type PNG image data, 12 x 11, 8-bit/color RGBA, non-interlaced\012- data
Hash c73ad1b4a907d4d7a112253bd6d326fb
29f9917836224c3d7188c1a0e24b5bb81e2bf462
5f43899197d72dd57f227ae6741b80791fd187b8f11bad546dffbaf2e3743523
GET /SB/BR/arrow.png HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blancoshrimp.com/SB/BR/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:35 GMT
content-type: image/png
content-length: 343
last-modified: Mon, 30 Aug 2021 12:43:11 GMT
etag: "612cd25f-157"
expires: Sat, 23 Sep 2023 21:29:35 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jgla7liBk5lWTGeKlwV6opmTdXnE5xSMHjoxQcm7qKLP%2F%2FmxTfJtkVK2yViPO93eHFnKyqy%2FsSiVHoUFCX03ZoSp47TYn2km6AlDTrM%2B3H6fTiWMmwHRG2lyGwQOHiUSVsn6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb10d3bb40b69-OSL
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
472 B IP
Hash 5ca3d7b365d3c10d745c10efa172a35d
1e1f1872536edbdd81bb9db8c28e60f3ec0e3898
b88f59ee8fa2c4c85a4e71287d5d133945f8eb1d4246996a44baca3c94dc8ab7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Aug 2023 21:29:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
securely-send.com/storage/howisliferightnow_br.js
67 kB URL securely-send.com/storage/howisliferightnow_br.js
IP
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2a192fe32a69c7b7d3075ccd326faa59
733a9a4fe0918a03bbc1001433ad7ab1b5da265b
ea9bd9871e05a7b639c531e0fdc866749e64e5147d57098d004a293c54eb48c2
GET /storage/howisliferightnow_br.js HTTP/1.1
Host: securely-send.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 24 Aug 2023 21:29:35 GMT
content-type: application/javascript; charset=utf-8
content-length: 66576
last-modified: Tue, 22 Aug 2023 15:12:25 GMT
etag: "64e4d059-10410"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600&display=swap
1.1 kB URL fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600&display=swap
IP
File type gzip compressed data, max compression\012- data
Hash 3b0fe279bc73379b41bc0e570f492846
20bfb2618ac2e362da06c0cbb2cd819189130d28
a03aab99b4fbad498d99ec5860303f79750fb3bec37f82ed6d56319945dbb50d
GET /css2?family=Montserrat:wght@300;400;500;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blancoshrimp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Aug 2023 21:29:35 GMT
date: Thu, 24 Aug 2023 21:29:35 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blancoshrimp.com/SB/BR/bg.jpg
297 kB URL blancoshrimp.com/SB/BR/bg.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1280x853, components 3\012- data
Size 297 kB (296654 bytes)
Hash d8c53cda7cac35ead14635ca2177cb67
912b0694f40f8f1b057fbd16bfef342b41e63de6
ed70b3ba07ee5c16f7c87e3bb38f59d60574218f2f993e0eb5262f5829dda59b
GET /SB/BR/bg.jpg HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blancoshrimp.com/SB/BR/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:35 GMT
content-type: image/jpeg
content-length: 296654
last-modified: Mon, 30 Aug 2021 12:43:11 GMT
etag: "612cd25f-486ce"
expires: Sat, 23 Sep 2023 03:26:57 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 64958
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5mWtGVB0225LSu7Wej2bmTJ7nTrh4gwgDYaoIxhvFrP1YuU5DlilP5hzRg0nq%2Bdv3750PVa6kVISRN9PhL3axo0T7sJU06s9zF5OCh7hJqXBCrS0j318z%2BQNcddTkvUM0VEP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb10eed6a0b69-OSL
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
472 B IP
Hash 72438717548786e23e3c1b2ef3ad6581
853eed136622460def10b2ff167efbd0993ff1f2
ed30dd609d16a8c2796f40c3309709a152e995e789033a1f7dd60bcd9129404a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Aug 2023 21:29:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
31 kB URL fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blancoshrimp.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 15:21:56 GMT
expires: Fri, 23 Aug 2024 15:21:56 GMT
cache-control: public, max-age=31536000
age: 22060
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 72438717548786e23e3c1b2ef3ad6581
853eed136622460def10b2ff167efbd0993ff1f2
ed30dd609d16a8c2796f40c3309709a152e995e789033a1f7dd60bcd9129404a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Aug 2023 21:29:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
31 kB URL fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blancoshrimp.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 15:21:56 GMT
expires: Fri, 23 Aug 2024 15:21:56 GMT
cache-control: public, max-age=31536000
age: 22060
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
31 kB URL fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blancoshrimp.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 15:21:56 GMT
expires: Fri, 23 Aug 2024 15:21:56 GMT
cache-control: public, max-age=31536000
age: 22060
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blancoshrimp.com/SB/BR/hero-bg.jpg
510 kB URL blancoshrimp.com/SB/BR/hero-bg.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16, height=3718, bps=0, PhotometricIntepretation=RGB, description=Soccer closeup. Leg of soccer player on the ball. Soccer background. Day stadium., orientation=upper-left, width=4719], baseline, precision 8, 1254x836, components 3\012- data
Size 510 kB (510454 bytes)
Hash ace666e983ed7bad442a91bb0a708589
1cd2825b2f15c89ce1a13b34b2101f5dce8cb0d7
b16b98ab9ed64f409952bb93319ef1a65144f4e37eb601a10937586969c0de86
GET /SB/BR/hero-bg.jpg HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blancoshrimp.com/SB/BR/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:36 GMT
content-type: image/jpeg
content-length: 510454
last-modified: Mon, 30 Aug 2021 12:43:11 GMT
etag: "612cd25f-7c9f6"
expires: Sat, 23 Sep 2023 03:27:01 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 64955
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pXjtIBthQeRNlB%2BfKq9GtPsRpr%2BLs5b%2B5gGEYf8XnevdSvOQfjcU9Og6wm7YN%2BdOdMwZGNhnmpP%2BkpAA9Y2SRz48IPUDEzzsQQNX2i6xj7kXNJ7nyE%2BpGUP%2F8cuJESlh9MGU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb110ef7c0b69-OSL
alt-svc: h3=":443"; ma=86400
www.bet365.com/olp/open-account?affiliate=365_01175261
4.7 kB URL www.bet365.com/olp/open-account?affiliate=365_01175261
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 13f93d173aaef4c815c1ebb1286a45a5
094111cf194f1326af51b673748ffcd8fb50c00a
e328f62e33c7242128fbe9c98d64d050ef31e5b66b93c5ec07561c184fa90965
GET /olp/open-account?affiliate=365_01175261 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ServerDetails: <!--2P1 - 79-->
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=; path=/; expires=Thu, 24-Aug-23 21:59:36 GMT; domain=.bet365.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 7fbeb113eee30b51-OSL
www.bet365.com/olpc/nn/143/0/1/open-account
12 kB URL www.bet365.com/olpc/nn/143/0/1/open-account
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2285), with CRLF line terminators
Hash 73da8995cf5d8c8a3bb33bc485dab967
87a81cd527d25c406364364b75b6935b3742b5ef
158087559e7d9726553529986909964f5232650d50b67874902e1cd7e683e1e3
GET /olpc/nn/143/0/1/open-account HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/olp/open-account?affiliate=365_01175261
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 12058
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://www.googletagmanager.com;frame-src 'self' http://members.bet365.com 'nonce-DbJumSe8sq/dFvtRCOXTU6+CZlqnVjpoWB6iR1/neqQ=';style-src 'self' 'unsafe-inline';img-src 'self' data: https://content001.bet365.com/ https://content001.bet365.com/SportsContent/ 'nonce-DbJumSe8sq/dFvtRCOXTU6+CZlqnVjpoWB6iR1/neqQ=';connect-src 'self' https://www.google-analytics.com http://members.bet365.com https://extra.bet365.com 'nonce-DbJumSe8sq/dFvtRCOXTU6+CZlqnVjpoWB6iR1/neqQ=';font-src 'self' data: 'nonce-DbJumSe8sq/dFvtRCOXTU6+CZlqnVjpoWB6iR1/neqQ=';, connect-src 'self' *.bet365.com
Access-Control-Allow-Origin: *
Last-Modified: Thu, 24 Aug 2023 14:24:51 GMT
CF-Cache-Status: HIT
Age: 11063
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 7fbeb115380a0b51-OSL
blancoshrimp.com/favicon.ico
6.9 kB URL blancoshrimp.com/favicon.ico
IP
File type MS Windows icon resource - 4 icons, 64x64, 32 bits/pixel, 48x48, 32 bits/pixel\012- data
Hash cc859fa0d6660ee587b0edcd03744dd7
7f36f62ca571d94292242f777bce7cce55c55065
f476190c67553763999acc4d90f8f0257828e7eb0728bc2bef0a8dae7d83cf02
GET /favicon.ico HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blancoshrimp.com/SB/BR/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:36 GMT
content-type: image/x-icon
last-modified: Mon, 10 May 2021 13:05:21 GMT
etag: W/"60992f91-7d26"
expires: Sat, 23 Sep 2023 12:03:45 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 33951
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y9%2BKC6qWwwH6NNOzLwEw1B6L7Gtg9vtBFMWbwhShxte4h2zCffops%2FiKCOQ5Zs4sXcwLjuLeqTkYX%2FASAFYrRqXZv273XjHLpVx0RKvFMMqbYU836riNAdq4nFWj8NPQN6Cs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb111a8260b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.r2m01.amazontrust.com/
471 B URL ocsp.r2m01.amazontrust.com/
IP
Hash c0a9d5e334fc3eca1ee0d3beea2b7284
6372885e48309f315a23396f32f28bdf0534586e
26270c28457006f3646db5d29e37229976245011214237ecf4aa09ad6c0b77c3
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Thu, 24 Aug 2023 21:29:36 GMT
Last-Modified: Thu, 24 Aug 2023 20:19:27 GMT
Server: ECAcc (amb/6B66)
X-Cache: Miss from cloudfront
Via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: g4QR0754llATfEN_pSj2TUFNrovD2HXJZM6CowdBYwAFxCPNSNg_0w==
Age: 4209
wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD_F12BET
302 Found 253 B URL GET HTTP/1.1 wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD_F12BET
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://blancoshrimp.com/SB/BR/
Certificate IssuerDigiCert Inc
Subject*.adsrv.eacdn.com
Fingerprint33:C5:88:5A:87:74:08:01:84:C1:33:4B:68:A9:56:EE:56:1C:FD:6F
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 69bbc80d512db4d06033ea310c05502a
afff919e62355d25e81de3de1e7a50ef398c6914
005f9795ac30a2b2aec683fdc7dea4b031eb83e53af9fdce63b2996af1a9c89a
GET /C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD_F12BET HTTP/1.1
Host: wlf12bet.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: //wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD_F12BET&AutoR=1
Server: Microsoft-IIS/10.0
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
X-AspNet-Version: 4.0.30319
Set-Cookie: CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Thu, 24 Aug 2023 21:29:36 GMT
Content-Length: 253
Vary: Accept-Encoding
wlbrazilonebet.adsrv.eacdn.com/C.ashx?btag=a_615b_26c_&affid=414&siteid=615&adid=26&c=PU_BR_PA_SB_DT_VOLD_VAIDEBOB
261 B URL wlbrazilonebet.adsrv.eacdn.com/C.ashx?btag=a_615b_26c_&affid=414&siteid=615&adid=26&c=PU_BR_PA_SB_DT_VOLD_VAIDEBOB
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1411eb7c29325f2b0cdf768ad273300b
5bb1c3364a32c4bb4ff8fd1f4536e8aec18ad2d2
2445c57f0607589b201869ee0ff0c9a5933529da22ceca8645426014b8b99d7d
GET /C.ashx?btag=a_615b_26c_&affid=414&siteid=615&adid=26&c=PU_BR_PA_SB_DT_VOLD_VAIDEBOB HTTP/1.1
Host: wlbrazilonebet.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: //wlbrazilonebet.adsrv.eacdn.com/C.ashx?btag=a_615b_26c_&affid=414&siteid=615&adid=26&c=PU_BR_PA_SB_DT_VOLD_VAIDEBOB&AutoR=1
Server: Microsoft-IIS/10.0
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
X-AspNet-Version: 4.0.30319
Set-Cookie: CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Thu, 24 Aug 2023 21:29:36 GMT
Content-Length: 261
Vary: Accept-Encoding
members.bet365.com/Members/Helpers/DefaultAff.aspx?affiliate=365_01175261
82 B URL members.bet365.com/Members/Helpers/DefaultAff.aspx?affiliate=365_01175261
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 87028e5239ffda18a01dc52fbca0e181
fce0e9af949b2ff077cef9891323aa79e000e2df
607b68196b1a155887d13abae3d23d20af1dbc4a86d88aad941b22f14ddfc04b
GET /Members/Helpers/DefaultAff.aspx?affiliate=365_01175261 HTTP/1.1
Host: members.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:36 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: Affiliates=Code=365_01175261%2f190005923552&prd=Sports; Path=/; Expires=Sun, 08 Oct 2023 21:29:36 GMT; Domain=.bet365.com; SameSite=None; Secure;
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7fbeb115bb8c0b02-OSL
Content-Encoding: gzip
www.bet365.com/olpc/Content/Fonts/FTN45__W.woff2
46 kB URL www.bet365.com/olpc/Content/Fonts/FTN45__W.woff2
IP
ASN #209242 Cloudflare London, LLC
File type Web Open Font Format (Version 2), TrueType, length 45892, version 1.590\012- data
Hash e3596a29429736364ebfef73786a55ab
7bd9b6b18b0985c080d520610c0ab74a128d71bd
6e28311fc68644a88a32df782c7371991894bc6a6a81f8ff70f971b4470c3751
GET /olpc/Content/Fonts/FTN45__W.woff2 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Length: 45892
Connection: keep-alive
Last-Modified: Thu, 24 Aug 2023 18:24:31 GMT
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb115e89e0b51-OSL
blancoshrimp.com/SB/BR/style.css
1.4 kB URL blancoshrimp.com/SB/BR/style.css
IP
File type ASCII text, with very long lines (2332), with no line terminators
Hash 955c1d9b95fb7c9b743726bffc073da7
60ef6f9baf9211f74d765370f2c9565171bb0711
79e220d0cc09b63de81927cf8f76ac3f29b928a61f7dbd022e9124993e600d4f
GET /SB/BR/style.css HTTP/1.1
Host: blancoshrimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blancoshrimp.com/SB/BR/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:35 GMT
content-type: text/css
last-modified: Mon, 30 Aug 2021 12:43:11 GMT
etag: W/"612cd25f-91c"
expires: Wed, 30 Aug 2023 01:13:07 GMT
cache-control: max-age=604800
cf-cache-status: HIT
age: 159388
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dw%2Bfq9Few9KszVxqVQ07wroggzTZFDgRrffSKU9WWCE1NLF8skIn9JBqX%2FYDXBA7i8pX2NPYar0N0L1pKJurdjK7ZHwpP4F9RW%2FA%2FHQWcVEERS4xtC5z9KvF9Y2VykDA7vQT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb10d1b960b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
471 B IP
Hash 65a140c928ceaf9c40778470ac444095
d895ee317e5e7ee2ef9d7aa84a776f9bbfcacfd5
002a5d2d5614ecaff48b0e1df869bb0871eee0027189b3b8a793a9b36426331a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Aug 2023 21:29:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD_F12BET&AutoR=1
174 B URL wlf12bet.adsrv.eacdn.com/C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD_F12BET&AutoR=1
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert Inc
Subject*.adsrv.eacdn.com
Fingerprint33:C5:88:5A:87:74:08:01:84:C1:33:4B:68:A9:56:EE:56:1C:FD:6F
ValidityMon, 17 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9a576d04ecc221479f28ef36d62876dc
9c3f7b9b5790fa2b2be7217ffc368afdc90fb4c1
84845a1009e63e0136af7ec2b9d4deb6fbd9eb592f733c47ee297d80737d6678
GET /C.ashx?btag=a_3672b_86c_&affid=2450&siteid=3672&adid=86&c=PU_BR_PA_DT_VOLD_F12BET&AutoR=1 HTTP/1.1
Host: wlf12bet.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: CEK=a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://f12.bet/?btag=a_3672b_86c_PU_BR_PA_DT_VOLD_F12BET
Server: Microsoft-IIS/10.0
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
X-AspNet-Version: 4.0.30319
Set-Cookie: XYZ=3&1&19&&&&0&1&&0649efc9-10c5-4a2b-addf-2affd7ad1bfc&&a_3672b_86&; expires=Wed, 22-Nov-2023 21:29:37 GMT; path=/; SameSite=None; Secure
A_86=a=86&r=0&fv=0&lv=0&vc=0&fc=20230824&lc=20230824092937&cc=1; expires=Wed, 22-Nov-2023 21:29:37 GMT; path=/; SameSite=None; Secure
PM_2=id=697338ad-b31d-4035-9b35-7ab71e724645&c=PU_BR_PA_DT_VOLD_F12BET&s=3672&ad=86&md=0&pm=2&d=20230824212937&ip=1532635802&r=0&ref=&RedirectParams=btag%3Da_3672b_86c_PU_BR_PA_DT_VOLD_F12BET&cip=OTEuOTAuNDIuMTU0; expires=Wed, 22-Nov-2023 21:29:37 GMT; path=/; SameSite=None; Secure
CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Thu, 24 Aug 2023 21:29:36 GMT
Content-Length: 174
Vary: Accept-Encoding
wlbrazilonebet.adsrv.eacdn.com/C.ashx?btag=a_615b_26c_&affid=414&siteid=615&adid=26&c=PU_BR_PA_SB_DT_VOLD_VAIDEBOB&AutoR=1
208 B URL wlbrazilonebet.adsrv.eacdn.com/C.ashx?btag=a_615b_26c_&affid=414&siteid=615&adid=26&c=PU_BR_PA_SB_DT_VOLD_VAIDEBOB&AutoR=1
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8fd6bcce80ed0f788dee3dba86bda0cd
8e044bafeb78fe4f5981265ea9f387d16dce5a05
6443ee9cbe1ffa140dc651c3688dc2d387848c2fa1118b171edcdf86253f72df
GET /C.ashx?btag=a_615b_26c_&affid=414&siteid=615&adid=26&c=PU_BR_PA_SB_DT_VOLD_VAIDEBOB&AutoR=1 HTTP/1.1
Host: wlbrazilonebet.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: CEK=a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://vaidebob.com/ptb/authentication/signup?btag=a_615b_26c_PU_BR_PA_SB_DT_VOLD_VAIDEBOB
Server: Microsoft-IIS/10.0
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
X-AspNet-Version: 4.0.30319
Set-Cookie: XYZ=3&1&19&&&&0&1&&e6bd295f-c554-4ef6-8e5a-6f67480dd8e2&&a_615b_26&; expires=Wed, 22-Nov-2023 21:29:37 GMT; path=/; SameSite=None; Secure
A_26=a=26&r=0&fv=0&lv=0&vc=0&fc=20230824&lc=20230824092937&cc=1; expires=Wed, 22-Nov-2023 21:29:37 GMT; path=/; SameSite=None; Secure
PM_2=id=3f2a9aab-8de5-4303-920e-a99ecba0747d&c=PU_BR_PA_SB_DT_VOLD_VAIDEBOB&s=615&ad=26&md=0&pm=2&d=20230824212937&ip=1532635802&r=0&ref=&RedirectParams=btag%3Da_615b_26c_PU_BR_PA_SB_DT_VOLD_VAIDEBOB&cip=OTEuOTAuNDIuMTU0; expires=Wed, 22-Nov-2023 21:29:37 GMT; path=/; SameSite=None; Secure
CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Thu, 24 Aug 2023 21:29:36 GMT
Content-Length: 208
Vary: Accept-Encoding
www.bet365.com/olpc/olpc-styles.css?v=3sq3olBQyXWv_OABQefd2yIg56aAbAbpOVUfQaRPydM1
131 kB URL www.bet365.com/olpc/olpc-styles.css?v=3sq3olBQyXWv_OABQefd2yIg56aAbAbpOVUfQaRPydM1
IP
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (335), with CRLF line terminators
Size 131 kB (130627 bytes)
Hash d657080f9dbefedb6a7ba7e3b6dd6783
99bdda97ebca0f35c6a78e4cc1dfab9b460f9bc5
318c9494d584d766855ad7d03d35b1f0f0e4ad093124c412a2e6a3c3a10fcd88
GET /olpc/olpc-styles.css?v=3sq3olBQyXWv_OABQefd2yIg56aAbAbpOVUfQaRPydM1 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Fri, 23 Aug 2024 18:24:28 GMT
Last-Modified: Thu, 24 Aug 2023 18:24:28 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Age: 10943
Server: cloudflare
CF-RAY: 7fbeb11699a51c0a-OSL
www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM
45 kB URL www.googletagmanager.com/gtm.js?id=GTM-T2BKDHM
IP
File type ASCII text, with very long lines (2271)
Hash 134941fb5bb52ccaac378ac3681ae42f
75420e1e0ae2aadc22f57fc64c428737bb2a1e76
2c5253cbd5bab6206519ddba73a187528cc42ed25a51687c660e8ed04ac8d3f4
GET /gtm.js?id=GTM-T2BKDHM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Aug 2023 21:29:37 GMT
expires: Thu, 24 Aug 2023 21:29:37 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Aug 2023 21:05:34 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44993
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
brazpromo.com/promo/click/620633f29fd70
0 B URL brazpromo.com/promo/click/620633f29fd70
IP
ASN #208685 Serverius Holding B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /promo/click/620633f29fd70 HTTP/1.1
Host: brazpromo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Date: Thu, 24 Aug 2023 21:29:37 GMT
Location: https://brazino777.online/?b7pm=620633f29fd70&ambp=
Referrer-Policy: same-origin
Set-Cookie: __Host-SWAFS=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJfIjoiYnJhenByb21vLmNvbTkxLjkwLjQyLjE1NCJ9.ZDjYFvYZxKUILrfNkwyaoGB08xcqbaPDMkFduOzW5IB2ZVDJBddC_Pnc27evdhIMWpb7HJkTdwhNcxLCocsL6w; Path=/; Expires=Fri, 25 Aug 2023 21:29:37 GMT; HttpOnly; Secure; SameSite=Strict
__Secure-XWAFLB=461e247662dc5084a2d06b00969314f8; Path=/; Expires=Thu, 24 Aug 2023 21:44:37 GMT; HttpOnly; Secure; SameSite=Lax
language=b3e24d78ff876bda0b39d4690528e4913fb7be73%7Een; expires=Thu, 31-Aug-2023 21:29:37 GMT; Max-Age=604800; path=/
dc60caeaf05919ee5f64ad5274f274bd=4754f80966acf2b49f62496a053acb0197124952%7E75; expires=Fri, 23-Aug-2024 21:29:37 GMT; Max-Age=31536000; path=/
session=e06fe537c0695de72704563d698fdac862dea966%7E64e7cbc108a3c5-12415440; expires=Thu, 31-Aug-2023 21:29:37 GMT; Max-Age=604800; path=/
X-Content-Type-Options: nosniff
X-Waf-Req-Id: 76d7b8b8-98a4-4fd4-8861-99c949068938-2362023
Content-Length: 0
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js
3.6 kB URL www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (9857), with no line terminators
Hash a36241f1a0a722542a61d6001ab074a4
0c137bba1e20a7c0264025dc6ab0506871643e3d
938be9a666ad7c7f2d3433915964417613c1a0a3a7de7261f7f9420747f9702e
GET /members/services/host/Scripts/js/ProductCommon_v1.js HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Thu, 24 Aug 2023 21:29:37 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb1169bb91bfa-OSL
www.bet365.com/olpc/olpc-scripts.js?v=kuXCrfbqLb3kPhu2Y1F-T9z-AL7Q5lnV7aZ3KwX5R0M1
11 kB URL www.bet365.com/olpc/olpc-scripts.js?v=kuXCrfbqLb3kPhu2Y1F-T9z-AL7Q5lnV7aZ3KwX5R0M1
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (32075), with no line terminators
Hash 3e18988bad9f66f42288f813905c8499
c2432507b49c956ae7bba1fa3b18ecc5dd83cc1e
c0441d7a42d538efa50398030d63053d3ad71076126279a9a25ffea5b2271e49
GET /olpc/olpc-scripts.js?v=kuXCrfbqLb3kPhu2Y1F-T9z-AL7Q5lnV7aZ3KwX5R0M1 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 10790
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Fri, 23 Aug 2024 18:24:28 GMT
Last-Modified: Thu, 24 Aug 2023 18:24:28 GMT
Vary: User-Agent,Accept-Encoding
CF-Cache-Status: HIT
Age: 10866
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 7fbeb116fb36b4f9-OSL
gml-grp.com/C.ashx?btag=a_9862b_619c_&affid=2566&siteid=9862&adid=619&c=PU_BR_PA_DT_VOLD_BETANO&AutoR=1
689 B URL gml-grp.com/C.ashx?btag=a_9862b_619c_&affid=2566&siteid=9862&adid=619&c=PU_BR_PA_DT_VOLD_BETANO&AutoR=1
IP
Hash 8ca5239e9e5e746cceacd4dbdc6f73a8
9d70fe71bd7b14475d514e19a04e3cec705c7891
495b1254b3c91fc2eb7daf7597af745be888359e7c5a46840dd1094f5b043df5
GET /C.ashx?btag=a_9862b_619c_&affid=2566&siteid=9862&adid=619&c=PU_BR_PA_DT_VOLD_BETANO&AutoR=1 HTTP/1.1
Host: gml-grp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: CEK=a; __cf_bm=zYIJLyyquXnxNNaIVfPGQRKM23UizS5CKr7eVI7gpmI-1692912576-0-Ad5inciS922HP6/yhdyz+LxiKnVrWMNeXc4zWoeaPzBqmZGiBJPD4fbDUZTsjPekk21lnYg+s2g9BjUKhPQJs7g=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Thu, 24 Aug 2023 21:29:36 GMT
content-type: text/html; charset=utf-8
location: https://br.betano.com/?btag=a_9862b_619c_PU_BR_PA_DT_VOLD_BETANO&utm_medium=2566&utm_source=1&siteid=9862
cache-control: private
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
set-cookie: XYZ=3&1&19&&&&0&1&&4d2b51c9-a133-4f18-94d7-581d3587eab4&&a_9862b_619&; expires=Wed, 22-Nov-2023 21:29:36 GMT; path=/; SameSite=None; Secure
A_619=a=619&r=0&fv=0&lv=0&vc=0&fc=20230824&lc=20230824092936&cc=1; expires=Wed, 22-Nov-2023 21:29:36 GMT; path=/; SameSite=None; Secure
PM_20=id=f7d720f8-28b9-4f0e-9479-a164877b6056&c=PU_BR_PA_DT_VOLD_BETANO&s=9862&ad=619&md=0&pm=20&d=20230824212936&ip=1532635802&r=0&ref=&RedirectParams=btag%3Da_9862b_619c_PU_BR_PA_DT_VOLD_BETANO%26utm_medium%3D2566%26utm_source%3D1%26siteid%3D9862&cip=OTEuOTAuNDIuMTU0; expires=Wed, 22-Nov-2023 21:29:36 GMT; path=/; SameSite=None; Secure
CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RRS5TjLeW065zSC11Bdh1%2BJvzjg2aNpccRoRcDKXVbx8WMAose%2BEvXrcubrnZ9A%2F%2BlS6%2BrQpWgWiILveFi1eA%2Byb9BT3EjH8gk%2BpEqkX0qSei9oTo3BpgKZN7js47A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7fbeb1154a681bfa-OSL
alt-svc: h3=":443"; ma=86400
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?async
694 B URL www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?async
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (990), with no line terminators
Hash acf6c55b3704dfaebd76b888a8d23ea5
e0409d4c07ffaa23cd85aadc3653cac9e7d0ee21
0a29186d46f42ceedb6c99cbb856e1cec30e06844f79aad58d1650f7338ab1d9
GET /members/services/host/Scripts/js/ProductCommon_v1.js?async HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Thu, 24 Aug 2023 21:29:37 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb116ec3fb524-OSL
partnerbcgame.com/db2e7562c
8.0 kB URL partnerbcgame.com/db2e7562c
IP
Hash a207eab40c70df9a1807847fb8f56419
61d4ec331d154593d33a7338f178e5d688f6e019
04c4a4a418f25614c4518c5c8b7afd771d68c6930ab35f77d74eec473d6bdcba
GET /db2e7562c HTTP/1.1
Host: partnerbcgame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 24 Aug 2023 21:29:36 GMT
content-type: text/html; charset=utf-8
location: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
set-cookie: 6b86b273ff34fce19d6b=64e7cbc0b13d213d9ea39f20; Expires=Sat, 23 Sep 2023 21:29:36 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=egS8LuUIxrkg3g%2B5%2BiSJu%2F0ACqso%2BByj6LtCngBNP4FxDakKt8M4ycvS40EawU49UoU6%2FtIE1KNmAoI0QKMF0bw%2B8lLwd4qzS%2FGSSYgOYlJOjVHY6wv9V%2BxG1SSmDdXwpXk8XA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7fbeb1144981b512-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
promo.20bet.partners/redirect.aspx?pid=191753&bid=1971&lpid=1154
0 B URL promo.20bet.partners/redirect.aspx?pid=191753&bid=1971&lpid=1154
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=191753&bid=1971&lpid=1154 HTTP/1.1
Host: promo.20bet.partners
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
cache-control: private,no-cache, no-store
pragma: no-cache
content-type: text/html
location: https://20media.world/br/?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a191753%2c%22BID%22%3a1971%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1692912577153)%5c%2f%22%2c%22CookieTag%22%3a%221971191753451240919C20238242129%22%7d%5d; SameSite=None;; domain=.20bet.partners; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%221870905640%7c1%22%7d%5d; domain=.20bet.partners; expires=Sat, 24-Aug-3022 21:29:37 GMT; path=/; secure; SameSite=Strict
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
x-powered-by: ASP.NET
x-azure-ref: 0wcvnZAAAAAAHoE+jMbW8TZp02DTIalaTU1ZHMjBFREdFMDYxMgA3OGIzMGY1NS05NWIyLTQ4YzgtYjFhOC1mZTNkZmIwNTljZDk=
x-cache: CONFIG_NOCACHE
date: Thu, 24 Aug 2023 21:29:36 GMT
content-length: 0
X-Firefox-Spdy: h2
content001.bet365.com/SportsContent/Promotions/LandingPages/Common/Footer/Facebook.svg
374 B URL content001.bet365.com/SportsContent/Promotions/LandingPages/Common/Footer/Facebook.svg
IP
ASN #209242 Cloudflare London, LLC
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (649), with no line terminators
Hash 8d2559231e7f2b06f61bf1405e92041e
d018218097f7832902f835843c7134f92dfa9a77
f9798155f42f6363ed2bcebc3ad9785c05f00d5bc4ec7f535e90b040c85af5d4
GET /SportsContent/Promotions/LandingPages/Common/Footer/Facebook.svg HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 14 Aug 2023 15:33:39 GMT
ETag: W/"b3019b3c4ced91:0"
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Age: 38276
Expires: Tue, 29 Aug 2023 21:29:37 GMT
Cache-Control: public, max-age=432000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb11768b3b4ff-OSL
Content-Encoding: gzip
content001.bet365.com/SportsContent/Global/Footer/SPORTSX2-18.png
4.4 kB URL content001.bet365.com/SportsContent/Global/Footer/SPORTSX2-18.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 65 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash 097b1799e6f2ab026f137f91b4627384
fd6a5222f5743cccc954a311b6d30b4125179244
5af616c5e6ad0d97aa233ed4644776ca94de0cfb1a653844d8a5d9ee46e756af
GET /SportsContent/Global/Footer/SPORTSX2-18.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: image/png
Content-Length: 4400
Connection: keep-alive
Last-Modified: Fri, 20 Mar 2015 09:13:01 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Tue, 29 Aug 2023 21:29:37 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb1176bc6b4f9-OSL
content001.bet365.com/SportsContent/Global/Footer/eCogra-Horizontal2x.png
1.7 kB URL content001.bet365.com/SportsContent/Global/Footer/eCogra-Horizontal2x.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 206 x 48, 8-bit colormap, non-interlaced\012- data
Hash 9c970e4a7854f871873d7b1401701536
2236689845834104a586507057840c7229c7353c
d0438c85b7b5f9c21ac9a1975ccd12464f5f8cbf15d3353ee700e2617f913349
GET /SportsContent/Global/Footer/eCogra-Horizontal2x.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: image/png
Content-Length: 1671
Connection: keep-alive
Last-Modified: Wed, 11 Aug 2021 10:23:12 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Tue, 29 Aug 2023 21:29:37 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb1174951b505-OSL
content001.bet365.com/SportsContent/Global/Footer/MGA_Grey.png
1.6 kB URL content001.bet365.com/SportsContent/Global/Footer/MGA_Grey.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 156 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 62f4cd882c5002967072d4f528f3dc79
7782a477220318bd26216e6b12223285105499c7
54afee6bed770bc2c8f29bf33ad28c5a98e1e305ebb475394affeb2b74c14cf1
GET /SportsContent/Global/Footer/MGA_Grey.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: image/png
Content-Length: 1574
Connection: keep-alive
Last-Modified: Fri, 10 Feb 2023 15:50:11 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Tue, 29 Aug 2023 21:29:37 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb11769311c16-OSL
content001.bet365.com/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
6.4 kB URL content001.bet365.com/SportsContent/Global/Footer/SPORTSX1-ESSA_2.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 162 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b8c19b189cccdda7105465a474c9b4d
6ef1cecd283f484606c987259e06a22ff3aff7ae
101ca051649af6826119108f51311f70b4d58e94242c8877a2b8a9247b90f54f
GET /SportsContent/Global/Footer/SPORTSX1-ESSA_2.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: image/png
Content-Length: 6386
Connection: keep-alive
Last-Modified: Tue, 04 Jun 2019 13:21:41 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Tue, 29 Aug 2023 21:29:37 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb11769a7b4eb-OSL
content001.bet365.com/SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png
5.3 kB URL content001.bet365.com/SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png
IP
ASN #209242 Cloudflare London, LLC
File type PNG image data, 188 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 40ed9c8ae714b944f87008ab90bb071d
32bbf71529809e6ea3521c5636838a76c7488fae
b163877ec48382be73ffdf62c6a5dc5ded37443856dde414e591dfe85b61f070
GET /SportsContent/Global/Footer/GordonMoody/GordonMoody-GT-x2_Grey99.png HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: image/png
Content-Length: 5324
Connection: keep-alive
Last-Modified: Mon, 11 Oct 2021 13:13:24 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Expires: Tue, 29 Aug 2023 21:29:37 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb1176af20b55-OSL
ocsp.pki.goog/gts1c3
471 B IP
Hash 65a140c928ceaf9c40778470ac444095
d895ee317e5e7ee2ef9d7aa84a776f9bbfcacfd5
002a5d2d5614ecaff48b0e1df869bb0871eee0027189b3b8a793a9b36426331a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Aug 2023 21:29:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
10betbrasilwelcome.com/q1e5b9189
93 B URL 10betbrasilwelcome.com/q1e5b9189
IP
File type HTML document, ASCII text
Hash aed9c4c205c099ae2caa916b3e551b98
ab474d68fd808a8fee19587b07b24c98d7fb140f
6b743b2a447706504afa39925cc3bbeafe6ace2fc895d224415c604f7b3742c1
GET /q1e5b9189 HTTP/1.1
Host: 10betbrasilwelcome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 24 Aug 2023 21:29:36 GMT
content-type: text/html; charset=utf-8
location: https://offers.10betbrasil.com/sport?stag=168_64e7cbc067ed068084ddf23c
set-cookie: e7f6c011776e8db7cd33=64e7cbc067ed068084ddf23c; Expires=Sat, 23 Sep 2023 21:29:36 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
referrer-policy: strict-origin-when-cross-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hgd2jZxs60vTFG2kjQTX96lnSydkM74X6Oedt8jbXLrGNep8S1hdT60zYKMBcmcB7CK8Q0hpJzjKV1GQt6s14tNgL%2FaVIQIOV9h%2BAux6yT%2FivvoX4EBooM6G0X5uVEGeDM%2FoLaikC6KV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7fbeb114bfafb51d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.bet365.com/olpc/Content/images/LandingPages/Chevron_Down.svg
174 B URL www.bet365.com/olpc/Content/images/LandingPages/Chevron_Down.svg
IP
ASN #209242 Cloudflare London, LLC
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash f8f6daae148f0f5ab9437e0ba1c5de27
d666e9405e4097312600a3f6193f9694f4ac9904
9f186fc1469627d743e88bb77d005608c5580f6032e801f2ab942c31bcf42182
GET /olpc/Content/images/LandingPages/Chevron_Down.svg HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/olpc/olpc-styles.css?v=3sq3olBQyXWv_OABQefd2yIg56aAbAbpOVUfQaRPydM1
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=; Affiliates=Code=365_01175261%2f190005923552&prd=Sports
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: image/svg+xml
Content-Length: 174
Connection: keep-alive
Cteonnt-Length: 199
Cache-Control: private
Content-Encoding: gzip
Last-Modified: Thu, 24 Aug 2023 18:24:28 GMT
CF-Cache-Status: HIT
Age: 10943
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb119bc0a0b51-OSL
www.bet365.com/olpc/Content/images/LandingPages/1-mobile.svg
362 B URL www.bet365.com/olpc/Content/images/LandingPages/1-mobile.svg
IP
ASN #209242 Cloudflare London, LLC
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (608), with no line terminators
Hash 3bde428b6269b0145e659dee2dafad14
ccf75bc1dd61de92f6da839c4b1a60fc183135bc
30f078ca623c3813651d83fc26109372a0d380c6e913b31acff317e40bc4dab6
GET /olpc/Content/images/LandingPages/1-mobile.svg HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/olpc/olpc-styles.css?v=3sq3olBQyXWv_OABQefd2yIg56aAbAbpOVUfQaRPydM1
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=; Affiliates=Code=365_01175261%2f190005923552&prd=Sports
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: image/svg+xml
Content-Length: 362
Connection: keep-alive
Cteonnt-Length: 608
Cache-Control: private
Content-Encoding: gzip
Last-Modified: Thu, 24 Aug 2023 18:24:28 GMT
CF-Cache-Status: HIT
Age: 10943
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb119becd1bfa-OSL
www.bet365.com/olpc/Content/images/LandingPages/2-mobile.svg
513 B URL www.bet365.com/olpc/Content/images/LandingPages/2-mobile.svg
IP
ASN #209242 Cloudflare London, LLC
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (895), with no line terminators
Hash 5bcc52501b91b4aa6fe7f55dd9c785fb
d4705b2bba9504a57f9853cd6e00ca6cdc36b980
7b0a25611d72619c84f6fd73f37803c487a1d76bccb7d69667468f6d9ae47226
GET /olpc/Content/images/LandingPages/2-mobile.svg HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/olpc/olpc-styles.css?v=3sq3olBQyXWv_OABQefd2yIg56aAbAbpOVUfQaRPydM1
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=; Affiliates=Code=365_01175261%2f190005923552&prd=Sports
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: image/svg+xml
Content-Length: 513
Connection: keep-alive
Cteonnt-Length: 895
Cache-Control: private
Content-Encoding: gzip
Last-Modified: Thu, 24 Aug 2023 18:24:28 GMT
CF-Cache-Status: HIT
Age: 10943
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb119b860b524-OSL
www.bet365.com/olpc/Content/images/bet365logo-stacked.svg
200 OK 916 B URL GET HTTP/1.1 www.bet365.com/olpc/Content/images/bet365logo-stacked.svg
IP
ASN #209242 Cloudflare London, LLC
Requested by https://www.bet365.com/olpc/nn/143/0/1/open-account
Certificate IssuerGoogle Trust Services LLC
Subjectbet365.com
Fingerprint79:1E:8C:EC:E5:7D:6E:03:CC:83:BC:59:D5:4F:9C:52:B6:C4:8B:A9
ValiditySun, 20 Aug 2023 04:38:02 GMT - Fri, 17 Nov 2023 14:32:45 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1726), with no line terminators
Hash fa7a10b31e52db551e8a5ea8a77722bf
44040dfd4c2e66524f97ad21df09ba6e9c4e03e1
03f739714c83b91b19dd79e0515931a2121df2cc76aaff41686734154f1368d4
GET /olpc/Content/images/bet365logo-stacked.svg HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/olpc/olpc-styles.css?v=3sq3olBQyXWv_OABQefd2yIg56aAbAbpOVUfQaRPydM1
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=; Affiliates=Code=365_01175261%2f190005923552&prd=Sports
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: image/svg+xml
Content-Length: 916
Connection: keep-alive
Cteonnt-Length: 1726
Cache-Control: private
Content-Encoding: gzip
Last-Modified: Thu, 24 Aug 2023 18:24:28 GMT
CF-Cache-Status: HIT
Age: 10943
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb119bedbb4f9-OSL
blaze.com/c?cxd=35074_357665&affid=35074
98 kB URL blaze.com/c?cxd=35074_357665&affid=35074
IP
File type gzip compressed data, from Unix\012- data
Hash 92cb277c8e092de9aebd6ca18cfccdbb
6e9be2576018e95aa4a9d3053706904dd6530570
2ff5b3ca51e05a4b8858d9baecc4e99609f50f1e9a304531afbe7fa8147e15b0
GET /c?cxd=35074_357665&affid=35074 HTTP/1.1
Host: blaze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:37 GMT
content-type: text/html
cf-ray: 7fbeb1168c0b0b45-OSL
cf-cache-status: HIT
age: 1763
cache-control: public, max-age=3600
expires: Thu, 24 Aug 2023 22:29:37 GMT
last-modified: Thu, 24 Aug 2023 20:58:47 GMT
x-amz-server-side-encryption: AES256
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
content001.bet365.com/SportsContent/Promotions/LandingPages/V9OAO/ROW/ROW_Mobile-768-2x.jpg
140 kB URL content001.bet365.com/SportsContent/Promotions/LandingPages/V9OAO/ROW/ROW_Mobile-768-2x.jpg
IP
ASN #209242 Cloudflare London, LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2048x1067, components 3\012- data
Size 140 kB (139723 bytes)
Hash 12896463620ce3ab38977261f25bbe76
802aac193d8896812cb5634717cb48e0afd6525d
0a6b2be2789062fbda049ae080c226e536e31d1373d60e5d9f545c0f7a180bad
GET /SportsContent/Promotions/LandingPages/V9OAO/ROW/ROW_Mobile-768-2x.jpg HTTP/1.1
Host: content001.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=; Affiliates=Code=365_01175261%2f190005923552&prd=Sports
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: image/jpeg
Content-Length: 139723
Connection: keep-alive
Cf-Bgj: h2pri
ETag: "02b2376ffc9d91:0"
Last-Modified: Tue, 08 Aug 2023 13:51:42 GMT
Timing-Allow-Origin: *
CF-Cache-Status: HIT
Age: 38276
Expires: Tue, 29 Aug 2023 21:29:37 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb119bd500b55-OSL
www.bet365.com/olpc/Content/Fonts/FTN65__W.woff2
48 kB URL www.bet365.com/olpc/Content/Fonts/FTN65__W.woff2
IP
ASN #209242 Cloudflare London, LLC
File type Web Open Font Format (Version 2), TrueType, length 47732, version 1.590\012- data
Hash 413ebfe90e21457bd6794c69a3333486
ce7c84f4852d4c360b223b73a07fd2ac1e7b01ee
972d79302a870930285d018117ee9631df364aa903e7a9606592532389f7f82a
GET /olpc/Content/Fonts/FTN65__W.woff2 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/olpc/olpc-styles.css?v=3sq3olBQyXWv_OABQefd2yIg56aAbAbpOVUfQaRPydM1
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=; Affiliates=Code=365_01175261%2f190005923552&prd=Sports
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Length: 47732
Connection: keep-alive
Last-Modified: Thu, 24 Aug 2023 18:24:29 GMT
CF-Cache-Status: HIT
Age: 10601
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb119ec2e0b51-OSL
www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDMWCmKAQAAboQCGzM4ZUtO0h-1FfvoQXwbAYevYalmA46xwHo2lJwQw3jR&PIRXTcSdwp--z=q
180 kB URL www.bet365.com/members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDMWCmKAQAAboQCGzM4ZUtO0h-1FfvoQXwbAYevYalmA46xwHo2lJwQw3jR&PIRXTcSdwp--z=q
IP
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (65536), with no line terminators
Size 180 kB (179916 bytes)
Hash d8ce49f9f2372548aa31ca6f62f4c36b
6c1e64935adddcae5c1c84f34858653a01d119c4
199f7fa67468b995f10fd52eeb2a609f133850a4d63a2c9bf0cd0c8ad456e160
GET /members/services/host/Scripts/js/ProductCommon_v1.js?seed=AIDMWCmKAQAAboQCGzM4ZUtO0h-1FfvoQXwbAYevYalmA46xwHo2lJwQw3jR&PIRXTcSdwp--z=q HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=; Affiliates=Code=365_01175261%2f190005923552&prd=Sports
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=3600, immutable
x-bet-hop: 1
Content-Encoding: gzip
Last-Modified: Thu, 24 Aug 2023 21:00:00 GMT
CF-Cache-Status: HIT
Age: 1777
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb119bc501c0a-OSL
www.bet365.com/olpc/Content/Fonts/FTN55__W.woff2
46 kB URL www.bet365.com/olpc/Content/Fonts/FTN55__W.woff2
IP
ASN #209242 Cloudflare London, LLC
File type Web Open Font Format (Version 2), TrueType, length 46244, version 1.590\012- data
Hash e3d0a21f14c22f3b4b89955d0c306166
95712e988e9db29725d8eb3bfa65ff6f4a7389ef
4b472808e1fa3ff194e467fb84ea2977511d15e1c62c2b925bc299c45a76cc19
GET /olpc/Content/Fonts/FTN55__W.woff2 HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/olpc/olpc-styles.css?v=3sq3olBQyXWv_OABQefd2yIg56aAbAbpOVUfQaRPydM1
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=; Affiliates=Code=365_01175261%2f190005923552&prd=Sports
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Length: 46244
Connection: keep-alive
Last-Modified: Thu, 24 Aug 2023 18:24:29 GMT
CF-Cache-Status: HIT
Age: 10601
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb119eefc1bfa-OSL
www.bet365.com/olpc/Content/images/LandingPages/3-mobile.svg
585 B URL www.bet365.com/olpc/Content/images/LandingPages/3-mobile.svg
IP
ASN #209242 Cloudflare London, LLC
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1073), with no line terminators
Hash f7781f5fbf46bce2560026ecf88e9e2a
3325af6fe325a35c799085d2bca375672a84c31c
51818d54518d88d4fa04b2348319e3a94716fa6e2710f050aa1b5c3b6247866a
GET /olpc/Content/images/LandingPages/3-mobile.svg HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/olpc/olpc-styles.css?v=3sq3olBQyXWv_OABQefd2yIg56aAbAbpOVUfQaRPydM1
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=; Affiliates=Code=365_01175261%2f190005923552&prd=Sports
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: image/svg+xml
Content-Length: 585
Connection: keep-alive
Cteonnt-Length: 1073
Cache-Control: private
Content-Encoding: gzip
Last-Modified: Thu, 24 Aug 2023 18:24:28 GMT
CF-Cache-Status: HIT
Age: 10943
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7fbeb119e8b1b524-OSL
blaze.com/cdn-cgi/apps/head/24hJlK35PLi4cGz3xxfhOFRyiaA.js
1.6 kB URL blaze.com/cdn-cgi/apps/head/24hJlK35PLi4cGz3xxfhOFRyiaA.js
IP
File type ASCII text, with very long lines (451)
Hash 0cd50b2e869e6f6329c7f095db4ca145
a0e0cbbe14fbd4affee56fe35973c11e4ff4fd45
07c9c8944e34dd29fe40a74490974da3fd0df21bb90723ee4b4d896fff7ef295
GET /cdn-cgi/apps/head/24hJlK35PLi4cGz3xxfhOFRyiaA.js HTTP/1.1
Host: blaze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blaze.com/c?cxd=35074_357665&affid=35074
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 1553
x-amz-id-2: 5t8w7pu52eCJq7V8Qrg4C3dtv/tUCNv5adDcmjjtoaRRhjZ2DFfBCCw8KFYFfr4Zq/XKRIHxa8I=
x-amz-request-id: H9XPJZSQV4JPJGGC
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Mon, 19 Apr 2021 19:51:42 GMT
x-amz-version-id: ExFWPDruuGzJedvBHJ3Gf8H1U5Yx40Ws
etag: "fce55fde690dff8fb8c2ca2836c24a60"
cf-cache-status: HIT
age: 572
expires: Fri, 23 Aug 2024 21:29:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb11b388c0b45-OSL
X-Firefox-Spdy: h2
20media.world/br/?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
0 B URL 20media.world/br/?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /br/?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108 HTTP/1.1
Host: 20media.world
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.14.0 (Ubuntu)
Date: Thu, 24 Aug 2023 21:29:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://20bet.com/br/?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
Access-Control-Expose-Headers: Content-Length,Content-Range
f12.bet/?btag=a_3672b_86c_PU_BR_PA_DT_VOLD_F12BET
2.2 kB URL f12.bet/?btag=a_3672b_86c_PU_BR_PA_DT_VOLD_F12BET
IP
File type gzip compressed data, from Unix\012- data
Hash 38230d3523f4770871c99b508358d64f
6f1ac81fa57912b498346c2d03e5a19ac52d21d4
eeb146f794dd08193959e4324d961413f4434bbd84dbef347109102a3ba98e0a
GET /?btag=a_3672b_86c_PU_BR_PA_DT_VOLD_F12BET HTTP/1.1
Host: f12.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Thu, 24 Aug 2023 21:29:37 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=15
expires: Thu, 24 Aug 2023 21:29:52 GMT
x-frame-options: SAMEORIGIN
set-cookie: __cf_bm=C2Smmca7AezZCvQbUnm.P49XcljQenYKyjx6mCVtc7M-1692912577-0-AVkG46XN/rz8SYEYXJoYXwa3Iec0Y4c+bhvpe/WYexHQQNrJieJxA93hCa689xnpdlS7eS+AyG1Tc9yO4bsjntc=; path=/; expires=Thu, 24-Aug-23 21:59:37 GMT; domain=.f12.bet; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb11a9a67b503-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
brazino777.online/?b7pm=620633f29fd70&ambp=
162 B URL brazino777.online/?b7pm=620633f29fd70&ambp=
IP
ASN #208685 Serverius Holding B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /?b7pm=620633f29fd70&ambp= HTTP/1.1
Host: brazino777.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Date: Thu, 24 Aug 2023 21:29:38 GMT
Location: https://brazino777.com/?b7pm=620633f29fd70&ambp=
Referrer-Policy: same-origin
Set-Cookie: __Host-SWAFS=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJfIjoiYnJhemlubzc3Ny5vbmxpbmU5MS45MC40Mi4xNTQifQ.Rfol8wm9J8FMnvHSSgALD2BQ04tajLtC6dKIy7Obaed-ineWBTE7JCFlz2rWhnbB60jbgPABGpn7sPUzZEGKMw; Path=/; Expires=Fri, 25 Aug 2023 21:29:38 GMT; HttpOnly; Secure; SameSite=Strict
__Secure-XWAFLB=dcb83ed6497d11cb969f2421d22c8d3c; Path=/; Expires=Thu, 24 Aug 2023 21:44:38 GMT; HttpOnly; Secure; SameSite=Lax
X-Content-Type-Options: nosniff
X-Waf-Req-Id: 1e95e999-3284-4d11-8541-0778c753783e-2362023
Content-Length: 162
blaze.com/cdn-cgi/apps/body/wR2meSKMi9-aDwOx9lpNeRDYm84.js
1.1 kB URL blaze.com/cdn-cgi/apps/body/wR2meSKMi9-aDwOx9lpNeRDYm84.js
IP
File type ASCII text, with very long lines (1337)
Hash d04bc48b6dc4f2809fe6167a6aa19b0b
c1d8bbb016f7d9301bd3586d1d7b89d4c914eb90
ca743072be8a885c260b3d20ad5bf239505f0345f9f25fec706a83ee5a4a5b79
GET /cdn-cgi/apps/body/wR2meSKMi9-aDwOx9lpNeRDYm84.js HTTP/1.1
Host: blaze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blaze.com/c?cxd=35074_357665&affid=35074
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: application/javascript; charset=utf-8
content-length: 1079
x-amz-id-2: SLhnrGEwHvmMW6tWKR2K3MnhRD9CA8FoYT4Hhv4tqJSlhhxUCUDJ4ATqa3e3UYCT26l+wpztz74=
x-amz-request-id: H9XRQR4J2Z9Y18JN
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Mon, 19 Apr 2021 19:51:42 GMT
x-amz-version-id: uewomHe4z8x.0qEoZ4AFmUw_snIjk7hv
etag: "898de7a4aa570413dbd4fb938b8a1e85"
cf-cache-status: HIT
age: 573
expires: Fri, 23 Aug 2024 21:29:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb11f5c260b45-OSL
X-Firefox-Spdy: h2
bc.game/assets/logo.7e3c775a.png
2.0 kB URL bc.game/assets/logo.7e3c775a.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9d2dacdecfbcb0798b6874ed953a8d96
6c746d57f86181f058b6f38a52a3a4916eea75cf
e41f45e199134c895e25092d5fc4d70564685d753192c8ae01c188ecf3f2906b
GET /assets/logo.7e3c775a.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 1980
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=2636
content-disposition: inline; filename="logo.webp"
vary: Accept
etag: "64e6c493-a4c"
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
cf-cache-status: HIT
age: 3541
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb11fc8f0b529-OSL
X-Firefox-Spdy: h2
ocsp.sectigo.com/
471 B IP
Hash d1af91711c2d8c26a3afd815ec9edf67
e5492efe544903e1288fdcd617697eca1375e56f
7fcc219a8effbe25b0e95202bb267b2e89ad6a440972f1c078fa54ca31460c64
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 24 Aug 2023 09:12:31 GMT
Expires: Thu, 31 Aug 2023 09:12:30 GMT
Etag: "e5492efe544903e1288fdcd617697eca1375e56f"
Cache-Control: max-age=559971,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7fbeb11c0a6afabc-OSL
bc.game/assets/share_5.2a1f1696.png
778 B URL bc.game/assets/share_5.2a1f1696.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash efa804b69605a69ec6a14db1dfd04b57
956b75a87f2b5d37fc79e0a5c533002c687c8c52
538ec409a4971388e2847b8c76a2e332158f1d851196db37ea4b4dba213ba862
GET /assets/share_5.2a1f1696.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 778
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=920
content-disposition: inline; filename="share_5.webp"
vary: Accept
etag: "64e6c493-398"
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
cf-cache-status: HIT
age: 3541
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb1200976b529-OSL
X-Firefox-Spdy: h2
bc.game/assets/share_3.21374ebb.png
514 B URL bc.game/assets/share_3.21374ebb.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 01f2c4409b6057121d4e37666bdd5db5
0e115767bfba8de5ac6a83e902cd5d62c3e92196
dadd97f6c9250c677293ab0a652143dcc9951b84148858751dd3861a53eb6d81
GET /assets/share_3.21374ebb.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 514
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=657
content-disposition: inline; filename="share_3.webp"
vary: Accept
etag: "64e6c493-291"
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
cf-cache-status: HIT
age: 659
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb120097bb529-OSL
X-Firefox-Spdy: h2
bc.game/assets/eighteen.1ff0e7bf.png
1.2 kB URL bc.game/assets/eighteen.1ff0e7bf.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6e9145e2706e9a1bb923553bbf7c79fd
139fc1155fd1bf482a8b02dcde054dc68b84ef67
156540117cdfb817b60d434dbd43b47d85b7a943efebdc783be1f714bc8aa059
GET /assets/eighteen.1ff0e7bf.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 1204
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=1412
content-disposition: inline; filename="eighteen.webp"
vary: Accept
etag: "64e6c492-584"
last-modified: Thu, 24 Aug 2023 02:46:42 GMT
cf-cache-status: HIT
age: 3541
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb1201989b529-OSL
X-Firefox-Spdy: h2
bc.game/assets/verify.f2a422bd.png
3.3 kB URL bc.game/assets/verify.f2a422bd.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9440727cac73a67ed0112d2c1b2a2f37
42b478a632af878ed1ecf34ea0512bc29f5ad85c
79fc9cff5ecc6e166dc9c16994e3144295526a43be25916212fa4abc028136f0
GET /assets/verify.f2a422bd.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 3324
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=4078
content-disposition: inline; filename="verify.webp"
vary: Accept
etag: "64e6c493-fee"
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb1201985b529-OSL
X-Firefox-Spdy: h2
bc.game/assets/share_1.522ec023.png
842 B URL bc.game/assets/share_1.522ec023.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 640b9bf575c16c6eec718ad98f3a9c5f
0182b2b870708157d0d37e1cbd0dfe7703882773
fbc31e4b112ba18ce660566188eb78284544d95e9a010266ae679d67c626bea3
GET /assets/share_1.522ec023.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 842
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=988
content-disposition: inline; filename="share_1.webp"
vary: Accept
etag: "64e6c493-3dc"
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb1200980b529-OSL
X-Firefox-Spdy: h2
bc.game/assets/share_7.f3cb39a2.png
200 OK 752 B URL GET HTTP/2 bc.game/assets/share_7.f3cb39a2.png
IP
Requested by https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Certificate IssuerCloudflare, Inc.
Subjectbc.game
Fingerprint0E:D7:DC:DE:16:EC:37:F9:D7:CE:C6:9A:DF:05:D9:FB:0E:F4:6D:37
ValidityWed, 16 Nov 2022 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash b8ad6573c6f4032f881a6025c2a7f79f
6edfc187ee5f2e75c03e0c1426399e51f4fda9ce
153398b60dbc145af90402cb148cf3ed21100457104328f67aef40d98928cc64
GET /assets/share_7.f3cb39a2.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 752
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=895
content-disposition: inline; filename="share_7.webp"
vary: Accept
etag: "64e6c45a-37f"
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb1200972b529-OSL
X-Firefox-Spdy: h2
bc.game/assets/cloudnine.22d04592.png
4.0 kB URL bc.game/assets/cloudnine.22d04592.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3646e5632a92ca6a1643e27a17716921
a132c729f9f770576973f005c77655e52e41c351
9a0a8467d444b3cbe3076ac609c8d0ecb69d8bf02d2a36b8d053188253f0e37e
GET /assets/cloudnine.22d04592.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 4044
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=4929
content-disposition: inline; filename="cloudnine.webp"
vary: Accept
etag: "64e6c45a-1341"
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb1200983b529-OSL
X-Firefox-Spdy: h2
bc.game/assets/itech.3eab3608.png
2.1 kB URL bc.game/assets/itech.3eab3608.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 67edc44677e42057b2467bbb0238d33b
0141c0563dfb175c40eb0a2413464ea481a81175
22d56c61fdae1b5d2d1a364e01d49550d894f9e669886d147d0059a4f4a91ed7
GET /assets/itech.3eab3608.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 2074
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=2419
content-disposition: inline; filename="itech.webp"
vary: Accept
etag: "64e6c492-973"
last-modified: Thu, 24 Aug 2023 02:46:42 GMT
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb1201986b529-OSL
X-Firefox-Spdy: h2
bc.game/assets/logo_pure.23e1af79.png
1.8 kB URL bc.game/assets/logo_pure.23e1af79.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash bf0acf20c2cdc65f7d6dcc882c506afc
32d84ca733725921d885cc1ff8807fea8fcef47a
da0ce4c8a4150bd60d1147846cc8d80a8dbd8b0c70a7055e8cec2d8d2d275a96
GET /assets/logo_pure.23e1af79.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 1828
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=2168
content-disposition: inline; filename="logo_pure.webp"
vary: Accept
etag: "64e6c45a-878"
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb120198fb529-OSL
X-Firefox-Spdy: h2
bc.game/assets/license.d1460593.png
3.6 kB URL bc.game/assets/license.d1460593.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash cba334616c2f8f244b2bd6083c87bb24
faa6cf0b4c3a8b0f5794585c7902f59bba4cdd5b
98201f03a6a41e21cfd11bfc3007b3e3db458fa622e3bc32d59005705db73eba
GET /assets/license.d1460593.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 3616
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=3765
content-disposition: inline; filename="license.webp"
vary: Accept
etag: "64e6c45a-eb5"
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb1201995b529-OSL
X-Firefox-Spdy: h2
bc.game/assets/share_2.45a347d3.png
862 B URL bc.game/assets/share_2.45a347d3.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 37cb81db10246988b12149a8e9a7e4dd
fd7942cab6bfb5b5f911bd6400863c24926c23e7
bd9d4e6ba9aa0fa8e501af7f1cc1831869f2d165f66b66ce6eb419bdde5ca64f
GET /assets/share_2.45a347d3.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 862
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=1008
content-disposition: inline; filename="share_2.webp"
vary: Accept
etag: "64e6c493-3f0"
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb120097fb529-OSL
X-Firefox-Spdy: h2
bc.game/assets/share_8.ae8effba.png
726 B URL bc.game/assets/share_8.ae8effba.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash a26885c7cb725eea3cb1bd56002ecf96
f73acd7f57250c0a6a929c0a51351e394b0cc05d
72d84e936e9563c95a7ab23dd904dc7f77279cfab131f214c0b0147aba456a0c
GET /assets/share_8.ae8effba.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 726
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=877
content-disposition: inline; filename="share_8.webp"
vary: Accept
etag: "64e6c492-36d"
last-modified: Thu, 24 Aug 2023 02:46:42 GMT
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb120097ab529-OSL
X-Firefox-Spdy: h2
vaidebob.com/ptb/authentication/signup?btag=a_615b_26c_PU_BR_PA_SB_DT_VOLD_VAIDEBOB
931 B URL vaidebob.com/ptb/authentication/signup?btag=a_615b_26c_PU_BR_PA_SB_DT_VOLD_VAIDEBOB
IP
ASN #45599 141 Yang Guan Jie
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash ea12d192b4ac670e82130f6876a0cff4
30f5fe207065d971f2c56b0460198ca36682aa83
4f36d00c0203c17becaa7de17c81eb4b4743cf7c232e6688c2e1ca8ac30cc3ec
GET /ptb/authentication/signup?btag=a_615b_26c_PU_BR_PA_SB_DT_VOLD_VAIDEBOB HTTP/1.1
Host: vaidebob.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
server: 2.0.0
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: text/html
transfer-encoding: chunked
etag: W/"6315e251-9cb"
content-encoding: br
set-cookie: __nxquid=yl9gavCY7441tr4D5BrDEtTDNQMzxg==0012; expires=Fri, 25-Aug-23 21:29:38 GMT;domain=vaidebob.com; path=/;HttpOnly; Secure; SameSite=Lax
www.bet365.com/olpc/nn/143/0/1/cookieconsentajax?
1.4 kB URL www.bet365.com/olpc/nn/143/0/1/cookieconsentajax?
IP
ASN #209242 Cloudflare London, LLC
File type Unicode text, UTF-8 text, with very long lines (489), with CRLF, LF line terminators
Hash 433f37a9356e4c5a1f74c7ae1beaafcb
0f77f886eeb296396e4f4f34d106ac836ffffc94
08006d465267cf0e35b954302ff6fc383dd9966c41f39ec84544c0c065b3d677
POST /olpc/nn/143/0/1/cookieconsentajax? HTTP/1.1
Host: www.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bet365.com
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/olpc/nn/143/0/1/open-account
Cookie: __cf_bm=LVAUuwNXFvvSMB2AhG1aNzttf9HKL2sV3Kh9WKqTh_A-1692912576-0-AVPE2cTu+SeLMfvBYLs/qu19y9x601tXEwBNMt4+UOat/nfQSx5T5Hv2Q/tdO2L7JYUUa9g19T/oZuc/k6NA9iE=; Affiliates=Code=365_01175261%2f190005923552&prd=Sports
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:38 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1362
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7fbeb120d9a11c0a-OSL
blaze.com/static/css/main.3be54244.chunk.css
41 kB URL blaze.com/static/css/main.3be54244.chunk.css
IP
File type gzip compressed data, from Unix\012- data
Hash 36fd144974bb2b6146448f86348adb59
f7933f8f366f37b9c16eef379712a648d5f4f39b
de47ef707ec22fdf1ab6ecc8e3770d86d7a353f556df4879a2d44e6f60faa5f3
GET /static/css/main.3be54244.chunk.css HTTP/1.1
Host: blaze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blaze.com/c?cxd=35074_357665&affid=35074
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:37 GMT
content-type: text/css
cf-ray: 7fbeb11b38a00b45-OSL
cf-cache-status: HIT
age: 1762
cache-control: public, max-age=3600
etag: W/"510f2dd342a0342c9dedb7b957809ea3"
expires: Thu, 24 Aug 2023 22:29:37 GMT
last-modified: Thu, 24 Aug 2023 20:58:53 GMT
x-amz-server-side-encryption: AES256
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
blaze.com/static/js/176.615ebe3e.chunk.js
347 kB URL blaze.com/static/js/176.615ebe3e.chunk.js
IP
File type gzip compressed data, from Unix\012- data
Size 347 kB (346771 bytes)
Hash 34453eea299e099beea036d566d889b5
5e6fc3f039f73da0dc1f79acf8ab83d8649ecdba
38b1a6571f0bc121ce03013f28090d15a359524a47c3e70ebc29a48474d91a03
GET /static/js/176.615ebe3e.chunk.js HTTP/1.1
Host: blaze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blaze.com/c?cxd=35074_357665&affid=35074
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:37 GMT
content-type: application/javascript
cf-ray: 7fbeb11b48a30b45-OSL
cf-cache-status: HIT
age: 1761
cache-control: public, max-age=3600
etag: W/"9b67f98905d4379ef30bcda0b1e85a7e"
expires: Thu, 24 Aug 2023 22:29:37 GMT
last-modified: Thu, 24 Aug 2023 20:58:56 GMT
x-amz-server-side-encryption: AES256
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/js/app.94d3fe6a.js
23 kB URL cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/js/app.94d3fe6a.js
IP
File type Unicode text, UTF-8 text, with very long lines (20758)
Hash a1b6b750e81bfd35da6fbaa3ece22025
f5851f9353475bc6c8aa3210c0c7201d6a8137ab
3bf24c96e0e47a576078ae74277c8b0d11a823589282c3c38df37507e8c0b952
GET /landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/js/app.94d3fe6a.js HTTP/1.1
Host: cdn-service.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bw-prm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=31536000
etag: W/"517b-9YUfk1NHW8bIqjIQwMcgHWqBN6s"
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
expires: Fri, 23 Aug 2024 21:29:38 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BbwVKu3VoTNpwo1qbC5C34mf85VHtUeHNS0zVtdT89ROLHH8%2Fn04%2F2hMN%2BYWEBQgmGQglNY720wP5x15bHX9%2FHbHM2Nn0%2F0MtibJIYO2n4gaQwBCEnVu5qr3P%2BjzUPAbk88%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7fbeb11d99190b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
blaze.com/static/js/main.42ca1b8e.chunk.js
200 OK 503 kB URL GET HTTP/2 blaze.com/static/js/main.42ca1b8e.chunk.js
IP
Requested by https://blaze.com/c?cxd=35074_357665&affid=35074
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint78:3F:72:C4:45:61:88:17:49:A5:B4:1F:BA:54:3B:E7:2D:1D:C7:F2
ValidityWed, 17 May 2023 00:00:00 GMT - Thu, 16 May 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Size 503 kB (503139 bytes)
Hash d17110dc7e1f834391ea787f6dc8d51a
c2e27013ebb86a78ed23c46bfc216bed7a614125
6fc2e0635adf5d18eb74ae5d589363c23686beea3070094663d05ccda6e1e648
GET /static/js/main.42ca1b8e.chunk.js HTTP/1.1
Host: blaze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blaze.com/c?cxd=35074_357665&affid=35074
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:37 GMT
content-type: application/javascript
cf-ray: 7fbeb11b48a60b45-OSL
cf-cache-status: HIT
age: 1761
cache-control: public, max-age=3600
etag: W/"70c9e867bd1151ddced5542c4c6fd594"
expires: Thu, 24 Aug 2023 22:29:37 GMT
last-modified: Thu, 24 Aug 2023 20:59:27 GMT
x-amz-server-side-encryption: AES256
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
bc.game/assets/l.7e8682e6.png
16 kB URL bc.game/assets/l.7e8682e6.png
IP
File type PNG image data, 800 x 288, 8-bit colormap, non-interlaced\012- data
Hash 0fc6cc00ce8e303e428acc0272d21a01
d0b1f91cd2434bab72b11bf6f2085b19ca41e9bc
7e8682e6ec9a01d34730deacf23a2795ac6ce208b60b1a21beb2ef2564e8b97f
GET /assets/l.7e8682e6.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/png
content-length: 16096
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
etag: "64e6c45a-3ee0"
cache-control: max-age=3600
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb11ff944b529-OSL
X-Firefox-Spdy: h2
www.galera.bet/galerabet_candy-theme-pas/js/app-out/bundle.js?t=1692732998
1.2 MB URL www.galera.bet/galerabet_candy-theme-pas/js/app-out/bundle.js?t=1692732998
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.2 MB (1229363 bytes)
Hash be06dc6a7ea20fe4d1db7101d765240c
9d5087fe54f49ea20685c05b16cfc9c0ccf51ddf
28bc0ca1d64855195065b8dabddd85f0e13d85dd0b6c27d97b27972043063bd0
GET /galerabet_candy-theme-pas/js/app-out/bundle.js?t=1692732998 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 7fbeb11deb2eb517-OSL
cf-cache-status: HIT
age: 2550
cache-control: max-age=3600,max-stale=3600
etag: W/"64e50e46-4a4ad9"
last-modified: Tue, 22 Aug 2023 19:36:38 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.galera.bet/galerabet_candy-theme-pas/css/style.raw.css?t=1692733000
46 kB URL www.galera.bet/galerabet_candy-theme-pas/css/style.raw.css?t=1692733000
IP
File type Unicode text, UTF-8 text, with very long lines (50639)
Hash 3df94e4b95ae05856726ae6cf53e5e62
1309cbf896a58302339c97fa93bb8a9a9ed2c3e8
94f16d9c290a21b0bdb926d3048b37ca1ec2473b48cdf3c66882a85d5e24d020
GET /galerabet_candy-theme-pas/css/style.raw.css?t=1692733000 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: text/css
cf-ray: 7fbeb11ddb0fb517-OSL
cf-cache-status: HIT
age: 2550
cache-control: max-age=3600,max-stale=3600
etag: W/"64e50e48-3fc76"
last-modified: Tue, 22 Aug 2023 19:36:40 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
bc.game/assets/metamask.d53f1794.css
8.6 kB URL bc.game/assets/metamask.d53f1794.css
IP
File type ASCII text, with very long lines (45617)
Hash 3bafcf2d9ed254d07d0d15b608b82a68
3ab0ab57fedd93ff008675d3ad5f8f2db140743c
d53f17947a40b70a9ebc2adb2c6eefc96bf52bd772b3c636bfaa5bde0ab6a2d2
GET /assets/metamask.d53f1794.css HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: text/css
last-modified: Mon, 21 Aug 2023 14:37:54 GMT
vary: Accept-Encoding
etag: W/"64e376c2-b232"
cache-control: max-age=3600
cf-cache-status: HIT
server: cloudflare
cf-ray: 7fbeb11fa8ceb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
bc.game/assets/g.6072576d.png
6.6 kB URL bc.game/assets/g.6072576d.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4b5536a90ad8df2e493df4032d7367fc
4183ee0c67388bbf301c98a0ccbe964491fab95b
595d71f16751c29dd657ef42d386126134f03b050815cb58b589112fbfc95536
GET /assets/g.6072576d.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 6578
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=7623
content-disposition: inline; filename="g.webp"
vary: Accept
etag: "64e6c493-1dc7"
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb11ff935b529-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
31 kB URL fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bw-prm.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 15:21:56 GMT
expires: Fri, 23 Aug 2024 15:21:56 GMT
cache-control: public, max-age=31536000
age: 22063
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.galera.bet/library/.customization/preloader_logo_bg.png?t=1692875326913
9.9 kB URL www.galera.bet/library/.customization/preloader_logo_bg.png?t=1692875326913
IP
File type PNG image data, 740 x 143, 8-bit/color RGBA, non-interlaced\012- data
Hash 4c075c56ab6ed35c8a8e766c40dc7cc3
e1e8e34bc1bed2476cc9d362e9a0943bd6b92fb0
afc588931f75349d9f1bd1408a963edd8fdf8bbab07a8bd1f64c276c20200ab1
GET /library/.customization/preloader_logo_bg.png?t=1692875326913 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: image/png
content-length: 9932
cf-ray: 7fbeb12379feb517-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 874
cache-control: max-age=3600,max-stale=3600
etag: "634d7502-26cc"
last-modified: Mon, 17 Oct 2022 15:30:10 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
bc.game/assets/k.1ea1bdd8.png
12 kB URL bc.game/assets/k.1ea1bdd8.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 46f68b26c761514e76211a405a436e0e
24f2fb4df5d30db2dbe04023338a5c6565513df9
d504f9e0d98945fbbdff667899286b7f88268e59451f35dfe8e2864a55b1bb8d
GET /assets/k.1ea1bdd8.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 11792
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=14348
content-disposition: inline; filename="k.webp"
vary: Accept
etag: "64e6c45a-380c"
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb11ff941b529-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
32 kB URL fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bw-prm.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 15:16:11 GMT
expires: Fri, 23 Aug 2024 15:16:11 GMT
cache-control: public, max-age=31536000
age: 22408
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bc.game/assets/o.19fe54e9.png
6.3 kB URL bc.game/assets/o.19fe54e9.png
IP
File type PNG image data, 800 x 288, 8-bit colormap, non-interlaced\012- data
Hash d3d92a3c3ccb7db8a2b3ed089ccec6dc
bc5f307916345759e6abfd1d37f30e0d8b883520
19fe54e9c5f06ce8402a474ab6a6d27bdffd5cfe86e968a7e5a3f8c04c7b9458
GET /assets/o.19fe54e9.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/png
content-length: 6262
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
etag: "64e6c45a-1876"
cache-control: max-age=3600
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb11ff953b529-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
31 kB URL fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bw-prm.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 15:21:56 GMT
expires: Fri, 23 Aug 2024 15:21:56 GMT
cache-control: public, max-age=31536000
age: 22063
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bc.game/assets/pix.2d090f33.png
3.4 kB URL bc.game/assets/pix.2d090f33.png
IP
File type PNG image data, 538 x 88, 8-bit colormap, non-interlaced\012- data
Hash 1154867e219c9032ad65e35a832d673b
513bd3af9fa893b85c956c55d5d1f7afce0f6879
2d090f332398fc489ca4adac8fd9567279da9c3387754918f739818e10e9615b
GET /assets/pix.2d090f33.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/png
content-length: 3352
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
etag: "64e6c45a-d18"
cache-control: max-age=3600
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb120096eb529-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
32 kB URL fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bw-prm.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 15:16:11 GMT
expires: Fri, 23 Aug 2024 15:16:11 GMT
cache-control: public, max-age=31536000
age: 22408
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bc.game/assets/j.f7162d0e.png
29 kB URL bc.game/assets/j.f7162d0e.png
IP
File type PNG image data, 800 x 288, 8-bit colormap, non-interlaced\012- data
Hash a4c48e2bb086df30fbe38e5b42f409e4
9ce58fe4b6b79c9508a58fbd7e85a5b0809d5a80
f7162d0e5dc4d764d46a2b7ca458366010f5c79cac8a3cf60914e9c84d23f7f1
GET /assets/j.f7162d0e.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/png
content-length: 29184
last-modified: Thu, 24 Aug 2023 02:46:42 GMT
etag: "64e6c492-7200"
cache-control: max-age=3600
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb11ff940b529-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
32 kB URL fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bw-prm.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 15:16:11 GMT
expires: Fri, 23 Aug 2024 15:16:11 GMT
cache-control: public, max-age=31536000
age: 22408
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-P4WCCW9
67 kB URL www.googletagmanager.com/gtm.js?id=GTM-P4WCCW9
IP
File type ASCII text, with very long lines (10756)
Hash addbe30389c0ee98611c9700cb76d6f5
ffc99d3c19061887d68f0ef47d55201b92dd4ace
393b3190bb3a7de87075bc3ac00e7b75b7eb7346a344e73b420152aa65c41914
GET /gtm.js?id=GTM-P4WCCW9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Aug 2023 21:29:39 GMT
expires: Thu, 24 Aug 2023 21:29:39 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Aug 2023 21:05:34 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 67445
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
bc.game/assets/c.e71a21bd.png
65 kB URL bc.game/assets/c.e71a21bd.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8f5ca831a142542764df4cafd9037f45
4826e1ea0cd71b196badb72252a00066ca31edf7
a4332334b7528a1598e70e560cb9cb16205f5e6df318184c4b69650c506340b1
GET /assets/c.e71a21bd.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 65092
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=70066
content-disposition: inline; filename="c.webp"
vary: Accept
etag: "64e6c493-111b2"
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb1200966b529-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
31 kB URL fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bw-prm.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 15:21:56 GMT
expires: Fri, 23 Aug 2024 15:21:56 GMT
cache-control: public, max-age=31536000
age: 22063
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bc.game/assets/a.2b86da63.png
49 kB URL bc.game/assets/a.2b86da63.png
IP
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash 5ef307016f3ce7bd6123c2f0e0a06911
1853ff8037d2fe29c8d159c5d697535e04c7fcba
2b86da632db35e5681ae3cc5ce7b5547fb008a183190aafcc52b37707cada4c6
GET /assets/a.2b86da63.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/png
content-length: 48569
last-modified: Thu, 24 Aug 2023 02:46:42 GMT
etag: "64e6c492-bdb9"
cache-control: max-age=3600
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb11ff955b529-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2
21 kB URL fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 21144, version 1.0\012- data
Hash 2bc7630144496092dc786ce63109e560
723df3658078cfed03c85e47f15fc439eb4331be
7c9c80a6c32c0619d61c28f28723e68c5f8f75163e77ee5cf64c39e640e0d71e
GET /s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 15:25:33 GMT
expires: Fri, 23 Aug 2024 15:25:33 GMT
cache-control: public, max-age=31536000
age: 21846
last-modified: Tue, 19 Apr 2022 19:43:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bc.game/assets/d.0b057c1f.png
68 kB URL bc.game/assets/d.0b057c1f.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash d7891fe71bb12d15052f0373efb7761a
372e80b0d6eeaf8963df71a5e83e5adf36afe134
2491b64ffa70304c1a78ff66d6504c1348b6d2c647c576dabec04109409a4764
GET /assets/d.0b057c1f.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 68036
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=76019
content-disposition: inline; filename="d.webp"
vary: Accept
etag: "64e6c45a-128f3"
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb1200967b529-OSL
X-Firefox-Spdy: h2
brazino777.com/?b7pm=620633f29fd70&ambp=
378 B URL brazino777.com/?b7pm=620633f29fd70&ambp=
IP
ASN #208685 Serverius Holding B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cf7260652a496f495fa6b429bd867710
5f65c87a11784eaecd20ca1509751286011e95ed
4590191dbdd59b602c749c70a3193d852e75d5c8d024b955429aae52e39a858f
GET /?b7pm=620633f29fd70&ambp= HTTP/1.1
Host: brazino777.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Date: Thu, 24 Aug 2023 21:29:39 GMT
Location: /en/?ambp=&b7pm=620633f29fd70
Referrer-Policy: same-origin
Set-Cookie: __Host-SWAFS=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJfIjoiYnJhemlubzc3Ny5jb205MS45MC40Mi4xNTQifQ.MagKCacbGjjgrWdk1qDs5yiF402HdBzziBDMdwESF8BQ8GLdXxTaOw2QenpM4yjIVYyxVbrxLGBcJ7bpIYPM4A; Path=/; Expires=Fri, 25 Aug 2023 21:29:39 GMT; HttpOnly; Secure; SameSite=Strict
__Secure-XWAFLB=dcb83ed6497d11cb969f2421d22c8d3c; Path=/; Expires=Thu, 24 Aug 2023 21:44:39 GMT; HttpOnly; Secure; SameSite=Lax
c8402da13b6006b93d3adb0b9a4de6ec=620633f29fd70; expires=Sun, 24 Sep 2023 21:29:39 GMT; Max-Age=2678400; path=/; httponly; samesite=lax
_ym_vizorc_99ab732c11b50671f80e23d80bf82d5445124=7c488d85daecc2bf18f4f49ac0fc0392; expires=Thu, 24 Aug 2028 21:29:39 GMT; Max-Age=157852800; path=/; samesite=lax
PHPSESSID=t6u9gdh2aj776mbhofqn4895vr; expires=Sat, 23 Sep 2023 21:29:39 GMT; Max-Age=2592000; path=/; httponly
X-Content-Type-Options: nosniff
X-Waf-Req-Id: 490b57ed-c907-4681-9464-ad3c7d44e8e8-2362023
Content-Length: 378
fonts.gstatic.com/s/asap/v30/KFO9CniXp96a4Tc2DaTeuDAoKsE615hJW34.woff2
43 kB URL fonts.gstatic.com/s/asap/v30/KFO9CniXp96a4Tc2DaTeuDAoKsE615hJW34.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 42616, version 1.0\012- data
Hash 57716e51419e5143f8e1dd061d5cf8c2
d796688a0f3679b0536787315ee0386649c146ab
b1128adb79c7208d410630c04fe6e8ac8886aeb778aafb3f4195fe735acc1d89
GET /s/asap/v30/KFO9CniXp96a4Tc2DaTeuDAoKsE615hJW34.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42616
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Aug 2023 09:19:51 GMT
expires: Sun, 18 Aug 2024 09:19:51 GMT
cache-control: public, max-age=31536000
age: 475788
last-modified: Tue, 06 Jun 2023 20:38:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bc.game/assets/f.0c73e022.png
79 kB URL bc.game/assets/f.0c73e022.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 06629bd7fd0924446e4ec09e22902cf2
aa5c7a70f7aee227c49d339c78412278c8fb1ef5
22a7ef319af03a63324a5cc01d6b0971b194acdc105e07aca1ad2b050f562bdb
GET /assets/f.0c73e022.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 78994
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=86036
content-disposition: inline; filename="f.webp"
vary: Accept
etag: "64e6c492-15014"
last-modified: Thu, 24 Aug 2023 02:46:42 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb1200969b529-OSL
X-Firefox-Spdy: h2
bc.game/assets/e.6fe34401.png
60 kB URL bc.game/assets/e.6fe34401.png
IP
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash 1e30fc8c84b7e19140374a0112c4422c
14b9d8efe0fbb02f4d09eb308a6647610bd51c14
6fe34401688511db48a1e310163dfbb9980cbddadff6908733274400e39801b2
GET /assets/e.6fe34401.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/png
content-length: 59999
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
etag: "64e6c45a-ea5f"
cache-control: max-age=3600
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb1200968b529-OSL
X-Firefox-Spdy: h2
cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/player1_2.a1403fd3.png
58 kB URL cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/player1_2.a1403fd3.png
IP
File type PNG image data, 600 x 828, 8-bit colormap, non-interlaced\012- data
Hash fcfa8aa19dae0c961c6dfd210c3c6593
580154e9782937f6c8460b4f684cd4b53f5a54af
d9caf165b142ea10adc817934c9505476c5b848bd6ce939e385469a7b87aaae7
GET /landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/player1_2.a1403fd3.png HTTP/1.1
Host: cdn-service.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/css/app.6b7aa819.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: image/png
content-length: 57551
access-control-allow-origin: *
cache-control: max-age=31536000
etag: W/"e0cf-WAFU6XgpN/bIRgtPaEzUtT9aVK8"
strict-transport-security: max-age=2592000; includeSubDomains; preload
expires: Fri, 23 Aug 2024 21:29:39 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DMWZaVbHen7Om2xX1oDUPuAwfZq6m2%2BW5YCgitE2pyXLStW2cFYWRvaUJtoTNyVoem2YHpDM%2B%2FeHL%2FAEMMez6kn7c5AGYViFuV%2BUd%2FMCHWmh1h7g7dWnK6hpTH6kBulobMM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7fbeb1239f081bfa-OSL
alt-svc: h3=":443"; ma=86400
bc.game/assets/sigma.1d4c21cd.png
200 OK 3.6 kB URL GET HTTP/2 bc.game/assets/sigma.1d4c21cd.png
IP
Requested by https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Certificate IssuerCloudflare, Inc.
Subjectbc.game
Fingerprint0E:D7:DC:DE:16:EC:37:F9:D7:CE:C6:9A:DF:05:D9:FB:0E:F4:6D:37
ValidityWed, 16 Nov 2022 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT
File type PNG image data, 256 x 144, 8-bit colormap, non-interlaced\012- data
Hash 0fc0db2ab627cc57d8392973f1ee10df
fee2b1707b508cf0f91fe3a27410ad4bbfde22ef
1d4c21cdf095eac080486430e83f2b80e9d575c7019125b94de5dcc0dfe66007
GET /assets/sigma.1d4c21cd.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/png
content-length: 3624
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
etag: "64e6c45a-e28"
cache-control: max-age=3600
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb1200982b529-OSL
X-Firefox-Spdy: h2
bc.game/assets/m.468f1b0d.png
17 kB URL bc.game/assets/m.468f1b0d.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1f1feaf9b20b1fd3a829beb128dd617e
b461f3bf455eb78c3a89f23285bb6135cd429761
b16dd5bd6486c15661674dd296c744c64c7315915d1ede75a32c12cdefd09f27
GET /assets/m.468f1b0d.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 16582
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=19651
content-disposition: inline; filename="m.webp"
vary: Accept
etag: "64e6c493-4cc3"
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb11ff948b529-OSL
X-Firefox-Spdy: h2
bc.game/assets/n.74d7dc88.png
8.1 kB URL bc.game/assets/n.74d7dc88.png
IP
File type PNG image data, 800 x 288, 8-bit colormap, non-interlaced\012- data
Hash 680401ca960b47f4a2c77f359e49808a
4f54c6b7c989490062c676b120a2c7fd963b9a82
74d7dc88d515425dc9ff7c3dba4aecb85de46ca5dfd6c2534cf7b2fa5307b5eb
GET /assets/n.74d7dc88.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/png
content-length: 8099
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
etag: "64e6c493-1fa3"
cache-control: max-age=3600
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb11ff94eb529-OSL
X-Firefox-Spdy: h2
bc.game/assets/b.fadf5ce0.png
57 kB URL bc.game/assets/b.fadf5ce0.png
IP
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash 60f3ab3e41d520c1745296a2bb05f210
4b503ea584eba2b489d497962682ff4a7e40f80b
fadf5ce02a873b64da1187a732b59aea9621d1fc4f0be8a00b2eee3bef734cc1
GET /assets/b.fadf5ce0.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/png
content-length: 57439
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
etag: "64e6c45a-e05f"
cache-control: max-age=3600
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb11ff95bb529-OSL
X-Firefox-Spdy: h2
bc.game/assets/respon.3cbc9f21.png
3.3 kB URL bc.game/assets/respon.3cbc9f21.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1a7ab35288f2fbb1fed83a281f864923
a48a8299fda071eda9ee3b079e391012b31965d7
ec45c6235df0c4aee5d9b24fced4411f981684ec94dd7835d0eff900754d823f
GET /assets/respon.3cbc9f21.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/webp
content-length: 3336
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=3861
content-disposition: inline; filename="respon.webp"
vary: Accept
etag: "64e6c45a-f15"
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb1201988b529-OSL
X-Firefox-Spdy: h2
bc.game/assets/afa.4900db57.png
14 kB URL bc.game/assets/afa.4900db57.png
IP
File type PNG image data, 109 x 164, 8-bit/color RGBA, non-interlaced\012- data
Hash 977896460309eb181f4adbfb4d84b83b
efbf25435eb905e07f7fb87b560d74dca53cc159
4900db577881273671b84a299a5f7e3e928c335336b51439b0fba07ec3f176f7
GET /assets/afa.4900db57.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: image/png
content-length: 14549
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
etag: "64e6c493-38d5"
cache-control: max-age=3600
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb1200984b529-OSL
X-Firefox-Spdy: h2
cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/back_2_1.e147dd90.jpg
265 kB URL cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/back_2_1.e147dd90.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x2168, components 3\012- data
Size 265 kB (264583 bytes)
Hash d6024f90bf8d99594beb3f314d33e3e3
a0fbbe84ce37ca952050a61f37cc9cdcff680455
808c86848c2e1f869bc2a99cf5697982455dbd9e6d7f13e1cab1e3a562191b7a
GET /landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/back_2_1.e147dd90.jpg HTTP/1.1
Host: cdn-service.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/css/app.6b7aa819.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: image/jpeg
content-length: 264583
access-control-allow-origin: *
cache-control: max-age=31536000
etag: W/"40987-oPu+hM43ypUgUKYfN8yc3P9oBFU"
strict-transport-security: max-age=2592000; includeSubDomains; preload
expires: Fri, 23 Aug 2024 21:29:39 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LriIKX49KqtsHQ3g0q0EJcLazcizj3K0zbciS5feKBxmObeaDjDORslFVZAftolX4hbP%2B8WzE0gBLu%2F2BD9onaEShdavpBKXo0l8nNmX5bH47ooxsHLfbeWkYeOLqSMr0%2Fk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7fbeb1239efd1bfa-OSL
alt-svc: h3=":443"; ma=86400
bc.game/assets/h.ce4d8d94.png
200 OK 6.7 kB URL GET HTTP/2 bc.game/assets/h.ce4d8d94.png
IP
Requested by https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Certificate IssuerCloudflare, Inc.
Subjectbc.game
Fingerprint0E:D7:DC:DE:16:EC:37:F9:D7:CE:C6:9A:DF:05:D9:FB:0E:F4:6D:37
ValidityWed, 16 Nov 2022 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT
File type PNG image data, 800 x 288, 8-bit colormap, non-interlaced\012- data
Hash 2773886b000332affe308ae451de1f16
e30a757f624455f30ce30d2808176d05d53f64f3
ce4d8d94e821287c300ee341e5cfdd8ae2408878f4a62ba48f3cc285659cde56
GET /assets/h.ce4d8d94.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: image/png
content-length: 6715
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
etag: "64e6c45a-1a3b"
cache-control: max-age=3600
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb11ff937b529-OSL
X-Firefox-Spdy: h2
bc.game/assets/i.f405df81.png
16 kB URL bc.game/assets/i.f405df81.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1d313b77cecd0db0cfc5bbd1d3f94e5c
55e20a9fa5a18b2a3482b95fb582a9865a01ded0
653086d2a2aa623bb1e6946b8a15c89aa0cab7591795838aac9933bc27bacc60
GET /assets/i.f405df81.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: image/webp
content-length: 16352
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=16751
content-disposition: inline; filename="i.webp"
vary: Accept
etag: "64e6c492-416f"
last-modified: Thu, 24 Aug 2023 02:46:42 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb11ff93cb529-OSL
X-Firefox-Spdy: h2
s1.kwai.net/kos/s101/nlav11187/pixel/events.js?sdkid=512565417685819472&lib=kwaiq
1.5 kB URL s1.kwai.net/kos/s101/nlav11187/pixel/events.js?sdkid=512565417685819472&lib=kwaiq
IP
File type ASCII text, with very long lines (3579)
Hash 55aadca1332a79124caf9de8790c9235
8682288d711bbaa5df9438ce993265c483245294
d03e97adb6bce35046aefb74dfee419c98246a9556d12e0f310c5c53f088e589
GET /kos/s101/nlav11187/pixel/events.js?sdkid=512565417685819472&lib=kwaiq HTTP/1.1
Host: s1.kwai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blaze.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 12 Jul 2023 11:18:55 GMT
Content-Encoding: gzip
Etag: "55aadca1332a79124caf9de8790c9235"
Content-Type: application/javascript
Date: Mon, 21 Aug 2023 06:52:52 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 12156884271638462230
x-cos-request-id: NjRlMzA5YzRfOGFlZjc4MGJfMWUyOTJfMTE4NjhhOA==
Content-Length: 1500
Accept-Ranges: bytes
X-NWS-LOG-UUID: 13846094764037604602
Connection: keep-alive
X-Cache-Lookup: Cache Hit
x-ks-client-ip: 91.90.42.154
X-Ks-Request-ID: 13846094764037604602
X-Ks-Cache: Hit from 43.152.140.143
kwaisign: NULL
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: x-ks-request-id,x-ks-client-ip,Content-Length
Cache-Control: max-age=2592000
bc.game/assets/init/d0.png
13 kB URL bc.game/assets/init/d0.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 702a6aa879a0c245017f62466e855b38
6a84187964cd4596c4ef0e32f33b3da07804a71f
eef17c08bf0bdf64071ed10072c02d17c239ac2042122f9b50bd95954514b532
GET /assets/init/d0.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: image/webp
content-length: 12808
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=14688
content-disposition: inline; filename="d0.webp"
vary: Accept
etag: "64e6c493-3960"
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
cf-cache-status: HIT
age: 1286
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb128edbfb529-OSL
X-Firefox-Spdy: h2
js.monitor.azure.com/scripts/b/ai.2.min.js
84 kB URL js.monitor.azure.com/scripts/b/ai.2.min.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65409)
Hash 64f67d69f65f9601e57cc00353e642a9
3a6ce649f05f3126800c55925b742f3c7c53d799
0d31a69f7ae0d174b9e6054ebedb533ffa1c85de012409db3fc16fcdf9cc525b
GET /scripts/b/ai.2.min.js HTTP/1.1
Host: js.monitor.azure.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=1800, immutable, no-transform
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ZPZ9afZflgHlfMADU+ZCqQ==
last-modified: Wed, 16 Aug 2023 18:14:35 GMT
etag: 0x8DB9E84A5D319AC
x-cache: TCP_HIT
x-ms-request-id: 2767ab39-e01e-0054-4fcf-d657b0000000
x-ms-version: 2009-09-19
x-ms-meta-aijssdksrc: [cdn]/scripts/b/ai.2.8.15.min.js
x-ms-meta-aijssdkver: 2.8.15
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,x-ms-meta-aijssdksrc,x-ms-meta-aijssdkver,x-ms-meta-lastmodified,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0nMfnZAAAAACezbPsGhRYT6GAJcoXs5rFQU1TMDRFREdFMTkxNwBmMWNhNzNkNC04ODgzLTRjYWYtYWJkYy1mZTJkNTY3YWZiOTY=
x-azure-ref: 0w8vnZAAAAACz6suTVAN7QKZjhjJkSQQGU1ZHMjBFREdFMDUwNgBmMWNhNzNkNC04ODgzLTRjYWYtYWJkYy1mZTJkNTY3YWZiOTY=
date: Thu, 24 Aug 2023 21:29:39 GMT
X-Firefox-Spdy: h2
brazino777.com/en/?ambp=&b7pm=620633f29fd70
36 kB URL brazino777.com/en/?ambp=&b7pm=620633f29fd70
IP
ASN #208685 Serverius Holding B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (31669), with CRLF, LF line terminators
Hash 5db5d225e6c89961e9b6ed2cdc5af775
39a6443985ff3ae855236f9f899ed824a9e6a203
15abc5893a06ba66b87ed5569907b0dcdca69c8a78f3d4812c60d78cf2365ee0
GET /en/?ambp=&b7pm=620633f29fd70 HTTP/1.1
Host: brazino777.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, must-revalidate
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Thu, 24 Aug 2023 21:29:39 GMT
Expires: -1
Pragma: no-cache
Referrer-Policy: same-origin
Set-Cookie: __Host-SWAFS=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJfIjoiYnJhemlubzc3Ny5jb205MS45MC40Mi4xNTQifQ.MagKCacbGjjgrWdk1qDs5yiF402HdBzziBDMdwESF8BQ8GLdXxTaOw2QenpM4yjIVYyxVbrxLGBcJ7bpIYPM4A; Path=/; Expires=Fri, 25 Aug 2023 21:29:40 GMT; HttpOnly; Secure; SameSite=Strict
__Secure-XWAFLB=dcb83ed6497d11cb969f2421d22c8d3c; Path=/; Expires=Thu, 24 Aug 2023 21:44:40 GMT; HttpOnly; Secure; SameSite=Lax
device_view=full; expires=Sun, 24 Sep 2023 21:29:39 GMT; Max-Age=2678400; path=/; httponly; samesite=lax
ep=BYEaNvy8TsNQNzBzURRgbKnOYyQyGRhJO%2F50PqB5WAyuwIpWJLFP1UdWMPspm%2B9A4HpAjdfYT52cFayHuLIWIKbZmBCv%2Bs6sgGnAn0we7t1azwKvLtkGxxyPqlZo1z34nBmBxJhi4xhpZAlRGBryWs7o3Nfl3djRDM0TPU4JhVxrgQ; expires=Sat, 24 Aug 2024 21:29:39 GMT; Max-Age=31622400; path=/; httponly; samesite=lax
c8402da13b6006b93d3adb0b9a4de6ec=620633f29fd70; expires=Sun, 24 Sep 2023 21:29:39 GMT; Max-Age=2678400; path=/; httponly; samesite=lax
_ym_vizorc_99ab732c11b50671f80e23d80bf82d5445124=7c488d85daecc2bf18f4f49ac0fc0392; expires=Thu, 24 Aug 2028 21:29:39 GMT; Max-Age=157852800; path=/; samesite=lax
PHPSESSID=qtbjiadv40mcvfdbr1det1hu3o; expires=Sat, 23 Sep 2023 21:29:39 GMT; Max-Age=2592000; path=/; httponly
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Waf-Req-Id: 70604dcd-012b-4dec-8955-84bc6cddc282-2362023
Transfer-Encoding: chunked
cdn.seon.io/js/v4/agent.js
112 kB URL cdn.seon.io/js/v4/agent.js
IP
File type gzip compressed data, from Unix\012- data
Size 112 kB (112224 bytes)
Hash 96ce6802d4673b5c493e8569c3979ca5
27465dd9f916ce3579a13878a6e658e74b04f071
fdb2e3456ed5757e233a672498d81444d29091520e5bc07abe77513a062c1172
GET /js/v4/agent.js HTTP/1.1
Host: cdn.seon.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 20 Dec 2022 16:00:08 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: oBwuMALhSWNlluJ4Z9BGO_.GELHIAD3H
server: AmazonS3
content-encoding: gzip
date: Thu, 24 Aug 2023 20:54:05 GMT
cache-control: max-age=3600
etag: W/"c34c3067f651e0fea2609171ab7bfec0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ejGR2NUoSn_Z1_l2kn0qJXKiDZbeHdn1kBhhTmgYKDym5gElc6_iwA==
age: 2140
X-Firefox-Spdy: h2
casino.cur.a8r.games/public/sg.js
65 kB URL casino.cur.a8r.games/public/sg.js
IP
File type gzip compressed data, from Unix\012- data
Hash a67921336c87de21b4fd876e9f8508fe
212030bd522bf010da91cd6041ecac0877d941b2
c79f475ccbf9ee133d544973b89aff1ba8972fd955ca0d24dcc34836bf979b32
GET /public/sg.js HTTP/1.1
Host: casino.cur.a8r.games
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=15724800; includeSubDomains
last-modified: Thu, 24 Aug 2023 19:33:20 GMT
cf-cache-status: HIT
age: 6943
expires: Fri, 25 Aug 2023 01:29:40 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb1291b3e1bfa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/custom-assets/mainLoaderDark.gif
674 kB URL 20bet.com/custom-assets/mainLoaderDark.gif
IP
Size 674 kB (674548 bytes)
Hash 584ba0f7b5983b033ff29117fc2363a7
45202f55fef2823f783df462ca754a1a4d219043
7abd0bfd940bd6cdf5c066739940111fb4ca9ea65c041093e8d92cff6f5d4442
GET /custom-assets/mainLoaderDark.gif HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: text/html; charset=UTF-8
location: /custom-assets/mainloaderdark.gif
cf-ray: 7fbeb128cb51b524-OSL
cf-cache-status: HIT
age: 5581
cache-control: public, max-age=14400
expires: Fri, 25 Aug 2023 01:29:39 GMT
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
X-Firefox-Spdy: h2
s1.kwai.net/kos/s101/nlav11187/pixel/events.js?sdkid=518692943642501128&lib=kwaiq
1.5 kB URL s1.kwai.net/kos/s101/nlav11187/pixel/events.js?sdkid=518692943642501128&lib=kwaiq
IP
File type ASCII text, with very long lines (3579)
Hash 55aadca1332a79124caf9de8790c9235
8682288d711bbaa5df9438ce993265c483245294
d03e97adb6bce35046aefb74dfee419c98246a9556d12e0f310c5c53f088e589
GET /kos/s101/nlav11187/pixel/events.js?sdkid=518692943642501128&lib=kwaiq HTTP/1.1
Host: s1.kwai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 12 Jul 2023 11:18:55 GMT
Content-Encoding: gzip
Etag: "55aadca1332a79124caf9de8790c9235"
Content-Type: application/javascript
Date: Mon, 21 Aug 2023 06:52:52 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 12156884271638462230
x-cos-request-id: NjRlMzA5YzRfOGFlZjc4MGJfMWUyOTJfMTE4NjhhOA==
Content-Length: 1500
Accept-Ranges: bytes
X-NWS-LOG-UUID: 824406263969787309
Connection: keep-alive
X-Cache-Lookup: Cache Hit
x-ks-client-ip: 91.90.42.154
X-Ks-Request-ID: 824406263969787309
X-Ks-Cache: Hit from 43.152.140.143
kwaisign: NULL
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: x-ks-request-id,x-ks-client-ip,Content-Length
Cache-Control: max-age=2592000
bc.game/assets/chunk-cb9929c9.js
337 kB URL bc.game/assets/chunk-cb9929c9.js
IP
File type Unicode text, UTF-8 text, with very long lines (28704)
Size 337 kB (337275 bytes)
Hash 7d58586561815ecb29919dcef0b612d5
05764c8b61793dbe2b48eb438839a403e56213f1
18e9661ff622fe51eed03a2d696e8eb73815b2256a15b855f5d1c4fafa12f366
GET /assets/chunk-cb9929c9.js HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/assets/entry-client-routing.67c67dbd.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: application/javascript
last-modified: Mon, 21 Aug 2023 14:37:00 GMT
vary: Accept-Encoding
etag: W/"64e3768c-11718c"
cache-control: max-age=3600
cf-cache-status: HIT
age: 1652
server: cloudflare
cf-ray: 7fbeb1234e43b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
96 kB URL bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14685)
Hash eebba7f594b86d9389ce56558c438ab9
3a5b6553decbaa8742e6e54cd5c5891583c6cbc3
7b45e7687fa88244fb1ead38777b64d39fcb9de6496a90bf457682c6ab619987
GET /landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:37 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-powered-by: Express
cache-control: max-age=3600
cf-cache-status: MISS
server: cloudflare
cf-ray: 7fbeb1165b69b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-11143827491
71 kB URL www.googletagmanager.com/gtag/js?id=AW-11143827491
IP
File type ASCII text, with very long lines (4179)
Hash f31eb978e8db7d8088d710f3994d8583
4c8756ac9eaac7cff89680787c98aa5ce579170f
076a21b74cccf137e7bfd41ff020d6c78a4c6803250777b3227f9e46dcd68bf9
GET /gtag/js?id=AW-11143827491 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Aug 2023 21:29:40 GMT
expires: Thu, 24 Aug 2023 21:29:40 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Aug 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 71338
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.galera.bet/galerabet_candy-theme-pas/css/custom-variables.css?t=1692875326913
105 kB URL www.galera.bet/galerabet_candy-theme-pas/css/custom-variables.css?t=1692875326913
IP
Size 105 kB (105056 bytes)
Hash 3308e55d272284df67227ec3bd6c5f4f
857a92b5015607073109dd848911d1d8e515a4fa
62d73cd16cfc0176adc9044c8a401f66f68ff0de23ff0c86e5ebb687321996d5
GET /galerabet_candy-theme-pas/css/custom-variables.css?t=1692875326913 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: text/css
cf-ray: 7fbeb11deb22b517-OSL
cf-cache-status: HIT
age: 2550
cache-control: max-age=3600,max-stale=3600
etag: W/"64e73a3e-1757"
last-modified: Thu, 24 Aug 2023 11:08:46 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.galera.bet/initialResources/menu/pt_PT_desktop?t=1692875326913
25 kB URL www.galera.bet/initialResources/menu/pt_PT_desktop?t=1692875326913
IP
File type Unicode text, UTF-8 text, with very long lines (65511), with no line terminators
Hash 971d7754615ba37e6842d867e23edda8
436c73f41b8a41ddf9c2dd57c826fccd43146e6b
114de90a8b5837bcc68de23945f3d832fc53c70d73499af84ef5acbc3ad13019
GET /initialResources/menu/pt_PT_desktop?t=1692875326913 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.galera.bet/cassino
request-id: |1af1b75bbd9643d0a4c4220daae768b0.93ddb03d17324365
traceparent: 00-1af1b75bbd9643d0a4c4220daae768b0-93ddb03d17324365-01
DNT: 1
Connection: keep-alive
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: text/html; charset=UTF-8
cf-ray: 7fbeb12b2b4fb517-OSL
cf-cache-status: HIT
age: 873
cache-control: max-age=3600,max-stale=3600
etag: W/"64e73a3f-7d7d6"
last-modified: Thu, 24 Aug 2023 11:08:47 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
static.cloudflareinsights.com/beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854
6.9 kB URL static.cloudflareinsights.com/beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854
IP
File type ASCII text, with very long lines (19978), with no line terminators
Hash efeb2542712dce8a2c51cf68396e4a05
ac9ce350c598644c7b7f6186aaf0368eb077d396
c235f21017bcc11fcaa31d7dfd9855aaebcbf5f6d7ee9bf9f2e98a910907c391
GET /beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2023.7.1"
last-modified: Thu, 20 Jul 2023 18:10:27 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb128d9330b51-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LdFxIwUAAAAAJXTTywXqky6j5VEGMnyaP9IJSLu
861 B URL www.google.com/recaptcha/api.js?render=6LdFxIwUAAAAAJXTTywXqky6j5VEGMnyaP9IJSLu
IP
File type ASCII text, with very long lines (1256), with no line terminators
Hash ff25f1055cdca86200dd396e17afce76
930d6e56ea9bacff90094e5643e3c8c0e15a8966
2f99ae2f1ca8ad2662191f55960f1432c6105c9d7a94712bd86d5fd93f5ec2bd
GET /recaptcha/api.js?render=6LdFxIwUAAAAAJXTTywXqky6j5VEGMnyaP9IJSLu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bw-prm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Thu, 24 Aug 2023 21:29:40 GMT
date: Thu, 24 Aug 2023 21:29:40 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 861
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
br.betano.com/myaccount/ban/country-341629?alt=true
155 kB URL br.betano.com/myaccount/ban/country-341629?alt=true
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1099), with CRLF line terminators
Size 155 kB (154667 bytes)
Hash cff06dd8b9caf9cf59c1b0d8ca2bd357
7458e007f6145f61029e716c0a618cb638400ee6
19171d5a2b7ef1f1f1974dee6b1d6f3e278a32cf853974e5071a04862cceb7f9
GET /myaccount/ban/country-341629?alt=true HTTP/1.1
Host: br.betano.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=Hx2_onDzPriGZqvnuagyi_HWBPsp_Gprjqg.7XWgj94-1692912577-0-AVJrFGxZqxJ0vlAEFMi46K87MFqyJz4XptRdPFYIVgDd4Fd7KAPauDzSOUuwnVMPs3wM+sjlglDHw53FxvuyXv0=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:37 GMT
content-type: text/html; charset=utf-8
cf-ray: 7fbeb11b2a061c0e-OSL
cf-cache-status: DYNAMIC
age: 0
cache-control: no-store
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: frame-ancestors https://*.betano.com:*
set-cookie: __RequestVerificationToken=4QxSZwc19Yz9tvD_fwX47d6EISnSpUgyeOdXcg8xbPI1PyVL02nzlgVYiAp-vMyNxUVIzaBE2TIfy9OoZ8EKQNsFLWzGxWnb1-InLkxN1yA1; path=/; secure; HttpOnly
sticky=stx25.184
x-content-type-options: nosniff
x-farm: BR-MYACCOUNT18
x-xss-protection: 1; mode=block
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
login.galera.bet/jswrapper/integration.js.php?min=1&staticjs=1&casino=galera.bet&onStaticLoad=iapiOnPASLoad
1.1 kB URL login.galera.bet/jswrapper/integration.js.php?min=1&staticjs=1&casino=galera.bet&onStaticLoad=iapiOnPASLoad
IP
File type ASCII text, with very long lines (371)
Hash a9942475fd70c7863d98b1bbf75a47cc
5f62e83ee1150cd1296e6dd9de29d4cd920d210b
03be1a17ea2122102118464a0050760ec0f3438be25a4da48b99323b0b2442ff
GET /jswrapper/integration.js.php?min=1&staticjs=1&casino=galera.bet&onStaticLoad=iapiOnPASLoad HTTP/1.1
Host: login.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: application/javascript
content-length: 1108
x-powered-by: Servlet/4.0
cache-control: private,no-transform,max-age=600
content-language: en-US
strict-transport-security: max-age=16070400; includeSubDomains
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=; path=/; expires=Thu, 24-Aug-23 21:59:40 GMT; domain=.galera.bet; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7fbeb12c5ee8b4f9-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-B23BPN2TGE&l=dataLayer&cx=c
87 kB URL www.googletagmanager.com/gtag/js?id=G-B23BPN2TGE&l=dataLayer&cx=c
IP
File type ASCII text, with very long lines (5857)
Hash c61312d9981b306a1b92ba4b642ddc90
603e46e47d1d2c77a03ff425c4d7537130ef1d3b
9b1d9f4a987afabb49052b0cc52f60d016e6702f03206589113c23e5f5f9bda8
GET /gtag/js?id=G-B23BPN2TGE&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Aug 2023 21:29:40 GMT
expires: Thu, 24 Aug 2023 21:29:40 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 87037
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
471 B IP
Hash 9fcf28039ac06ae2420c424b80ea3e67
7884ebcfa36b8a6743e441e932784c7feec6dcaf
ef2091ecc42e804b4cb93c55795cfdc9566e4402d75ff8b87487fd7d34b68540
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Aug 2023 21:29:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
oapi-cur.techonlinecorp.com/socket.io/1/?t=1692912571708
64 B URL oapi-cur.techonlinecorp.com/socket.io/1/?t=1692912571708
IP
ASN #43937 Playtech Estonia OU
File type ASCII text, with no line terminators
Hash 4cc76046d901752233c1c9bb65b40563
588ace6342eb1500cfd4c708c3bf580082079ad9
4c83fa877fd1c35f22b5ca65383dbe2edc0a2a1dd7b7cd01b716c9341232fc3c
GET /socket.io/1/?t=1692912571708 HTTP/1.1
Host: oapi-cur.techonlinecorp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
content-type: text/plain; charset=UTF-8
connection: keep-alive
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
content-length: 64
Strict-Transport-Security: max-age=16070400; includeSubDomains
api.mythad.com/rest/n/adintl/gray/getGrayInfo
200 OK 0 B URL OPTIONS HTTP/2 api.mythad.com/rest/n/adintl/gray/getGrayInfo
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.mythad.com
Fingerprint23:A6:63:24:92:FB:76:8E:B7:39:EC:C7:9B:DA:30:36:7F:57:93:AC
ValidityThu, 09 Mar 2023 12:25:09 GMT - Tue, 09 Apr 2024 12:25:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /rest/n/adintl/gray/getGrayInfo HTTP/1.1
Host: api.mythad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.galera.bet/
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:41 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.galera.bet
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/94d93925ff2e847619eb1e80ee441816-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3BhY2VyLXNwcml0ZS5wbmc%3D
95 B URL c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/94d93925ff2e847619eb1e80ee441816-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3BhY2VyLXNwcml0ZS5wbmc%3D
IP
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 9591c410148e6883727c5339fd1c02cd
3442a95fe890ce4769b36b2ecc611b801a54cfb5
cafbd551d674da240212f6c44988757a728b9dc8cbc2a6c8dcf53c0d9159c323
GET /sealassets/94d93925ff2e847619eb1e80ee441816-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3BhY2VyLXNwcml0ZS5wbmc%3D HTTP/1.1
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 95
x-powered-by: Express
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbea6783c2e9165-FRA
date: Thu, 24 Aug 2023 21:28:20 GMT
cache-control: max-age=1200
etag: W/"5f-NEKpX+iQzkdps2suzGEbgBpUz7U"
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lMfBpk1Td3dzfyzhKU6vTMN3VWz3GXlc1DRvxJxeYMNBqZdWy8ZRKQ==
age: 81
X-Firefox-Spdy: h2
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/94d93925ff2e847619eb1e80ee441816-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid
49 kB URL c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/sealassets/94d93925ff2e847619eb1e80ee441816-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid
IP
File type PNG image data, 512 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ef6782be55b8ce8f5b132d28af8e0d0
cb99df77f4865d9c2f287539a5ca474cf76f7d09
d614922fde9604f8899e47f3cc3d69bf952312b996f7cf1421163996710850fa
GET /sealassets/94d93925ff2e847619eb1e80ee441816-20bet.com-f5faf6d82a7be2057527120fa49724355adf2a8c973918d432fa7b70160234e717ac6b01358f27fc0aff52358b79fb11-c3ByaXRlLXNlYWwucG5n?status=valid HTTP/1.1
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 49397
x-powered-by: Express
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbea6784e19047a-FRA
date: Thu, 24 Aug 2023 21:28:20 GMT
cache-control: max-age=1200
etag: W/"c0f5-y5nfd/SGXZwvKHU5pcpHTPdvfQk"
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hJdr8tSwl95qcRYH_s3bnkHDyILn5PYqyYxvBOwCQ_0Z6j2rS1j03Q==
age: 81
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/vuePromotionsBlock.0b5bb8ca.css?v10263
41 kB URL www.brazino-cdnsrv-cst.org/build/vuePromotionsBlock.0b5bb8ca.css?v10263
IP
ASN #60068 Datacamp Limited
File type Unicode text, UTF-8 text, with very long lines (37773)
Hash 99d1015e137873a041146ffd31531e3e
83a81e7b679bbe95fb6b9ece4684967ff731f3e4
c0514e3ec9b100b6275a12f029042c33cabd909475c1d739f528d5f6da251bdb
GET /build/vuePromotionsBlock.0b5bb8ca.css?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:41 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"64c10040-9379"
expires: Thu, 25 Jul 2024 11:36:09 GMT
last-modified: Wed, 26 Jul 2023 11:15:12 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: b5c816ac-971d-4635-b5d5-a55de7b9c71e-2072023
server: CDN77-Turbo
x-77-nzt: AblMCRQfU0P/nMYmAA
x-77-nzt-ray: af585630e3980396c5cbe764f17fa401
x-accel-expires: @1721907369
x-accel-date: 1690371369
x-cache: HIT
x-age: 2541212
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/footerGameCategoriesBlock.95e12733.js?v10263
67 kB URL www.brazino-cdnsrv-cst.org/build/footerGameCategoriesBlock.95e12733.js?v10263
IP
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (45508)
Hash f3695250a49c43c0cda1c9809a9795b5
678e0c9c25b34fd6cbe2b153d61e9e7f3d521d00
53366989bf89246bac2687a82094dda01c223c6c0f85fb1d45b7e46236226090
GET /build/footerGameCategoriesBlock.95e12733.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:41 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"644a44cd-7d2"
expires: Fri, 26 Apr 2024 09:53:29 GMT
last-modified: Thu, 27 Apr 2023 09:47:57 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 1fbbef4c-9bf5-471b-a55f-e22f0d0501c9-1172023
server: CDN77-Turbo
x-77-nzt: AblMCRTRUFT/rIWdAA
x-77-nzt-ray: af585630e3980396c5cbe7640ccff601
x-accel-expires: @1714125209
x-accel-date: 1682589209
x-cache: HIT
x-age: 10323372
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js
200 OK 186 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g&co=aHR0cHM6Ly8yMGJldC5jb206NDQz&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&cb=7741dnamr5un
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT
File type ASCII text, with very long lines (679)
Size 186 kB (185519 bytes)
Hash e346196cabbe1100839406d8f02a31c3
24f54bd82fdab0dc9bc5c6a71e33eefc02286aad
9dab174b3b1ef754d71d613162c1e1f5b88f9f317da8d1f14c146be9c6d9fd35
GET /recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bw-prm.com
DNT: 1
Connection: keep-alive
Referer: https://bw-prm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 185519
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Aug 2023 17:27:03 GMT
expires: Thu, 22 Aug 2024 17:27:03 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 17 Aug 2023 18:11:22 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 100958
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
bc.game/assets/Share.2cbbb163.css
3.8 kB URL bc.game/assets/Share.2cbbb163.css
IP
File type ASCII text, with very long lines (7255)
Hash 3b693440bc43a37396a9cafef5165ed4
0f5afe8d256822f6c92bcaf573dc51781e07ac60
2cbbb1632f049e5223821d5024fed53fd2fffa5076e17348036768eb96542fa0
GET /assets/Share.2cbbb163.css HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: text/css
last-modified: Thu, 24 Aug 2023 02:46:42 GMT
vary: Accept-Encoding
etag: W/"64e6c492-1c58"
cache-control: max-age=3600
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7fbeb11fb8d1b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
bc.game/assets/logo_small.b0b85b67.png
644 B URL bc.game/assets/logo_small.b0b85b67.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash dd61d04832390174060ec3d52d7c43c9
9dc600af9913ca031961628adff34107a8d280d5
a5d94ea8c03dd47c9f4a1edf0dc3901a05a702aa78426e4c2183fd95abc3e731
GET /assets/logo_small.b0b85b67.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Cookie: invitation-code=4cxse6dr; invitation-url=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:42 GMT
content-type: image/webp
content-length: 644
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=796
content-disposition: inline; filename="logo_small.webp"
vary: Accept
etag: "64e6c45a-31c"
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
cf-cache-status: HIT
age: 2002
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb135fe2cb529-OSL
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/vueNsoftTopOfferBlock.30c36f0d.css?v10263
42 kB URL www.brazino-cdnsrv-cst.org/build/vueNsoftTopOfferBlock.30c36f0d.css?v10263
IP
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5979599bcaa28cb1f92864cd3754b170
9e282e4e70029ea02982efaa2282e9d63f41c2f5
023600505f0b334c36aa4774696ddf9a354fbf59263fc89c84e3d324e827e54e
GET /build/vueNsoftTopOfferBlock.30c36f0d.css?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:41 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"648afe4f-4fda"
expires: Fri, 14 Jun 2024 12:46:32 GMT
last-modified: Thu, 15 Jun 2023 12:04:31 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 3eebdde2-dfa6-4400-8b61-f4edb61d0b59-1662023
server: CDN77-Turbo
x-77-nzt: AblMCRQfW7//ncNcAA
x-77-nzt-ray: af585630e3980396c5cbe76468a2c601
x-accel-expires: @1718369192
x-accel-date: 1686833192
x-cache: HIT
x-age: 6079389
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/2675.0884f4c1.js?v10263
50 kB URL www.brazino-cdnsrv-cst.org/build/2675.0884f4c1.js?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 8e2b1bcf3a8c9030655f7407627528bd
3c0c989c1d9bacc0d0a758c798991da1f25caa0a
46b556928b781edcc95bf05fd61de11d32a14364a9f649122776a3e896c411fd
GET /build/2675.0884f4c1.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:41 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6481d0bb-6ecb"
expires: Fri, 14 Jun 2024 13:11:20 GMT
last-modified: Thu, 08 Jun 2023 12:59:39 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 7ccfc6c3-c15d-4d99-a9e1-113339564cfa-1662023
server: CDN77-Turbo
x-77-nzt: AblMCRSokrT/zb1cAA
x-77-nzt-ray: af585630e3980396c5cbe764c9423202
x-accel-expires: @1718370680
x-accel-date: 1686834680
x-cache: HIT
x-age: 6077901
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/footerArticleBlock.61bbbba0.js?v10263
892 B URL www.brazino-cdnsrv-cst.org/build/footerArticleBlock.61bbbba0.js?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 23c57032733c74032f338abf84713826
6fc238265b5a35e704650fdabf25253f81e5207e
3a38b40af7b145a5ac2b03d5b4146116a51c71eb987778a52ee5fe573e9348be
GET /build/footerArticleBlock.61bbbba0.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:41 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"644a53f5-321"
expires: Fri, 26 Apr 2024 11:04:31 GMT
last-modified: Thu, 27 Apr 2023 10:52:37 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 69d3bcc5-953e-40e7-a094-1c77f9d97861-1172023
server: CDN77-Turbo
x-77-nzt: AblMCRTwbPf/BnWdAA
x-77-nzt-ray: af585630e3980396c5cbe76472002b02
x-accel-expires: @1714129471
x-accel-date: 1682593471
x-cache: HIT
x-age: 10319110
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/footerGameCategoriesBlock.75f11e3e.css?v10263
6.4 kB URL www.brazino-cdnsrv-cst.org/build/footerGameCategoriesBlock.75f11e3e.css?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 3151cd6ce50a2820176c16547b2b615b
41934e23d50a7ee22179654d043ba1afd231a018
f77ffab3cde911a126568c6821c87cb25c6e6262a8039d19c10cf6d6e48a5f38
GET /build/footerGameCategoriesBlock.75f11e3e.css?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:41 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"648afe4f-1691"
expires: Fri, 14 Jun 2024 12:46:32 GMT
last-modified: Thu, 15 Jun 2023 12:04:31 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 43998eb5-2e70-4c36-819f-1cf220e50a0b-1662023
server: CDN77-Turbo
x-77-nzt: AblMCRSnaXb/ncNcAA
x-77-nzt-ray: af585630e3980396c5cbe764931ced01
x-accel-expires: @1718369192
x-accel-date: 1686833192
x-cache: HIT
x-age: 6079389
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
s1.kwai.net/kos/s101/nlav11187/pixel/graySdk/core.b79597e76333f1c7.js?sdkid=512565417685819472&lib=kwaiq
68 kB URL s1.kwai.net/kos/s101/nlav11187/pixel/graySdk/core.b79597e76333f1c7.js?sdkid=512565417685819472&lib=kwaiq
IP
File type Unicode text, UTF-8 text, with very long lines (65392)
Hash 125eb616b79597e76333f1c71542265c
4e5fe86ec31422ea7b2d2c1c76043eeb1c73af7f
a04aab8b8c8fb54ddab1154b9f3f667bbc46fac1001bdbba83818894b8d046f3
GET /kos/s101/nlav11187/pixel/graySdk/core.b79597e76333f1c7.js?sdkid=512565417685819472&lib=kwaiq HTTP/1.1
Host: s1.kwai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blaze.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Fri, 18 Aug 2023 03:32:56 GMT
Content-Encoding: gzip
Etag: "125eb616b79597e76333f1c71542265c"
Content-Type: application/javascript
Date: Fri, 18 Aug 2023 03:33:53 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 1510185005971783574
x-cos-request-id: NjRkZWU2YTFfZWUzNjEzMGJfMWI1ZmJfNmNiMWQz
Content-Length: 68178
Accept-Ranges: bytes
X-NWS-LOG-UUID: 12465888718522236981
Connection: keep-alive
X-Cache-Lookup: Cache Hit
x-ks-client-ip: 91.90.42.154
X-Ks-Request-ID: 12465888718522236981
X-Ks-Cache: Hit from 43.152.140.143
kwaisign: NULL
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: x-ks-request-id,x-ks-client-ip,Content-Length
Cache-Control: max-age=2592000
www.brazino-cdnsrv-cst.org/build/vuePromotionsBlock.abb022b5.js?v10263
19 kB URL www.brazino-cdnsrv-cst.org/build/vuePromotionsBlock.abb022b5.js?v10263
IP
ASN #60068 Datacamp Limited
File type Unicode text, UTF-8 text, with very long lines (33454)
Hash 79b82bca3bc8944e57bf61a2addfb34e
b88dd6326481638f359903d230e8b79a0cdf6163
abf20345a56a3e7bec7742756ad084323b52932b64e8111ea3b1f8da56236a3e
GET /build/vuePromotionsBlock.abb022b5.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:41 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"64e36b72-6e59"
expires: Tue, 20 Aug 2024 13:59:24 GMT
last-modified: Mon, 21 Aug 2023 13:49:38 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: ac2dc109-ff86-4c20-bf7b-eb7e294b1d0d-2332023
server: CDN77-Turbo
x-77-nzt: AblMCRSYWIT/CV4EAA
x-77-nzt-ray: af585630e3980396c5cbe7641647b401
x-accel-expires: @1724162364
x-accel-date: 1692626364
x-cache: HIT
x-age: 286217
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-55HKBB7
73 kB URL www.googletagmanager.com/gtm.js?id=GTM-55HKBB7
IP
File type ASCII text, with very long lines (21030)
Hash fe0c395325ce6e2d8ecda0e9f0c6a68a
568a16d4d71d6105fec3536e5cbf161490752e68
cb40d24d6027ad39ac4300e896985211225171bdae46d2e156133d0e681deaad
GET /gtm.js?id=GTM-55HKBB7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Aug 2023 21:29:42 GMT
expires: Thu, 24 Aug 2023 21:29:42 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Aug 2023 21:05:34 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72618
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
bc.game/assets/BonusLink.ca329863.css
32 kB URL bc.game/assets/BonusLink.ca329863.css
IP
File type ASCII text, with very long lines (6310)
Hash 0c00d788c1efcb2ed2d295bf44401655
8dd9fcec57e8a516c4b63a69885a5a66c86b674e
ca3298639aa4388242c448c53bb32b53e8a54d9c00a3758fe2c8616b29e9f959
GET /assets/BonusLink.ca329863.css HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Cookie: invitation-code=4cxse6dr; invitation-url=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:42 GMT
content-type: text/css
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
vary: Accept-Encoding
etag: W/"64e6c45a-18a7"
cache-control: max-age=3600
cf-cache-status: HIT
age: 1692
server: cloudflare
cf-ray: 7fbeb1360e47b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
bc.game/assets/brazil_bg_m.39c25d13.png
270 kB URL bc.game/assets/brazil_bg_m.39c25d13.png
IP
File type PNG image data, 750 x 1362, 8-bit colormap, non-interlaced\012- data
Size 270 kB (270098 bytes)
Hash 28006b6538771be2bafc22d0178d4b69
ebd5de7b0dce02dfde5932dc717bd21138a6143b
39c25d13851f8c530ad7d02244f1dc11c4bb62017d779db74ad25db2a03e8efc
GET /assets/brazil_bg_m.39c25d13.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/assets/index.page.45e5b01e.css
Cookie: invitation-code=4cxse6dr; invitation-url=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:42 GMT
content-type: image/png
content-length: 270098
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
etag: "64e6c45a-41f12"
cache-control: max-age=3600
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb1360e3fb529-OSL
X-Firefox-Spdy: h2
20bet.com/configuration.js
302 Found 97 kB URL GET HTTP/2 20bet.com/configuration.js
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
Hash cce1fad3bedba15c6f726b8a87fc0b2d
6cdb7eee9a48a1073c3121a05a669d44b0db972c
ef1c0e0d5e91058316b7e26498544c5b5492ffb3cfbf0ec92527b113067d93c5
GET /configuration.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: text/html; charset=UTF-8
location: /no/configuration.js
cf-ray: 7fbeb128bb46b524-OSL
cf-cache-status: MISS
cache-control: no-cache, private
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
X-Firefox-Spdy: h2
api.mythad.com/rest/n/adintl/gray/getGrayInfo
200 OK 80 kB URL OPTIONS HTTP/2 api.mythad.com/rest/n/adintl/gray/getGrayInfo
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.mythad.com
Fingerprint23:A6:63:24:92:FB:76:8E:B7:39:EC:C7:9B:DA:30:36:7F:57:93:AC
ValidityThu, 09 Mar 2023 12:25:09 GMT - Tue, 09 Apr 2024 12:25:08 GMT
File type gzip compressed data, from Unix\012- data
Hash 194d878a9d484fe616382c994d16b316
044b94921df65d8f3c1e91b613af92ba5a6dd668
f4d6dab2bb69e507bb648941755f31a65e4598dba7e9b4a03d88746dab7ecf53
POST /rest/n/adintl/gray/getGrayInfo HTTP/1.1
Host: api.mythad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 46
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:42 GMT
content-type: application/json;charset=UTF-8
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tracker.ads.sportradar.com/dist//sp-3.8.0.js
24 kB URL tracker.ads.sportradar.com/dist//sp-3.8.0.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65378)
Hash 143272dddc33395008a84a86ac9c2e96
8a90a07a66c30b4fa28300001cf97db7baba420e
6361e3a49a38d1fdc74ec96bd29ee1ecd7c30045ccb0e5f361413d65cbf5ef87
GET /dist//sp-3.8.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 05 Jun 2023 07:47:50 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
etag: "143272dddc33395008a84a86ac9c2e96"
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: Ep5YTRzski4fWt6M3nFY6BBxBAUW9URhCRvwVLUM7qbqBu5snxO5Uw==
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 24 Aug 2023 21:29:42 GMT
content-length: 24162
cache-control: max-age=900, public
X-Firefox-Spdy: h2
bc.game/assets/chunk-74713565.js
93 kB URL bc.game/assets/chunk-74713565.js
IP
File type Java source, ASCII text, with very long lines (973)
Hash 8e2191432dce0898a6c1a133ac9dce6a
c8203447c57e6a90f517aab280fb019581dbf945
69e7f166b33b6ef0a9a505f987088fa81fd155f4ce40df84b1bf70ceb1067aa5
GET /assets/chunk-74713565.js HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/assets/entry-client-routing.67c67dbd.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: application/javascript
last-modified: Mon, 21 Aug 2023 14:37:00 GMT
etag: W/"64e3768c-3ce"
cache-control: max-age=3600
cf-cache-status: HIT
age: 1665
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb123cee2b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
bc.game/assets/symbol-defs.ac3d71f1.svg?lang.svg
121 kB URL bc.game/assets/symbol-defs.ac3d71f1.svg?lang.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (18260)
Size 121 kB (120763 bytes)
Hash 38032b4d4da4d315546cdf2a7eeecca5
4d02b21f3ce4c74eaf72df3f885650791baa8964
ac3d71f15fa3c7732ef053dbe25f265f8491cdd89c004f8a9a519360d594bff4
GET /assets/symbol-defs.ac3d71f1.svg?lang.svg HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Cookie: invitation-code=4cxse6dr; invitation-url=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:42 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
etag: W/"64e6c45a-51365"
cache-control: max-age=3600
cf-cache-status: HIT
age: 583
vary: Accept-Encoding
server: cloudflare
cf-ray: 7fbeb135fe2fb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
collect.analyse.lnearn.com/sa.gif?project=production&data=eyJpZGVudGl0aWVzIjp7IiRpZGVudGl0eV9jb29raWVfaWQiOiIxOGEyOTczZGQ0MWY2LTAyY2I2NTM0YmVjMGRjNC00NzM4MDcyMC0xMzEwNzIwLTE4YTI5NzNkZDQyMzUwIn0sImRpc3RpbmN0X2lkIjoiMThhMjk3M2RkNDFmNi0wMmNiNjUzNGJlYzBkYzQtNDczODA3MjAtMTMxMDcyMC0xOGEyOTczZGQ0MjM1MCIsImxpYiI6eyIkbGliIjoianMiLCIkbGliX21ldGhvZCI6ImNvZGUiLCIkbGliX3ZlcnNpb24iOiIxLjI0LjMifSwicHJvcGVydGllcyI6eyIkZmlyc3RfdmlzaXRfdGltZSI6IjIwMjMtMDgtMjQgMjE6Mjk6MzMuNzc5IiwiJGZpcnN0X3JlZmVycmVyIjoiIiwiJGZpcnN0X2Jyb3dzZXJfbGFuZ3VhZ2UiOiJlbi11cyIsIiRmaXJzdF9icm93c2VyX2NoYXJzZXQiOiJVVEYtOCIsIiRmaXJzdF90cmFmZmljX3NvdXJjZV90eXBlIjoi5LuY6LS55bm%2F5ZGK5rWB6YePIiwiJGZpcnN0X3NlYXJjaF9rZXl3b3JkIjoi5pyq5Y%2BW5Yiw5YC8X%2BebtOaOpeaJk%2BW8gCIsIiR1dG1fc291cmNlIjoiNGN4c2U2ZHIiLCJzdGFnIjoiMTc0MDlfNjRlN2NiYzBiMTNkMjEzZDllYTM5ZjIwIn0sImFub255bW91c19pZCI6IjE4YTI5NzNkZDQxZjYtMDJjYjY1MzRiZWMwZGM0LTQ3MzgwNzIwLTEzMTA3MjAtMThhMjk3M2RkNDIzNTAiLCJ0eXBlIjoicHJvZmlsZV9zZXRfb25jZSIsInRpbWUiOjE2OTI5MTI1NzM3NzksIl90cmFja19pZCI6NTc5NzEzNzgwLCJfZmx1c2hfdGltZSI6MTY5MjkxMjU3Mzc4MH0%3D&ext=crc%3D-2081231438
43 B URL collect.analyse.lnearn.com/sa.gif?project=production&data=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%2F5ZGK5rWB6YePIiwiJGZpcnN0X3NlYXJjaF9rZXl3b3JkIjoi5pyq5Y%2BW5Yiw5YC8X%2BebtOaOpeaJk%2BW8gCIsIiR1dG1fc291cmNlIjoiNGN4c2U2ZHIiLCJzdGFnIjoiMTc0MDlfNjRlN2NiYzBiMTNkMjEzZDllYTM5ZjIwIn0sImFub255bW91c19pZCI6IjE4YTI5NzNkZDQxZjYtMDJjYjY1MzRiZWMwZGM0LTQ3MzgwNzIwLTEzMTA3MjAtMThhMjk3M2RkNDIzNTAiLCJ0eXBlIjoicHJvZmlsZV9zZXRfb25jZSIsInRpbWUiOjE2OTI5MTI1NzM3NzksIl90cmFja19pZCI6NTc5NzEzNzgwLCJfZmx1c2hfdGltZSI6MTY5MjkxMjU3Mzc4MH0%3D&ext=crc%3D-2081231438
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sa.gif?project=production&data=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%2F5ZGK5rWB6YePIiwiJGZpcnN0X3NlYXJjaF9rZXl3b3JkIjoi5pyq5Y%2BW5Yiw5YC8X%2BebtOaOpeaJk%2BW8gCIsIiR1dG1fc291cmNlIjoiNGN4c2U2ZHIiLCJzdGFnIjoiMTc0MDlfNjRlN2NiYzBiMTNkMjEzZDllYTM5ZjIwIn0sImFub255bW91c19pZCI6IjE4YTI5NzNkZDQxZjYtMDJjYjY1MzRiZWMwZGM0LTQ3MzgwNzIwLTEzMTA3MjAtMThhMjk3M2RkNDIzNTAiLCJ0eXBlIjoicHJvZmlsZV9zZXRfb25jZSIsInRpbWUiOjE2OTI5MTI1NzM3NzksIl90cmFja19pZCI6NTc5NzEzNzgwLCJfZmx1c2hfdGltZSI6MTY5MjkxMjU3Mzc4MH0%3D&ext=crc%3D-2081231438 HTTP/1.1
Host: collect.analyse.lnearn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Thu, 24 Aug 2023 21:29:42 GMT
server: Sws
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 28 Sep 1970 05:00:00 GMT
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: sIl6g-_bGxL5AKAXO95XPqmUm7TstvYq1jYXc5yVkuS6I1iHuwxETw==
X-Firefox-Spdy: h2
collect.analyse.lnearn.com/sa.gif?project=production&data=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%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%3D%3D&ext=crc%3D-1002967338
43 B URL collect.analyse.lnearn.com/sa.gif?project=production&data=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%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%3D%3D&ext=crc%3D-1002967338
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sa.gif?project=production&data=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%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%3D%3D&ext=crc%3D-1002967338 HTTP/1.1
Host: collect.analyse.lnearn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Thu, 24 Aug 2023 21:29:42 GMT
server: Sws
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Mon, 28 Sep 1970 05:00:00 GMT
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: -mKM7LwQj8OAhFC_t5kLBXitof6FfqRjSsjkEjHVA_PxZwCRjICD3A==
X-Firefox-Spdy: h2
pixel.prdredir.com/rtg/sync/bcgame?sh=1024&sw=1280&ref=&lp=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr&fp=2aecf4faf.4716d0286.25d65eb1e&dt=2023-08-24T21%3A29%3A33.505Z
1.6 kB URL pixel.prdredir.com/rtg/sync/bcgame?sh=1024&sw=1280&ref=&lp=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr&fp=2aecf4faf.4716d0286.25d65eb1e&dt=2023-08-24T21%3A29%3A33.505Z
IP
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
GET /rtg/sync/bcgame?sh=1024&sw=1280&ref=&lp=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr&fp=2aecf4faf.4716d0286.25d65eb1e&dt=2023-08-24T21%3A29%3A33.505Z HTTP/1.1
Host: pixel.prdredir.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bc.game/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:42 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
status: 200 OK
cache-control: no-cache
access-control-allow-origin: *
x-request-id: b9a58fc7-0c24-46cb-a786-f1785039fe61
etag: W/"36a9e7f1c95b82ffb99743e0c5c4ce95"
x-runtime: 0.006198
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PhfceYTVW%2FDkSelVEJKGAdmYhhxGIi4MNFekFRt03leyN19OBWTGt1HLLLz6roVlQmPHHlMRgyQ%2FwhV36d%2BbAy7Xqmv1r0N8hPsqCTpu9FkdWq%2FB%2BpYQVZxqIR%2FSCkmABTJcVu0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7fbeb136dca723b3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.r2m01.amazontrust.com/
471 B URL ocsp.r2m01.amazontrust.com/
IP
Hash 38eeef2b35a531904ec6ea4ab2815dda
61cd285f9970ab759d775fe6441d287d6bb2e80b
b9b1890e47effefec8dc6dfd8bfa6a37224e0e06ebff7650511c9b4a057c77a2
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Thu, 24 Aug 2023 21:29:42 GMT
Last-Modified: Thu, 24 Aug 2023 20:14:32 GMT
Server: ECAcc (ska/F7B0)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: s8vtpTPnRMnFM_ClSUM_WtnEmzda7ds90qxiNOe2qKG3LJXOEohVsA==
Age: 4510
www.brazino-cdnsrv-cst.org/build/gamesBlock.a0509664.js?v10263
1.6 kB URL www.brazino-cdnsrv-cst.org/build/gamesBlock.a0509664.js?v10263
IP
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (3710), with no line terminators
Hash e9c162193b66fa61736136925c05ed3f
928a46a7a2a7a9f8b63b03201470ba3ab34e731a
d9579af38318a58bba71c3ecb876faf2fcff31ff666cded6b991b5bec50e164a
GET /build/gamesBlock.a0509664.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:41 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"64c10040-e7e"
expires: Thu, 25 Jul 2024 11:36:09 GMT
last-modified: Wed, 26 Jul 2023 11:15:12 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 2d6a6f4b-e763-4f47-872d-0a040f78d81d-2072023
server: CDN77-Turbo
x-77-nzt: AblMCRQ5taL/nMYmAA
x-77-nzt-ray: af585630e3980396c5cbe7641e569b01
x-accel-expires: @1721907369
x-accel-date: 1690371369
x-cache: HIT
x-age: 2541212
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/styles__ltr.css
25 kB URL www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/styles__ltr.css
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 12:24:57 GMT
expires: Fri, 23 Aug 2024 12:24:57 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 17 Aug 2023 18:11:22 GMT
content-type: text/css
vary: Accept-Encoding
age: 32685
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
bc.game/assets/index.e2263911.css
5.4 kB URL bc.game/assets/index.e2263911.css
IP
File type ASCII text, with very long lines (38404)
Hash b4aaa636516d9b348cf74390926ca802
35fcaff0aed3cd1196299a20d9f61736390e1224
e226391168712f4e502b9711eedbd626fc10fe27c17ae6066638444646f5a22f
GET /assets/index.e2263911.css HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Cookie: invitation-code=4cxse6dr; invitation-url=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:42 GMT
content-type: text/css
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
vary: Accept-Encoding
etag: W/"64e6c45a-9605"
cache-control: max-age=3600
cf-cache-status: HIT
age: 1692
server: cloudflare
cf-ray: 7fbeb1360e48b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-J9LNZYMXZE&l=dataLayer&cx=c
87 kB URL www.googletagmanager.com/gtag/js?id=G-J9LNZYMXZE&l=dataLayer&cx=c
IP
File type ASCII text, with very long lines (5857)
Hash f0ae1d7d0dee55ba5af669f778a1f841
7cba9adeb38283672c45806677059437a8e5bcdb
3abbb656e9cfd003a6214520a38345735a3ffcca11d1f4662a95a8893a010a4b
GET /gtag/js?id=G-J9LNZYMXZE&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Aug 2023 21:29:42 GMT
expires: Thu, 24 Aug 2023 21:29:42 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86823
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js
200 OK 186 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g&co=aHR0cHM6Ly8yMGJldC5jb206NDQz&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&cb=7741dnamr5un
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT
File type ASCII text, with very long lines (679)
Size 186 kB (185519 bytes)
Hash e346196cabbe1100839406d8f02a31c3
24f54bd82fdab0dc9bc5c6a71e33eefc02286aad
9dab174b3b1ef754d71d613162c1e1f5b88f9f317da8d1f14c146be9c6d9fd35
GET /recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 185519
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Aug 2023 17:27:03 GMT
expires: Thu, 22 Aug 2024 17:27:03 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 17 Aug 2023 18:11:22 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 100959
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 73 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 980ac7b9ebe43a82d90bf60df15e4fe8
a6601eb69323883cce37ff4b999a0b01677e3000
3c2076aeac85520a6442f69a9fa0742ab81791dce2fb3482629c7567dca85c16
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3504
Origin: https://blaze.com
DNT: 1
Connection: keep-alive
Referer: https://blaze.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:42 GMT
content-type: text/plain;charset=UTF-8
content-length: 73
access-control-allow-origin: https://blaze.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/vuePlayersOnlineBlock.a4a8cb6c.js?v10263
200 OK 2.3 kB URL GET HTTP/2 www.brazino-cdnsrv-cst.org/build/vuePlayersOnlineBlock.a4a8cb6c.js?v10263
IP
ASN #60068 Datacamp Limited
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subject1107631085.rsc.cdn77.org
FingerprintFC:30:44:F1:AA:FD:BB:46:F5:7C:D2:8B:A5:9E:81:24:08:71:EE:74
ValidityFri, 30 Jun 2023 22:49:32 GMT - Thu, 28 Sep 2023 22:49:31 GMT
File type gzip compressed data, from Unix\012- data
Hash 354c86862ee04cd9ea3e15657f35fa98
c1f732a759b6344ec287afde1fdb5190309c8b90
28a28f57d7ad5879a4af7a68b1e28acd1f603795ba23c4ad915e3394c4c87706
GET /build/vuePlayersOnlineBlock.a4a8cb6c.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"64c10040-1415"
expires: Thu, 25 Jul 2024 11:36:09 GMT
last-modified: Wed, 26 Jul 2023 11:15:12 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: a6025166-aee6-4719-9076-fb4b8208ae46-2072023
server: CDN77-Turbo
x-77-nzt: AblMCRQRtW7/m8YmAA
x-77-nzt-ray: af585630e3980396c5cbe764a2241c00
x-accel-expires: @1721907369
x-accel-date: 1690371369
x-cache: HIT
x-age: 2541211
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
471 B URL ocsp.r2m01.amazontrust.com/
IP
Hash 89e5734f9e10b02e79ea0c1e9c6e3cdc
d5fd0f967491dc26f2c65a1508172675bb20b062
b4c679861c7015964c48d93d862a9ef7d810b7a4e9b79665d36f9568f88520f8
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Thu, 24 Aug 2023 21:29:43 GMT
Last-Modified: Thu, 24 Aug 2023 20:53:45 GMT
Server: ECAcc (amb/6B0A)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FA6WedcYYYdK6lR-YxOuAVBSwpwwk17No4ikT4dWYz13WyBeENHYmg==
Age: 2158
fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,500;0,600;0,800;0,900;1,500;1,600;1,800;1,900&display=swap
35 kB URL fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,500;0,600;0,800;0,900;1,500;1,600;1,800;1,900&display=swap
IP
File type gzip compressed data, max compression\012- data
Hash e699c22054a5b90bd408770c57d3901f
bb8ece0c523bdfa716b0dc661be5c23f7fc647c3
cd9ae83a1cb9c9372f8dae14d9f6f9c623c88bc2f5bc2098a464c58fb47f1c37
GET /css2?family=Montserrat:ital,wght@0,500;0,600;0,800;0,900;1,500;1,600;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-service.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Aug 2023 21:29:38 GMT
date: Thu, 24 Aug 2023 21:29:38 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
20bet.com/app/2086.ed868dbf7740badf.js
200 OK 2.7 kB URL GET HTTP/2 20bet.com/app/2086.ed868dbf7740badf.js
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (3368), with no line terminators
Hash 32097b58a1b080d6bfe76f5b99a6e6b2
f199695c60efaa3ba5c0490b945db05a56ac8a92
0139c59b8c5e1e874e1537992d8a5e7812126811457fca53f941ef9fac44772a
GET /app/2086.ed868dbf7740badf.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c9ab1b524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aafa-d28"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:45:14 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/9887.490bc7393b3e8e94.js
30 kB URL 20bet.com/app/9887.490bc7393b3e8e94.js
IP
File type Unicode text, UTF-8 text, with very long lines (60512), with no line terminators
Hash 62142559a96fabc2c61e61638343b00f
3cc10e3c2ce3ef7443abc8dd3810ea27d9dedbc4
e47b29ed0d6e6fb7f9519f9c60676a767c442ab62122452264e10f6427a8b9cd
GET /app/9887.490bc7393b3e8e94.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c9ab7b524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aafa-ec68"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:45:14 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/9887.10a486beebe826d8.css
236 kB URL 20bet.com/app/9887.10a486beebe826d8.css
IP
File type ASCII text, with very long lines (49504)
Size 236 kB (235503 bytes)
Hash b317ab028a5ed06566d1fd71b0012824
511363f99f9884e65e599782e67f0385dbd0f99b
703f2c10e5373354598f87fc770015f987d6a15f8671286b1d1b46c6b672050d
GET /app/9887.10a486beebe826d8.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: text/css
cf-ray: 7fbeb13c9ab4b524-OSL
cf-cache-status: HIT
age: 2942
cache-control: public, max-age=14400
etag: W/"64e5aafa-e167"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:45:14 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
15 kB URL fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 15:24:26 GMT
expires: Fri, 23 Aug 2024 15:24:26 GMT
cache-control: public, max-age=31536000
age: 21917
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
16 kB URL fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Aug 2023 05:45:56 GMT
expires: Wed, 21 Aug 2024 05:45:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 229427
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
20bet.com/app/1586.436004da97874755.js
24 kB URL 20bet.com/app/1586.436004da97874755.js
IP
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 296db258a15833fa4d0cfc99e9e6f1ed
4a9e08ce3e3c72bb040a5a314af9578688314117
a19c41d66271b687a453ab334521bcf7d1be225fc0b82c80b4202528a9c3ee90
GET /app/1586.436004da97874755.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c19b4b524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aae7-32a3c"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:44:55 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2086.7dfb9d5d208ff411.css
2.6 kB URL 20bet.com/app/2086.7dfb9d5d208ff411.css
IP
File type ASCII text, with very long lines (3950)
Hash af1116f5081805dc503532ac45ebf9cd
12cba5e02e6e3f7aeb139cf160c3a5451dc64adb
65bdcc5b537a2abb8685e751f3b166d9a40305509cab24193916d51bdf2e5ef0
GET /app/2086.7dfb9d5d208ff411.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: text/css
cf-ray: 7fbeb13c9ab0b524-OSL
cf-cache-status: HIT
age: 4896
cache-control: public, max-age=14400
etag: W/"64e5aae7-f6f"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:44:55 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
collect.verify.lnearn.com/deviceprofile/v4
173 B URL collect.verify.lnearn.com/deviceprofile/v4
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash e13ef1b95ab50b7a71d90991b9d5690a
d1bd227e182c57be4dc125e928cc7b4e76bcda45
b9286222043c1ce34ea02cedc5c926f1b8bcae2332da08a6b6401c84643fc326
POST /deviceprofile/v4 HTTP/1.1
Host: collect.verify.lnearn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 3066
Origin: https://bc.game
DNT: 1
Connection: keep-alive
Referer: https://bc.game/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 173
date: Thu, 24 Aug 2023 21:29:43 GMT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, EagleEye-pAppName, EagleEye-SessionID, EagleEye-TraceID
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3600
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: GcXtyvnWTn41yMGKYsTStsmNJbxyOupwtp21nk2bcdUxW-0l3Bh-Yw==
X-Firefox-Spdy: h2
20bet.com/app/651.e35f852e37695c5b.js
7.4 kB URL 20bet.com/app/651.e35f852e37695c5b.js
IP
File type Unicode text, UTF-8 text, with very long lines (18226), with no line terminators
Hash c6cb04206716e27831ac2726e9e66642
2cb167144efd0fb9a7d6b54702c4533bd8eb20fc
591279ae7ed6971ecfe2ce1161710055d08fda7ba7c49a13ee7b5c6cd23d80df
GET /app/651.e35f852e37695c5b.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c8a9eb524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aaf4-4736"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:45:08 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 70 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 4aea2952c7f8f21fe604a94b1215a7e1
93a0a5f3f27a11d0cc87fddd42ca82e2040212e3
dc3e3cf56ae1ecedbd03bc12fea78a22bccc9bbc9c3f5c3e8dc9a8a2272660be
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3628
Origin: https://blaze.com
DNT: 1
Connection: keep-alive
Referer: https://blaze.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: text/plain;charset=UTF-8
content-length: 70
access-control-allow-origin: https://blaze.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
20bet.com/app/2575.a36dc4221a8eede1.js
68 kB URL 20bet.com/app/2575.a36dc4221a8eede1.js
IP
File type Unicode text, UTF-8 text, with very long lines (65513), with no line terminators
Hash 07ce999488fc422e9e169b427d78fc76
eee34916e53db34ddf260ffe402dcb8571887884
96c2387bb022881c0a8c939ec57509b652d9cbd5c1394be11021cfc30a577cd4
GET /app/2575.a36dc4221a8eede1.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c8aadb524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aafa-43f1f"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:45:14 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/1860.9d2b95183ea9aff2.js
348 kB URL 20bet.com/app/1860.9d2b95183ea9aff2.js
IP
File type ASCII text, with very long lines (47416), with no line terminators
Size 348 kB (347910 bytes)
Hash 93ed53989691fa2272ba53cb10e0af6c
52c390a6b9b4c9d27b6529d0392137e0406bf6cf
4fb331d17b36fbb303862bece6027137ecbba48e1374807784ff6e703e69e4fd
GET /app/1860.9d2b95183ea9aff2.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c29e2b524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aae0-b938"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:44:48 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/6244.afb571bf5a8682d4.js
475 B URL 20bet.com/app/6244.afb571bf5a8682d4.js
IP
File type ASCII text, with very long lines (664), with no line terminators
Hash 5eb0e8043d210c340cf0ec17fa89ef40
2fa28b11bd65406dd002a7f7c07f4c7a9e991af7
37d669d4eee692b62384cb9c6dae7b35b57452f354fb6d365ce0b2b43206b6ee
GET /app/6244.afb571bf5a8682d4.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c9abcb524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aada-298"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:44:42 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 68 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 77b7f87883e9ae47b1e7ba81ca39f104
b3b63956856fb68b911fa0ab8dc592670a2a270d
5408235f3c6e67908548ca62a2ad7e1cc48b79f6018693b4e19d7d95c63d0416
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3447
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: text/plain;charset=UTF-8
content-length: 68
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 69 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 085debe7e634fa4708f332e27a13065c
9571460c570d47e0a184e857f6e6bab69d4c6eea
e4212c42be11461b9510935577ce96c6c47ed7a3a1db0896f02da399cf033031
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 9194
Origin: https://blaze.com
DNT: 1
Connection: keep-alive
Referer: https://blaze.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: text/plain;charset=UTF-8
content-length: 69
access-control-allow-origin: https://blaze.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 73 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 91cb63f8168b4d97093c5f176debeb49
e947b57e19c6e0c5c9efedb1f03eca3159bc5748
563e33547619c168f6fd0907b4987f9242bc91f42663f30a695be08c6056a231
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 4536
Origin: https://blaze.com
DNT: 1
Connection: keep-alive
Referer: https://blaze.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: text/plain;charset=UTF-8
content-length: 73
access-control-allow-origin: https://blaze.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/images/footer/licenses/license_desktop_first.svg
60 kB URL www.brazino-cdnsrv-cst.org/build/images/footer/licenses/license_desktop_first.svg
IP
ASN #60068 Datacamp Limited
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Hash e66b0da4721e3d615a96948bffafdbce
afa328643552dcc72e8b2109f19d3460d4b8389e
82b41b9262489761b7f54c5ea1862d89f3855c0d6cdcd166fd6cb29fe969f0d7
GET /build/images/footer/licenses/license_desktop_first.svg HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"639a0c2c-28b48"
expires: Thu, 14 Dec 2023 21:01:25 GMT
last-modified: Wed, 14 Dec 2022 17:47:24 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: d9cbbed3-2585-4277-af66-52fea1e2e6ef-3482022
server: CDN77-Turbo
x-77-nzt: AblMCRTgPqj/IpJNAQ
x-77-nzt-ray: af585630e3980396c7cbe76400aa7832
x-accel-expires: @1702587685
x-accel-date: 1671051685
x-cache: HIT
x-age: 21860898
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/mascot-8436.svg?v10263
200 OK 2.3 kB URL GET HTTP/2 www.brazino-cdnsrv-cst.org/files/categories/mascot-8436.svg?v10263
IP
ASN #60068 Datacamp Limited
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subject1107631085.rsc.cdn77.org
FingerprintFC:30:44:F1:AA:FD:BB:46:F5:7C:D2:8B:A5:9E:81:24:08:71:EE:74
ValidityFri, 30 Jun 2023 22:49:32 GMT - Thu, 28 Sep 2023 22:49:31 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1256), with CRLF line terminators
Hash ac34d0e4f80fe2c0ff2ff5aaedce4605
3456a8f61258085bf6886b9cd2527098386c3fb0
7d31a69e36f3724ef818ef35819dff6991eff52f5ac2743eda197f8aa7bc783d
GET /files/categories/mascot-8436.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60ddc58a-cc4"
expires: Thu, 07 Dec 2023 18:16:21 GMT
last-modified: Thu, 01 Jul 2021 13:39:22 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 8c70d291-0344-461d-a35d-9a3fc2c80ec8-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRRotLf/U/NWAQ
x-77-nzt-ray: af585630e3980396c8cbe764dfa46e0a
x-accel-expires: @1701972981
x-accel-date: 1670436981
x-cache: HIT
x-age: 22475603
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/Iron-Dog-Studios-9298.svg?v10263
2.1 kB URL www.brazino-cdnsrv-cst.org/files/categories/Iron-Dog-Studios-9298.svg?v10263
IP
ASN #60068 Datacamp Limited
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1817)
Hash 807969fd44759fa6ea9bd619f2660ec3
53a6c3a2f8cd403709d07174d8a32f53ae0c4f70
8d8f6e76e03fdfaceb2a34833609938af54959440c5789c72f16f4a7f6517e24
GET /files/categories/Iron-Dog-Studios-9298.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60f18314-1632"
expires: Thu, 07 Dec 2023 18:16:19 GMT
last-modified: Fri, 16 Jul 2021 13:01:08 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 2c83e73f-ea3e-4035-8805-4f81410d2e28-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRRoFXD/VfNWAQ
x-77-nzt-ray: af585630e3980396c8cbe764befb420a
x-accel-expires: @1701972979
x-accel-date: 1670436979
x-cache: HIT
x-age: 22475605
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/images/games-default.171c309d.svg
21 kB URL www.brazino-cdnsrv-cst.org/build/images/games-default.171c309d.svg
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 6d46aef006bdd93db2ec39ec6955e15b
00fbe5135bcea5f85db31530bddf85e40c6607b7
eb5e9f938c3620e03b0cc4c7dee25903d63d40a3fc68ced16467cc2b9a2267cf
GET /build/images/games-default.171c309d.svg HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brazino-cdnsrv-cst.org/build/gamesBlock.725f96db.css?v10263
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:42 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"638df9a5-2295"
expires: Wed, 06 Dec 2023 00:51:28 GMT
last-modified: Mon, 05 Dec 2022 14:01:09 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 8ac9ecdc-1a8f-46eb-b1d1-22151d475245-3402022
server: CDN77-Turbo
x-77-nzt: AblMCRRiyYz/tjlZAQ
x-77-nzt-ray: af585630e3980396c6cbe7640229dc0b
x-accel-expires: @1701823888
x-accel-date: 1670287888
x-cache: HIT
x-age: 22624694
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/images/footer/licenses/license_desktop_second.svg
148 kB URL www.brazino-cdnsrv-cst.org/build/images/footer/licenses/license_desktop_second.svg
IP
ASN #60068 Datacamp Limited
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Size 148 kB (148258 bytes)
Hash b2080ea116a87da7459f647cede2c30a
b2f786c5d13d7162e5d24c01ae252760f80431fc
bd7fa680f141b14692ea8e4aec76326c5f6d343df2e7678be61bc0a2194852b1
GET /build/images/footer/licenses/license_desktop_second.svg HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"639a0c2c-67391"
expires: Thu, 14 Dec 2023 21:01:25 GMT
last-modified: Wed, 14 Dec 2022 17:47:24 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 7214411d-15e7-4c91-82f0-bf4ccc77da4f-3482022
server: CDN77-Turbo
x-77-nzt: AblMCRREnQv/IpJNAQ
x-77-nzt-ray: af585630e3980396c7cbe764b0423833
x-accel-expires: @1702587685
x-accel-date: 1671051685
x-cache: HIT
x-age: 21860898
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
platform.20bet.com/api/status
0 B URL platform.20bet.com/api/status
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:44 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb146d996b4eb-OSL
X-Firefox-Spdy: h2
20bet.com/app/8602.3b86eddc01e684c6.js
48 kB URL 20bet.com/app/8602.3b86eddc01e684c6.js
IP
File type Unicode text, UTF-8 text, with very long lines (65455)
Hash 647e9a7083197fee0331fb6887ad1d8f
1877d6c1f768481a5aba3ad00f715497a39a6863
556a84e187deedd4a6cb7ea1fdb3c12fa5c5b46979524f88a833f9a623335875
GET /app/8602.3b86eddc01e684c6.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c29e6b524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aada-25bfa"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:44:42 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/Mancala-Gaming-1878.svg?v10263
2.1 kB URL www.brazino-cdnsrv-cst.org/files/categories/Mancala-Gaming-1878.svg?v10263
IP
ASN #60068 Datacamp Limited
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1691)
Hash 7e55e5894734abe26eaca85369735c59
b4259ee069c119751e631192228cfa92c0259883
b5ece1e32f69877992b7561dc20036ee19a4767393271deb139638b6b5f7846e
GET /files/categories/Mancala-Gaming-1878.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"614c8046-10fd"
expires: Thu, 07 Dec 2023 18:16:21 GMT
last-modified: Thu, 23 Sep 2021 13:25:26 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: dda49f98-aebb-48b8-82a7-8c29b026767d-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRRqVMj/U/NWAQ
x-77-nzt-ray: af585630e3980396c8cbe76466ba640a
x-accel-expires: @1701972981
x-accel-date: 1670436981
x-cache: HIT
x-age: 22475603
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/app/2575.1e3ab8f0982e49ba.css
45 kB URL 20bet.com/app/2575.1e3ab8f0982e49ba.css
IP
File type ASCII text, with very long lines (8322)
Hash 271628f418e9fc8578f1ad89d48f99f2
c112af9c76a00a260203cf66641f3545f9e020cc
0d6c46b13e6508c1f61c60fcb313d9002a77572718fcb669f86d02f114e95731
GET /app/2575.1e3ab8f0982e49ba.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: text/css
cf-ray: 7fbeb13c8aa9b524-OSL
cf-cache-status: HIT
age: 6372
cache-control: public, max-age=14400
etag: W/"64e5aada-430a0"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:44:42 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/6950.4bcedcad761099e4.css
4.3 kB URL 20bet.com/app/6950.4bcedcad761099e4.css
IP
File type ASCII text, with very long lines (1708)
Hash 1b812ea77195581a2a37f390b8a31f48
e40639a652f9925cf591d8eb41911e90703b724b
ccd28544fc2a7443dc5049aac9c77615cbb380be341b5d13010509c470ab03d6
GET /app/6950.4bcedcad761099e4.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: text/css
cf-ray: 7fbeb13c8aa5b524-OSL
cf-cache-status: HIT
age: 4897
cache-control: public, max-age=14400
etag: W/"64e5aafa-11ca"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:45:14 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/8356.649db321bf8dd23f.js
5.6 kB URL 20bet.com/app/8356.649db321bf8dd23f.js
IP
File type Unicode text, UTF-8 text, with very long lines (12040), with no line terminators
Hash 17f0792e3450397de75ca6e727f5c22b
39e2c6bfae1771235277e29d6536f410d954072a
d29dcb87c11930be4f03749dc54955e666642e3720ecb897c3e5cd1a1d1fabf2
GET /app/8356.649db321bf8dd23f.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13bb940b524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aae7-2f09"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:44:55 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.galera.bet/initialResources/tags/desktop?t=1692875326913
23 kB URL www.galera.bet/initialResources/tags/desktop?t=1692875326913
IP
File type JSON data\012- , ASCII text, with very long lines (23025), with no line terminators
Hash 7044535dc33393c950aabf2d73975ada
398451317ea98ec6036a06698d3284b452408105
2b87ca8e68fd45d427abd71d996d8af7edf488d4fd26aa57cf91c7e470a1a677
GET /initialResources/tags/desktop?t=1692875326913 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.galera.bet/cassino
request-id: |1af1b75bbd9643d0a4c4220daae768b0.9989270f67124a8e
traceparent: 00-1af1b75bbd9643d0a4c4220daae768b0-9989270f67124a8e-01
DNT: 1
Connection: keep-alive
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: text/html; charset=UTF-8
cf-ray: 7fbeb12b2b4eb517-OSL
cf-cache-status: HIT
age: 873
cache-control: max-age=3600,max-stale=3600
etag: W/"64e73a3f-59f1"
last-modified: Thu, 24 Aug 2023 11:08:47 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
20bet.com/app/8082.7b55580edab06279.js
8.6 kB URL 20bet.com/app/8082.7b55580edab06279.js
IP
File type ASCII text, with very long lines (12566), with no line terminators
Hash a311299244dc909e8d539620c84f3bf4
4ae67e68b0b02e5958005be50f6dacc875d70fc0
d0fc6f8e9a75c410f20852545acb07554680b45899ec73a575d0fd586ea3d7d4
GET /app/8082.7b55580edab06279.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c3a08b524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aae7-3116"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:44:55 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/Pariplay-1141.svg?v10263
2.5 kB URL www.brazino-cdnsrv-cst.org/files/categories/Pariplay-1141.svg?v10263
IP
ASN #60068 Datacamp Limited
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash eae8cb44b146911cfb7a06ad03ad0d8d
101276ee1e989cacf00ac5f0ef6b311079442ebb
219358d31447fddcabb4779557b1100d0a268c65ac1d8950e6d356fd8f635056
GET /files/categories/Pariplay-1141.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60ddbe76-1ad2"
expires: Thu, 07 Dec 2023 18:16:23 GMT
last-modified: Thu, 01 Jul 2021 13:09:10 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 539ba252-4e70-414c-9b95-1508be196e88-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRQeSe//UfNWAQ
x-77-nzt-ray: af585630e3980396c8cbe7649095680b
x-accel-expires: @1701972983
x-accel-date: 1670436983
x-cache: HIT
x-age: 22475601
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/Ortiz-gaming-5575.svg?v10263
1.4 kB URL www.brazino-cdnsrv-cst.org/files/categories/Ortiz-gaming-5575.svg?v10263
IP
ASN #60068 Datacamp Limited
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2716)
Hash 665668f98201dcb12d61ee80aee952ae
c26570d77e0e395e73309761d18120bcb0edf6eb
c168a941984259fc0163376b1c657bc43165efd3f45d5cb77b8223c47005c246
GET /files/categories/Ortiz-gaming-5575.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60f18437-bda"
expires: Thu, 07 Dec 2023 18:16:23 GMT
last-modified: Fri, 16 Jul 2021 13:05:59 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: eca6b6b5-ea8e-4c0c-8b0e-bee8f3c1096d-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRTjL1H/UfNWAQ
x-77-nzt-ray: af585630e3980396c8cbe7647774510b
x-accel-expires: @1701972983
x-accel-date: 1670436983
x-cache: HIT
x-age: 22475601
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Noto+Sans+JP:wght@900&display=swap
31 kB URL fonts.googleapis.com/css2?family=Noto+Sans+JP:wght@900&display=swap
IP
File type ASCII text, with very long lines (1981)
Hash 7c3e14afc6265a113de33921cc2c9c8f
04c10e82fa8b1f368fe8866660e98aaf718c48ac
ee9dce0ecb884762231134269e17c55b62fe054f6dd66688a68f0f614986a444
GET /css2?family=Noto+Sans+JP:wght@900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Aug 2023 21:29:39 GMT
date: Thu, 24 Aug 2023 21:29:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
bc.game/assets/fp.min.2102a136.js
73 kB URL bc.game/assets/fp.min.2102a136.js
IP
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 9de3c76658beededa159a01498c6353c
94dc4b133e88421692c7115b8be766af066719b1
2102a1367596149dbfca660b8f823c48c87e4956f938ef8f7d6e15e6c9496c9b
GET /assets/fp.min.2102a136.js HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: application/javascript
last-modified: Thu, 24 Aug 2023 02:46:42 GMT
vary: Accept-Encoding
etag: W/"64e6c492-425c7"
cache-control: max-age=3600
cf-cache-status: HIT
age: 3518
server: cloudflare
cf-ray: 7fbeb12d5b4db529-OSL
content-encoding: br
X-Firefox-Spdy: h2
s1.kwai.net/kos/s101/nlav11187/pixel/events.js?sdkid=515717319952965655&lib=kwaiq
1.5 kB URL s1.kwai.net/kos/s101/nlav11187/pixel/events.js?sdkid=515717319952965655&lib=kwaiq
IP
File type ASCII text, with very long lines (3579)
Hash 55aadca1332a79124caf9de8790c9235
8682288d711bbaa5df9438ce993265c483245294
d03e97adb6bce35046aefb74dfee419c98246a9556d12e0f310c5c53f088e589
GET /kos/s101/nlav11187/pixel/events.js?sdkid=515717319952965655&lib=kwaiq HTTP/1.1
Host: s1.kwai.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Wed, 12 Jul 2023 11:18:55 GMT
Content-Encoding: gzip
Etag: "55aadca1332a79124caf9de8790c9235"
Content-Type: application/javascript
Date: Mon, 21 Aug 2023 06:52:52 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 12156884271638462230
x-cos-request-id: NjRlMzA5YzRfOGFlZjc4MGJfMWUyOTJfMTE4NjhhOA==
Content-Length: 1500
Accept-Ranges: bytes
X-NWS-LOG-UUID: 15644111377451777112
Connection: keep-alive
X-Cache-Lookup: Cache Hit
x-ks-client-ip: 91.90.42.154
X-Ks-Request-ID: 15644111377451777112
X-Ks-Cache: Hit from 43.152.140.143
kwaisign: NULL
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: x-ks-request-id,x-ks-client-ip,Content-Length
Cache-Control: max-age=2592000
www.brazino-cdnsrv-cst.org/files/categories/Fugaso-1572.svg?v10263
525 B URL www.brazino-cdnsrv-cst.org/files/categories/Fugaso-1572.svg?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash f58d0c75d21634cbb6b5204d9d54d225
9c7b9041f72f929373b4ba52735b756ca314f42d
bd159f709edbed859a0eab16370e5120d8aece922f860fc304c0138129d9d743
GET /files/categories/Fugaso-1572.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60ddc5ea-351"
expires: Thu, 07 Dec 2023 18:16:19 GMT
last-modified: Thu, 01 Jul 2021 13:40:58 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 2b160c5d-74fe-432f-be51-8f40e944a34e-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRSWrtn/VfNWAQ
x-77-nzt-ray: af585630e3980396c8cbe764e35b9009
x-accel-expires: @1701972979
x-accel-date: 1670436979
x-cache: HIT
x-age: 22475605
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/7476.16a47741.js?v10263
28 kB URL www.brazino-cdnsrv-cst.org/build/7476.16a47741.js?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 3024222ef5c2806700306bc1afa63d95
ee3a12c463eb9e1cda84b2c8a06393da1c66c99a
18d7862d324f338c1a7b7dd190c6cc5d0d3c34d627cd424cdeb5362bcadf97ea
GET /build/7476.16a47741.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"637e4940-1911"
expires: Sat, 25 Nov 2023 15:57:07 GMT
last-modified: Wed, 23 Nov 2022 16:24:32 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 857dc280-994d-4068-922f-6fd186d34eaa-3292022
server: CDN77-Turbo
x-77-nzt: AblMCRQ298r/8eVmAQ
x-77-nzt-ray: af585630e3980396c5cbe76487407500
x-accel-expires: @1700927827
x-accel-date: 1669391827
x-cache: HIT
x-age: 23520753
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/flags/United_Kingdom-01-1317.svg?v10263
3.0 kB URL www.brazino-cdnsrv-cst.org/files/flags/United_Kingdom-01-1317.svg?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash d08b50f719117f2dc95740358507ffd0
33f5f369cb3752b4ff24eb2e38d5565eea27defd
a784a391b25124fb0f86c493442de73ad8c64dbd9f1ba692aea18d998cf5ea2a
GET /files/flags/United_Kingdom-01-1317.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6006bbc7-548"
expires: Tue, 21 Nov 2023 13:04:44 GMT
last-modified: Tue, 19 Jan 2021 11:00:23 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: d73574d6-b7f7-4760-bdee-9c80e6b66173-3252022
server: CDN77-Turbo
x-77-nzt: AblMCRQSGbn/W1RsAQ
x-77-nzt-ray: af585630e3980396c7cbe76414a1fc34
x-accel-expires: @1700571884
x-accel-date: 1669035884
x-cache: HIT
x-age: 23876699
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/Igrosoft-221.svg?v10263
1.2 kB URL www.brazino-cdnsrv-cst.org/files/categories/Igrosoft-221.svg?v10263
IP
ASN #60068 Datacamp Limited
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1072)
Hash 100b6a48b8184b753b95ba2b6d79315f
dd5da0f566fbe8dc63dd7eb1476d28e299aded93
53365df8b36a6c55a21663c861a9185b29e7f529c3f72fdef733b1ef8daf6a8a
GET /files/categories/Igrosoft-221.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6128e505-b3d"
expires: Thu, 07 Dec 2023 18:16:19 GMT
last-modified: Fri, 27 Aug 2021 13:13:41 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: ef46fb86-44ce-4183-b3b9-9de08a74243a-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRT5YRP/VfNWAQ
x-77-nzt-ray: af585630e3980396c8cbe764692f350a
x-accel-expires: @1701972979
x-accel-date: 1670436979
x-cache: HIT
x-age: 22475605
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
bwapipub.com/recaptcha-key/v3
2.4 kB URL bwapipub.com/recaptcha-key/v3
IP
File type JSON data\012- , ASCII text, with very long lines (2299)
Hash dc57972e555274f3ebfc8e98f5aadd67
3a21ee40efe206c407147063588eba96eb662525
b6e3b176502a94e2e40a4e6a3fd42c79f9c55ac2beffa3afcfdb2a30761dea2d
GET /recaptcha-key/v3 HTTP/1.1
Host: bwapipub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bw-prm.com
DNT: 1
Connection: keep-alive
Referer: https://bw-prm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
surrogate-control: no-store
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
expires: 0
etag: W/"59-rpR4rHRM/tFkk5Kv7SgHcJV+mfU"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/habanero-6832.svg?v10263
1.1 kB URL www.brazino-cdnsrv-cst.org/files/categories/habanero-6832.svg?v10263
IP
ASN #60068 Datacamp Limited
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 5f78c12f6fdfd62b0203b58c2e7c7304
79458657d76b6c857b667ad950378e498bdb267d
eb83cadb74eca1bd5ce8ac8ff7799429cf3a26da16f586611f2a7ee9a07405dc
GET /files/categories/habanero-6832.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60ddb954-e12"
expires: Fri, 08 Dec 2023 01:38:14 GMT
last-modified: Thu, 01 Jul 2021 12:47:16 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: b3441ac2-00db-4434-b6cc-9eaac2291e49-3422022
server: CDN77-Turbo
x-77-nzt: AblMCRQJq3z/wotWAQ
x-77-nzt-ray: af585630e3980396c8cbe7649352200a
x-accel-expires: @1701999494
x-accel-date: 1670463494
x-cache: HIT
x-age: 22449090
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/78993edcfdea7b0b09182ca5c18218e9.svg?v10263
348 B URL www.brazino-cdnsrv-cst.org/files/categories/78993edcfdea7b0b09182ca5c18218e9.svg?v10263
IP
ASN #60068 Datacamp Limited
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash cb24aea734cc0e60b104a3beba408a70
2f3b0943223b3078899df6181debc9c63918f47e
e8d7255e4eb712f0ba077b8467406363f431599f26704f2199c2ff5506397879
GET /files/categories/78993edcfdea7b0b09182ca5c18218e9.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"63877b8f-281"
expires: Thu, 07 Dec 2023 18:16:19 GMT
last-modified: Wed, 30 Nov 2022 15:49:35 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: d58f6e74-44ae-44fa-a806-6601b4d3ea37-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRQIJdL/VfNWAQ
x-77-nzt-ray: af585630e3980396c8cbe76443912b0a
x-accel-expires: @1701972979
x-accel-date: 1670436979
x-cache: HIT
x-age: 22475605
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/vueSearchFormBlock.9b9f4a44.js?v10263
8.5 kB URL www.brazino-cdnsrv-cst.org/build/vueSearchFormBlock.9b9f4a44.js?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 94f7d3d2b42503b452a57bd9bde608b6
3295791db33c5a961716f0df9b9d9ce4a3449879
369d346a353fcc6fbe3435d050137989f4080041e756625e17a2d3c64a546884
GET /build/vueSearchFormBlock.9b9f4a44.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:41 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6400af0e-1bb5"
expires: Fri, 01 Mar 2024 14:16:37 GMT
last-modified: Thu, 02 Mar 2023 14:13:34 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: f7d7c681-eafd-4ed6-9a30-a2c59187dc6d-612023
server: CDN77-Turbo
x-77-nzt: AblMCRSA5tX/ABznAA
x-77-nzt-ray: af585630e3980396c5cbe7642ab47f00
x-accel-expires: @1709302597
x-accel-date: 1677766597
x-cache: HIT
x-age: 15145984
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/Gamevy-7480.svg?v10263
446 B URL www.brazino-cdnsrv-cst.org/files/categories/Gamevy-7480.svg?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 694792a74a71d8b77245ccbb72bbfe1e
ed4ac64fc501cf025bf714cd055f6b005bb5baa8
adad7ad93ddf2a7f818b7ce6dbf40a26a202a59d06514d08e84ce5493064bb2f
GET /files/categories/Gamevy-7480.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60ddbe1b-25f"
expires: Thu, 07 Dec 2023 18:16:19 GMT
last-modified: Thu, 01 Jul 2021 13:07:39 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 2ce65357-956a-45a8-9413-a2da3e7f8ae1-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRQFRdr/VfNWAQ
x-77-nzt-ray: af585630e3980396c8cbe7643529c509
x-accel-expires: @1701972979
x-accel-date: 1670436979
x-cache: HIT
x-age: 22475605
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
platform.20bet.com/api/data/get-currencies
200 OK 1.6 kB URL GET HTTP/2 platform.20bet.com/api/data/get-currencies
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (11262), with no line terminators
Hash 8c9cd46285319602b95be7447a2fd821
302a8c4859932fbccbba1da2cb2587b7305aa3eb
e9feefea0c7d0f8d7921c739b3196417c73903067109a016f87a87e7ad96f4c9
GET /api/data/get-currencies HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb147d873b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/polyfills.49cebe7e588763ab.js
300 kB URL 20bet.com/app/polyfills.49cebe7e588763ab.js
IP
File type Unicode text, UTF-8 text, with very long lines (46565), with NEL line terminators
Size 300 kB (300423 bytes)
Hash d65591907c7eb643ce1ac23ceccc577d
3623067acc6f86bb44a9cb1a5eebbd1f9e7f9552
f1b26b6c7f406ada05855d623ac738fa936b142a0d58ce01723d772d3e296555
GET /app/polyfills.49cebe7e588763ab.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:42 GMT
content-type: application/javascript
cf-ray: 7fbeb1396ea3b524-OSL
cf-cache-status: HIT
age: 849
cache-control: public, max-age=14400
etag: W/"64e5aafa-248be"
expires: Fri, 25 Aug 2023 01:29:42 GMT
last-modified: Wed, 23 Aug 2023 06:45:14 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/Rabcat-5362.svg?v10263
1.2 kB URL www.brazino-cdnsrv-cst.org/files/categories/Rabcat-5362.svg?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash a4585c511d1d703b0f920439c8f93b1a
b18fd556a0796acdd4946d84d48b027bf6c83a24
5ba13ccd9ce9e3a394450b3b802b885d321f7ec902c5d8136293a307f44a5230
GET /files/categories/Rabcat-5362.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60ddbdb1-435"
expires: Thu, 07 Dec 2023 18:16:23 GMT
last-modified: Thu, 01 Jul 2021 13:05:53 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 5860f188-3fe8-4bcf-98a3-cf50bb6206cb-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRSvbvv/UfNWAQ
x-77-nzt-ray: af585630e3980396c8cbe7641c532a0c
x-accel-expires: @1701972983
x-accel-date: 1670436983
x-cache: HIT
x-age: 22475601
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/app/4764.e62afe874cbf342e.js
57 kB URL 20bet.com/app/4764.e62afe874cbf342e.js
IP
File type ASCII text, with very long lines (65457)
Hash 68907ac129de8ab73ceadab52367c364
827bd0e44dfbb60036eb0127c25b022d9c97ca91
625a5173934f52d78137a2e39ae847d7e4408e0a060240c8e0e25912a0af5973
GET /app/4764.e62afe874cbf342e.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13bf98ab524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aafa-beb9d"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:45:14 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/Triple-Edge-Studios-3639.svg?v10263
1.6 kB URL www.brazino-cdnsrv-cst.org/files/categories/Triple-Edge-Studios-3639.svg?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 3c6fb1366e4e6632806673acaaea3022
b8c812e78bd7d2ef7138d3e7072b6c99715531e1
c49c977d1f93a601c63c854ce1ad609e737116dbda0d7a2fef28bfb360f4b02f
GET /files/categories/Triple-Edge-Studios-3639.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60f181b9-9df"
expires: Thu, 07 Dec 2023 18:16:27 GMT
last-modified: Fri, 16 Jul 2021 12:55:21 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 9edfc1ab-b759-46c5-a7cb-56e29c294b41-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRQDAsf/TfNWAQ
x-77-nzt-ray: af585630e3980396c8cbe764ca71f00c
x-accel-expires: @1701972987
x-accel-date: 1670436987
x-cache: HIT
x-age: 22475597
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/vuePlayersOnlineBlock.36b134f6.css?v10263
46 kB URL www.brazino-cdnsrv-cst.org/build/vuePlayersOnlineBlock.36b134f6.css?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 52c759b0eac959cff4752a5c5f8b0da7
5d2871fadf7f3539c5ade4e1e2ee46c6ce121614
e35cec146888525ed177bca94530517cf453299523b5fadc53c122ef09774272
GET /build/vuePlayersOnlineBlock.36b134f6.css?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"64c10040-680"
expires: Thu, 25 Jul 2024 11:36:09 GMT
last-modified: Wed, 26 Jul 2023 11:15:12 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 249c2d3d-a10b-4cb7-b4e5-0301effc5813-2072023
server: CDN77-Turbo
x-77-nzt: AblMCRRvaAL/m8YmAA
x-77-nzt-ray: af585630e3980396c5cbe76416c51300
x-accel-expires: @1721907369
x-accel-date: 1690371369
x-cache: HIT
x-age: 2541211
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
r.uuidksinc.net/match/1037384/
74 B URL r.uuidksinc.net/match/1037384/
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET /match/1037384/ HTTP/1.1
Host: r.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.2
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: image/png
content-length: 74
set-cookie: jcsuuid=xORjnxEwLNLYfltiyUYs; expires=Fri, 23 Aug 2024 21:29:45 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
platform.20bet.com/api/market-descriptions/get-all-outcomes/pt
13 kB URL platform.20bet.com/api/market-descriptions/get-all-outcomes/pt
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 6e890e46f8b7b9f2a9e39f0b16c41233
2df749e1ec5c076ecd6aaaeebd3f95936d973d8d
f2845b5fede44554227c968b7b3fd805204022d8c3e1cdb527691704f33a5544
GET /api/market-descriptions/get-all-outcomes/pt HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb1475fc9b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/jftw-1556.svg?v10263
200 OK 1.2 kB URL GET HTTP/2 www.brazino-cdnsrv-cst.org/files/categories/jftw-1556.svg?v10263
IP
ASN #60068 Datacamp Limited
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subject1107631085.rsc.cdn77.org
FingerprintFC:30:44:F1:AA:FD:BB:46:F5:7C:D2:8B:A5:9E:81:24:08:71:EE:74
ValidityFri, 30 Jun 2023 22:49:32 GMT - Thu, 28 Sep 2023 22:49:31 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2855)
Hash 8f12d606e82c64bb556ad9edc6e20816
e75666fd16bfccb462a7309a023569899ab696b8
16725f2c4b4b51976ff0644c624e0c6bfe1dda9cafc0eb6d89ddb2038555f75a
GET /files/categories/jftw-1556.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60e31053-c0d"
expires: Thu, 07 Dec 2023 11:49:30 GMT
last-modified: Mon, 05 Jul 2021 13:59:47 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: c407889f-56b7-49e3-b794-f102dece19c4-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRSRITb//k1XAQ
x-77-nzt-ray: af585630e3980396c8cbe7647e164e0a
x-accel-expires: @1701949770
x-accel-date: 1670413770
x-cache: HIT
x-age: 22498814
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
dc.services.visualstudio.com/v2/track
0 B URL dc.services.visualstudio.com/v2/track
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v2/track HTTP/1.1
Host: dc.services.visualstudio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,sdk-context
Referer: https://www.galera.bet/
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: POST
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Thu, 24 Aug 2023 21:29:44 GMT
content-length: 0
X-Firefox-Spdy: h2
api.mythad.com/rest/n/adintl/gray/getGrayInfo
200 OK 0 B URL OPTIONS HTTP/2 api.mythad.com/rest/n/adintl/gray/getGrayInfo
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.mythad.com
Fingerprint23:A6:63:24:92:FB:76:8E:B7:39:EC:C7:9B:DA:30:36:7F:57:93:AC
ValidityThu, 09 Mar 2023 12:25:09 GMT - Tue, 09 Apr 2024 12:25:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /rest/n/adintl/gray/getGrayInfo HTTP/1.1
Host: api.mythad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://brazino777.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://brazino777.com
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-allow-credentials: true
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
dc.services.visualstudio.com/v2/track
736 B URL dc.services.visualstudio.com/v2/track
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with very long lines (736), with no line terminators
Hash ab1610469845b2c7097a0fc04dad601d
50b0db73beb231f4c2c507bdd5a4296a47377478
369547819c218e9c6704e1237178c263d777d8c2eb0e94cbfedcccac37df3d2e
POST /v2/track HTTP/1.1
Host: dc.services.visualstudio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Sdk-Context: appId
Content-Length: 8440
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
content-type: application/json; charset=utf-8
x-ms-session-id: 592CFB21-8D16-4C1B-85AB-D5076432DA2A
strict-transport-security: max-age=31536000
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Cache-Control, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Thu, 24 Aug 2023 21:29:44 GMT
content-length: 736
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js
200 OK 186 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g&co=aHR0cHM6Ly8yMGJldC5jb206NDQz&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&cb=7741dnamr5un
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT
File type ASCII text, with very long lines (679)
Size 186 kB (185519 bytes)
Hash e346196cabbe1100839406d8f02a31c3
24f54bd82fdab0dc9bc5c6a71e33eefc02286aad
9dab174b3b1ef754d71d613162c1e1f5b88f9f317da8d1f14c146be9c6d9fd35
GET /recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 185519
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Aug 2023 17:27:03 GMT
expires: Thu, 22 Aug 2024 17:27:03 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 17 Aug 2023 18:11:22 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 100962
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.brazino-cdnsrv-cst.org/build/vueSliderBlock.649f7808.css?v10263
64 kB URL www.brazino-cdnsrv-cst.org/build/vueSliderBlock.649f7808.css?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 8f960a015231ddcf5311cf25921bc8a7
aeb94625b6961ef7831ddc7b6b7b820f8cc65d95
c9758c139613ab035f3bb34f9a27453e3cf367e836a8f8130f5efebba06c67fd
GET /build/vueSliderBlock.649f7808.css?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"64c10040-5b85"
expires: Thu, 25 Jul 2024 11:36:09 GMT
last-modified: Wed, 26 Jul 2023 11:15:12 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 78894c8c-65f3-44cd-aee9-58c1dab637ab-2072023
server: CDN77-Turbo
x-77-nzt: AblMCRQnCwL/m8YmAA
x-77-nzt-ray: af585630e3980396c4cbe764fd98ef3a
x-accel-expires: @1721907369
x-accel-date: 1690371369
x-cache: HIT
x-age: 2541211
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Asap:400,500,700
555 B URL fonts.googleapis.com/css?family=Asap:400,500,700
IP
File type gzip compressed data, max compression\012- data
Hash 363c3dd93b73e3031e178532c1fbe930
9001680eb7b19f46cd94c894ff8434723c7b4421
8a2127d1de2fda919b4798dc78bf1100f9a87a3fcc56a1b3461cc1c995fa0a38
GET /css?family=Asap:400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://widgets.galera.bet/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Aug 2023 21:29:45 GMT
date: Thu, 24 Aug 2023 21:29:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
20bet.com/custom-assets/logo.webp
14 kB URL 20bet.com/custom-assets/logo.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 38810a32194964dbdbf543e2a93e6a8c
e6c250ae7a2dd04c3473b6c03880c59960cabd74
7e7b70fbac7c9bd957367ddf9e51c883b7705307315a74899e94e04b0f1d6cd3
GET /custom-assets/logo.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: image/webp
content-length: 13882
cf-ray: 7fbeb14e2fd7b524-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 2413
cache-control: public, max-age=14400
expires: Fri, 25 Aug 2023 01:29:45 GMT
last-modified: Thu, 24 Aug 2023 17:39:24 GMT
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/XPro-Gaming-2923.svg?v10263
20 kB URL www.brazino-cdnsrv-cst.org/files/categories/XPro-Gaming-2923.svg?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 47961536d58171d324479d70d6879463
e9bda3b076ec2b152d2e2c6af24c7031f5237ad6
17917fd4db1e69174f9f0fc4fb3de61b0fc15c4c6bbcfac4d726dd6d299f24d0
GET /files/categories/XPro-Gaming-2923.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6128e486-2722"
expires: Thu, 07 Dec 2023 18:16:28 GMT
last-modified: Fri, 27 Aug 2021 13:11:34 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: f3839ad3-4950-4daa-93b5-0d6f0924d598-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRRaBLD/TPNWAQ
x-77-nzt-ray: af585630e3980396c8cbe76403ba3c0d
x-accel-expires: @1701972988
x-accel-date: 1670436988
x-cache: HIT
x-age: 22475596
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/f0a36b1247b3eb9f6c458438a7fbfb1d.svg?v10263
16 kB URL www.brazino-cdnsrv-cst.org/files/categories/f0a36b1247b3eb9f6c458438a7fbfb1d.svg?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash d7a29143e251fccbfd68dd693d53e39a
fac1f8ffd6424a8cd54e5777a662c7d2aba63a60
a5e9a119038ff726416b1e9776f922cfda568b85d3d8027f5326802976eb13ab
GET /files/categories/f0a36b1247b3eb9f6c458438a7fbfb1d.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6422bf2a-218"
expires: Wed, 27 Mar 2024 13:38:30 GMT
last-modified: Tue, 28 Mar 2023 10:19:22 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 262f77c9-e1de-4f70-afe2-3d05c08f62ff-872023
server: CDN77-Turbo
x-77-nzt: AblMCRQlrjH/8t3EAA
x-77-nzt-ray: af585630e3980396c8cbe7648756290d
x-accel-expires: @1711546710
x-accel-date: 1680010710
x-cache: HIT
x-age: 12901874
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/Zillion-6237.svg?v10263
17 kB URL www.brazino-cdnsrv-cst.org/files/categories/Zillion-6237.svg?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 1c9b9c89e8c4d35087b816ea6d3310a5
ddc1a78392b5c7b1cdc1f9ea9d2b57bc63af5f35
77e974b35956e94ebc3f014b6f5f58c8ccfcab070a2d1cc8529f6c27d35c7689
GET /files/categories/Zillion-6237.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"61533150-5c4"
expires: Thu, 07 Dec 2023 18:16:28 GMT
last-modified: Tue, 28 Sep 2021 15:14:24 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: c5a64d89-00a2-4f3c-be8b-0be6d7b87634-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRQ9Ouz/TPNWAQ
x-77-nzt-ray: af585630e3980396c8cbe764f7c27f0d
x-accel-expires: @1701972988
x-accel-date: 1670436988
x-cache: HIT
x-age: 22475596
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/vueLocaleBlock.025bd48e.js?v10263
46 kB URL www.brazino-cdnsrv-cst.org/build/vueLocaleBlock.025bd48e.js?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 1d4a7f1c0a36df21b7d712c91be82d8c
015938566a8eb54f55248d6cc49b203164104a99
1e7e9de594cff4f6dcc527d6173d028db7818c11982afe94d603f4f31079526b
GET /build/vueLocaleBlock.025bd48e.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"64c10040-1c8d"
expires: Thu, 25 Jul 2024 11:36:09 GMT
last-modified: Wed, 26 Jul 2023 11:15:12 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 4a616580-8bdf-42e9-a619-de93cbc3c52b-2072023
server: CDN77-Turbo
x-77-nzt: AblMCRTPcT//m8YmAA
x-77-nzt-ray: af585630e3980396c4cbe7647e4ed13a
x-accel-expires: @1721907369
x-accel-date: 1690371369
x-cache: HIT
x-age: 2541211
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/app/5980.c8fa036b79f46306.js
25 kB URL 20bet.com/app/5980.c8fa036b79f46306.js
IP
File type ASCII text, with very long lines (21850)
Hash 279624eb3043e4022bc29c5989a8c21e
17002584b1a43a5fc32dd9fe6012520beb67adf1
1441a93e3730767812caed702d78916a9546c661f3c4e673eeb204cacd071bf2
GET /app/5980.c8fa036b79f46306.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c099db524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aada-55a9"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:44:42 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.galera.bet/library/Game%20Icons/compressed/220323/fbrol_fireblazerol.webp?siteid=2
35 kB URL www.galera.bet/library/Game%20Icons/compressed/220323/fbrol_fireblazerol.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash de2e2007495f7c2ab16f17e986d52e4d
f814b1f62800c3cc00180f3361c3b685a2560639
95199eec24d386bb3ec0c019e335bd4115848400ef7936f251211be97a78bdff
GET /library/Game%20Icons/compressed/220323/fbrol_fireblazerol.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 34890
cf-ray: 7fbeb14eaa70b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 873
cache-control: max-age=3600,max-stale=3600
etag: "641aae45-884a"
last-modified: Wed, 22 Mar 2023 07:29:09 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Playtech/blackjack.webp
20 kB URL www.galera.bet/library/Game%20Icons/Playtech/blackjack.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 51dc4e13a8a272704b599db5c9bf9c4c
895fe621a58f4cdfe5c4eae369f338350eee98b4
a72e1123848477fd93d564fe6193dc028996a0254fecd6e3c9b9fdfa62d43c75
GET /library/Game%20Icons/Playtech/blackjack.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 20190
cf-ray: 7fbeb14eaa79b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 873
cache-control: max-age=3600,max-stale=3600
etag: "64aea289-4ede"
last-modified: Wed, 12 Jul 2023 12:54:33 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.brazino-cdnsrv-cst.org/build/categoryBlock.6098f315.js?v10263
126 kB URL www.brazino-cdnsrv-cst.org/build/categoryBlock.6098f315.js?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Size 126 kB (126171 bytes)
Hash 8309529596ef78ff551a1c2d44a320d4
9c83264d6d9fab60dae29e848a68e5af9d6a40ac
b5296f9c0196c9f33a7a3e171f0b380244bbe3f496aa38a55d5dfac79d217cd8
GET /build/categoryBlock.6098f315.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6399e1a5-8e1"
expires: Thu, 14 Dec 2023 14:48:46 GMT
last-modified: Wed, 14 Dec 2022 14:45:57 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: ff7ce03d-3b83-45b0-a04f-b545156b6905-3482022
server: CDN77-Turbo
x-77-nzt: AblMCRQBimz/dulNAQ
x-77-nzt-ray: af585630e3980396c4cbe7644272e73a
x-accel-expires: @1702565326
x-accel-date: 1671029326
x-cache: HIT
x-age: 21883254
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.galera.bet/library/Game%20Icons/Playtech/roulette.webp
26 kB URL www.galera.bet/library/Game%20Icons/Playtech/roulette.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash c38c74d3344adacd3fe4c9d33588495c
e4cea287295f50d3ca7754dbb059e978b761aa19
db9d2eb0ab54028d3ac343ebdbf13c9262b1b032862e89a3cd8f20508ae0140b
GET /library/Game%20Icons/Playtech/roulette.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 25864
cf-ray: 7fbeb14eaa75b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 873
cache-control: max-age=3600,max-stale=3600
etag: "64aea285-6508"
last-modified: Wed, 12 Jul 2023 12:54:29 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/casino.23bf4d90.svg
102 kB URL cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/casino.23bf4d90.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1491)
Size 102 kB (102044 bytes)
Hash 009cee1bbe89a99833a31156cb4bed43
d22aee6cfb3c7d406efa9e6115026d7cd84843e4
134d4d1b7ca247febe749074db6693789946a43bfe760518ec679ed74383bf15
GET /landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/casino.23bf4d90.svg HTTP/1.1
Host: cdn-service.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/css/app.6b7aa819.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000
etag: W/"86f-0irubPs8fUBu+p5hFQJtfNhIQ+Q"
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
expires: Fri, 23 Aug 2024 21:29:39 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UvC6frTAu7QhG9maqmeK5A71kJauByu17hXMtpFsUF3FQF9RXOVviCTwQ7WDeMVmjBbtuM6bLMoYhcwU%2Bb2MSBItMnlCZTKCeyiw%2FFvDayRoLWOFhwIawXFzD%2FYHcEsG2KY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7fbeb1239f031bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Live%20Casino/bbwl_bigbadwolf.png
365 kB URL www.galera.bet/library/Game%20Icons/Live%20Casino/bbwl_bigbadwolf.png
IP
File type PNG image data, 500 x 500, 8-bit/color RGB, non-interlaced\012- data
Size 365 kB (364681 bytes)
Hash 73f219049ae5ff597cc21368ec1b50f3
a2478d9b923d6400ed9cd8959c4b2a3565b0d7d6
d027ccaa7d332e1af525c5d02f86aa5df7d5eb055f202144c43100defe9b67de
GET /library/Game%20Icons/Live%20Casino/bbwl_bigbadwolf.png HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/png
content-length: 364681
cf-ray: 7fbeb14eaa7eb517-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 873
cache-control: max-age=3600,max-stale=3600
etag: "64cbb462-59089"
last-modified: Thu, 03 Aug 2023 14:06:26 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_jokersjewels.webp?siteid=2
32 kB URL www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_jokersjewels.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3611e913d70ff36b8ac3b1faba801ece
d72a6aebbf52ac53b8a1b31aa6e64b7881ac1cfd
e33e46252df792bb1c4fb72ed58a3af2e9f15229cb9510550d678fee03da2f90
GET /library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_jokersjewels.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 32480
cf-ray: 7fbeb14e9a4cb517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "63ecf28e-7ee0"
last-modified: Wed, 15 Feb 2023 14:56:14 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_jokersjewels.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Pragmatic/*,https://www.galera.bet/library/Game%2520Icons/Pragmatic/drops-wins/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.brazino-cdnsrv-cst.org/build/vueSliderBlock.e47028c1.js?v10263
200 OK 48 kB URL GET HTTP/2 www.brazino-cdnsrv-cst.org/build/vueSliderBlock.e47028c1.js?v10263
IP
ASN #60068 Datacamp Limited
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subject1107631085.rsc.cdn77.org
FingerprintFC:30:44:F1:AA:FD:BB:46:F5:7C:D2:8B:A5:9E:81:24:08:71:EE:74
ValidityFri, 30 Jun 2023 22:49:32 GMT - Thu, 28 Sep 2023 22:49:31 GMT
File type gzip compressed data, from Unix\012- data
Hash da9555bfd0ebd31b5c8a81a04c4faa33
7d74d5693011cc6e9914ef9550327cab104a617e
508c692b5e224f528774703055f2d130da16b13e6f535f28d5dd6ae698b3d0cd
GET /build/vueSliderBlock.e47028c1.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"64c10040-38a6"
expires: Thu, 25 Jul 2024 11:36:09 GMT
last-modified: Wed, 26 Jul 2023 11:15:12 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: d806d713-6181-499d-8ef2-5584490928fd-2072023
server: CDN77-Turbo
x-77-nzt: AblMCRSkHw3/m8YmAA
x-77-nzt-ray: af585630e3980396c4cbe76492c82b3b
x-accel-expires: @1721907369
x-accel-date: 1690371369
x-cache: HIT
x-age: 2541211
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_sweetbonanza.webp?siteid=2
43 kB URL www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_sweetbonanza.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 528bb6d163e49edfe1cb3d51e6069782
1a2d1db98e3b0ea1c2ca07d7fbbd42e8410450b5
1fef510201ea0bf51eb22024dc9953dd195ac2be9b4fcf288820a75c92e263ed
GET /library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_sweetbonanza.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 42684
cf-ray: 7fbeb14eaa88b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "63ecf28f-a6bc"
last-modified: Wed, 15 Feb 2023 14:56:15 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_sweetbonanza.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Pragmatic/*,https://www.galera.bet/library/Game%2520Icons/Pragmatic/drops-wins/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Spinomenal/pop_6553c966_spl.webp
200 OK 82 kB URL GET HTTP/3 www.galera.bet/library/Game%20Icons/Spinomenal/pop_6553c966_spl.webp
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerDigiCert Inc
Subject*.galera.bet
FingerprintCB:56:2F:06:77:6A:D9:92:F5:D0:B9:2B:DA:94:08:5D:5C:04:4B:82
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash ce99e213a01c4f9d7ad6528f784e5552
b752cb68408ab59ef9b6cb97c39a7df54b4e6899
baacd4f04a0110a63b9229d84a9342bfd1ababf990ab2f6be7ebc3675ef82429
GET /library/Game%20Icons/Spinomenal/pop_6553c966_spl.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 81734
cf-ray: 7fbeb14e9a65b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "64d398ae-13f46"
last-modified: Wed, 09 Aug 2023 13:46:22 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Spinomenal/pop_6553c966_spl.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Spinomenal/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/220323/live/rol_loungerol.webp?siteid=2
18 kB URL www.galera.bet/library/Game%20Icons/compressed/220323/live/rol_loungerol.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bc2f6f8e74634a3a8710811a6edd6aa4
a71b29c405e3a5fcfec8310bdc20845b127ffeb1
08171caa510b4e8861a357134933f546b1bec93757c0aa5204bcc6e3ec3a9951
GET /library/Game%20Icons/compressed/220323/live/rol_loungerol.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 17864
cf-ray: 7fbeb14eaa7db517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "641ad0e5-45c8"
last-modified: Wed, 22 Mar 2023 09:56:53 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/220323/live/rol_loungerol.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*,https://www.galera.bet/library/Game%2520Icons/compressed/220323/*,https://www.galera.bet/library/Game%2520Icons/compressed/220323/live/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_mustanggold.webp?siteid=2
39 kB URL www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_mustanggold.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5a2d40a14fa5ce6eebfbf53b9ec3fb3e
eca7c9556e84f844e5bcc9eed9968f936fba4b5c
60ab38e0ccc9a266f59102fbf541736bdb274dcc891257e63a94669e5061c844
GET /library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_mustanggold.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 39260
cf-ray: 7fbeb14eaa85b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "63ecf28e-995c"
last-modified: Wed, 15 Feb 2023 14:56:14 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_mustanggold.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Pragmatic/*,https://www.galera.bet/library/Game%2520Icons/Pragmatic/drops-wins/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Drops%20%26%20Wins/pop_vs25scarabqn_prg.webp?siteid=2
84 kB URL www.galera.bet/library/Game%20Icons/Drops%20%26%20Wins/pop_vs25scarabqn_prg.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 22407f7323b9aae2824b727824a0892f
43c10a1ffe99ed641446194b59d4a2533acb468c
25574940f59e5d45d127b644ce2a92d584b977efa0f87daa42c9db9342e1ccfe
GET /library/Game%20Icons/Drops%20%26%20Wins/pop_vs25scarabqn_prg.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 84092
cf-ray: 7fbeb14eaa90b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "63c8f585-1487c"
last-modified: Thu, 19 Jan 2023 07:47:17 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Drops%20&%20Wins/pop_vs25scarabqn_prg.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Drops%2520%26%2520Wins/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Pragmatic/pop_054dddd4_prg.webp?siteid=2
72 kB URL www.galera.bet/library/Game%20Icons/Pragmatic/pop_054dddd4_prg.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash f439bc6e15c889a5844c4def676e1650
46a9aefe1348d202bb0b765e347eb0e3053ffa83
fcb7e117d95ecf0918ed17f638282e13abc8e02dac7d50aa19199d774c85f27b
GET /library/Game%20Icons/Pragmatic/pop_054dddd4_prg.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 72496
cf-ray: 7fbeb14eba9ab517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "63975f2e-11b30"
last-modified: Mon, 12 Dec 2022 17:04:46 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Pragmatic/pop_054dddd4_prg.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Pragmatic/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.brazino-cdnsrv-cst.org/build/vueStatisticsWidgetsBlock.5085cdce.js?v10263
395 kB URL www.brazino-cdnsrv-cst.org/build/vueStatisticsWidgetsBlock.5085cdce.js?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Size 395 kB (394663 bytes)
Hash 909e0fa5e8df1750ede47e212fc87b1e
91a6b5d821b46a71af179ffe76aef193a842d30e
f824d419bf68de63b2707eb0b1cfb46762ba3701d375cbfc93baacff8d7e7137
GET /build/vueStatisticsWidgetsBlock.5085cdce.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"64c270e7-14ff"
expires: Fri, 26 Jul 2024 13:39:24 GMT
last-modified: Thu, 27 Jul 2023 13:28:07 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 050332b8-b60f-4a86-96cc-504913ff0bbe-2082023
server: CDN77-Turbo
x-77-nzt: AblMCRTQm1v/OFglAA
x-77-nzt-ray: af585630e3980396c4cbe76442c4403b
x-accel-expires: @1722001164
x-accel-date: 1690465164
x-cache: HIT
x-age: 2447416
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.galera.bet/library/Game%20Icons/Spinomenal/pop_b7b8360a_spl.webp
52 kB URL www.galera.bet/library/Game%20Icons/Spinomenal/pop_b7b8360a_spl.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash c2de36be384bd3cf9438d0f87824cde9
c93fd372dfddfac8766aefbb5a6d3c9571ecf655
4523021db2dd6227269ae15367a50638af7e4f2f7b551db5e8b8ced9a9a83798
GET /library/Game%20Icons/Spinomenal/pop_b7b8360a_spl.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 52456
cf-ray: 7fbeb14e9a62b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "64d398ae-cce8"
last-modified: Wed, 09 Aug 2023 13:46:22 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Spinomenal/pop_b7b8360a_spl.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Spinomenal/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Darwin/pop_74d36494_dar.webp?siteid=2
28 kB URL www.galera.bet/library/Game%20Icons/Darwin/pop_74d36494_dar.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8a38267fbb9947cf529efb0c2f292483
0342b526479ee3c5021fe27a5d7c64003e322396
f5fed9a705c45298780d21eb2f5348c64aecaf3ace9ae489fdc5e8fb133fbf65
GET /library/Game%20Icons/Darwin/pop_74d36494_dar.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 28318
cf-ray: 7fbeb14e9a6ab517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "645d14c7-6e9e"
last-modified: Thu, 11 May 2023 16:16:07 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Darwin/pop_74d36494_dar.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Darwin/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Darwin/pop_34fbfe62_dar.webp
35 kB URL www.galera.bet/library/Game%20Icons/Darwin/pop_34fbfe62_dar.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 71f50bdfb1c896f9562f4858ce033d72
652c677cc8eecde5e358fb2a24d89410d311adfe
2b40341f58777c93135ab081c6e7989dd4866977fc157054cc9ef40ff637f410
GET /library/Game%20Icons/Darwin/pop_34fbfe62_dar.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 34814
cf-ray: 7fbeb14e9a6cb517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "64c24e37-87fe"
last-modified: Thu, 27 Jul 2023 11:00:07 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Darwin/pop_34fbfe62_dar.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Darwin/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.brazino-cdnsrv-cst.org/build/9871.75aaf6a7.js?v10263
200 OK 68 kB URL GET HTTP/2 www.brazino-cdnsrv-cst.org/build/9871.75aaf6a7.js?v10263
IP
ASN #60068 Datacamp Limited
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subject1107631085.rsc.cdn77.org
FingerprintFC:30:44:F1:AA:FD:BB:46:F5:7C:D2:8B:A5:9E:81:24:08:71:EE:74
ValidityFri, 30 Jun 2023 22:49:32 GMT - Thu, 28 Sep 2023 22:49:31 GMT
File type gzip compressed data, from Unix\012- data
Hash 0f4498d524267448c15f8578f73f7f79
fd91420bdcae54ba997433466bd41fb752154317
7ae5052b498a7ac69c9ef7290ae078edf6e5790ee0bd599bafb0e3cc7bbc61e2
GET /build/9871.75aaf6a7.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"648afe4f-14446"
expires: Fri, 14 Jun 2024 12:46:37 GMT
last-modified: Thu, 15 Jun 2023 12:04:31 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: efceb6f0-0e7d-421d-b691-3b993923518b-1662023
server: CDN77-Turbo
x-77-nzt: AblMCRTMFxb/l8NcAA
x-77-nzt-ray: af585630e3980396c4cbe764be0a033b
x-accel-expires: @1718369197
x-accel-date: 1686833197
x-cache: HIT
x-age: 6079383
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.galera.bet/library/Game%20Icons/Darwin/pop_d71f8502_dar.webp
42 kB URL www.galera.bet/library/Game%20Icons/Darwin/pop_d71f8502_dar.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3110a07b11513cc472cbe4d2efbb6608
cd4eabd5032dbb222a17eff59d9edc1e78da1f8d
ed38185e389d5c4d9aa2356ddc1a9bd29a7547b64b055c68c97de6090a6ee946
GET /library/Game%20Icons/Darwin/pop_d71f8502_dar.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 41450
cf-ray: 7fbeb14e9a67b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "6489b27a-a1ea"
last-modified: Wed, 14 Jun 2023 12:28:42 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Darwin/pop_d71f8502_dar.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Darwin/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Darwin/pop_1e923ef4_dar.webp
43 kB URL www.galera.bet/library/Game%20Icons/Darwin/pop_1e923ef4_dar.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3d2da56fa92131ddd75b47e7a8548e01
57526edc7a81c77feb824820dba1661cf4db1e48
6c194f47326e39daf34c529045449700f07995158937b9d8c64a5b1b610fddb3
GET /library/Game%20Icons/Darwin/pop_1e923ef4_dar.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 43370
cf-ray: 7fbeb14e9a6eb517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "6475e039-a96a"
last-modified: Tue, 30 May 2023 11:38:33 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Darwin/pop_1e923ef4_dar.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Darwin/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_wolfgold.webp?siteid=2
36 kB URL www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_wolfgold.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash a148bffdc1b137142af5b4f5342a35e7
bc923c3472309d40471745eacce20f1ee192ef7e
3f41121f07e180e269d316a5b483e4d65fc2f39e961fd45cc18adb5fc0cafc96
GET /library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_wolfgold.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 35572
cf-ray: 7fbeb14eaa7fb517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "63ecf290-8af4"
last-modified: Wed, 15 Feb 2023 14:56:16 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_wolfgold.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Pragmatic/*,https://www.galera.bet/library/Game%2520Icons/Pragmatic/drops-wins/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_greatrhinomegaways.webp?siteid=2
200 OK 52 kB URL GET HTTP/3 www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_greatrhinomegaways.webp?siteid=2
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerDigiCert Inc
Subject*.galera.bet
FingerprintCB:56:2F:06:77:6A:D9:92:F5:D0:B9:2B:DA:94:08:5D:5C:04:4B:82
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7ba404acc76c29497976ad88a03dc22c
37203f71c4be5384427526599fd787d7c2534443
e0c5310d42a70e2bc0b15a11a6ec28179688f33b452a28b86e4d415283dbf3d7
GET /library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_greatrhinomegaways.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 52224
cf-ray: 7fbeb14eaa93b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "63ecf28d-cc00"
last-modified: Wed, 15 Feb 2023 14:56:13 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Pragmatic/drops-wins/DROPS_WINS_TILES_greatrhinomegaways.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Pragmatic/*,https://www.galera.bet/library/Game%2520Icons/Pragmatic/drops-wins/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Drops%20%26%20Wins/pop_10e38615_prg_dw.webp
40 kB URL www.galera.bet/library/Game%20Icons/Drops%20%26%20Wins/pop_10e38615_prg_dw.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9adc20f9d74864bf33f27ceb2c04cecb
616a094f56d60b117e9af4fca42947355516f4c2
8c5409ce9eb57f9fa4d01685545b3e92c24c37f8f04a815afa0dab3789ed91e8
GET /library/Game%20Icons/Drops%20%26%20Wins/pop_10e38615_prg_dw.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 39792
cf-ray: 7fbeb14eba96b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "64103e3f-9b70"
last-modified: Tue, 14 Mar 2023 09:28:31 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Drops%20&%20Wins/pop_10e38615_prg_dw.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Drops%2520%26%2520Wins/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/gpas_plink_pop.webp?siteid=2
44 kB URL www.galera.bet/library/Game%20Icons/compressed/gpas_plink_pop.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2bc5b3c6618b3bb85143c2b46e902f78
709570f34203103c303efcfba5cb095f79e42698
9e2b0ae2bd02f8ec69c0f29b660aeeeff36d6437f4e1e2d60eefb0b08844fcf2
GET /library/Game%20Icons/compressed/gpas_plink_pop.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 44484
cf-ray: 7fbeb14eba98b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "63f78260-adc4"
last-modified: Thu, 23 Feb 2023 15:12:32 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/gpas_plink_pop.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Spinomenal/pop_2d607d60_spl.webp
58 kB URL www.galera.bet/library/Game%20Icons/Spinomenal/pop_2d607d60_spl.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 324531d2378115aedc5137bf86334751
db108ef765bfb92ab553d088d614ebe2fc846192
6b26ecc4ecd087e41a7d3bdf9c0d9e2816020dc7e22fa77e73712d4f27d84932
GET /library/Game%20Icons/Spinomenal/pop_2d607d60_spl.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 57566
cf-ray: 7fbeb14ebaa2b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "6462038f-e0de"
last-modified: Mon, 15 May 2023 10:03:59 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Spinomenal/pop_2d607d60_spl.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Spinomenal/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Playtech/gpas_goldhit2_pop.webp
38 kB URL www.galera.bet/library/Game%20Icons/Playtech/gpas_goldhit2_pop.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 504e453c7469008667ff695f82f64bf2
419afa222f7f916d124e35b8651aa537ad05d679
52d93f77dba56cdd1acfde27c8cfd8be856785de8413489df820f6a7bec03efe
GET /library/Game%20Icons/Playtech/gpas_goldhit2_pop.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 37892
cf-ray: 7fbeb14ebaa4b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "645cccb0-9404"
last-modified: Thu, 11 May 2023 11:08:32 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Playtech/gpas_goldhit2_pop.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Playtech/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/220323/gpas_mgaogkolbf_pop.webp?siteid=2
62 kB URL www.galera.bet/library/Game%20Icons/compressed/220323/gpas_mgaogkolbf_pop.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 450x450, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 23efc36a7d5c00623000bf36fae5dced
cffae31adfdde7e4245d32e656051ca8aa962a54
3f7f9baae81eab8cc43be854778b9790e5b1f9a732ae095b53d85eb6e02945bf
GET /library/Game%20Icons/compressed/220323/gpas_mgaogkolbf_pop.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 62498
cf-ray: 7fbeb14ecaa8b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "641aae47-f422"
last-modified: Wed, 22 Mar 2023 07:29:11 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/220323/gpas_mgaogkolbf_pop.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*,https://www.galera.bet/library/Game%2520Icons/compressed/220323/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/220323/gpas_bbmways_pop.webp?siteid=2
32 kB URL www.galera.bet/library/Game%20Icons/compressed/220323/gpas_bbmways_pop.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e74fe006e79bacba08dd9ef7e6ced75c
c0c20bc98e6f795eaded289b5def5e8365ad26ff
f9f0f290e31946948610a598be8a1293a9ebc7e5d655075e0c9fabc3280ab7f1
GET /library/Game%20Icons/compressed/220323/gpas_bbmways_pop.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 31762
cf-ray: 7fbeb14eeaddb517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "641aae46-7c12"
last-modified: Wed, 22 Mar 2023 07:29:10 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/220323/gpas_bbmways_pop.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*,https://www.galera.bet/library/Game%2520Icons/compressed/220323/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Playtech/gpas_agstorm3_pop.webp
38 kB URL www.galera.bet/library/Game%20Icons/Playtech/gpas_agstorm3_pop.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash cc1c9d6783e308095e51fcc83daee2fd
f7d73bda7815cc3fa9a1f052e0deba7ee980178f
dff9908f7cd23dcbda11416879dbbfe85e1b390168802b39e0c34afe6cf86280
GET /library/Game%20Icons/Playtech/gpas_agstorm3_pop.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 38424
cf-ray: 7fbeb14eeae1b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "648adac9-9618"
last-modified: Thu, 15 Jun 2023 09:32:57 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Playtech/gpas_agstorm3_pop.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Playtech/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/240223/2/gpas_hgextremepp_pop.jpg?siteid=2
50 kB URL www.galera.bet/library/Game%20Icons/compressed/240223/2/gpas_hgextremepp_pop.jpg?siteid=2
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Hash ba27f78b34619963977a2525501d770e
9c1a44dfd7a4ad4b5471b9c715d5942259828bf3
80200afb0c87e20fcec21929fc3fb3afc9f4e958b762d04bfc8a472b8c0d4f24
GET /library/Game%20Icons/compressed/240223/2/gpas_hgextremepp_pop.jpg?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/jpeg
content-length: 49966
cf-ray: 7fbeb14eeaeab517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "63f8bd0f-c32e"
last-modified: Fri, 24 Feb 2023 13:35:11 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/240223/2/gpas_hgextremepp_pop.jpg,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*,https://www.galera.bet/library/Game%2520Icons/compressed/240223/*,https://www.galera.bet/library/Game%2520Icons/compressed/240223/2/*
cf-bgj: h2pri
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Darwin/pop_4ab63943_dar.webp
30 kB URL www.galera.bet/library/Game%20Icons/Darwin/pop_4ab63943_dar.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9d39e4a172cfa6ac0b4920193b70aed0
3df8076e9e037ea3bd8164ae751a0f3dca2737ea
c713c01c3969213ee482c28acdefa8fdd609e6069873f089c7e74c25ee279a63
GET /library/Game%20Icons/Darwin/pop_4ab63943_dar.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 29896
cf-ray: 7fbeb14eeaedb517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "64a28071-74c8"
last-modified: Mon, 03 Jul 2023 08:01:53 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Darwin/pop_4ab63943_dar.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Darwin/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/gpas_gstorm2_pop.webp?siteid=2
58 kB URL www.galera.bet/library/Game%20Icons/compressed/gpas_gstorm2_pop.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4a230cfba67c4361cd9cae85dc515412
10c259d23a036d8f20459d1085ce66659e45aa00
005aa286123d97fa974be6a4d2444f1cf6c0171b7020b0f7897ccfcf29af10a0
GET /library/Game%20Icons/compressed/gpas_gstorm2_pop.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 58510
cf-ray: 7fbeb14ecaaeb517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "63f78259-e48e"
last-modified: Thu, 23 Feb 2023 15:12:25 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/gpas_gstorm2_pop.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Playtech/glrj.jpg?siteid=1
48 kB URL www.galera.bet/library/Game%20Icons/Playtech/glrj.jpg?siteid=1
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x500, components 3\012- data
Hash 9ba01ae9e158cbaeb5a2ac00bb35d416
0336d6a6bfbe512fd229f1aef25582f6073fc526
8b2fbe67c4ed017718f853f3b1623ee74f40e427ecb45726ea0e0c1c21313c45
GET /library/Game%20Icons/Playtech/glrj.jpg?siteid=1 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/jpeg
content-length: 48383
cf-ray: 7fbeb14ecab0b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "634d770e-bcff"
last-modified: Mon, 17 Oct 2022 15:38:54 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Playtech/glrj.jpg,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Playtech/*
cf-bgj: h2pri
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Darwin/pop_c3b6cec0_dar.webp?siteid=2
25 kB URL www.galera.bet/library/Game%20Icons/Darwin/pop_c3b6cec0_dar.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash d816f57e6174ba3bb7ce99c4a6b36667
ba0d0c90bda824ac7562e0dd6645de596e96ffe2
154c9e201ab7b9b208e06e0456b3fb87f8fd403ba5ba6abc3f9b3c7d5c37fa35
GET /library/Game%20Icons/Darwin/pop_c3b6cec0_dar.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 24934
cf-ray: 7fbeb14eeaf0b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "645d16ff-6166"
last-modified: Thu, 11 May 2023 16:25:35 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Darwin/pop_c3b6cec0_dar.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Darwin/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/MGA/pop_1001006_mga.webp
46 kB URL www.galera.bet/library/Game%20Icons/MGA/pop_1001006_mga.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6e23865a05b3902365c9298391f430f1
7312a0ed16441220225dbb2a9a2fd91959ecefb1
7a063bf9d85251595bcf4419aaf0b456e85ef1059fecb89cef0e0e5d13ab3834
GET /library/Game%20Icons/MGA/pop_1001006_mga.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 46388
cf-ray: 7fbeb14eeaf3b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "64d0e22d-b534"
last-modified: Mon, 07 Aug 2023 12:23:09 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/MGA/pop_1001006_mga.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/MGA/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Darwin/pop_55bf38f5_dar.webp?siteid=2
42 kB URL www.galera.bet/library/Game%20Icons/Darwin/pop_55bf38f5_dar.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash d7a0985ce7c45d5c736f453f24fb742c
24cf69bd2aaf27334ecfc422ff1cbb2dd708b2c2
6178f30eae8d8285313c96c56a2931c10fc0ba00a6e57c54e514a2158f378ee1
GET /library/Game%20Icons/Darwin/pop_55bf38f5_dar.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 41482
cf-ray: 7fbeb14eeaf4b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "645d19ae-a20a"
last-modified: Thu, 11 May 2023 16:37:02 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Darwin/pop_55bf38f5_dar.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Darwin/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/MGA/pop_1001062_mga1.webp
60 kB URL www.galera.bet/library/Game%20Icons/MGA/pop_1001062_mga1.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e1213329639b6096bce7c69426f95899
e6364e581cb8a888c3bc3465de295cd3c127e72f
7faff300e1b3f5baabf4d8d31e2ce8fbed623062a98adfcb026ad9a8ff9fe045
GET /library/Game%20Icons/MGA/pop_1001062_mga1.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 59832
cf-ray: 7fbeb14eeaeeb517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "64d0e22d-e9b8"
last-modified: Mon, 07 Aug 2023 12:23:09 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/MGA/pop_1001062_mga1.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/MGA/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/MGA/pop_98fc7c65_mga.webp
70 kB URL www.galera.bet/library/Game%20Icons/MGA/pop_98fc7c65_mga.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 637303a30ad123b49ecccbe1734e8855
7451293c8b40d7bba4fd7593447ba91d03f57e8b
44acf786a9752dfa630dc4feec433264c0d6cf1384de5360b613528e11d26116
GET /library/Game%20Icons/MGA/pop_98fc7c65_mga.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 69604
cf-ray: 7fbeb14eeaf6b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "64d0e22d-10fe4"
last-modified: Mon, 07 Aug 2023 12:23:09 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/MGA/pop_98fc7c65_mga.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/MGA/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/220323/gpas_rwizard_pop.webp?siteid=2
25 kB URL www.galera.bet/library/Game%20Icons/compressed/220323/gpas_rwizard_pop.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ba72d7b28d656ece7fd1dc3a4bbaccc7
e04e421692859588cc9d195acebbd5b499da0074
cd62e310c651fce89e23f57767bca90e5b578c6d15e7ec18769b2bd0ef3d496b
GET /library/Game%20Icons/compressed/220323/gpas_rwizard_pop.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 25128
cf-ray: 7fbeb14eeaf7b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "641aae48-6228"
last-modified: Wed, 22 Mar 2023 07:29:12 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/220323/gpas_rwizard_pop.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*,https://www.galera.bet/library/Game%2520Icons/compressed/220323/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/220323/gpas_elady_pop.webp?siteid=2
24 kB URL www.galera.bet/library/Game%20Icons/compressed/220323/gpas_elady_pop.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2b8295ecd33746b787d88d29d5846df8
0a689be6948ecb00384f5fd325c16581e57f08f1
8f2bb1fccd9720e85104ce699de1764b3a756bf38e7324af76b62f3642c17d63
GET /library/Game%20Icons/compressed/220323/gpas_elady_pop.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 23806
cf-ray: 7fbeb14eeaf8b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "641aae46-5cfe"
last-modified: Wed, 22 Mar 2023 07:29:10 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/220323/gpas_elady_pop.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*,https://www.galera.bet/library/Game%2520Icons/compressed/220323/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/220323/gpas_bwizard_pop.webp?siteid=2
50 kB URL www.galera.bet/library/Game%20Icons/compressed/220323/gpas_bwizard_pop.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a06eb9231f2fe6783c26420bcadc89e3
7f8a410f462ecd89ad9043a28f433d541648caf3
410b9e93daa9e2394515fc64ac5ea5239db833261f0f454bee410ef06ddea6dc
GET /library/Game%20Icons/compressed/220323/gpas_bwizard_pop.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 50084
cf-ray: 7fbeb14eeaf9b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "641aae46-c3a4"
last-modified: Wed, 22 Mar 2023 07:29:10 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/220323/gpas_bwizard_pop.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*,https://www.galera.bet/library/Game%2520Icons/compressed/220323/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/Live%20Casino/fbbjl_fireblazebj.webp?siteid=2
47 kB URL www.galera.bet/library/Game%20Icons/Live%20Casino/fbbjl_fireblazebj.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7605993e2f8e28761bebedc9fdc396fe
45ca19ee69140835baa1b4e8174e7c3e3684e91d
a6d684cded10cd83447ebf20ad5acc17af68563612d38f1b6982fc1a4afba6e4
GET /library/Game%20Icons/Live%20Casino/fbbjl_fireblazebj.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 46872
cf-ray: 7fbeb14eeafbb517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "63ee0443-b718"
last-modified: Thu, 16 Feb 2023 10:24:03 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Live%20Casino/fbbjl_fireblazebj.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Live%2520Casino/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
api.mythad.com/rest/n/adintl/ad/pixelLog
317 B URL api.mythad.com/rest/n/adintl/ad/pixelLog
IP
Certificate IssuerGlobalSign nv-sa
Subject*.mythad.com
Fingerprint23:A6:63:24:92:FB:76:8E:B7:39:EC:C7:9B:DA:30:36:7F:57:93:AC
ValidityThu, 09 Mar 2023 12:25:09 GMT - Tue, 09 Apr 2024 12:25:08 GMT
File type gzip compressed data, from Unix\012- data
Hash 46fc7bfd1b96da8e096b2cd7fb149e43
4d330e7118fb429782f4cf9ebef2bdbe7e95135c
1fac7aa32ea64a77c1c938c1c66a9009e94411c08bf1750d415ecb30b2abef22
POST /rest/n/adintl/ad/pixelLog HTTP/1.1
Host: api.mythad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 383
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: application/json;charset=UTF-8
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.galera.bet/library/Game%20Icons/Playtech/gpas_kgomoonpp_pop.webp?siteid=2
87 kB URL www.galera.bet/library/Game%20Icons/Playtech/gpas_kgomoonpp_pop.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8126e2e2df8b3945973e075ad4b863fe
f036e8fb737bfcd91b033ddf4ecac56547afede5
5b6cc29b0171beffd94c36341ff22e4204a91e410465b81c4ce6c4cb7ebc9557
GET /library/Game%20Icons/Playtech/gpas_kgomoonpp_pop.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 87374
cf-ray: 7fbeb14efb08b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "63f75cce-1554e"
last-modified: Thu, 23 Feb 2023 12:32:14 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Playtech/gpas_kgomoonpp_pop.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Playtech/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/220323/abbj.webp?siteid=2
42 kB URL www.galera.bet/library/Game%20Icons/compressed/220323/abbj.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 878x878, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4b8946fe2706a894065309084e2eae57
6b93493199ba2032d8a38505acd107d5efcdbd78
b17a8fef2aedbb6e8a3430b68ae85fba75eac002bdd090807010d4831ec367ea
GET /library/Game%20Icons/compressed/220323/abbj.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 42526
cf-ray: 7fbeb14efb09b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "641aae43-a61e"
last-modified: Wed, 22 Mar 2023 07:29:07 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/220323/abbj.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*,https://www.galera.bet/library/Game%2520Icons/compressed/220323/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/220323/ro_g-comp.webp?siteid=2
16 kB URL www.galera.bet/library/Game%20Icons/compressed/220323/ro_g-comp.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash ab1d31fb61ea19f1b95b8f731b01fa51
465fe013283b244a4a63797852d8ba581c357e95
4437caaec6d38b797a56518a11f41e937a651d6748587a6bddc286bffff8d7e1
GET /library/Game%20Icons/compressed/220323/ro_g-comp.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 15536
cf-ray: 7fbeb14efb0eb517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "641ab355-3cb0"
last-modified: Wed, 22 Mar 2023 07:50:45 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/220323/ro_g-comp.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*,https://www.galera.bet/library/Game%2520Icons/compressed/220323/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/220323/casino/bjcb.webp?siteid=2
15 kB URL www.galera.bet/library/Game%20Icons/compressed/220323/casino/bjcb.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e310e74abe75d2f688b5232d07d1c90b
c40fc14182c9a23bf5c46cd97606be3d59be66de
24109cbc084b43a90d9457638f9aa30ebabd3879a79e540c1798a03c3c97c070
GET /library/Game%20Icons/compressed/220323/casino/bjcb.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 14826
cf-ray: 7fbeb14f0b1ab517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "641adfb4-39ea"
last-modified: Wed, 22 Mar 2023 11:00:04 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/220323/casino/bjcb.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*,https://www.galera.bet/library/Game%2520Icons/compressed/220323/*,https://www.galera.bet/library/Game%2520Icons/compressed/220323/casino/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/220323/mfbro.webp?siteid=2
70 kB URL www.galera.bet/library/Game%20Icons/compressed/220323/mfbro.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 40206a815fdf355fc316b55cbc3c9f18
66ba4640acf2f6596004536fb488240570ec62a3
2826244d577a18c8aa662d9caebebc9f785dfd91b346c5d005388c0131cd3836
GET /library/Game%20Icons/compressed/220323/mfbro.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 70400
cf-ray: 7fbeb14f0b1fb517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "641aae49-11300"
last-modified: Wed, 22 Mar 2023 07:29:13 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/220323/mfbro.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*,https://www.galera.bet/library/Game%2520Icons/compressed/220323/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/220323/cheaa.webp?siteid=2
34 kB URL www.galera.bet/library/Game%20Icons/compressed/220323/cheaa.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 498x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6096cc6b0b9bb986fbcbcaebaa3690c1
15a2ad152361a3a2e9ef1cd37d91b536bea38a87
27f81c9b9e1e2bf958094f8672eef873f270a3d84a8721c1c2a4c8e758e2883d
GET /library/Game%20Icons/compressed/220323/cheaa.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 33596
cf-ray: 7fbeb14f2b47b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "641aae45-833c"
last-modified: Wed, 22 Mar 2023 07:29:09 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/220323/cheaa.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*,https://www.galera.bet/library/Game%2520Icons/compressed/220323/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Game%20Icons/compressed/220323/bafr.webp?siteid=2
72 kB URL www.galera.bet/library/Game%20Icons/compressed/220323/bafr.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3fe2818351cad72ac948dda513f4f40f
be9fffbe89463941974eba48ec2ff1e34aed2a3e
481a050a860f3dd128bbafa3fd3117d44b8e7056fd772593da9386c3d4ffaf75
GET /library/Game%20Icons/compressed/220323/bafr.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 71758
cf-ray: 7fbeb14f2b49b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "641aae44-1184e"
last-modified: Wed, 22 Mar 2023 07:29:08 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/compressed/220323/bafr.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/compressed/*,https://www.galera.bet/library/Game%2520Icons/compressed/220323/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.google.com/recaptcha/api2/anchor?ar=1&k=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g&co=aHR0cHM6Ly8yMGJldC5jb206NDQz&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&cb=7741dnamr5un
30 kB URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g&co=aHR0cHM6Ly8yMGJldC5jb206NDQz&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&cb=7741dnamr5un
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (46484)
Hash 4e4cce7f0da1dba69d9500cb4b88bb72
e9f6f23859df07e16c9312bee74581a055569ff1
528610105a6eaf56fd52c769f7a36437d7086dfdd3fff7fb35dc47f1a50a5dc4
GET /recaptcha/api2/anchor?ar=1&k=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g&co=aHR0cHM6Ly8yMGJldC5jb206NDQz&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&cb=7741dnamr5un HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Aug 2023 21:29:46 GMT
content-security-policy: script-src 'nonce-zM8wJfhCvfWWoltRjh4Mpg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 30425
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
platform.20bet.com/api/v3/menu/line/pt?period=0&withOutrightMarkets=1
0 B URL platform.20bet.com/api/v3/menu/line/pt?period=0&withOutrightMarkets=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/line/pt?period=0&withOutrightMarkets=1 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:46 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb152388db4eb-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/pt?period=5&withOutrightMarkets=1
0 B URL platform.20bet.com/api/v3/menu/line/pt?period=5&withOutrightMarkets=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/line/pt?period=5&withOutrightMarkets=1 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:46 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb15268ebb4eb-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/live/pt
0 B URL platform.20bet.com/api/v3/menu/live/pt
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v3/menu/live/pt HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:46 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb1528901b4eb-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/v4/coupon/get?system=1&lang=pt
0 B URL platform.20bet.com/api/v4/coupon/get?system=1&lang=pt
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v4/coupon/get?system=1&lang=pt HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:46 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb1529913b4eb-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/popular/line-menu/pt
200 OK 0 B URL GET HTTP/2 platform.20bet.com/api/popular/line-menu/pt
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/popular/line-menu/pt HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:46 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb152890ab4eb-OSL
X-Firefox-Spdy: h2
centrifugo.20bet.com/connection/websocket
0 B URL centrifugo.20bet.com/connection/websocket
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /connection/websocket HTTP/1.1
Host: centrifugo.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://20bet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: citN3EwAfncwV4e3LKXDKQ==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Thu, 24 Aug 2023 21:29:46 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IzH73fcpF56JLTypPIHdj7awmmo=
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7fbeb151ef91b529-OSL
platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=pt
0 B URL platform.20bet.com/api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=pt
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?isTop_eq=1&oddsExists_eq=1&competitor2Id_neq=&competitor1Id_neq=&main=1&status_in%5B%5D=0&limit=15&relations%5B%5D=league&relations%5B%5D=odds&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=players&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=pt HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:46 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb152b92eb4eb-OSL
X-Firefox-Spdy: h2
www.galera.bet/library/Game%20Icons/Pragmatic/Spaceman_500x500_css.svg
168 kB URL www.galera.bet/library/Game%20Icons/Pragmatic/Spaceman_500x500_css.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size 168 kB (167882 bytes)
Hash 8da3e5e64c8f9abd844c624f084f81a9
d165c4949181757a12f74de45b444492f153cf92
fd6d8659e2ab831f19eacbe7d83f80ea0c825f3d5c22932dbbbb3042e9284308
GET /library/Game%20Icons/Pragmatic/Spaceman_500x500_css.svg HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/svg+xml
cf-ray: 7fbeb14e9a68b517-OSL
cf-cache-status: HIT
cache-control: max-age=3600,max-stale=3600
etag: W/"64da0e42-34dd7"
last-modified: Mon, 14 Aug 2023 11:21:38 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Game%20Icons/Pragmatic/Spaceman_500x500_css.svg,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Game%2520Icons/*,https://www.galera.bet/library/Game%2520Icons/Pragmatic/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
platform.20bet.com/api/user/is-auth
204 No Content 0 B URL OPTIONS HTTP/2 platform.20bet.com/api/user/is-auth
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/user/is-auth HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:46 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb1530984b4eb-OSL
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=pt
0 B URL platform.20bet.com/api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=pt
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?isTopLive_eq=1&competitor2Id_neq=&competitor1Id_neq=&status_in%5B%5D=2&status_in%5B%5D=1&oddsExists_eq=1&main=1&limit=15&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=players&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=withMarketsCount&relations%5B%5D=tips&lang=pt HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:46 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb15329a2b4eb-OSL
X-Firefox-Spdy: h2
static.ada.support/embed2.js
5.7 kB URL static.ada.support/embed2.js
IP
File type Unicode text, UTF-8 text, with very long lines (17461), with no line terminators
Hash e9f248b91fc878de222708069b49e8a9
994d79dfc7d6b83ab6a780ee2fe7da2bfd849df1
690ef037cacacffe011321dccda8528799b8916ba9e16ab4c9c600ec98374840
GET /embed2.js HTTP/1.1
Host: static.ada.support
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-expose-headers: ETag
access-control-max-age: 3000
last-modified: Wed, 04 Jan 2023 22:06:00 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: BsrqbP3U2hb.a17svKLV3bCW0fRkIy.o
server: AmazonS3
content-encoding: gzip
date: Thu, 24 Aug 2023 00:44:56 GMT
cache-control: max-age: 300
etag: W/"318258ae2fd2aaa16faa799f071935d1"
vary: Accept-Encoding
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
age: 74691
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nnqxLhYurMPrloEsQ8X6q7Jd_a4tI59QFaFigB-HOKHIfN-P4dI-6A==
X-Firefox-Spdy: h2
20bet.com/assets/banners/sport_welcome_brazil_slider8.webp
50 kB URL 20bet.com/assets/banners/sport_welcome_brazil_slider8.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1180x230, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 628bc920c2d55a1b0585684fa28ec4f1
ba597ece83df007059e076e1db09eeccd4a3e26a
42218de75af12c49e93969a9a43005d7456c1ab2749fcdaa424f3ce21707ebe1
GET /assets/banners/sport_welcome_brazil_slider8.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/webp
content-length: 49528
cf-ray: 7fbeb154bf12b524-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 639
cache-control: public, max-age=14400
etag: "64e5abc1-c178"
expires: Fri, 25 Aug 2023 01:29:47 GMT
last-modified: Wed, 23 Aug 2023 06:48:33 GMT
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
16 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Aug 2023 11:13:54 GMT
expires: Sun, 18 Aug 2024 11:13:54 GMT
cache-control: public, max-age=31536000
age: 468953
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
api.mythad.com/rest/n/adintl/ad/pixelLog
70 kB URL api.mythad.com/rest/n/adintl/ad/pixelLog
IP
Certificate IssuerGlobalSign nv-sa
Subject*.mythad.com
Fingerprint23:A6:63:24:92:FB:76:8E:B7:39:EC:C7:9B:DA:30:36:7F:57:93:AC
ValidityThu, 09 Mar 2023 12:25:09 GMT - Tue, 09 Apr 2024 12:25:08 GMT
File type gzip compressed data, from Unix\012- data
Hash 3221d7541ddc4458e306ae8a600a9c06
69401a1326450830f3a53de991bf579045b131cf
fb956fb3823386cf8e15bf2ba47ca383cb822fb88e0dd67dd804eb4e2a28fdb7
POST /rest/n/adintl/ad/pixelLog HTTP/1.1
Host: api.mythad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 350
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: application/json;charset=UTF-8
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.galera.bet/library/Header/assinatura-brasileirao-transparent-min.png
8.2 kB URL www.galera.bet/library/Header/assinatura-brasileirao-transparent-min.png
IP
File type PNG image data, 446 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 012e5cf3be262e43a9d82162eed5e2b0
ceb2b336f1d9e405b5da5ddf55168a03ff42c9d5
860ad2127a177466d1dcd47f03071a3f6ec90b7f82abe5004ac0bd44245ccbfe
GET /library/Header/assinatura-brasileirao-transparent-min.png HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/png
content-length: 8173
cf-ray: 7fbeb154da47b517-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 872
cache-control: max-age=3600,max-stale=3600
etag: "641acf73-1fed"
last-modified: Wed, 22 Mar 2023 09:50:43 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 70 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 81d0be6ad53a737214d71c35d129ed49
518f516c6744573d6c47d39271a57f31027d17ca
6d209c63ed8c40ad2f63019c6fc0bb3b48f918c55a45fa127aa7eef6173e2a61
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 47834
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: text/plain;charset=UTF-8
content-length: 70
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
oapi-cur.techonlinecorp.com/socket.io/1/?t=1692912577595
64 B URL oapi-cur.techonlinecorp.com/socket.io/1/?t=1692912577595
IP
ASN #43937 Playtech Estonia OU
File type ASCII text, with no line terminators
Hash 23c472ef63afada4da8644f26db25a44
ad7a0e005476717e087e3ba59e979aad6f55ec80
d18e8df354caa6d837a98e82f28d02e002ae0df3b691a0dc022aad5c874c366b
GET /socket.io/1/?t=1692912577595 HTTP/1.1
Host: oapi-cur.techonlinecorp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
content-type: text/plain; charset=UTF-8
connection: keep-alive
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
content-length: 64
Strict-Transport-Security: max-age=16070400; includeSubDomains
a.mgid.com/1x1.gif?id=542391&type=c&tg=&r=&nv=0&clid=&clidv=0&d=1692912578066
43 B URL a.mgid.com/1x1.gif?id=542391&type=c&tg=&r=&nv=0&clid=&clidv=0&d=1692912578066
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /1x1.gif?id=542391&type=c&tg=&r=&nv=0&clid=&clidv=0&d=1692912578066 HTTP/1.1
Host: a.mgid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=_eleCsT_n.1SZlMqA_oQEZVtQMn4d_jlrhch5IpTh_A-1692912585-0-Afd7mbOKMsZl1DZG7ecDp0QKokVW9heXnVQUOtW2IT21znXsiZ9FPkBR0Etm+M7cmo6GBn35GPGlLROhSKTtWMU=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/gif
content-length: 43
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb154fbc6b4eb-OSL
alt-svc: h3=":443"; ma=86400
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 69 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash a0df3927a297f26033c2a8ca060ebb71
750d8e374e237f206d74b5cc03a6ec508d4c160c
dd10e496cbfeb082f040be6329f577d2012e600f506d30d452ce072fc470a28e
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 8175
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: text/plain;charset=UTF-8
content-length: 69
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
platform.20bet.com/api/status
26 kB URL platform.20bet.com/api/status
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 8d991260eaa041cfde07e8948f26422b
2c1513ceaefa02c4c69ca6f2f5aa4f950641d39d
b5557a2aef699c279e7aebe41cabcb89bbd2cc9b8e930e7c9e57cab08fe057dc
GET /api/status HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb1477fddb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/9320.a7ba0ab091f673a8.js
187 kB URL 20bet.com/app/9320.a7ba0ab091f673a8.js
IP
File type ASCII text, with very long lines (4211), with no line terminators
Size 187 kB (187403 bytes)
Hash 2263b62dcf1a652778734c237c07ab24
a6cedbec36a04bdc2588ad6d1af6525fc653cd25
4ed934d57cb3980bfaaff4c62e7a5e1a9e925e19186f70c0e0bb58acc98847ef
GET /app/9320.a7ba0ab091f673a8.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: application/javascript
cf-ray: 7fbeb14e4ffdb524-OSL
cf-cache-status: HIT
age: 851
cache-control: public, max-age=14400
etag: W/"64e5aafa-1073"
expires: Fri, 25 Aug 2023 01:29:45 GMT
last-modified: Wed, 23 Aug 2023 06:45:14 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.galera.bet/library/Header/logo-galera.svg
26 kB URL www.galera.bet/library/Header/logo-galera.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1686)
Hash 91535ad5ee15a39534744503653ed7e1
7c09ba9c4535ea523d454e7407654d29c75bff2f
f98224d7b6be8cb8028fc073d555e3c136a25c61e7fc1194f9d18dfe0952c06b
GET /library/Header/logo-galera.svg HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/svg+xml
cf-ray: 7fbeb154da46b517-OSL
cf-cache-status: HIT
age: 872
cache-control: max-age=3600,max-stale=3600
etag: W/"64463796-35b0"
last-modified: Mon, 24 Apr 2023 08:02:30 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2
22 kB URL fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 21724, version 1.0\012- data
Hash c3609c36a150ce088ea4dcab92b7c00b
0c18236a183e962533a4f61bff3ae2581313561a
65a47caa5183b035bf78d0f93adbe5cea500333410259c54abf2de356740df7e
GET /s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 04:40:13 GMT
expires: Fri, 23 Aug 2024 04:40:13 GMT
cache-control: public, max-age=31536000
age: 60574
last-modified: Tue, 19 Apr 2022 19:29:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2
22 kB URL fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 21796, version 1.0\012- data
Hash 8074c760fbdd366fc1c33ce702911abf
b68cdebfb413c4ad60fa131dc29e36da4b3ce45c
2b14e8397d552f351a4396dec25ec5da1348865683100e94c4ab0faea4a9a254
GET /s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Aug 2023 23:55:39 GMT
expires: Tue, 20 Aug 2024 23:55:39 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:35:19 GMT
content-type: font/woff2
age: 250448
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
bc.game/assets/chunk-0b84d2a4.js
31 kB URL bc.game/assets/chunk-0b84d2a4.js
IP
File type ASCII text, with very long lines (1850)
Hash 54ea4cd5e0d917e0d53d42486d761193
856a10a88354585635e782cb793d52a0cd388601
2c981a9dfa2c7912cce7b0d519ee95ab7bb9a3f213fa36e9dfd96dd4fd97dc26
GET /assets/chunk-0b84d2a4.js HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/assets/chunk-42476e27.js
Cookie: invitation-code=4cxse6dr; invitation-url=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:42 GMT
content-type: application/javascript
last-modified: Thu, 24 Aug 2023 02:45:46 GMT
vary: Accept-Encoding
etag: W/"64e6c45a-73b"
cache-control: max-age=3600
cf-cache-status: HIT
age: 1686
server: cloudflare
cf-ray: 7fbeb1397a4ab529-OSL
content-encoding: br
X-Firefox-Spdy: h2
api.mythad.com/rest/n/adintl/ad/pixelLog
169 kB URL api.mythad.com/rest/n/adintl/ad/pixelLog
IP
Certificate IssuerGlobalSign nv-sa
Subject*.mythad.com
Fingerprint23:A6:63:24:92:FB:76:8E:B7:39:EC:C7:9B:DA:30:36:7F:57:93:AC
ValidityThu, 09 Mar 2023 12:25:09 GMT - Tue, 09 Apr 2024 12:25:08 GMT
File type gzip compressed data, from Unix\012- data
Size 169 kB (168663 bytes)
Hash 913943777a5badd1ee8535a98f01cc02
4b0cc8fbd41f76400caa642c1bf7fd2879b16fb3
e0c7ef303d7ae940c717c3e416f19eef9f735c8f4211677125e32c431e834bfc
POST /rest/n/adintl/ad/pixelLog HTTP/1.1
Host: api.mythad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 70
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: application/json;charset=UTF-8
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/logo.a09100f4.svg
30 kB URL cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/logo.a09100f4.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1451)
Hash 7e8ebad3f14359d06df72ecd09273667
1f247ad335f0eba0fa6581ea9f4c62e0b0fc6c3a
dfcce592448b8e631666799a83c68fa02a21a37a39b6b0c5e82068817d7195e9
GET /landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/logo.a09100f4.svg HTTP/1.1
Host: cdn-service.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/css/app.6b7aa819.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000
etag: W/"b9a-HyR60zXw66D6ZYHqn0xi4LD8bDo"
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
expires: Fri, 23 Aug 2024 21:29:39 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2qzrqzUca5ChlslxsYqPt%2FN2uLkqsfHYfAiUmVz2IYj9zNddeewWkejWHyjFn422SFF%2Brez67a0ZrQV6rczXhG6QdyR5t%2BgK435pRsbR%2F4Y8uGcAeRNGuVQ7pHQ7wnf69Ng%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7fbeb1239efe1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=pt
0 B URL platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=pt
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=pt HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:47 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb158f929b4eb-OSL
X-Firefox-Spdy: h2
www.galera.bet/library/Footer/Sticky%20Footer/ICONPROMO.svg?siteid=1
2.2 kB URL www.galera.bet/library/Footer/Sticky%20Footer/ICONPROMO.svg?siteid=1
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (504)
Hash c32a1f27a510c8bbba912e2dc9721da5
52845435fe7419cea4be5ab6addd0fe3f36a0584
d88d2ba7f30bc42fe64d6b15f30695cce0794010a334c1c344577ee5f5103196
GET /library/Footer/Sticky%20Footer/ICONPROMO.svg?siteid=1 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/svg+xml
cf-ray: 7fbeb1581f0bb517-OSL
cf-cache-status: HIT
cache-control: max-age=3600,max-stale=3600
etag: W/"63beb689-93c"
last-modified: Wed, 11 Jan 2023 13:15:53 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Footer/Sticky%20Footer/ICONPROMO.svg,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Footer/*,https://www.galera.bet/library/Footer/Sticky%2520Footer/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.brazino-cdnsrv-cst.org/files/categories/endorphina-4844.svg?v10263
14 kB URL www.brazino-cdnsrv-cst.org/files/categories/endorphina-4844.svg?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 0eaac7d1eb29d06cf3f24df6f9603f6e
c1d00fe08f74aac11859a6bca99fc004f68d9237
7078b42648b3cbd4aad3ab80cf3201585827697eb4fdb64583ea0dbff07fdb3e
GET /files/categories/endorphina-4844.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60ddb8f9-6ee"
expires: Thu, 07 Dec 2023 18:16:19 GMT
last-modified: Thu, 01 Jul 2021 12:45:45 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 7ba2ab9d-a2d9-4afc-b2e3-82912658d058-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRQZrf7/VfNWAQ
x-77-nzt-ray: af585630e3980396c8cbe7644dab4409
x-accel-expires: @1701972979
x-accel-date: 1670436979
x-cache: HIT
x-age: 22475605
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 71 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 1b6cdb1bb482f4f71538ca2566d9a09e
933c8ca783305b34b7d01b8c7e1121299710522b
592c288a792927d4b197cf8dbbe7cb90879319901a027338770a0c760e650feb
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3602
Origin: https://brazino777.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: text/plain;charset=UTF-8
content-length: 71
access-control-allow-origin: https://brazino777.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
api.mythad.com/rest/n/adintl/ad/pixelLog
2.7 kB URL api.mythad.com/rest/n/adintl/ad/pixelLog
IP
Certificate IssuerGlobalSign nv-sa
Subject*.mythad.com
Fingerprint23:A6:63:24:92:FB:76:8E:B7:39:EC:C7:9B:DA:30:36:7F:57:93:AC
ValidityThu, 09 Mar 2023 12:25:09 GMT - Tue, 09 Apr 2024 12:25:08 GMT
File type gzip compressed data, from Unix\012- data
Hash ed5478cd4e0227010249c32e9794b57e
4741f0960e71e194406735a5b99f3c20311f20aa
8a42f6d4b476038c061dbddfa69e8f77d0c4be06aae23dcce38c581fdb495e43
POST /rest/n/adintl/ad/pixelLog HTTP/1.1
Host: api.mythad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 350
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: application/json;charset=UTF-8
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
platform.20bet.com/api/market-descriptions/get-all-markets/pt
42 kB URL platform.20bet.com/api/market-descriptions/get-all-markets/pt
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash b3e3f5884d19fd715bc01069b0955e71
b9f5eae7e5ec6a88891d1638f4fcea64b94950e9
5b5ae64334253e9e08c01e59236d15cfb59324d74adbe5aa734b5cd22f7e7ee5
GET /api/market-descriptions/get-all-markets/pt HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb1475fc3b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
bc.game/assets/topsplit-a.2d684169.png
5.0 kB URL bc.game/assets/topsplit-a.2d684169.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash d9277ad9633f2427d45ec5cb304100fe
6002adf5b51c3ddaa1a9cfbcb7a7c0a27d7419f9
8ad9b8198eaf8bc1b1fb723de11ae1c9e2c167e682e2e7a89f29ff886b0be77a
GET /assets/topsplit-a.2d684169.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Cookie: invitation-code=4cxse6dr; invitation-url=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/webp
content-length: 4984
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=6082
content-disposition: inline; filename="topsplit-a.webp"
vary: Accept
etag: "64e6c493-17c2"
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
cf-cache-status: HIT
age: 3544
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb15a4a34b529-OSL
X-Firefox-Spdy: h2
20bet.com/assets/sport/5.svg
8.8 kB URL 20bet.com/assets/sport/5.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2222)
Hash 54aa2f87a7cdd83b759809bcf32bb7dd
b3d8f928ce0c200ecbd69ce2d3fd2c9a7a378b90
5532e7e158d991d0c0b08d949ba8b0d1c4a9af6535e32ce6c538e3353c35bc6e
GET /assets/sport/5.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/svg+xml
cf-ray: 7fbeb1584b79b524-OSL
cf-cache-status: HIT
age: 3314
cache-control: public, max-age=14400
etag: W/"64e5abcf-13fb"
expires: Fri, 25 Aug 2023 01:29:47 GMT
last-modified: Wed, 23 Aug 2023 06:48:47 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/22.svg
16 kB URL 20bet.com/assets/sport/22.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (341)
Hash bbd0ac512fd50f6bd9797d399f1aaa88
05cfff7859c775b67bdb535964a7707c660f8e2b
5145e5ad5b46f7ef11a132af206de77885cf84a74c8e6dcaa275142d9aeba713
GET /assets/sport/22.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/svg+xml
cf-ray: 7fbeb1583b66b524-OSL
cf-cache-status: HIT
cache-control: public, max-age=14400
etag: W/"64e5abb5-905"
expires: Fri, 25 Aug 2023 01:29:47 GMT
last-modified: Wed, 23 Aug 2023 06:48:21 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/14.svg
2.4 kB URL 20bet.com/assets/sport/14.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (374)
Hash f67689414061bd064cd08afe4fb00c0c
1fc74b7e75fcfee3c83b7c87efc98a97743d6b26
722b8b5c1bb2984aadc05045be8d9f9591dd762d16794b95043433d9e07344d8
GET /assets/sport/14.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/svg+xml
cf-ray: 7fbeb1584b7db524-OSL
cf-cache-status: HIT
age: 113
cache-control: public, max-age=14400
etag: W/"64e5abd5-cd6"
expires: Fri, 25 Aug 2023 01:29:47 GMT
last-modified: Wed, 23 Aug 2023 06:48:53 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/assets/sport/1056.svg
6.8 kB URL 20bet.com/assets/sport/1056.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (356)
Hash 728043d4ff17b0e82d0006277a41714d
bb0d8809a56c7b62d0f0052e32b780c3ab2b8002
24ffed584a85ab436b5114ca32c80773b2ac4add291f2f653cd843cd378cfe9b
GET /assets/sport/1056.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/svg+xml
cf-ray: 7fbeb1584b80b524-OSL
cf-cache-status: HIT
age: 5830
cache-control: public, max-age=14400
etag: W/"64e5abc9-2ca"
expires: Fri, 25 Aug 2023 01:29:47 GMT
last-modified: Wed, 23 Aug 2023 06:48:41 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/5352.bc85e6d1bd9c95a4.js
200 OK 4.2 kB URL GET HTTP/2 20bet.com/app/5352.bc85e6d1bd9c95a4.js
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (957), with no line terminators
Hash 73652a1bea18913b6008540b03a81f3c
759b250ce20bdcca4513bb4dd2f9fc52e72636b5
d47a3c67ab17599f42b6dc489063fffdd732af6cad014b6a7e2204375c242291
GET /app/5352.bc85e6d1bd9c95a4.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: application/javascript
cf-ray: 7fbeb14e8851b524-OSL
cf-cache-status: HIT
cache-control: public, max-age=14400
etag: W/"64e5aaed-3bd"
expires: Fri, 25 Aug 2023 01:29:46 GMT
last-modified: Wed, 23 Aug 2023 06:45:01 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/4031.e9cb117188a70f4e.js
5.4 kB URL 20bet.com/app/4031.e9cb117188a70f4e.js
IP
File type ASCII text, with very long lines (1240), with no line terminators
Hash d77acfeb42d79073dcdad8ee633b9010
967a7228538489b861a10eb01835c9041d9fe98f
635221bb64cd42cc70b9dda423412accf7a9e4e875fbe8bcfcf02cc82740fa50
GET /app/4031.e9cb117188a70f4e.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: application/javascript
cf-ray: 7fbeb14e784cb524-OSL
cf-cache-status: HIT
cache-control: public, max-age=14400
etag: W/"64e5aaed-4d8"
expires: Fri, 25 Aug 2023 01:29:46 GMT
last-modified: Wed, 23 Aug 2023 06:45:01 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
bc.game/assets/activity_waterpipe.521dc8c1.png
3.1 kB URL bc.game/assets/activity_waterpipe.521dc8c1.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 244aebcb220f72552d3e5f7357ca768c
240cea9cef8afe1b9618e933fdd53ff717d5f73c
fb7cbeab4dc82aeeab5d05e334da6cf02c9a22d577f9b86b283074a40436ebdc
GET /assets/activity_waterpipe.521dc8c1.png HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Cookie: invitation-code=4cxse6dr; invitation-url=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/webp
content-length: 3112
cache-control: max-age=3600
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=3815
content-disposition: inline; filename="activity_waterpipe.webp"
vary: Accept
etag: "64e6c493-ee7"
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
cf-cache-status: HIT
age: 3544
accept-ranges: bytes
server: cloudflare
cf-ray: 7fbeb15a4a4cb529-OSL
X-Firefox-Spdy: h2
20bet.com/app/3048.0b6ad63982a29d19.js
2.3 kB URL 20bet.com/app/3048.0b6ad63982a29d19.js
IP
File type ASCII text, with very long lines (1997), with no line terminators
Hash 521b33308ffeef58efa55d3422b38c3d
ca98d9efe4bcbcd29935bce59ce2fc1b7dbb43e3
8541a14f9c19657bc2d91f459a16d066b34438c2bbf94f16c684793877ea09f9
GET /app/3048.0b6ad63982a29d19.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: application/javascript
cf-ray: 7fbeb14e682db524-OSL
cf-cache-status: HIT
cache-control: public, max-age=14400
etag: W/"64e5aafa-7cd"
expires: Fri, 25 Aug 2023 01:29:46 GMT
last-modified: Wed, 23 Aug 2023 06:45:14 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/2929.2cce7110bb2a5ad7.js
12 kB URL 20bet.com/app/2929.2cce7110bb2a5ad7.js
IP
File type ASCII text, with very long lines (3698), with no line terminators
Hash b191abf67a39109d2e63ccfe0bd913d8
28ee7e9f42008922a0ade1af112cc87fb786b7f9
254594286838c270f4aef6f66f8b6bb45a23eeec6c74b0dc9e88535e4e57c5ea
GET /app/2929.2cce7110bb2a5ad7.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: application/javascript
cf-ray: 7fbeb14e4fffb524-OSL
cf-cache-status: HIT
age: 851
cache-control: public, max-age=14400
etag: W/"64e5aaf4-e72"
expires: Fri, 25 Aug 2023 01:29:45 GMT
last-modified: Wed, 23 Aug 2023 06:45:08 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=9054575&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_B53E1EDAF54E4251BD1E053EB21A0108&channel_type=code&jsonp=__ulc3osdoc3b
846 B URL api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=9054575&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_B53E1EDAF54E4251BD1E053EB21A0108&channel_type=code&jsonp=__ulc3osdoc3b
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (846), with no line terminators
Hash 9e54a5b6c3c23b65a65e565e6448b8d2
88592c69afca16cc8adb7fff9eb492686bdcf8f4
139bbc93ea3b4300d5af812c540d43a625475bfcc1f7cc3a00c75510a520d78e
GET /v3.6/customer/action/get_dynamic_configuration?license_id=9054575&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_B53E1EDAF54E4251BD1E053EB21A0108&channel_type=code&jsonp=__ulc3osdoc3b HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: frame-ancestors https://20bet.com/;
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: allow-from https://20bet.com/
content-length: 846
date: Thu, 24 Aug 2023 21:29:47 GMT
X-Firefox-Spdy: h2
20bet.com/app/2775.f326cc760924e2ea.js
102 kB URL 20bet.com/app/2775.f326cc760924e2ea.js
IP
File type ASCII text, with very long lines (3432), with no line terminators
Size 102 kB (101631 bytes)
Hash f9f998933f8c2ddfde4758880d499868
9dddaa5bed24712f5581a2c07ec7ddfc5080cc65
321f1247692c0698a21e3f3ee9592c65cf808adbd6d7affb9b32943fcba92cd3
GET /app/2775.f326cc760924e2ea.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: application/javascript
cf-ray: 7fbeb14e3ff2b524-OSL
cf-cache-status: HIT
age: 851
cache-control: public, max-age=14400
etag: W/"64e5aaf4-d68"
expires: Fri, 25 Aug 2023 01:29:45 GMT
last-modified: Wed, 23 Aug 2023 06:45:08 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/v2/ip-data
200 OK 98 kB URL GET HTTP/2 platform.20bet.com/api/v2/ip-data
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (760), with no line terminators
Hash bc541c33663f16ca3f5731575bb012a3
72d61b3699f5d548fc2ff6b631e887a8ceeb1280
d32a70e59c45b59465451cafb8dcce3ee477aa2dec54ccb455c1ec8ce3068efd
GET /api/v2/ip-data HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb147f885b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.galera.bet/library/Promotion%20Images/cassino/Leaderboard-3250/Desktop_3240x506_LB_CashColl.webp?siteid=2
61 kB URL www.galera.bet/library/Promotion%20Images/cassino/Leaderboard-3250/Desktop_3240x506_LB_CashColl.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0f57bfa7df8c186b64c618436063ff79
ef3081756cc74b07f9acaedc308c9330577645a5
e6683af756b48c037f4d049e6357accda487bace41aae3df44e03f250acb3b7a
GET /library/Promotion%20Images/cassino/Leaderboard-3250/Desktop_3240x506_LB_CashColl.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/webp
content-length: 61214
cf-ray: 7fbeb15a19dfb517-OSL
cf-cache-status: REVALIDATED
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "64e35aae-ef1e"
last-modified: Mon, 21 Aug 2023 12:38:06 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Promotion%20Images/cassino/Leaderboard-3250/Desktop_3240x506_LB_CashColl.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Promotion%2520Images/*,https://www.galera.bet/library/Promotion%2520Images/cassino/*,https://www.galera.bet/library/Promotion%2520Images/cassino/Leaderboard-3250/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Promotion%20Images/cassino/Leaderboard-2960/Desktop_3240x506.webp?siteid=2
56 kB URL www.galera.bet/library/Promotion%20Images/cassino/Leaderboard-2960/Desktop_3240x506.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8d5c243606f6275c119b64dbc9b60b18
3bcff1d30b8b0a4bbcaf214154ad5a13f0be9f0f
a6817f99a6b780ed5c335c3c224beb1e84d75db127d603d345627f1f15c9e75e
GET /library/Promotion%20Images/cassino/Leaderboard-2960/Desktop_3240x506.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/webp
content-length: 56040
cf-ray: 7fbeb15a19e0b517-OSL
cf-cache-status: REVALIDATED
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "64b547e2-dae8"
last-modified: Mon, 17 Jul 2023 13:53:38 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Promotion%20Images/cassino/Leaderboard-2960/Desktop_3240x506.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Promotion%2520Images/*,https://www.galera.bet/library/Promotion%2520Images/cassino/*,https://www.galera.bet/library/Promotion%2520Images/cassino/Leaderboard-2960/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
20bet.com/assets/sport/1.svg
86 kB URL 20bet.com/assets/sport/1.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 9de95e739ca71ccb6c77a9da329e4c4b
6b9888bfd813ee1d24a79fe32e7f297a6e45512b
4f21226d854a383cf6e401fc9eeae03421d28753e4ecd76d1ab2ba6fa844c0ec
GET /assets/sport/1.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/svg+xml
cf-ray: 7fbeb1583b5fb524-OSL
cf-cache-status: HIT
age: 1111
cache-control: public, max-age=14400
etag: W/"64e5abcf-8f2"
expires: Fri, 25 Aug 2023 01:29:47 GMT
last-modified: Wed, 23 Aug 2023 06:48:47 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.galera.bet/library/Banners/Rush%20Fever%207s/Desktop_3240x506_RUSH_FEVER.webp?siteid=2
72 kB URL www.galera.bet/library/Banners/Rush%20Fever%207s/Desktop_3240x506_RUSH_FEVER.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash c2e53774ded57ce74a7c8e89ce709b43
06caa1148a9e27671c6ea744281636983efaad48
20f68027df7483dcedb11aedcde9ea6a39bafa01cfe4ed481fdb327c0c413637
GET /library/Banners/Rush%20Fever%207s/Desktop_3240x506_RUSH_FEVER.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/webp
content-length: 72356
cf-ray: 7fbeb15a19e8b517-OSL
cf-cache-status: REVALIDATED
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "64c36da2-11aa4"
last-modified: Fri, 28 Jul 2023 07:26:26 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Banners/Rush%20Fever%207s/Desktop_3240x506_RUSH_FEVER.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Banners/*,https://www.galera.bet/library/Banners/Rush%2520Fever%25207s/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Banners/Demi%20Gods%202/Desktop_3240x506_BOOK_DEMIGO.webp?siteid=2
90 kB URL www.galera.bet/library/Banners/Demi%20Gods%202/Desktop_3240x506_BOOK_DEMIGO.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash ebecca9102d33919048611b5134a8753
c2357a188f7ec2e8b7167e17a3fe090817a3b379
9d24522c9d0806daceed6f03d1ee9d3b1aa6818db933fdb9b97068585f0cc372
GET /library/Banners/Demi%20Gods%202/Desktop_3240x506_BOOK_DEMIGO.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:48 GMT
content-type: image/webp
content-length: 89680
cf-ray: 7fbeb15a19ecb517-OSL
cf-cache-status: REVALIDATED
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "64de38b7-15e50"
last-modified: Thu, 17 Aug 2023 15:11:51 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Banners/Demi%20Gods%202/Desktop_3240x506_BOOK_DEMIGO.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Banners/*,https://www.galera.bet/library/Banners/Demi%2520Gods%25202/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.galera.bet/library/Promos/wheel-june-banners/Desktop_3240x506WHEEL.webp?siteid=2
52 kB URL www.galera.bet/library/Promos/wheel-june-banners/Desktop_3240x506WHEEL.webp?siteid=2
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash c9b54941bd6c6d8b9f8514b9843a2ab0
640a6c01c156d9e2d0069e343c44125d3e9cb8ed
5bf83675ba52301bd250664a5a7c8a753036ae394b5aa15b17e920078eac83cd
GET /library/Promos/wheel-june-banners/Desktop_3240x506WHEEL.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:48 GMT
content-type: image/webp
content-length: 52532
cf-ray: 7fbeb15a29f5b517-OSL
cf-cache-status: REVALIDATED
accept-ranges: bytes
cache-control: max-age=3600,max-stale=3600
etag: "64a56082-cd34"
last-modified: Wed, 05 Jul 2023 12:22:26 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cache-tag: https://www.galera.bet/library/Promos/wheel-june-banners/Desktop_3240x506WHEEL.webp,https://www.galera.bet/*,https://www.galera.bet/library/*,https://www.galera.bet/library/Promos/*,https://www.galera.bet/library/Promos/wheel-june-banners/*
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
20bet.com/app/2742.3683f9d2c2e6b4b2.js
114 kB URL 20bet.com/app/2742.3683f9d2c2e6b4b2.js
IP
File type ASCII text, with very long lines (572), with no line terminators
Size 114 kB (113547 bytes)
Hash 53ef53feb59a58415f7578d32d316cbc
abdda18eafd04b47e18463c69745a59578ee897b
f5138a3b83c65d8ff4c2322a0ec1a037bbc0be819736fc53c4a98ef226c1aa6d
GET /app/2742.3683f9d2c2e6b4b2.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: application/javascript
cf-ray: 7fbeb14e4808b524-OSL
cf-cache-status: HIT
cache-control: public, max-age=14400
etag: W/"64e5aaed-23c"
expires: Fri, 25 Aug 2023 01:29:46 GMT
last-modified: Wed, 23 Aug 2023 06:45:01 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
bc.game/api/user/config/
104 kB IP
File type JSON data\012- , ASCII text, with no line terminators
Size 104 kB (104406 bytes)
Hash e20083a0fa2399fcbc11d562116e93c2
024afe42bd73f2ad05ad107e29d57287d661ff09
e704bdbc5339ceecd2534bfb8f0b2d6fbbbde676216d2d0e1b2cc176ab8470a1
GET /api/user/config/ HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: application/json
set-cookie: SESSION=01pisanjlsioqr18a2973f90927b1fb22d8d32e08f17605b11; Path=/; Domain=bc.game; Max-Age=315360000; Expires=Sun, 21 Aug 2033 21:29:40 GMT; Secure; HttpOnly; SameSite=Lax
cache-control: no-store
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb12daba5b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
bc.game/assets/chunk-c44e3b1a.js
147 kB URL bc.game/assets/chunk-c44e3b1a.js
IP
File type Unicode text, UTF-8 text, with very long lines (36889)
Size 147 kB (146593 bytes)
Hash 19dddbba95df03c90b109b6b81851e2e
1627a397abfff4615af9f379ed5808ff24f4466d
3cf726ca6c5a4e28e06ddbc52b604f06cd91afddf8f6932cd9655e65e5fca884
GET /assets/chunk-c44e3b1a.js HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/assets/chunk-ffcc0521.js
Cookie: invitation-code=4cxse6dr; invitation-url=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:42 GMT
content-type: application/javascript
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
vary: Accept-Encoding
etag: W/"64e6c493-26eeb"
cache-control: max-age=3600
cf-cache-status: HIT
age: 3528
server: cloudflare
cf-ray: 7fbeb1359d92b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/vueNewGamesAmount.49b4859e.js?v10263
82 kB URL www.brazino-cdnsrv-cst.org/build/vueNewGamesAmount.49b4859e.js?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash c5ef822ff19af3a03410a3ac3b6642b7
54589d575eafd6017f963f02f2572b265e983f2b
a3406d3ef028871fa7c7d6d603237115a16bcdf58dcac583d268d39859b9979f
GET /build/vueNewGamesAmount.49b4859e.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"64c10040-1293"
expires: Thu, 25 Jul 2024 11:36:09 GMT
last-modified: Wed, 26 Jul 2023 11:15:12 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 4081de63-a136-422f-ace5-49cbf2ee29b5-2072023
server: CDN77-Turbo
x-77-nzt: AblMCRTUI0r/m8YmAA
x-77-nzt-ray: af585630e3980396c5cbe764294b4e00
x-accel-expires: @1721907369
x-accel-date: 1690371369
x-cache: HIT
x-age: 2541211
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/assets/sport/15.svg
85 kB URL 20bet.com/assets/sport/15.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (372)
Hash 2c30084a8045045cde72ea1b33f34f37
cabb37d80f3349f32e1eea7be7badb7abbcbe4c0
748b90f4346dae693d09e66a3a7b11548e8e4e689d4c2fba22d8c44d4d1fff01
GET /assets/sport/15.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/svg+xml
cf-ray: 7fbeb1583b62b524-OSL
cf-cache-status: HIT
age: 4538
cache-control: public, max-age=14400
etag: W/"64e5abbb-a14"
expires: Fri, 25 Aug 2023 01:29:47 GMT
last-modified: Wed, 23 Aug 2023 06:48:27 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
15 kB URL fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 15:24:26 GMT
expires: Fri, 23 Aug 2024 15:24:26 GMT
cache-control: public, max-age=31536000
age: 21922
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
16 kB URL fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Aug 2023 05:45:56 GMT
expires: Wed, 21 Aug 2024 05:45:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 229432
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/webworker.js?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq
112 B URL www.google.com/recaptcha/api2/webworker.js?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq
IP
File type ASCII text, with no line terminators
Hash 9850c72f212186063d38d2b8ff0c678b
9cf08c9995213b8252aaed87931c91e456b8b6b2
13f425cbab48a8199950e3873a94b5f8faa294a66f751cfe15423d34dfc98ff8
GET /recaptcha/api2/webworker.js?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeYXFIiAAAAAEinEF15OsBYNq5UXwmor7zuYO0g&co=aHR0cHM6Ly8yMGJldC5jb206NDQz&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&cb=7741dnamr5un
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
expires: Thu, 24 Aug 2023 21:29:48 GMT
date: Thu, 24 Aug 2023 21:29:48 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/logo_48.png
2.2 kB URL www.gstatic.com/recaptcha/api2/logo_48.png
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Aug 2023 14:42:45 GMT
expires: Fri, 25 Aug 2023 14:42:45 GMT
cache-control: public, max-age=604800
age: 542823
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=pt
38 kB URL platform.20bet.com/api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=pt
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash a5a40714adc4e7ff44e0eb4e5d44b07d
d09bf2620ac3799edc632a6bee6c00c0333195ed
4f1345aa0ec4a330e5be2bd9a386c3d951d1cca91425998ccd5c770af843f05b
GET /api/event/list?sportId_eq=1&period=5&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&status_in%5B%5D=0&main=1&relations%5B%5D=odds&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=tips&relations%5B%5D=sportCategories&relations%5B%5D=withMarketsCount&lang=pt HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:48 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb159fdb4b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/8319.575dc27853b4c0fa.js
190 kB URL 20bet.com/app/8319.575dc27853b4c0fa.js
IP
File type ASCII text, with very long lines (9721), with no line terminators
Size 190 kB (190100 bytes)
Hash 624961dc5c1a262c151cc5940c1784e5
2a5c835227d912069052d27ab569bab4741d77c9
a99cdcbc63a92ddf11923516b0029220cc61c102da247613cf230e25a8812b76
GET /app/8319.575dc27853b4c0fa.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: application/javascript
cf-ray: 7fbeb1505a68b524-OSL
cf-cache-status: HIT
age: 851
cache-control: public, max-age=14400
etag: W/"64e5aafa-25f9"
expires: Fri, 25 Aug 2023 01:29:46 GMT
last-modified: Wed, 23 Aug 2023 06:45:14 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
95490a17-85bd-442a-90a1-245153092f51.snippet.antillephone.com/sealassets/94d93925ff2e847619eb1e80ee441816-www.galera.bet-d2cc940eb8c4343fa7cbb5fba8fe2a972a7e2e4d11da24988e6e617e31352c00722252813c30f48cf57f02dc58c9b142-c2VhbC5wbmc%3D?status=valid
46 kB URL 95490a17-85bd-442a-90a1-245153092f51.snippet.antillephone.com/sealassets/94d93925ff2e847619eb1e80ee441816-www.galera.bet-d2cc940eb8c4343fa7cbb5fba8fe2a972a7e2e4d11da24988e6e617e31352c00722252813c30f48cf57f02dc58c9b142-c2VhbC5wbmc%3D?status=valid
IP
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 375b5b5bcd1d5179f5b789e4c28ca6df
f52bfd097b13f83fa43714f59786efa4082f55a1
f7acaa7ace617964cd79de3287bfa740f1d3fbcbed82ea1d09cd94058d4b1281
GET /sealassets/94d93925ff2e847619eb1e80ee441816-www.galera.bet-d2cc940eb8c4343fa7cbb5fba8fe2a972a7e2e4d11da24988e6e617e31352c00722252813c30f48cf57f02dc58c9b142-c2VhbC5wbmc%3D?status=valid HTTP/1.1
Host: 95490a17-85bd-442a-90a1-245153092f51.snippet.antillephone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 46382
date: Thu, 24 Aug 2023 21:29:48 GMT
x-powered-by: Express
cache-control: max-age=1200
etag: W/"b52e-9Sv9CXsT+D+kNxT1l4bvpAgvVaE"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb15dbb5f9a2a-FRA
x-cache: Miss from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MTLZu5VQ3-v1Y72sL1gHg8NOJwtqDmIbghpiy7l5FNzHMHr5_O8OSg==
X-Firefox-Spdy: h2
95490a17-85bd-442a-90a1-245153092f51.snippet.antillephone.com/54f396e0-b046-49b1-9cb3-0c69281d7ea9-beacon.png
68 B URL 95490a17-85bd-442a-90a1-245153092f51.snippet.antillephone.com/54f396e0-b046-49b1-9cb3-0c69281d7ea9-beacon.png
IP
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash e679fbd466a2d656f194a5da4fa083cd
2aa795c7607aa6ea41313be88f1b7a9c1ab516b3
f309b7c03d9cae63a9bedbee6ed655f3dbcdb194132943639344dead5f3b9710
GET /54f396e0-b046-49b1-9cb3-0c69281d7ea9-beacon.png HTTP/1.1
Host: 95490a17-85bd-442a-90a1-245153092f51.snippet.antillephone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 68
date: Wed, 23 Aug 2023 13:21:14 GMT
last-modified: Tue, 15 Dec 2020 08:04:53 GMT
etag: "e679fbd466a2d656f194a5da4fa083cd"
cache-control: no-cache, no-store, must-revalidate
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4wWGFPA60fLmQ8Ru2-qdXbHVaumjkUQG2mA-NmySlTeol4Nd7W_fhA==
age: 115715
X-Firefox-Spdy: h2
c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/54f396e0-b046-49b1-9cb3-0c69281d7ea9-beacon.png
68 B URL c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com/54f396e0-b046-49b1-9cb3-0c69281d7ea9-beacon.png
IP
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash e679fbd466a2d656f194a5da4fa083cd
2aa795c7607aa6ea41313be88f1b7a9c1ab516b3
f309b7c03d9cae63a9bedbee6ed655f3dbcdb194132943639344dead5f3b9710
GET /54f396e0-b046-49b1-9cb3-0c69281d7ea9-beacon.png HTTP/1.1
Host: c4457c89-e5ba-4d22-92e5-c2959310ee85.snippet.antillephone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 68
date: Fri, 04 Aug 2023 12:40:46 GMT
last-modified: Tue, 15 Dec 2020 08:04:53 GMT
etag: "e679fbd466a2d656f194a5da4fa083cd"
cache-control: no-cache, no-store, must-revalidate
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZgoFnjxQb7zo0vHh6la4PqfY5tvOTaVMnKHH_LpN5pO6hwGJwbvCuA==
age: 1759743
X-Firefox-Spdy: h2
20bet.com/app/633.928c78008ee51990.js
1.8 kB URL 20bet.com/app/633.928c78008ee51990.js
IP
File type ASCII text, with very long lines (3402), with no line terminators
Hash 125635313a46df79ee9c86e49827aac3
cccf6297f595589d9bc368440b3e626f67f8ce13
6122c56eee8e194ab7bd7419a05ad0fcb8a7f4f3589cec5fecf7ed4f765edd3d
GET /app/633.928c78008ee51990.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:48 GMT
content-type: application/javascript
cf-ray: 7fbeb15b0f01b524-OSL
cf-cache-status: HIT
cache-control: public, max-age=14400
etag: W/"64e5aae0-d4a"
expires: Fri, 25 Aug 2023 01:29:48 GMT
last-modified: Wed, 23 Aug 2023 06:44:48 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 66 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 52f3013ce9ebc725e549e61d50c13396
05fb4bc37cbc2a781752c86c7540fcd21528d791
9781e12820f449fec4ba3c3f2bf584c7533c083f96615b4769d615146f27751e
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 23971
Origin: https://brazino777.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:48 GMT
content-type: text/plain;charset=UTF-8
content-length: 66
access-control-allow-origin: https://brazino777.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 73 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 980ac7b9ebe43a82d90bf60df15e4fe8
a6601eb69323883cce37ff4b999a0b01677e3000
3c2076aeac85520a6442f69a9fa0742ab81791dce2fb3482629c7567dca85c16
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 10086
Origin: https://brazino777.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:48 GMT
content-type: text/plain;charset=UTF-8
content-length: 73
access-control-allow-origin: https://brazino777.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.sectigo.com/
472 B IP
Hash af630c6883df718dbd778e2fe07b61f0
20022cb09ce977c68ebdc28155508f5e71ebcc39
8f6a1fc8e66032f4ad245a5f392c7c45c0adf11e49d8df21ca597aeaf6362780
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:48 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 23 Aug 2023 11:00:06 GMT
Expires: Wed, 30 Aug 2023 11:00:05 GMT
Etag: "20022cb09ce977c68ebdc28155508f5e71ebcc39"
Cache-Control: max-age=481370,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7fbeb15ffdeffabc-OSL
20bet.com/app/1969.ce742f9cd83fe55c.js
22 kB URL 20bet.com/app/1969.ce742f9cd83fe55c.js
IP
File type ASCII text, with very long lines (670), with no line terminators
Hash 2ef90ed3db1163f12fbf6969a078f58a
e74126514fc439417ac2e5c67cd63598808465d6
82c1be7391c56ad5084303857bac750998d18af3f9a8b30d66201b0e6dcc834d
GET /app/1969.ce742f9cd83fe55c.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: application/javascript
cf-ray: 7fbeb1504a47b524-OSL
cf-cache-status: HIT
cache-control: public, max-age=14400
etag: W/"64e5aaf4-29e"
expires: Fri, 25 Aug 2023 01:29:46 GMT
last-modified: Wed, 23 Aug 2023 06:45:08 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
oapi-cur.techonlinecorp.com/socket.io/1/websocket/c46b5993-a856-44af-93b3-cc8f4a4f153b
0 B URL oapi-cur.techonlinecorp.com/socket.io/1/websocket/c46b5993-a856-44af-93b3-cc8f4a4f153b
IP
ASN #43937 Playtech Estonia OU
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/1/websocket/c46b5993-a856-44af-93b3-cc8f4a4f153b HTTP/1.1
Host: oapi-cur.techonlinecorp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.galera.bet
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zXulBjyzYsF18AKSpVDNZw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
upgrade: websocket
connection: upgrade
sec-websocket-accept: /b3HoEImEir/L11QfcCWdxPn0sY=
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 73 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 91cb63f8168b4d97093c5f176debeb49
e947b57e19c6e0c5c9efedb1f03eca3159bc5748
563e33547619c168f6fd0907b4987f9242bc91f42663f30a695be08c6056a231
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 31151
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:48 GMT
content-type: text/plain;charset=UTF-8
content-length: 73
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 71 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash a690257cde2a176bb87ae9156a7aa769
d353db9b2153e976ccdfa360cc0c772556458d01
abe4325f47aa0409c67bb21e5ac4c4c459e6053896f0c687f8357e9c3974135e
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 43973
Origin: https://brazino777.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:48 GMT
content-type: text/plain;charset=UTF-8
content-length: 71
access-control-allow-origin: https://brazino777.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=300068.12.12.45062.5598.2441.1580.16.3.3.3.244.4158&group_id=24&jsonp=__lc_static_config
1.4 kB URL api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=300068.12.12.45062.5598.2441.1580.16.3.3.3.244.4158&group_id=24&jsonp=__lc_static_config
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (4215), with no line terminators
Hash 7b2a8d254e13d67704e14e8ae42ed954
6f7cb1ebb0e8f61500137f604703c102043349fd
3221d54542c0c9587389486408aa99de755948ac33b8c1e7bc81576c560c718c
GET /v3.4/customer/action/get_configuration?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=300068.12.12.45062.5598.2441.1580.16.3.3.3.244.4158&group_id=24&jsonp=__lc_static_config HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2024-05-31
vary: Accept-Encoding
content-length: 1446
cache-control: public, max-age=599
expires: Thu, 24 Aug 2023 21:39:48 GMT
date: Thu, 24 Aug 2023 21:29:49 GMT
X-Firefox-Spdy: h2
newassets.hcaptcha.com/captcha/v1/da4bf23/hcaptcha.js
100 kB URL newassets.hcaptcha.com/captcha/v1/da4bf23/hcaptcha.js
IP
File type Unicode text, UTF-8 text, with very long lines (41625)
Hash 909181199b2a78d07457976dc392e6a5
a673e2ad9a15481b41850767f5e07d67b387a918
05beaddc239fc887b3c296862a635b1d2e9abee741a5372cf1cb011e3e547b43
GET /captcha/v1/da4bf23/hcaptcha.js HTTP/1.1
Host: newassets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/captcha/v1/da4bf23/static/hcaptcha.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:49 GMT
content-type: application/javascript
cf-ray: 7fbeb16148210b4d-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 242
cache-control: max-age=1209600
etag: W/"b83eb2d8ed7249381595404f27bddfbf"
last-modified: Thu, 24 Aug 2023 16:20:32 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
cross-origin-resource-policy: cross-origin
x-amz-cf-id: cQ4wx8HGSRVTbL2PcCLYG3rzISryhaE-7SOyGHD0G2NwdnDldldHFg==
x-amz-cf-pop: OSL50-P1
x-amz-server-side-encryption: AES256
x-amz-version-id: PRJ7Mc0GFo2YFDLoiHHwMxouWwAw3KAL
x-cache: Miss from cloudfront
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
dwmu1hf7ovvid.cloudfront.net/flags/cz.png
536 B URL dwmu1hf7ovvid.cloudfront.net/flags/cz.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash b9f89de32552bafe9dd02bb0795274d2
58038d667c834e34f1ac1cbb5ecc6f351e6bd1f2
12bb5378964a89824305055a839a875d109cc49c7ff7c2c1324294e72907de74
GET /flags/cz.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 536
date: Thu, 24 Aug 2023 10:35:12 GMT
last-modified: Wed, 15 Jun 2022 14:16:00 GMT
etag: "b9f89de32552bafe9dd02bb0795274d2"
x-amz-version-id: 6.3WYtQ3linFER18hyll4UPfqnITMgvo
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8NiUmYZeMzZt82IEXn5o_FLT7lMk0_pqAC51Rw3qSj0f1cDRiHFfeg==
age: 39278
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/au.png
1.8 kB URL dwmu1hf7ovvid.cloudfront.net/flags/au.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash e1382ea1b61df7a2e7456c9764d20b1a
0960cd6f4c75bfcf0d79e7e9f46dbef4b6ae89ce
ce8dd1c549a3c0a783c8acdbe404df1e8ea4bf178e0094ecf6fcf43c3d866f11
GET /flags/au.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1760
date: Thu, 24 Aug 2023 06:18:48 GMT
last-modified: Wed, 15 Jun 2022 14:15:42 GMT
etag: "e1382ea1b61df7a2e7456c9764d20b1a"
x-amz-version-id: wNU_fxiw0tCktl2Jgd_Desk998SDtzQ2
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: J5Epy49yigWUUnmGCxVzURA-yomPRTzsC1C5ClZNXSSkYe3Ha48z7g==
age: 54662
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/co.png
273 B URL dwmu1hf7ovvid.cloudfront.net/flags/co.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash dc17b7a55e4e4841792d3f389930af15
5e7919f1a21e94b179265684b28f724c882d0417
cb8d281b481b9e0050d0336a89bf424cb8c6633b2f81712c5eacbc3ba336fec4
GET /flags/co.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 273
date: Thu, 24 Aug 2023 18:40:25 GMT
last-modified: Wed, 15 Jun 2022 14:15:57 GMT
etag: "dc17b7a55e4e4841792d3f389930af15"
x-amz-version-id: ml9oepTQfpW8DTrKzf2nccqQfZvYSKdD
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uZzZqPCteiKG8cUocLh-mUYV8WgRkT9lGtlvd0nf1uhjVtSrLG9o5w==
age: 10165
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/hr.png
1.7 kB URL dwmu1hf7ovvid.cloudfront.net/flags/hr.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 2b691e56b28baa1c720e255e771175f9
8ef51c7392bade5e7bb1baab3ecad2346d78c534
44080d4b5a957c389f9d7e4353b88897a2c0c0281fbba157147a93057f562a04
GET /flags/hr.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1744
date: Thu, 24 Aug 2023 09:12:42 GMT
last-modified: Wed, 15 Jun 2022 14:16:17 GMT
etag: "2b691e56b28baa1c720e255e771175f9"
x-amz-version-id: sZE2AmhYUB4Y1O7iZBH0uAssU5WlbP6D
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: q3-hsoV3V3A6zDditVSSDT03Wgwyd3ZOjK2q7oE0Pbez95FSvF3jZg==
age: 44228
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/ar.png
1.2 kB URL dwmu1hf7ovvid.cloudfront.net/flags/ar.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 5dd48ab698f82e40e48e0da526a12a25
f0daeebe88202d006ad8e947d469a83ee67881f5
99573c35dbecd28b3c2746f82cbef9a4312cb1ff18d8d0b8437ebe4a22a4e3a0
GET /flags/ar.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1169
date: Wed, 23 Aug 2023 22:15:20 GMT
last-modified: Wed, 15 Jun 2022 14:15:41 GMT
etag: "5dd48ab698f82e40e48e0da526a12a25"
x-amz-version-id: sS950.g..7yoUI3k9yuEzQMinwtQe2GW
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: V4CVhuR5iUOB_xY3ijHs4DK_QuXCfQui7OZcMhwpM5_WgSGc-zqb9g==
age: 83670
X-Firefox-Spdy: h2
unpkg.com/swiper@10.2.0/swiper-bundle.min.js
200 OK 44 kB URL GET HTTP/2 unpkg.com/swiper@10.2.0/swiper-bundle.min.js
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (65280)
Hash 2079dc89cc747e9737986b0fbb48aa92
977fd3d027b8f2348270c8e564aa33d03c7f51c4
5b511ebcc9d064aa644dd6c0edfcb3095954f19324fb10d9a14fa47d01ddef43
GET /swiper@10.2.0/swiper-bundle.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.galera.bet/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"22786-l3/T0Ce48jSCcMjlZKoz0Dx/UcQ"
via: 1.1 fly.io
fly-request-id: 01H81CPA7AXHHB60CJF3GRG0X8-fra
cf-cache-status: HIT
age: 648596
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7fbeb1235c650b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/3d713fdae460fc77be5dac4f5a4f1861.svg?v10263
31 kB URL www.brazino-cdnsrv-cst.org/files/categories/3d713fdae460fc77be5dac4f5a4f1861.svg?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash e339f05372b28c534e65f13e0159402b
0de79bc12ecfe861623a29d3761cccea54b8a9af
7c773cd412127cd2ac4c2e0794faed0f235c78414af76796e449d28d30b0b7e8
GET /files/categories/3d713fdae460fc77be5dac4f5a4f1861.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"63d2ab71-16166"
expires: Sat, 27 Jan 2024 03:18:54 GMT
last-modified: Thu, 26 Jan 2023 16:33:53 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: e3d80458-707f-4b97-949d-687fe1501e91-272023
server: CDN77-Turbo
x-77-nzt: AblMCRTU1HT/KokUAQ
x-77-nzt-ray: af585630e3980396c8cbe7640fa3de09
x-accel-expires: @1706325534
x-accel-date: 1674789534
x-cache: HIT
x-age: 18123050
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/us.png
2.1 kB URL dwmu1hf7ovvid.cloudfront.net/flags/us.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash d257817e24f52ebd82e88ae24fe27ac0
28421c641f1e2d419b79a100d2b7b0aab41dc158
08cbebebfe13b0760551d782b07f7e3f0ab4dcf10d9050a44603036f49279c7e
GET /flags/us.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2092
date: Wed, 23 Aug 2023 22:15:20 GMT
last-modified: Wed, 15 Jun 2022 14:17:05 GMT
etag: "d257817e24f52ebd82e88ae24fe27ac0"
x-amz-version-id: HLC0fRwvUSHoo.u_OSHfcH5VitbO_t9A
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gBotqydOtnjkLevlfq4diXK_VCZkHvysdCDoR1ubOqY9zVGyHPB34g==
age: 83670
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/rs.png
3.2 kB URL dwmu1hf7ovvid.cloudfront.net/flags/rs.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 4fe8dc02f35912ee2d1e198b31c33e81
57306ac6e604424637a4ec38377ef128dde9ca52
a54f6725d24da13098f72f734ed706cc5551dda0a07d4a44e17f64c303752f2f
GET /flags/rs.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3226
date: Thu, 24 Aug 2023 08:11:04 GMT
last-modified: Wed, 15 Jun 2022 14:16:48 GMT
etag: "4fe8dc02f35912ee2d1e198b31c33e81"
x-amz-version-id: WSibJdfAwQ.GmkpVTjDMObk3sKcoWPMk
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: e2PvieOuu6ok_Gx5STn9tHpoDVkUYXTE-NBTiU21VcRGva-6UWwlAw==
age: 47926
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/es.png
2.0 kB URL dwmu1hf7ovvid.cloudfront.net/flags/es.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash f4b061cf013bf717c8fe07bcacb64f2c
4529ee1ef8bef18b012fa88f7ee8b9ae679fe576
1e548d17ca00cbe0cfb560ace14de36520f86471d6afbacad4e88724452290fe
GET /flags/es.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1958
date: Wed, 23 Aug 2023 22:15:20 GMT
last-modified: Wed, 15 Jun 2022 14:16:05 GMT
etag: "f4b061cf013bf717c8fe07bcacb64f2c"
x-amz-version-id: K2tBNU_twfoc4lY_1jlLerOFBHpBpwU_
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 61Koavdf4pHYozoQC8zhpqAHPcn7Bw-lXHSW6Nov-y_9KXdQF3xWSg==
age: 83669
X-Firefox-Spdy: h2
d3c3rwqla6qxaf.cloudfront.net/games-images/spinomenal/bookoframpage/190x190/BookOfRampage.webp
10 kB URL d3c3rwqla6qxaf.cloudfront.net/games-images/spinomenal/bookoframpage/190x190/BookOfRampage.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3a6e190e4d86c5c68c6aa01b6315ade8
07fa4385eaa257c475d2f6e5f6bc5c5cfd5c060c
cf063883cd8d6b8e0a60bd7eda82ff474b4d19e5fea01cb26eb0934801b79a48
GET /games-images/spinomenal/bookoframpage/190x190/BookOfRampage.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 10400
last-modified: Mon, 11 Apr 2022 19:47:59 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Aug 2023 08:25:10 GMT
etag: "3a6e190e4d86c5c68c6aa01b6315ade8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DDxCTgF8IeWgsoDzX5bXmca016f2opKQ3TKOP7_AFTW-n9GiK4Vx6Q==
age: 47079
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/bg.png
261 B URL dwmu1hf7ovvid.cloudfront.net/flags/bg.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 57fb0c41e569a61b9bf75dd9f89e559d
503b96bfe25ce7b6f4546680ce82bea71e772b25
cef079155b5504c4df7a8bdb46ceb166986e8c575ed76ab2bc912efff67f89ca
GET /flags/bg.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 261
date: Wed, 23 Aug 2023 22:15:20 GMT
last-modified: Wed, 15 Jun 2022 14:15:47 GMT
etag: "57fb0c41e569a61b9bf75dd9f89e559d"
x-amz-version-id: zl8NYyEeNSgU4NoKymt79EuwneWx_Y9q
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2NlXAbWY_8aJ45dcrfYCcMZvYTaAYHzxb9MjoocrikFT6tqLgCXqXA==
age: 83670
X-Firefox-Spdy: h2
d3c3rwqla6qxaf.cloudfront.net/games-images/felixgaming/itsajoker/190x190/Joker.webp
15 kB URL d3c3rwqla6qxaf.cloudfront.net/games-images/felixgaming/itsajoker/190x190/Joker.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 62fd494100eb01c830b0a8664a91c605
107ac974f4eebbb1cb9442d24cc45e5cc7ccbdfc
cc66c85471a0a984a64b3a73a97ec96725a8a1fcfe9bd9e99d19983b70e39d45
GET /games-images/felixgaming/itsajoker/190x190/Joker.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 14930
last-modified: Mon, 11 Apr 2022 19:50:31 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Aug 2023 08:25:10 GMT
etag: "62fd494100eb01c830b0a8664a91c605"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: f4xJJD413ZRnPLpl7-cG3jUx1zHCtdp8myKl5NObOKAMVnD1moyWiw==
age: 47079
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/gb.png
1.3 kB URL dwmu1hf7ovvid.cloudfront.net/flags/gb.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash a03fb66604d648084d118732ab676790
ffd757b3b1f0b41609ae0318852b87bcce74ac7f
f019b1d533f99806b6c1b01d626623367767f588f9da7ce6e38c5598cb1cb9a2
GET /flags/gb.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1319
date: Thu, 24 Aug 2023 21:01:10 GMT
last-modified: Wed, 15 Jun 2022 14:16:10 GMT
etag: "a03fb66604d648084d118732ab676790"
x-amz-version-id: YlhXcUVS1ur8u.rJHhG7vdfixx_ztK5V
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tGXrljawncFx-jVZ3rCA9WBIyO73JO9DYcjluk2_Vw-x13tFgus6Fw==
age: 1720
X-Firefox-Spdy: h2
d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/johnnycash/190x190/JohnnyCash.webp
12 kB URL d3c3rwqla6qxaf.cloudfront.net/games-images/bgaming/johnnycash/190x190/JohnnyCash.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 85d3d2ecb88c1ab31a1c3274da468bd3
b50b814cffdc565a2805f2afda869c8c8fd77528
f07f273d0bebf1787454067aed72df70125d2a1e3b59b64a81c7988e2d75fbfb
GET /games-images/bgaming/johnnycash/190x190/JohnnyCash.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 11734
last-modified: Mon, 11 Apr 2022 19:33:24 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Aug 2023 08:25:10 GMT
etag: "85d3d2ecb88c1ab31a1c3274da468bd3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oj6Oaa2onwhCRsEr-MiZM5bxB0Aqt3l73YIpN6P3z56qP1VuGqhjxA==
age: 47079
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/nl.png
262 B URL dwmu1hf7ovvid.cloudfront.net/flags/nl.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash d0fe30e7dd9c28968625e352db3a2bde
daba046b70a5acf7fcca89a71272cf13f63f80ba
9478bb673fdcb1a775479a02448c6b10858e92e19994df4d20fde33ef5fdd263
GET /flags/nl.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 262
date: Thu, 24 Aug 2023 12:17:26 GMT
last-modified: Wed, 15 Jun 2022 14:16:40 GMT
etag: "d0fe30e7dd9c28968625e352db3a2bde"
x-amz-version-id: gnV8vGdjZ.mPHWO0wH5BgNESxhBpIvhH
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: N8h4CgogieyPiV09VWiaiMkpLRWQA3D7vN8xFmLdZwS8QwJ9mKYJMA==
age: 33144
X-Firefox-Spdy: h2
d3c3rwqla6qxaf.cloudfront.net/games-images/3oaks/tigerjungle/190x190/tiger_jungle.webp
14 kB URL d3c3rwqla6qxaf.cloudfront.net/games-images/3oaks/tigerjungle/190x190/tiger_jungle.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b94817bede31995854deb11f5c05c012
41d2c10cf798a4779388484d5ec7fa244ceeb4c8
871d9bb039cf32fbc583c695da8a470a4e966397f9971841b7bc1bc14079ead2
GET /games-images/3oaks/tigerjungle/190x190/tiger_jungle.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 14510
last-modified: Fri, 04 Nov 2022 09:10:37 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Aug 2023 08:25:10 GMT
etag: "b94817bede31995854deb11f5c05c012"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DGMekUiT0aGalkgEJ29bTWv6sS7h71YV6ttvTlm6GVeoRx6wS1RHlw==
age: 47079
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/gr.png
421 B URL dwmu1hf7ovvid.cloudfront.net/flags/gr.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 9469d4de7d7af0dbb2d78f43f3e69b70
661b564215cc24c54a589eb2eef263ebfcb1c3be
02c63b2e472190166bd0f0fde1b6d98c42e6741988cd13732d7424805d4af154
GET /flags/gr.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 421
last-modified: Wed, 15 Jun 2022 14:16:14 GMT
x-amz-version-id: OO6INxNVuj1pCtPx0xZbS1b3Liwp.xPI
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Aug 2023 20:52:10 GMT
etag: "9469d4de7d7af0dbb2d78f43f3e69b70"
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: U0hZtBWPuK43FMqf8gQCkSbIPv-Kngg5PaD6fFP9vD9IacQyYObnFA==
age: 2260
X-Firefox-Spdy: h2
d3c3rwqla6qxaf.cloudfront.net/games-images/felixgaming/20boosthot/190x190/20BoostHot.webp
11 kB URL d3c3rwqla6qxaf.cloudfront.net/games-images/felixgaming/20boosthot/190x190/20BoostHot.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f8b44d75708660504567da4ae43d1b0a
9335a59f3eb28f1fd525ecb40afae1877bb9730b
80870ea6a60831baf5a061d022865bafef3eae70a7bb55d4d91a044f4eb27c28
GET /games-images/felixgaming/20boosthot/190x190/20BoostHot.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 11390
last-modified: Fri, 24 Jun 2022 01:36:35 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Aug 2023 08:25:10 GMT
etag: "f8b44d75708660504567da4ae43d1b0a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tHGSTgGWtWZ3A6aGFJaq2lUcIswP5wjFQDg1dmyWDChx9H_6AzBpUA==
age: 47079
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/ru.png
261 B URL dwmu1hf7ovvid.cloudfront.net/flags/ru.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 548349bacb63e9bf2c3be653c4d2eb67
b521477850810033511c61728958df10c1ca2781
b50831ab58847451c3c4247b1907ca55168e9957756e019340042d5cf387e379
GET /flags/ru.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 261
date: Wed, 23 Aug 2023 22:15:20 GMT
last-modified: Wed, 15 Jun 2022 14:16:48 GMT
etag: "548349bacb63e9bf2c3be653c4d2eb67"
x-amz-version-id: 0arRjrZkN2rt_JAuhOYMMqUV8GxE8bDH
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HCscklgKm61cIp1TGkH5WwaPALdfAj8qE_DXiNRkrTJ_XlE3kB9qZg==
age: 83670
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/be.png
251 B URL dwmu1hf7ovvid.cloudfront.net/flags/be.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 7cc1d81e3ca06fdb4cb85778ca9821bc
b51757c0fb514d6b472bac77de88c0527638358a
10ba1ae93e1e6b877c7d6a855e7d7f38d1e44fa636bb2da163ee825c36f8dd61
GET /flags/be.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 251
date: Thu, 24 Aug 2023 08:35:46 GMT
last-modified: Wed, 15 Jun 2022 14:15:46 GMT
etag: "7cc1d81e3ca06fdb4cb85778ca9821bc"
x-amz-version-id: ziH8wmpBMtHNLV4MoDKsbBUrn8mkjKPX
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VWuQbDBz7roEu6pP4qbxj1I0VSl9t8a5rV10ud28KHqDefsqGGw0tg==
age: 46444
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/co.svg
289 B URL d1wfowvne3d4em.cloudfront.net/flags/co.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 3b252a1a91262604a52801ec3dda088d
cc3651f28fefa78366469787a35c1abbfccd0ae4
bc15eabb8dc37b36d7be228c68a2f7a62957a3ba9e4d8c35db50b919c9d150da
GET /flags/co.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 289
last-modified: Thu, 05 Jan 2023 15:45:59 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 23 Aug 2023 22:19:03 GMT
etag: "3b252a1a91262604a52801ec3dda088d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DQCyqvzYBdzSuHm4JgtX07ezX7T6yJxM3c8OZxv2_TVrWUlIfNwo1g==
age: 83447
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/competitors/5257.png
14 kB URL d1wfowvne3d4em.cloudfront.net/competitors/5257.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d7e63d1d18afe92d3e05ec2ed75c0faa
36ef374de29aa3bacfb1801cdb965d81181c382a
97f7ad04ba4ddcf2a7a1f11d9c176c2669201eaa9f31feb14af12bdca9133807
GET /competitors/5257.png HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 14516
date: Thu, 24 Aug 2023 05:45:03 GMT
last-modified: Thu, 24 Aug 2023 03:05:13 GMT
etag: "d7e63d1d18afe92d3e05ec2ed75c0faa"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sX8kDwVgfexXmftciZHqtaSAiO5jpbJMknlH2P_ciCOO1KppOMZxgg==
age: 56687
X-Firefox-Spdy: h2
dwmu1hf7ovvid.cloudfront.net/flags/jp.png
835 B URL dwmu1hf7ovvid.cloudfront.net/flags/jp.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash a56381a4526acc1077e646f8cef0f585
4bb9f6a841bd5d13def4d190393172946943fabf
c39e81ab3ccf17f475d26e204cadfc75f057c19803691dece1206ffc56b6358c
GET /flags/jp.png HTTP/1.1
Host: dwmu1hf7ovvid.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 835
date: Thu, 24 Aug 2023 15:07:42 GMT
last-modified: Wed, 15 Jun 2022 14:16:22 GMT
etag: "a56381a4526acc1077e646f8cef0f585"
x-amz-version-id: pnS4GHpzzqlugwjlzsEzcU1y4VVYmuAd
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: N8D_SFUHbFKYyGXRs76DTLNylRlSfVeuo3xBkGn2UgikVFU60fdo3g==
age: 22928
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/index.3e8ee86c.css?v10263
57 kB URL www.brazino-cdnsrv-cst.org/build/index.3e8ee86c.css?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 29784e9bdb554b6c8fd99b5568395fdd
ebd2ff6eac3e91aab7d8c7281c9041db019dc60c
d96cc22f9d327462eac6cd4770f3d91a760a2196b8d9acc7b0ffc919a1cac4cc
GET /build/index.3e8ee86c.css?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:41 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"648afe4f-3a9c"
expires: Fri, 14 Jun 2024 12:46:32 GMT
last-modified: Thu, 15 Jun 2023 12:04:31 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 59c02f36-7cd2-4cb7-85f6-6b636fd2a38d-1662023
server: CDN77-Turbo
x-77-nzt: AblMCRSKO5L/ncNcAA
x-77-nzt-ray: af585630e3980396c5cbe764feeb5302
x-accel-expires: @1718369192
x-accel-date: 1686833192
x-cache: HIT
x-age: 6079389
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
d3c3rwqla6qxaf.cloudfront.net/games-images/spinomenal/bookoftribes/190x190/BookOfTribes.webp
20 kB URL d3c3rwqla6qxaf.cloudfront.net/games-images/spinomenal/bookoftribes/190x190/BookOfTribes.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x190, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1de706203e977cb70ce5a830cea92c12
f74d2f1aa1384d06e16325faa799703d2552c41d
6bcc5f7e457dbf57e03bd7728b7301edcd92a471a48b0d00b4d7fae221fa746a
GET /games-images/spinomenal/bookoftribes/190x190/BookOfTribes.webp HTTP/1.1
Host: d3c3rwqla6qxaf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 19534
last-modified: Mon, 11 Apr 2022 19:48:07 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Aug 2023 08:25:10 GMT
etag: "1de706203e977cb70ce5a830cea92c12"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9gdk_1AmYPgH3cKpitrvi-aN0pAYaU8tW-STv93bWXGA_j6he-hV0A==
age: 47080
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/competitors/2020.png
8.2 kB URL d1wfowvne3d4em.cloudfront.net/competitors/2020.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f83748baa5fbac5d75d68d46452bd204
86703b712dd72fca84316f52c4551d80962d62e2
4c5e231915d39204ad0647d3be975b6139633f4180fa9b6cc3a6d20588b763dd
GET /competitors/2020.png HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 8191
date: Thu, 24 Aug 2023 05:45:03 GMT
last-modified: Thu, 24 Aug 2023 03:05:12 GMT
etag: "f83748baa5fbac5d75d68d46452bd204"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J6Jm2yTXl1HBvAXbFnmTohkg2bvIPjU-DW6Z72X65WJjCTTOYtJuFw==
age: 56687
X-Firefox-Spdy: h2
20bet.com/assets/sport/1067.svg
7.3 kB URL 20bet.com/assets/sport/1067.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 009b598cf0a275f817f9682ed82ef238
8570da80a214dcdc00eb5ed3c14c3a1fadeb90bd
82831fadec1ed94f46786ab6fc434ff6068a58b5820d08dc6ae14c7079dc3f01
GET /assets/sport/1067.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/svg+xml
cf-ray: 7fbeb1584b87b524-OSL
cf-cache-status: HIT
age: 4465
cache-control: public, max-age=14400
etag: W/"64e5abd5-474"
expires: Fri, 25 Aug 2023 01:29:47 GMT
last-modified: Wed, 23 Aug 2023 06:48:53 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/competitors/1961.png
4.8 kB URL d1wfowvne3d4em.cloudfront.net/competitors/1961.png
IP
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash a59e420c213cb16b948764c6fefce0d8
3e0f85c2c04c381508e04c1a99b9365a0e91e578
b9e33b6b0c2807a46fb73a440e7a27b2fefb7ebbc6d6ca55dfcb3d6e32eb16b0
GET /competitors/1961.png HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 4821
date: Thu, 24 Aug 2023 05:45:03 GMT
last-modified: Thu, 24 Aug 2023 03:05:12 GMT
etag: "a59e420c213cb16b948764c6fefce0d8"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hViwPaJ8ytqP7fo2UGyIc9-6O41wnR8-Qde4aZ85WYChbqFFg07FJw==
age: 56687
X-Firefox-Spdy: h2
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 71 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash a690257cde2a176bb87ae9156a7aa769
d353db9b2153e976ccdfa360cc0c772556458d01
abe4325f47aa0409c67bb21e5ac4c4c459e6053896f0c687f8357e9c3974135e
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 125218
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:49 GMT
content-type: text/plain;charset=UTF-8
content-length: 71
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/sport.3a7f27cf.svg
124 kB URL cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/sport.3a7f27cf.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1075)
Size 124 kB (123659 bytes)
Hash 9f143e7e69b8b30bd1f57f1884a8c43d
eaeb62144c54ff8d6882c6034b6de6e26c9c32c2
c2b102f00a720bce6cd97ead4cbe178b648fa8687d299b7e66328afb39905e09
GET /landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/img/sport.3a7f27cf.svg HTTP/1.1
Host: cdn-service.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-service.com/landing/static/315b145c-78fc-4dc4-9fb6-ca5a3214aeeb/css/app.6b7aa819.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000
etag: W/"49b-6utiFExU/41ogsYDS23m4mycMsI"
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
expires: Fri, 23 Aug 2024 21:29:39 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JHtUdPZVUEowCjBOFAS2aDA2%2F1JMwa6syewFlSd26wY8hUPLInwSXkmn8swIAEIh8%2F2zym7Vx4Ulf%2B1g91qr1AL%2B8%2FJhMpWo8JfoWgGtWx%2BARgI6bjpvCr3Pe7CXhO44Zsk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7fbeb1239f051bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
20bet.com/assets/sport/1066.svg
19 kB URL 20bet.com/assets/sport/1066.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash bcd71bdfc64ad792b00335debc4064cf
0edbda408d17afdadd6d7a194880f22f2468ef59
3c8a6806a40a013179e7a945decb2e3c19839990ea3343994c0beadaba8e95fe
GET /assets/sport/1066.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/svg+xml
cf-ray: 7fbeb1584b85b524-OSL
cf-cache-status: HIT
age: 4029
cache-control: public, max-age=14400
etag: W/"64e5abb5-df2"
expires: Fri, 25 Aug 2023 01:29:47 GMT
last-modified: Wed, 23 Aug 2023 06:48:21 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/competitors/6113.png
12 kB URL d1wfowvne3d4em.cloudfront.net/competitors/6113.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 0d84299e71d0dc9f8256380b1f25156c
673cbf6add7cfaaaec57bc10db76520162875f4e
e5ed20fd784c1767992513d0006f891db76a6869012593dac13e02718fdb55c3
GET /competitors/6113.png HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 12373
date: Thu, 24 Aug 2023 05:45:05 GMT
last-modified: Thu, 24 Aug 2023 03:02:42 GMT
etag: "0d84299e71d0dc9f8256380b1f25156c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0EY1DkDvj_YDQ3nDmbVnYz4tFhrKwdy74k0hBSZG-bF7vFBbi3SMaA==
age: 56685
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/competitors/6106.png
6.2 kB URL d1wfowvne3d4em.cloudfront.net/competitors/6106.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 348efb819b1eac889d37e12ef9597346
64bb2380057a380a436d84b9bdf35084c158c35b
b6d4907146ec585324e3d08725db3e34ebae57de688459178b65c0fcab1cdba8
GET /competitors/6106.png HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 6220
date: Thu, 24 Aug 2023 05:45:05 GMT
last-modified: Thu, 24 Aug 2023 03:05:12 GMT
etag: "348efb819b1eac889d37e12ef9597346"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V6iaTtBVjb_KfWIISzWz4YsZj_TDFEK2hwUe4ukmhQI6h6ynWLgcFQ==
age: 56685
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/competitors/6117.png
12 kB URL d1wfowvne3d4em.cloudfront.net/competitors/6117.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash a79093ae4d8a8a3d47ec85788cf29221
9a33ddfc44701003faf2699d1d8ecd0445baa7ad
f1563d2d6d6ae9d4461cb4976592a0062c12f9939e82aadf8a96580d723919f0
GET /competitors/6117.png HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 12047
date: Thu, 24 Aug 2023 05:45:05 GMT
last-modified: Thu, 24 Aug 2023 03:05:11 GMT
etag: "a79093ae4d8a8a3d47ec85788cf29221"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: msq8d75di-DIPzI6t-3L2UdgIcyJZEVxH92e_Q5_CVax_3gMDw5ocA==
age: 56685
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/competitors/36529.png
11 kB URL d1wfowvne3d4em.cloudfront.net/competitors/36529.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c1199daef17d7cd15c6dfd647c186d8d
b0a40348f7fcfb82adbcde2454f9b86a77ef25ab
9a038fe34e93a1e60c9dd52e24426e0e02d2769c0088a260e720364c3291e259
GET /competitors/36529.png HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 10612
date: Thu, 24 Aug 2023 18:06:45 GMT
last-modified: Thu, 24 Aug 2023 03:02:46 GMT
etag: "c1199daef17d7cd15c6dfd647c186d8d"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Uq-0YMCiwUIQBAUBgLwXdNjbn9ADwFoIxRjD4Qfi08J5AMK0OKa9VQ==
age: 12185
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/england.svg
652 B URL d1wfowvne3d4em.cloudfront.net/flags/england.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 08979e955a488aa6e9368f7900845221
723a8d44940bebc93620994a038ac444c1384da6
19758b639b6069444cbf1ce3fa40726515fa30fca4edfde41f53d279c1a35486
GET /flags/england.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 652
date: Thu, 24 Aug 2023 13:13:44 GMT
last-modified: Thu, 05 Jan 2023 15:46:00 GMT
etag: "08979e955a488aa6e9368f7900845221"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PRU4TLvoTxaQupE7AKRsJ2H8FVAXQTmNGwfN8mqtpEMphtqSyX0I2A==
age: 29766
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/competitors/6112.png
15 kB URL d1wfowvne3d4em.cloudfront.net/competitors/6112.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash bd89c47d5eb8f76ebf8a884d431d2fc2
be1ccc96f431c12edb4a1705267dfeb2d270bb8e
cf27b7194d6acbf18943758e9733de64bcdc280a793542c6f4eb663d498aa8f9
GET /competitors/6112.png HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 14787
date: Thu, 24 Aug 2023 05:45:05 GMT
last-modified: Thu, 24 Aug 2023 03:02:47 GMT
etag: "bd89c47d5eb8f76ebf8a884d431d2fc2"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xk5XY219oyuEqOsyhlYV30NuaXBZrnN0cMWp8Z_oXch-LgY-AHeZDg==
age: 56685
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/competitors/5291.png
17 kB URL d1wfowvne3d4em.cloudfront.net/competitors/5291.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash dfaeb2e7769f93ea06ab194bcf35386c
51ce7efab4693c624892b167fb9232595c3d85a9
1899273ce77ca757289053c63775c162da9d2ef153ecce269e3e555da518b308
GET /competitors/5291.png HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 16556
date: Thu, 24 Aug 2023 18:06:45 GMT
last-modified: Thu, 24 Aug 2023 03:02:46 GMT
etag: "dfaeb2e7769f93ea06ab194bcf35386c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bC-Hkhz2rb-JfvarIwF8n0k4YCf9S_7jOT1xjw3bbR12AvZbvOzW6w==
age: 12185
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/competitors/241730.png
24 kB URL d1wfowvne3d4em.cloudfront.net/competitors/241730.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d9b6ce91a08da94b5f10ad7c5f7a314b
a595590d8a91bc65f1e8a0a59db20fc26efcac8c
fb3ffb0f4e169c6240269b61033d9029eba0c942b065d245cc57362b8828e213
GET /competitors/241730.png HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 24418
date: Thu, 24 Aug 2023 17:44:26 GMT
last-modified: Thu, 24 Aug 2023 03:05:12 GMT
etag: "d9b6ce91a08da94b5f10ad7c5f7a314b"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QICXw6d-m-b6hfJyJvC53KGzgmPmpnjf7h8Nn-gXE1RTjNk0o7IrMg==
age: 13524
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/competitors/89362.png
15 kB URL d1wfowvne3d4em.cloudfront.net/competitors/89362.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 434ba5a01b8e1786e01ca4847ee8b57a
02273fcb0f5ef1aac3daa1cd2dce2187313be6ee
bfff26b2e0e8a884c1bf5d42d323aebae4ce8f487629be3c73c1672ad4825ad3
GET /competitors/89362.png HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 15192
date: Thu, 24 Aug 2023 12:41:51 GMT
last-modified: Thu, 24 Aug 2023 03:02:45 GMT
etag: "434ba5a01b8e1786e01ca4847ee8b57a"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NPdy8TUmoAzwr4r5ue-_xQ2u0ffbiAr_M4ON3tdEcKDnSRVohHELzQ==
age: 31679
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/de.svg
213 B URL d1wfowvne3d4em.cloudfront.net/flags/de.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 3e726c2b6a59e6e4543c0a1534d93796
d43327d97b3e75fd3bd8d8e0103ef182c2f4c93d
226631a8fa9deee07022680ce0461b7a09b416b616c56ebcaf21f50e2b34ea8f
GET /flags/de.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 213
last-modified: Thu, 05 Jan 2023 15:46:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Aug 2023 14:48:28 GMT
etag: "3e726c2b6a59e6e4543c0a1534d93796"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Zd_5o07Mv9Jijc8chto8VsO4ZCxxDnT6Rxkt-pjAs0pqBDwPQ-k1_w==
age: 24082
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/flags/fr.svg
292 B URL d1wfowvne3d4em.cloudfront.net/flags/fr.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash b1156355de9691d768df19a8a2b44da4
e3deb99b897e85df223b6d5d63628ea6d9c762c1
63667b36ddd95d29a9f163e3ab4b9f7000dcd310350c565c19b975a0a2418117
GET /flags/fr.svg HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 292
date: Thu, 24 Aug 2023 07:16:32 GMT
last-modified: Thu, 05 Jan 2023 15:46:01 GMT
etag: "b1156355de9691d768df19a8a2b44da4"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EASrZ-G-Xv0Vj1bpkFIjhWzNZpxLwDWsyDyIcpjK5Hjd-J2Cm7De5A==
age: 51198
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/competitors/6107.png
23 kB URL d1wfowvne3d4em.cloudfront.net/competitors/6107.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 71581e4cf203a4569e16608910e6670d
df06deaf6e94251f5d893d1767214956f79d38e1
1f6760cc7dbacd176ba1a5e9f408da4f0e72df6eaec3e6f45fe7c74f96463172
GET /competitors/6107.png HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 22781
date: Thu, 24 Aug 2023 05:45:05 GMT
last-modified: Thu, 24 Aug 2023 03:02:34 GMT
etag: "71581e4cf203a4569e16608910e6670d"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 74P0jwCPA33G7eLX-B3A5zH_9zZ_42AErPdS6qJWpO2f8itvKbr_hw==
age: 56685
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/competitors/89354.png
22 kB URL d1wfowvne3d4em.cloudfront.net/competitors/89354.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 590a12b6ede8ec8142a014ca2a099416
141a9e0ef208e8be432d7bfecd5790769e5ee192
b3317b7b4f9226bfd19055e7d5e01f6c98f23efbe7e45ec079fffcd85fc3d507
GET /competitors/89354.png HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 21741
date: Thu, 24 Aug 2023 17:56:53 GMT
last-modified: Thu, 24 Aug 2023 03:02:33 GMT
etag: "590a12b6ede8ec8142a014ca2a099416"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Lg1LiQbII-Tf68quVOp4S1OQOYUFlJdRYbvAI8OECkmRukIxNEl0oQ==
age: 12777
X-Firefox-Spdy: h2
api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=ff93808ef52c6dd040640c4853b854bd_28e8ea704f0287c0bddce523a5064e8a&language=en&group_id=24&jsonp=__lc_localization
3.8 kB URL api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=ff93808ef52c6dd040640c4853b854bd_28e8ea704f0287c0bddce523a5064e8a&language=en&group_id=24&jsonp=__lc_localization
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (10945), with no line terminators
Hash 06f169c9dd9d3da41ebd0f5b486fa916
0aa10fda35eba062887155d7757592c188540944
3da5499a0a68ebc31d484044da7a95dfe6a2aa6b0282860271320bfa718eed64
GET /v3.4/customer/action/get_localization?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26&version=ff93808ef52c6dd040640c4853b854bd_28e8ea704f0287c0bddce523a5064e8a&language=en&group_id=24&jsonp=__lc_localization HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2024-05-31
vary: Accept-Encoding
cache-control: public, max-age=600
expires: Thu, 24 Aug 2023 21:39:49 GMT
date: Thu, 24 Aug 2023 21:29:49 GMT
content-length: 3787
X-Firefox-Spdy: h2
d1wfowvne3d4em.cloudfront.net/competitors/6104.png
12 kB URL d1wfowvne3d4em.cloudfront.net/competitors/6104.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 28ad9f7cdaf0546dd8ddc91fb6be0be5
5355468b35935a5a5a3f0dae5bdc673dad8edd95
da08324d514415c4950e228c0c53f57ae441dd5db92ff6f53904612023b2f112
GET /competitors/6104.png HTTP/1.1
Host: d1wfowvne3d4em.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 11858
date: Thu, 24 Aug 2023 10:06:07 GMT
last-modified: Thu, 24 Aug 2023 03:02:35 GMT
etag: "28ad9f7cdaf0546dd8ddc91fb6be0be5"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hzlMur6ZpmYgBqQVrVUTpkE7WicQIrd4SbXi51Uj0RAxE5IdMpU0CQ==
age: 41023
X-Firefox-Spdy: h2
dueh421xfqdi.cloudfront.net/img/payment-iq-jeton-jeton.svg
5.5 kB URL dueh421xfqdi.cloudfront.net/img/payment-iq-jeton-jeton.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5347), with CRLF line terminators
Hash 364fab25b65b27e259b39a9d26c93f9f
4c3273a2e7386c9f82241ecf18e091eabe8bb527
848d629baeeb43c44b7171790a27e57ff9c073603db5e5601a8499a1cbed6203
GET /img/payment-iq-jeton-jeton.svg HTTP/1.1
Host: dueh421xfqdi.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 5454
vary: Accept-Encoding
date: Thu, 24 Aug 2023 21:29:50 GMT
last-modified: Wed, 22 Sep 2021 12:02:05 GMT
etag: "364fab25b65b27e259b39a9d26c93f9f"
x-amz-meta-s3cmd-attrs: md5:364fab25b65b27e259b39a9d26c93f9f
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2Zxl8rYLhVMCLJkDA8i_x2pOBn-rGDC6wx8egKCYqe8-h9dbff_BSQ==
X-Firefox-Spdy: h2
dueh421xfqdi.cloudfront.net/img/payment-iq-neteller-neteller.svg
1.3 kB URL dueh421xfqdi.cloudfront.net/img/payment-iq-neteller-neteller.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1199), with CRLF line terminators
Hash 76a5b4b5026d360a5ceee36e1e4899bf
3e7b3611971147bb42b74db555f7cb1bfc5384e0
c8f42775ae5019f51376eb33aff70d3f5ec855483326fcfa4f0084c2d961ad23
GET /img/payment-iq-neteller-neteller.svg HTTP/1.1
Host: dueh421xfqdi.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1306
x-amz-id-2: ckU6tmdxAAp4bID6HHGM6x3HfF2Rf32xEUwWTJ8MY0af81GenbEZS4r0258BpN89VR03kPmfYIY=
x-amz-request-id: K1G96HN1W8AT6AWX
date: Thu, 24 Aug 2023 21:29:50 GMT
last-modified: Wed, 22 Sep 2021 12:02:06 GMT
etag: "76a5b4b5026d360a5ceee36e1e4899bf"
x-amz-meta-s3cmd-attrs: md5:76a5b4b5026d360a5ceee36e1e4899bf
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dx7MjDyb0N_sIwIa0YzlHljRG7ezB_8YpLTYBJrBTBOdsCYVe2VuEA==
X-Firefox-Spdy: h2
dueh421xfqdi.cloudfront.net/img/payment-iq-cryptocurrency-ripple.svg
1.2 kB URL dueh421xfqdi.cloudfront.net/img/payment-iq-cryptocurrency-ripple.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash a1e8e28871215cbde7bf27116b157863
9b9d8ac4f0cb064ee240c46a4399d5a4afced532
5a395dcd8cddd8c95b41105eff08d8384359c6e29a0221071b17dd76a6988526
GET /img/payment-iq-cryptocurrency-ripple.svg HTTP/1.1
Host: dueh421xfqdi.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1228
vary: Accept-Encoding
date: Thu, 24 Aug 2023 21:29:50 GMT
last-modified: Thu, 28 Jul 2022 12:07:13 GMT
etag: "a1e8e28871215cbde7bf27116b157863"
x-amz-meta-s3cmd-attrs: atime:1659010003/ctime:1659010009/gid:20/gname:staff/md5:a1e8e28871215cbde7bf27116b157863/mode:33188/mtime:1659009991/uid:501/uname:nikitaschekin
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wFss0IT8Dx65yCCi2fs-_MCtibRuE7usJmzPy5gtbzCUH80uu395FQ==
X-Firefox-Spdy: h2
dueh421xfqdi.cloudfront.net/img/payment-iq-skrill-skrill.svg
1.9 kB URL dueh421xfqdi.cloudfront.net/img/payment-iq-skrill-skrill.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1578), with CRLF line terminators
Hash 1b7572d6671dcf82401653b6221ee54d
f101a5c9bc92b9aab8dc500535c78a572db5c25b
43b8760fcb07ceb8106e1770a0a807a546db76110fad6ce7d31ee263aeeff5ba
GET /img/payment-iq-skrill-skrill.svg HTTP/1.1
Host: dueh421xfqdi.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1913
x-amz-id-2: 7DjO07IuLO6BH9fLpdIVaegU/sFt4V/4+fYAzvd6FKUP4X+YYu71/K7I3DQGKY0rIloRjfR/Q84=
x-amz-request-id: K1G02VWVQFB92PKA
date: Thu, 24 Aug 2023 21:29:50 GMT
last-modified: Wed, 22 Sep 2021 12:02:06 GMT
etag: "1b7572d6671dcf82401653b6221ee54d"
x-amz-meta-s3cmd-attrs: md5:1b7572d6671dcf82401653b6221ee54d
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cX-BM2DUBPvxZl0LpA3pXMey_tZyx5GQfjZbaDsubSBcBSnp74uiSA==
X-Firefox-Spdy: h2
dueh421xfqdi.cloudfront.net/img/payment-iq-cryptocurrency-litecoin.svg
2.0 kB URL dueh421xfqdi.cloudfront.net/img/payment-iq-cryptocurrency-litecoin.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 8c91edb86e4201b14ba655250a221520
37aa735bb6ca862093601c9272017b8abc58a582
7f7a1ee93c3641f87151e64e040b3a4e33cf921fdd4cd21c4e7dca4f966f6978
GET /img/payment-iq-cryptocurrency-litecoin.svg HTTP/1.1
Host: dueh421xfqdi.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1955
vary: Accept-Encoding
date: Thu, 24 Aug 2023 21:29:50 GMT
last-modified: Fri, 06 May 2022 12:42:27 GMT
etag: "8c91edb86e4201b14ba655250a221520"
x-amz-meta-s3cmd-attrs: atime:1651840650/ctime:1651840649/gid:2033007316/gname:AGCSOFT%5CDomain%20Users/md5:8c91edb86e4201b14ba655250a221520/mode:33188/mtime:1651840646/uid:1501083981/uname:yevhen.karavanchenko
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TFrOmDG_Jl0Hq_8IOLaCPXzGd-eOMQzPItteVMeshLvLLa6WJMtM9Q==
X-Firefox-Spdy: h2
dueh421xfqdi.cloudfront.net/img/payment-iq-creditcard-visa.svg
1.9 kB URL dueh421xfqdi.cloudfront.net/img/payment-iq-creditcard-visa.svg
IP
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash aeac19527d7d39db9d3f318d2996ce0d
b59de14e18f7fe3bd3e71bc2056b8626687c0649
2a85a40eedf0a1e3131804dc968beb0a1ca52c314fcc0359e7ad790f0817d705
GET /img/payment-iq-creditcard-visa.svg HTTP/1.1
Host: dueh421xfqdi.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1872
x-amz-id-2: 3Er3DHmX0oP4kryY8HM/Apc4kRnX9De36ZvKeC2INd3jVKwQSBzBajSFlcAQVU00sji+DpjxOGg=
x-amz-request-id: K1GDTCRMBC9ZWB0X
date: Thu, 24 Aug 2023 21:29:50 GMT
last-modified: Wed, 22 Sep 2021 12:02:04 GMT
etag: "aeac19527d7d39db9d3f318d2996ce0d"
x-amz-meta-s3cmd-attrs: md5:aeac19527d7d39db9d3f318d2996ce0d
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YkDlhRflh6LEiURw4FuZipOP4KFxnEctErU81Ou0ZVROqziH13VJUQ==
X-Firefox-Spdy: h2
dueh421xfqdi.cloudfront.net/img/payment-iq-bank-interac.svg
3.9 kB URL dueh421xfqdi.cloudfront.net/img/payment-iq-bank-interac.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (513), with CRLF line terminators
Hash 5bd879d8c4e7959454681e6b00091ca9
7568c2e83c75f4ff6577b65ed66ffc91ad1a9485
0ec5575fece2aad9db216357ca119eaae97d52d0c53d7a4af5d0492791ff6a04
GET /img/payment-iq-bank-interac.svg HTTP/1.1
Host: dueh421xfqdi.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 3924
vary: Accept-Encoding
date: Thu, 24 Aug 2023 21:29:50 GMT
last-modified: Mon, 08 May 2023 14:50:39 GMT
etag: "5bd879d8c4e7959454681e6b00091ca9"
x-amz-server-side-encryption: AES256
x-amz-meta-s3cmd-attrs: atime:1683557435/ctime:1683557433/gid:20/gname:staff/md5:5bd879d8c4e7959454681e6b00091ca9/mode:33188/mtime:1683557433/uid:501/uname:nikitaschekin
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ca6WUZcN_givJ4wkIkfCbR6xGKQKd0lyqKF637xxR_hBn-cRh6RSiw==
X-Firefox-Spdy: h2
dueh421xfqdi.cloudfront.net/img/payment-iq-cryptocurrency-tetherusd.svg
1.7 kB URL dueh421xfqdi.cloudfront.net/img/payment-iq-cryptocurrency-tetherusd.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash fd99af454ab5449c16b46e4d7c8ba008
6cd8211fa712a2aa2898333da10ac0522f560376
6a8c6c647ad8eb9dad4f961e7cb316f43c015a8b9c4884195a1dc4d6538bdfe6
GET /img/payment-iq-cryptocurrency-tetherusd.svg HTTP/1.1
Host: dueh421xfqdi.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1685
vary: Accept-Encoding
date: Thu, 24 Aug 2023 21:29:50 GMT
last-modified: Fri, 06 May 2022 12:42:46 GMT
etag: "fd99af454ab5449c16b46e4d7c8ba008"
x-amz-meta-s3cmd-attrs: atime:1651840776/ctime:1651840774/gid:2033007316/gname:AGCSOFT%5CDomain%20Users/md5:fd99af454ab5449c16b46e4d7c8ba008/mode:33188/mtime:1651840769/uid:1501083981/uname:yevhen.karavanchenko
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pSt0J1KDtrcci6psqh07Mehlk40919TlKkXfzTq_HR4gMXMXmt0lNQ==
X-Firefox-Spdy: h2
dueh421xfqdi.cloudfront.net/img/payment-iq-creditcard-mastercard.svg
7.4 kB URL dueh421xfqdi.cloudfront.net/img/payment-iq-creditcard-mastercard.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6371), with CRLF line terminators
Hash 9dd541faa0fe8e2862e9a5778fded6ee
d3f5d33c95b7fa52de171e571f83f7060a50ff8f
75aba97ab51fbdf2da87d5416be978c86256e2054e8bde519f0c5af3fd998b7e
GET /img/payment-iq-creditcard-mastercard.svg HTTP/1.1
Host: dueh421xfqdi.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 7437
x-amz-id-2: L07eFYP+DHgy8ATU6whxa4fdtPrtUQ3tGuF92NITVnJ7WP0z0x5HT4OfYPaJrOiPs3ptKqlJOPA=
x-amz-request-id: K1G9TDQ34ETFMEHS
date: Thu, 24 Aug 2023 21:29:50 GMT
last-modified: Wed, 22 Sep 2021 12:02:04 GMT
etag: "9dd541faa0fe8e2862e9a5778fded6ee"
x-amz-meta-s3cmd-attrs: md5:9dd541faa0fe8e2862e9a5778fded6ee
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tttFv3Cm5QrEA0wyA9MIohqFZl_qOk17zv1cphH9qvDDzzDqqfJ1VA==
X-Firefox-Spdy: h2
dueh421xfqdi.cloudfront.net/img/payment-iq-cryptocurrency-bitcoin.svg
1.9 kB URL dueh421xfqdi.cloudfront.net/img/payment-iq-cryptocurrency-bitcoin.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (807), with CRLF line terminators
Hash 40b876dbba657dc8fa89754bba6a94a5
4d3186e82d2d9bad11b5f6c8ba75a456ce6d19fb
f542c59efd4bfd7e917ad2f6c6de8ea67f0d962742b2c4bdf354385a5ffa824b
GET /img/payment-iq-cryptocurrency-bitcoin.svg HTTP/1.1
Host: dueh421xfqdi.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1867
x-amz-id-2: 1u5un/NZpa8osEo/oWy43VsTSNYaYky1i8DvztfvKW6/8Aqyd3sX/QmgDBa6DCZb2Sis29+gZl0=
x-amz-request-id: K1G8FXFA6X2TRV1J
date: Thu, 24 Aug 2023 21:29:50 GMT
last-modified: Fri, 06 May 2022 12:41:57 GMT
etag: "40b876dbba657dc8fa89754bba6a94a5"
x-amz-meta-s3cmd-attrs: atime:1651839897/ctime:1651839896/gid:2033007316/gname:AGCSOFT%5CDomain%20Users/md5:40b876dbba657dc8fa89754bba6a94a5/mode:33188/mtime:1651839887/uid:1501083981/uname:yevhen.karavanchenko
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LCnPvVqH_FozoQeD_uKD7uob8myBDU0gxRBztzNbY3TQ8MbYeIW_9g==
X-Firefox-Spdy: h2
dueh421xfqdi.cloudfront.net/img/payment-iq-cryptocurrency-ethereum.svg
1.8 kB URL dueh421xfqdi.cloudfront.net/img/payment-iq-cryptocurrency-ethereum.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 2819177e29240e9abba945193708002d
a2be8ffbb3100098dd943bb859fb617c3daf2635
f4a3adf3ced22ef3a3a6a1cb8e26c619ead66f51d71d3896701680222fc4d9df
GET /img/payment-iq-cryptocurrency-ethereum.svg HTTP/1.1
Host: dueh421xfqdi.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1785
vary: Accept-Encoding
date: Thu, 24 Aug 2023 21:29:50 GMT
last-modified: Fri, 06 May 2022 12:42:20 GMT
etag: "2819177e29240e9abba945193708002d"
x-amz-meta-s3cmd-attrs: atime:1651840619/ctime:1651840618/gid:2033007316/gname:AGCSOFT%5CDomain%20Users/md5:2819177e29240e9abba945193708002d/mode:33188/mtime:1651840608/uid:1501083981/uname:yevhen.karavanchenko
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0qPHxayIjRbQKZalJ_kI7hTcWn8seBXFylhnlic725VecZmnEijeKA==
X-Firefox-Spdy: h2
dueh421xfqdi.cloudfront.net/img/payment-iq-ecopayz-ecopayz.svg
2.7 kB URL dueh421xfqdi.cloudfront.net/img/payment-iq-ecopayz-ecopayz.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (652), with CRLF line terminators
Hash ec6e2f4f2e966e4d8de4f3ad6447da05
8357d1f3e1955c51def18d0b4374854f116f22af
cd9a6b8b6e92379aaa5c07b52c5e47b979d924c3a7a8d66339773b5f6e1aeb63
GET /img/payment-iq-ecopayz-ecopayz.svg HTTP/1.1
Host: dueh421xfqdi.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 2706
vary: Accept-Encoding
date: Thu, 24 Aug 2023 21:29:50 GMT
last-modified: Mon, 07 Aug 2023 13:47:12 GMT
etag: "ec6e2f4f2e966e4d8de4f3ad6447da05"
x-amz-server-side-encryption: AES256
x-amz-meta-s3cmd-attrs: atime:1691416027/ctime:1691416026/gid:20/gname:staff/md5:ec6e2f4f2e966e4d8de4f3ad6447da05/mode:33188/mtime:1691416025/uid:501/uname:nikitaschekin
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KxCZV4MRZSjcxpU0adICWe8GgDJ7wLzQFbrsG1Lj7_-n8Spj61QHxQ==
X-Firefox-Spdy: h2
dueh421xfqdi.cloudfront.net/img/payment-iq-webredirect-perfectmoney.svg
12 kB URL dueh421xfqdi.cloudfront.net/img/payment-iq-webredirect-perfectmoney.svg
IP
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 74162b1db90f81e0443efbb9195748d5
f561fad9462fb085a8fe51677161f1534ecc8bd5
e5a63a413df2bd4c32e3bebc823092f678a59df623144f079bdffc84519ebc52
GET /img/payment-iq-webredirect-perfectmoney.svg HTTP/1.1
Host: dueh421xfqdi.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 12425
x-amz-id-2: 9BjLL8Y2y6y57xM3bgUmrkxDHChXpxeSkGCSGclf66TYNtrjnrch03hiFcJ7/O5N8NZ6dNoM8hw=
x-amz-request-id: K1G60A2V4J4ZWN7S
date: Thu, 24 Aug 2023 21:29:50 GMT
last-modified: Wed, 22 Sep 2021 12:02:07 GMT
etag: "74162b1db90f81e0443efbb9195748d5"
x-amz-meta-s3cmd-attrs: md5:74162b1db90f81e0443efbb9195748d5
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: T0k6BTeUYPJSY5cA_0Lr8MLB2_SPEVeMEfvCC843gNEkoX_75wojNQ==
X-Firefox-Spdy: h2
secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=24&embedded=1&widget_version=3&unique_groups=0
2.6 kB URL secure.livechatinc.com/customer/action/open_chat?license_id=9054575&group=24&embedded=1&widget_version=3&unique_groups=0
IP
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8824), with no line terminators
Hash 2e5a5a0dde1821d6ed95b9538aa7cb0a
c012431ff16b72bb77fdc72a337bc5dc14624200
17183d56aee63c11c281fcd640df22b01550f16afbd63389d0d165d53d661935
GET /customer/action/open_chat?license_id=9054575&group=24&embedded=1&widget_version=3&unique_groups=0 HTTP/1.1
Host: secure.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: text/html; charset=utf-8
vary: Accept-Encoding
date: Thu, 24 Aug 2023 21:29:49 GMT
content-length: 2558
X-Firefox-Spdy: h2
login.galera.bet/pasSetupPage.php?casino=galera.bet
20 kB URL login.galera.bet/pasSetupPage.php?casino=galera.bet
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fd97585aef9566b126d86182a6733816
7f4315082783f99fc93febbada315a56d264e7a6
663e9083c4c980a66870827366274dca65822b12a24404f2dd3066067d7caca9
GET /pasSetupPage.php?casino=galera.bet HTTP/1.1
Host: login.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: text/html
x-powered-by: Servlet/4.0
cache-control: max-age=0, private
content-language: en-US
strict-transport-security: max-age=16070400; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb140a90cb4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/790b33f9634d4ce32c52b8856efe0669.svg?v10263
67 kB URL www.brazino-cdnsrv-cst.org/files/categories/790b33f9634d4ce32c52b8856efe0669.svg?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash c1bdd2f439793537297acfaa39426d0f
5d9a5b6906827210bca48dba3924cca5fbc43236
bb4fb0076f7f645ad31da5893e56c8c397fee52c7ec828d656b38e2181c20a71
GET /files/categories/790b33f9634d4ce32c52b8856efe0669.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"649ae81d-1d7"
expires: Wed, 26 Jun 2024 15:24:58 GMT
last-modified: Tue, 27 Jun 2023 13:46:05 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: abd6c803-2df9-4b0d-add7-3f48733f7c8d-1782023
server: CDN77-Turbo
x-77-nzt: AblMCRTMeFP/fsxMAA
x-77-nzt-ray: af585630e3980396c8cbe764c89d7a08
x-accel-expires: @1719415498
x-accel-date: 1687879498
x-cache: HIT
x-age: 5033086
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/authenticgaming-4525.svg?v10263
219 kB URL www.brazino-cdnsrv-cst.org/files/categories/authenticgaming-4525.svg?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Size 219 kB (219189 bytes)
Hash f04fbd34e6eb294280594a4a31fa396b
a37aceb0d3aba984b8a207e1340f59e01436fb85
fefac85ca9d74f9c0244ac55ec42075d0df975ca6530ce280858e8bc69fd7747
GET /files/categories/authenticgaming-4525.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6128e4ea-8c0"
expires: Fri, 08 Dec 2023 01:38:14 GMT
last-modified: Fri, 27 Aug 2021 13:13:14 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 2a5e6e13-25ab-4dc3-beb3-22087c89fde5-3422022
server: CDN77-Turbo
x-77-nzt: AblMCRSZVzn/wotWAQ
x-77-nzt-ray: af585630e3980396c8cbe764959ab208
x-accel-expires: @1701999494
x-accel-date: 1670463494
x-cache: HIT
x-age: 22449090
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr5TRASf6M7Q.woff2
13 kB URL cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr5TRASf6M7Q.woff2
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 12852, version 1.0\012- data
Hash 3b5df7e947d77201eaf22f3dbdac08cc
21989ca07e4afe32d48982b816b8fac85ce3e668
4a46d61a9aed90cea010dbabcdb510b9ceff1b729a06b169cdbe142f66cbc86f
GET /widget/o-0IIpQlx3QUlC5A4PNr5TRASf6M7Q.woff2 HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 12852
last-modified: Tue, 18 Oct 2022 07:22:37 GMT
etag: "3b5df7e947d77201eaf22f3dbdac08cc"
x-amz-version-id: 4jMtpmrTh3NU2il.eSSLRODO9UYgvJk9
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: HAM50-C2
x-amz-cf-id: KM8abeyaVeSEIxlLTJcUkoNH7_q4l1PlUQolOkL0_K8Ml-Hn8lULcg==
cache-control: max-age=31536000
expires: Fri, 23 Aug 2024 21:29:50 GMT
date: Thu, 24 Aug 2023 21:29:50 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
20bet.com/app/5018.25939f136930d664.js
200 OK 22 kB URL GET HTTP/2 20bet.com/app/5018.25939f136930d664.js
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (23823), with no line terminators
Hash ff6913e39468ed79e45e4917941e558a
0102978032eec0776b561f727c6e76b0caa30990
9b3747df0e325c322ed58ad39fc2483a27b8285501afd0594e9ab8efd71071a9
GET /app/5018.25939f136930d664.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c39fcb524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aada-5d0f"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:44:42 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
static.ada.support/chat-manifest.json
136 B URL static.ada.support/chat-manifest.json
IP
File type JSON data\012- , ASCII text
Hash bfab00f50bc15be77c5414d4b09da502
ce4af0f827c4bbf10a611a899c84579f25a1af04
eb241b455819fb35f244c0868e853e2e31e732ba1b16d3a2031d56db9548efe5
GET /chat-manifest.json HTTP/1.1
Host: static.ada.support
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 136
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-expose-headers: ETag
access-control-max-age: 3000
last-modified: Wed, 09 Aug 2023 16:25:06 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: sAk0H0KwmpqXQRHIKl83WCv0KEmaf9v7
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Aug 2023 03:08:23 GMT
etag: "bfab00f50bc15be77c5414d4b09da502"
vary: Accept-Encoding
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
age: 66088
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gUs_Cx6Gg_zkvIzrN42rcqrMzri39iLBnV-fm796ALM6KGU3emX05w==
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/All41Studios-492.svg?v10263
200 OK 8.5 kB URL GET HTTP/2 www.brazino-cdnsrv-cst.org/files/categories/All41Studios-492.svg?v10263
IP
ASN #60068 Datacamp Limited
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subject1107631085.rsc.cdn77.org
FingerprintFC:30:44:F1:AA:FD:BB:46:F5:7C:D2:8B:A5:9E:81:24:08:71:EE:74
ValidityFri, 30 Jun 2023 22:49:32 GMT - Thu, 28 Sep 2023 22:49:31 GMT
File type gzip compressed data, from Unix\012- data
Hash 1a10d51d99199937c3a0239051e23082
59049d1b2aa3d8ca88f087168f707f0b069acf98
1eba029d6c738a8faabf186695806bce03d81a7a7fd789cb77ebefe97e580206
GET /files/categories/All41Studios-492.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60e31091-520"
expires: Thu, 07 Dec 2023 18:16:19 GMT
last-modified: Mon, 05 Jul 2021 14:00:49 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: b2cb2b11-9fc0-4e69-a4fd-6cdcf3f8c4aa-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRQrL7X/VfNWAQ
x-77-nzt-ray: af585630e3980396c8cbe764a2d04b08
x-accel-expires: @1701972979
x-accel-date: 1670436979
x-cache: HIT
x-age: 22475605
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 70 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 7e8fa8f119f93d9fac711d3236ffa3ed
c941e73198df0a81d7e5551394af983477a032c0
5bc28cef2d0cbf28331770ac77ec66a790885949dfd824a41de3142cd0378d0a
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 42016
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:50 GMT
content-type: text/plain;charset=UTF-8
content-length: 70
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
static.ada.support/embed2.3681e6c.js
56 kB URL static.ada.support/embed2.3681e6c.js
IP
File type gzip compressed data, from Unix\012- data
Hash 071b37f5d1afc4e588010e529247d58f
3db8d3de294f3990347b18704c9fce7a54142f6a
b6f11c7a861593a0abebf172c5903571abe66c5e08c6b45cd0cad47640e98ef7
GET /embed2.3681e6c.js HTTP/1.1
Host: static.ada.support
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-expose-headers: ETag
access-control-max-age: 3000
last-modified: Thu, 13 Jul 2023 20:21:11 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: ShniEngUFVh_CVKzYWDOWsqxVCOV21RR
server: AmazonS3
content-encoding: gzip
date: Thu, 24 Aug 2023 02:55:19 GMT
cache-control: 172800
etag: W/"7617e772e7f840a26dc751d39f3d205f"
vary: Accept-Encoding
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
age: 66872
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OdGzo3JHTN4-X_s9a4FlOGxotZBfUo3Q4Tm6O_vUxtZ19mbc8tMaZw==
X-Firefox-Spdy: h2
galerabet.ada.support/embed/x-storage/3681e6c/index.html
237 B URL galerabet.ada.support/embed/x-storage/3681e6c/index.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 93f912ceabb0586748b7b0061a4f94fa
3e276c2801c1483dbe182e402c70030ce75409de
135cc772ab77bf6b4fc8b652097da35bf8feed9c1f60d7a91cc76913c0ad05bd
GET /embed/x-storage/3681e6c/index.html HTTP/1.1
Host: galerabet.ada.support
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 237
last-modified: Thu, 13 Jul 2023 20:21:11 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: .rhZb0zUTZqqH8qfNGz3oen.8griWw0E
accept-ranges: bytes
server: AmazonS3
date: Wed, 23 Aug 2023 19:29:46 GMT
cache-control: 172800
etag: "93f912ceabb0586748b7b0061a4f94fa"
vary: Accept-Encoding
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
age: 93605
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _KoEPvB3alTrxfBChtSZYO2I_Uto1b2kXTrviGU9ySvMpqfLT8r2Og==
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/Crazy-Tooth-4753.svg?v10263
2.0 kB URL www.brazino-cdnsrv-cst.org/files/categories/Crazy-Tooth-4753.svg?v10263
IP
ASN #60068 Datacamp Limited
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3825), with CRLF line terminators
Hash 55699438f920b0c5351dabd0eeaa1e0c
cbcf94cd910b61c49e2931829a85cef0ce5a98fa
2fdc0146067333de1fc7771713fe412a46fb578f4b6f28d233ad4736799b8e69
GET /files/categories/Crazy-Tooth-4753.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60f181d8-29b"
expires: Thu, 07 Dec 2023 18:16:19 GMT
last-modified: Fri, 16 Jul 2021 12:55:52 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 8a6bca7f-70d2-4073-9449-d5f98aadaec6-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRQX8bD/VfNWAQ
x-77-nzt-ray: af585630e3980396c8cbe764fa8a3d09
x-accel-expires: @1701972979
x-accel-date: 1670436979
x-cache: HIT
x-age: 22475605
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/app/6861.3254dd06af608fa6.css
946 B URL 20bet.com/app/6861.3254dd06af608fa6.css
IP
File type ASCII text, with very long lines (913)
Hash ea736283db9715b784892a668387a5b5
4e6f865f496db4b64ea583d1b6f536a429897674
9fa5cb0a265c267fe800237c653c1a38fd29051185ecaf145b82e230f94a6ea9
GET /app/6861.3254dd06af608fa6.css HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: text/css
cf-ray: 7fbeb14e0fb0b524-OSL
cf-cache-status: HIT
age: 931
cache-control: public, max-age=14400
etag: W/"64e5aaf4-392"
expires: Fri, 25 Aug 2023 01:29:45 GMT
last-modified: Wed, 23 Aug 2023 06:45:08 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
galerabet.ada.support/embed/button/3681e6c/preact.8ab2422822c47580185f.js
4.1 kB URL galerabet.ada.support/embed/button/3681e6c/preact.8ab2422822c47580185f.js
IP
File type gzip compressed data, from Unix\012- data
Hash e3f9b4bc2b92062b39d74fab3d2cfa7a
3b510e8bffed32f7ff66238bbb92bebecad0c002
c38a91e1f6b53f4c79ede62590ee20af3ba0d2a1d66e316fc0b96522f965c09f
GET /embed/button/3681e6c/preact.8ab2422822c47580185f.js HTTP/1.1
Host: galerabet.ada.support
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galerabet.ada.support/embed/button/3681e6c/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
last-modified: Thu, 13 Jul 2023 20:21:11 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: LKNSnQLpOBYsoOlhRHYiVLBsEmqD4FLp
server: AmazonS3
content-encoding: gzip
date: Thu, 24 Aug 2023 02:11:00 GMT
cache-control: 172800
etag: W/"51cc097b6d58a11a6aa758e72ee39e0a"
vary: Accept-Encoding
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
age: 69531
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QX_oSXUddpL7NX3jYZT3u0Rpkhg0hy-92UVT6KI4vle8q6-VEVoeDw==
X-Firefox-Spdy: h2
accounts.livechatinc.com/v2/customer/token
195 B URL accounts.livechatinc.com/v2/customer/token
IP
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text
Hash 273038cb1729eb4fd4b77b2e9be6b338
1bab9af60620482d2e851ab05c432d47703151b7
1d88d209ca189a424ca847da36fc010bfa18ff7811841a219439629700cb9d12
POST /v2/customer/token HTTP/1.1
Host: accounts.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 225
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-type: application/json
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 195
date: Thu, 24 Aug 2023 21:29:50 GMT
set-cookie: __lc_cid=b8100573-52c6-4235-b6cb-f7fe0019ee72; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Sun, 24 Aug 2025 21:29:50 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cst=34653ce82e14f8349d9afc50c5fee2868a6d3dc7696c6e840a568bf31671039a86d0d64d20d28f1cb93f6f9674dfd6195fb4b66be4e8829ea88c2ff1b324; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Sun, 24 Aug 2025 21:29:50 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cid=b8100573-52c6-4235-b6cb-f7fe0019ee72; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Sun, 24 Aug 2025 21:29:50 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cst=34653ce82e14f8349d9afc50c5fee2868a6d3dc7696c6e840a568bf31671039a86d0d64d20d28f1cb93f6f9674dfd6195fb4b66be4e8829ea88c2ff1b324; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Sun, 24 Aug 2025 21:29:50 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__oauth_redirect_detector=counter=1&t=1692912620&tag=950c02497f04dc075e701452680749045abe87a8; Path=/; Expires=Thu, 24 Aug 2023 21:30:20 GMT; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
track.customer.io/events/page.gif?name=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_B53E1EDAF54E4251BD1E053EB21A0108&data%5Bbtag%5D=668128_B53E1EDAF54E4251BD1E053EB21A0108&data%5Bwidth%5D=0&data%5Bheight%5D=0&c=&s=&site_id=0e8fbf60ebbf2b4f79c2×tamp=1692912582200
35 B URL track.customer.io/events/page.gif?name=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_B53E1EDAF54E4251BD1E053EB21A0108&data%5Bbtag%5D=668128_B53E1EDAF54E4251BD1E053EB21A0108&data%5Bwidth%5D=0&data%5Bheight%5D=0&c=&s=&site_id=0e8fbf60ebbf2b4f79c2×tamp=1692912582200
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /events/page.gif?name=https%3A%2F%2F20bet.com%2Fbr%3Fbtag%3D668128_B53E1EDAF54E4251BD1E053EB21A0108&data%5Bbtag%5D=668128_B53E1EDAF54E4251BD1E053EB21A0108&data%5Bwidth%5D=0&data%5Bheight%5D=0&c=&s=&site_id=0e8fbf60ebbf2b4f79c2×tamp=1692912582200 HTTP/1.1
Host: track.customer.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, max-age=0
content-disposition: attachment
content-length: 35
content-transfer-encoding: binary
content-type: image/gif
cross-origin-resource-policy: cross-origin
date: Thu, 24 Aug 2023 21:29:50 GMT
status: 200 OK
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/NP8S8Oe0hz8
471 B URL ocsp.pki.goog/s/gts1d4/NP8S8Oe0hz8
IP
Hash 9f6a1b70a2bda94326867c0cd477e0ce
6aca698c0393e2ac2b8baec7bd6910f0bbe27198
37a061518b015df008bca0160b5c42dadf9e8f213eea31ff7a724b44e0605d20
POST /s/gts1d4/NP8S8Oe0hz8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Aug 2023 21:29:51 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr5TRASf6M7Q.woff2
13 kB URL cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr5TRASf6M7Q.woff2
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 12852, version 1.0\012- data
Hash 3b5df7e947d77201eaf22f3dbdac08cc
21989ca07e4afe32d48982b816b8fac85ce3e668
4a46d61a9aed90cea010dbabcdb510b9ceff1b729a06b169cdbe142f66cbc86f
GET /widget/o-0IIpQlx3QUlC5A4PNr5TRASf6M7Q.woff2 HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 12852
last-modified: Tue, 18 Oct 2022 07:22:37 GMT
etag: "3b5df7e947d77201eaf22f3dbdac08cc"
x-amz-version-id: 4jMtpmrTh3NU2il.eSSLRODO9UYgvJk9
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: HAM50-C2
x-amz-cf-id: KM8abeyaVeSEIxlLTJcUkoNH7_q4l1PlUQolOkL0_K8Ml-Hn8lULcg==
cache-control: max-age=31536000
expires: Fri, 23 Aug 2024 21:29:51 GMT
date: Thu, 24 Aug 2023 21:29:51 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
api.livechatinc.com/v3.4/customer/action/check_goals?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26
0 B URL api.livechatinc.com/v3.4/customer/action/check_goals?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v3.4/customer/action/check_goals?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://secure.livechatinc.com/
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Authorization,Content-Type
access-control-allow-origin: https://secure.livechatinc.com
vary: Accept-Encoding
content-length: 0
date: Thu, 24 Aug 2023 21:29:51 GMT
X-Firefox-Spdy: h2
api.livechatinc.com/v3.4/customer/action/check_goals?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26
2 B URL api.livechatinc.com/v3.4/customer/action/check_goals?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26
IP
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with very long lines (8279), with no line terminators, ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /v3.4/customer/action/check_goals?organization_id=0423be4a-3d48-484e-a65a-2228122b8c26 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer dal:z8S6s0mnTnW-QMr4fJUA-g
Content-Length: 113
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
content-type: application/json
legacy: 2024-05-31
vary: Accept-Encoding
content-length: 2
date: Thu, 24 Aug 2023 21:29:51 GMT
X-Firefox-Spdy: h2
platform.20bet.com/api/variant/list?lang=pt&variantId_in%5B%5D=7559&variantId_in%5B%5D=7560&variantId_in%5B%5D=7561&variantId_in%5B%5D=7562&variantId_in%5B%5D=7563
0 B URL platform.20bet.com/api/variant/list?lang=pt&variantId_in%5B%5D=7559&variantId_in%5B%5D=7560&variantId_in%5B%5D=7561&variantId_in%5B%5D=7562&variantId_in%5B%5D=7563
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/variant/list?lang=pt&variantId_in%5B%5D=7559&variantId_in%5B%5D=7560&variantId_in%5B%5D=7561&variantId_in%5B%5D=7562&variantId_in%5B%5D=7563 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:51 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb1738c88b4eb-OSL
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/pragmatic-5704.svg?v10263
826 B URL www.brazino-cdnsrv-cst.org/files/categories/pragmatic-5704.svg?v10263
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix\012- data
Hash 73ec9c795579ca3c4462b8860d180efe
76d82881bcc5cbfbb87391e5a1cc595d6a4749c6
e764b6d45ac56357cec879efe257a2caab4e5b55dca2cc72a107b5746c2e4d21
GET /files/categories/pragmatic-5704.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60ddb9b6-4f5"
expires: Thu, 07 Dec 2023 18:16:23 GMT
last-modified: Thu, 01 Jul 2021 12:48:54 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 09596771-d15b-4c5e-bb44-9dafe1c0293e-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRTgKLL/UfNWAQ
x-77-nzt-ray: af585630e3980396c8cbe7640b74c90b
x-accel-expires: @1701972983
x-accel-date: 1670436983
x-cache: HIT
x-age: 22475601
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 69 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash b1c7389fdb111e19e31364252680a970
dae630cd76a526414a91c0392a8cf2167aea0d1d
8600e7640484d563c194c611249bd2aa9ded2750ba16463b1868c9ada9af7419
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 9531
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:51 GMT
content-type: text/plain;charset=UTF-8
content-length: 69
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 70 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with very long lines (20230), ASCII text, with no line terminators
Hash 7e8fa8f119f93d9fac711d3236ffa3ed
c941e73198df0a81d7e5551394af983477a032c0
5bc28cef2d0cbf28331770ac77ec66a790885949dfd824a41de3142cd0378d0a
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 5476
Origin: https://brazino777.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:52 GMT
content-type: text/plain;charset=UTF-8
content-length: 70
access-control-allow-origin: https://brazino777.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
static.ada.support/images/619059f5-d1cc-42d8-9c75-698b17d380f8.svg
968 B URL static.ada.support/images/619059f5-d1cc-42d8-9c75-698b17d380f8.svg
IP
File type gzip compressed data, from Unix\012- data
Hash 39280ee6f8aa8624539b9a871c68d6d2
84faa955ded587010eca9790d839baa653888020
ac57e173d8c876c98f2c7632d6780232ed7f6074eec7e03a9ff572b60d72bbf1
GET /images/619059f5-d1cc-42d8-9c75-698b17d380f8.svg HTTP/1.1
Host: static.ada.support
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://galerabet.ada.support/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-expose-headers: ETag
access-control-max-age: 3000
last-modified: Thu, 30 Jun 2022 03:18:09 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: nWL0dz9HAsT79QDhdhXaxhBafry_bjXJ
server: AmazonS3
content-encoding: gzip
date: Thu, 24 Aug 2023 03:57:30 GMT
etag: W/"b2461ec6e03d8dbfcca25ebe9a777915"
vary: Accept-Encoding
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
age: 63142
content-security-policy: default-src 'none'; media-src https://static.ada.support
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UrrrkRCjlMJEmJPr5uESDhXFSVFToNo8XN5PR-7lDXkf38-BJj6Oew==
X-Firefox-Spdy: h2
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 71 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash f67fc652b557cdae9305069f621ad189
3a0578c8eee6356522a78a931962ba14bd73760c
705850e220a125abfa20ac30e6e308bea7bf255a2bdafea455a1067f47f8cdfd
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 4413
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:52 GMT
content-type: text/plain;charset=UTF-8
content-length: 71
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
platform.20bet.com/api/variant/list?lang=pt&variantId_in%5B%5D=12&variantId_in%5B%5D=13&variantId_in%5B%5D=18&variantId_in%5B%5D=19&variantId_in%5B%5D=20&variantId_in%5B%5D=21&variantId_in%5B%5D=22&variantId_in%5B%5D=23&variantId_in%5B%5D=176&variantId_in%5B%5D=178&variantId_in%5B%5D=179&variantId_in%5B%5D=181
0 B URL platform.20bet.com/api/variant/list?lang=pt&variantId_in%5B%5D=12&variantId_in%5B%5D=13&variantId_in%5B%5D=18&variantId_in%5B%5D=19&variantId_in%5B%5D=20&variantId_in%5B%5D=21&variantId_in%5B%5D=22&variantId_in%5B%5D=23&variantId_in%5B%5D=176&variantId_in%5B%5D=178&variantId_in%5B%5D=179&variantId_in%5B%5D=181
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/variant/list?lang=pt&variantId_in%5B%5D=12&variantId_in%5B%5D=13&variantId_in%5B%5D=18&variantId_in%5B%5D=19&variantId_in%5B%5D=20&variantId_in%5B%5D=21&variantId_in%5B%5D=22&variantId_in%5B%5D=23&variantId_in%5B%5D=176&variantId_in%5B%5D=178&variantId_in%5B%5D=179&variantId_in%5B%5D=181 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:53 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb17e4bd9b4eb-OSL
X-Firefox-Spdy: h2
20bet.com/assets/banners/casino_welcome_bonus_slider2.webp
106 kB URL 20bet.com/assets/banners/casino_welcome_bonus_slider2.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1180x230, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 106 kB (105662 bytes)
Hash 7b8174fe499c657055360ca5e995ee4b
8bd19b13f7e4399f8a2d89c0b3eedbba980a1c2f
f983a31393bf67a4a5a3bfdef4912e04daf4644af1b3f4c324ab34acb6ccf22a
GET /assets/banners/casino_welcome_bonus_slider2.webp HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:56 GMT
content-type: image/webp
content-length: 105662
cf-ray: 7fbeb18ece3bb524-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 2605
cache-control: public, max-age=14400
etag: "64e5abcf-19cbe"
expires: Fri, 25 Aug 2023 01:29:56 GMT
last-modified: Wed, 23 Aug 2023 06:48:47 GMT
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 69 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash d651b67d498c315f655ab2ac4b4cb031
5145a217cbdfcf5ad3a852414b3a2018fec52e7f
9a880fe9cfa2d3eb3db31c76ea1f43c4b1c61af6da2069b862277f3036d3b22a
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3397
Origin: https://brazino777.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:57 GMT
content-type: text/plain;charset=UTF-8
content-length: 69
access-control-allow-origin: https://brazino777.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
sportsbook-platform-api.nsoft.com/prematchOffer/getTopOffer?dataFormat=%7B%22default%22%3A%22object%22%2C%22sports%22%3A%22array%22%2C%22categories%22%3A%22array%22%2C%22tournaments%22%3A%22array%22%2C%22matches%22%3A%22array%22%2C%22betGroups%22%3A%22array%22%7D&dataShrink=false&language=%7B%22default%22%3A%22en%22%7D¶ms=%7B%22start_date%22%3A%222023-08-24%2021%3A29%3A48%22%2C%22end_date%22%3A%222023-08-27%2021%3A29%3A48%22%2C%22id_sport%22%3A%2212ec11e9-cb67-4887-9ca0-5cbf3355e894%22%2C%22bet_count%22%3A3%2C%22timezone%22%3A%22UTC%22%2C%22delivery_platform%22%3A%22Web%22%2C%22company_uuid%22%3A%22ee010c47-eb96-4ffe-a11f-bf2736607193%22%7D&topOffer=%7B%22matches%22%3Atrue%7D
90 B URL sportsbook-platform-api.nsoft.com/prematchOffer/getTopOffer?dataFormat=%7B%22default%22%3A%22object%22%2C%22sports%22%3A%22array%22%2C%22categories%22%3A%22array%22%2C%22tournaments%22%3A%22array%22%2C%22matches%22%3A%22array%22%2C%22betGroups%22%3A%22array%22%7D&dataShrink=false&language=%7B%22default%22%3A%22en%22%7D¶ms=%7B%22start_date%22%3A%222023-08-24%2021%3A29%3A48%22%2C%22end_date%22%3A%222023-08-27%2021%3A29%3A48%22%2C%22id_sport%22%3A%2212ec11e9-cb67-4887-9ca0-5cbf3355e894%22%2C%22bet_count%22%3A3%2C%22timezone%22%3A%22UTC%22%2C%22delivery_platform%22%3A%22Web%22%2C%22company_uuid%22%3A%22ee010c47-eb96-4ffe-a11f-bf2736607193%22%7D&topOffer=%7B%22matches%22%3Atrue%7D
IP
File type gzip compressed data, from Unix\012- data
Hash 8c67acf7a28f6444b77aee46569d842d
5f24cde3c2709d10a1489b0c7b0c0a6e39e89bf5
e664200f3b579f79483e5ea2d9677340ec38749335f37a0eb79bd1d43525427d
GET /prematchOffer/getTopOffer?dataFormat=%7B%22default%22%3A%22object%22%2C%22sports%22%3A%22array%22%2C%22categories%22%3A%22array%22%2C%22tournaments%22%3A%22array%22%2C%22matches%22%3A%22array%22%2C%22betGroups%22%3A%22array%22%7D&dataShrink=false&language=%7B%22default%22%3A%22en%22%7D¶ms=%7B%22start_date%22%3A%222023-08-24%2021%3A29%3A48%22%2C%22end_date%22%3A%222023-08-27%2021%3A29%3A48%22%2C%22id_sport%22%3A%2212ec11e9-cb67-4887-9ca0-5cbf3355e894%22%2C%22bet_count%22%3A3%2C%22timezone%22%3A%22UTC%22%2C%22delivery_platform%22%3A%22Web%22%2C%22company_uuid%22%3A%22ee010c47-eb96-4ffe-a11f-bf2736607193%22%7D&topOffer=%7B%22matches%22%3Atrue%7D HTTP/1.1
Host: sportsbook-platform-api.nsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://brazino777.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 24 Aug 2023 21:29:56 GMT
content-type: application/json
location: https://sportsbook-platform-api.nsoft.com/prematchOffer/getTopOffer?params=%7B%22start_date%22%3A%222023-08-24+21%3A29%3A00%22%2C%22end_date%22%3A%222023-08-27+21%3A29%3A59%22%2C%22id_sport%22%3A%2212ec11e9-cb67-4887-9ca0-5cbf3355e894%22%2C%22bet_count%22%3A3%2C%22timezone%22%3A%22UTC%22%2C%22delivery_platform%22%3A%22Web%22%2C%22company_uuid%22%3A%22ee010c47-eb96-4ffe-a11f-bf2736607193%22%7D&dataFormat=%7B%22default%22%3A%22object%22%2C%22sports%22%3A%22array%22%2C%22categories%22%3A%22array%22%2C%22tournaments%22%3A%22array%22%2C%22matches%22%3A%22array%22%2C%22betGroups%22%3A%22array%22%7D&topOffer=%7B%22matches%22%3Atrue%7D&language=%7B%22default%22%3A%22en%22%7D&dataShrink=false&cacheRedirect=1
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubdomains;
sb-ch: MISS
access-control-allow-origin: https://brazino777.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
platform.20bet.com/api/v3/menu/line/pt?period=5&withOutrightMarkets=1
18 kB URL platform.20bet.com/api/v3/menu/line/pt?period=5&withOutrightMarkets=1
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 3452ef852192387fe28e96233ce3cee8
d1bfd6152ac20c8b647c92cf2450369cf98a77f5
95a5de3e58bb97c663b7f2782067b929ced3da3ef98e8ac3b0414cad916b9d9a
GET /api/v3/menu/line/pt?period=5&withOutrightMarkets=1 HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb1543e8eb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
sportsbook-platform-api.nsoft.com/prematchOffer/getTopOffer?params=%7B%22start_date%22%3A%222023-08-24+21%3A29%3A00%22%2C%22end_date%22%3A%222023-08-27+21%3A29%3A59%22%2C%22id_sport%22%3A%2212ec11e9-cb67-4887-9ca0-5cbf3355e894%22%2C%22bet_count%22%3A3%2C%22timezone%22%3A%22UTC%22%2C%22delivery_platform%22%3A%22Web%22%2C%22company_uuid%22%3A%22ee010c47-eb96-4ffe-a11f-bf2736607193%22%7D&dataFormat=%7B%22default%22%3A%22object%22%2C%22sports%22%3A%22array%22%2C%22categories%22%3A%22array%22%2C%22tournaments%22%3A%22array%22%2C%22matches%22%3A%22array%22%2C%22betGroups%22%3A%22array%22%7D&topOffer=%7B%22matches%22%3Atrue%7D&language=%7B%22default%22%3A%22en%22%7D&dataShrink=false&cacheRedirect=1
13 kB URL sportsbook-platform-api.nsoft.com/prematchOffer/getTopOffer?params=%7B%22start_date%22%3A%222023-08-24+21%3A29%3A00%22%2C%22end_date%22%3A%222023-08-27+21%3A29%3A59%22%2C%22id_sport%22%3A%2212ec11e9-cb67-4887-9ca0-5cbf3355e894%22%2C%22bet_count%22%3A3%2C%22timezone%22%3A%22UTC%22%2C%22delivery_platform%22%3A%22Web%22%2C%22company_uuid%22%3A%22ee010c47-eb96-4ffe-a11f-bf2736607193%22%7D&dataFormat=%7B%22default%22%3A%22object%22%2C%22sports%22%3A%22array%22%2C%22categories%22%3A%22array%22%2C%22tournaments%22%3A%22array%22%2C%22matches%22%3A%22array%22%2C%22betGroups%22%3A%22array%22%7D&topOffer=%7B%22matches%22%3Atrue%7D&language=%7B%22default%22%3A%22en%22%7D&dataShrink=false&cacheRedirect=1
IP
File type gzip compressed data, from Unix\012- data
Hash 8207ed34a6fd64918d2ebffb4fdcd033
2bc99090465557c28ad6d4245b71849d841ea855
3fbf83eb5a8bfa2982409d7d538d77fcdab1e149f0582743cbd3ad41af523af7
GET /prematchOffer/getTopOffer?params=%7B%22start_date%22%3A%222023-08-24+21%3A29%3A00%22%2C%22end_date%22%3A%222023-08-27+21%3A29%3A59%22%2C%22id_sport%22%3A%2212ec11e9-cb67-4887-9ca0-5cbf3355e894%22%2C%22bet_count%22%3A3%2C%22timezone%22%3A%22UTC%22%2C%22delivery_platform%22%3A%22Web%22%2C%22company_uuid%22%3A%22ee010c47-eb96-4ffe-a11f-bf2736607193%22%7D&dataFormat=%7B%22default%22%3A%22object%22%2C%22sports%22%3A%22array%22%2C%22categories%22%3A%22array%22%2C%22tournaments%22%3A%22array%22%2C%22matches%22%3A%22array%22%2C%22betGroups%22%3A%22array%22%7D&topOffer=%7B%22matches%22%3Atrue%7D&language=%7B%22default%22%3A%22en%22%7D&dataShrink=false&cacheRedirect=1 HTTP/1.1
Host: sportsbook-platform-api.nsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://brazino777.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Aug 2023 21:29:56 GMT
content-type: application/json
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubdomains;
sb-ch: MISS
access-control-allow-origin: https://brazino777.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 67 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 6df904d1d985fba10059a664ed4c0aea
7bda97f89ee3f29200dc34a20aa94bc940addbad
1af27d30b689d04f5ce568c8a0894f019281dcac5842fb8328f51a4b06474ec1
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2684
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:30:01 GMT
content-type: text/plain;charset=UTF-8
content-length: 67
access-control-allow-origin: https://www.galera.bet
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.brazino-cdnsrv-cst.org/build/images/basketball.3e94584f.webp
27 kB URL www.brazino-cdnsrv-cst.org/build/images/basketball.3e94584f.webp
IP
ASN #60068 Datacamp Limited
File type RIFF (little-endian) data, Web/P image\012- data
Hash 92e0dcc3caf360dbe233e83527477f95
d7329db73c6911ce5a22cc3876db70c4a1e4a90e
55821648e60c0571cbf05c780d5b979ced027e25be8f4bb325c331d28bd2939b
GET /build/images/basketball.3e94584f.webp HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brazino-cdnsrv-cst.org/build/vueNsoftTopOfferBlock.30c36f0d.css?v10263
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:56 GMT
content-type: image/webp
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: "6481d0bb-2a5e"
expires: Fri, 16 Aug 2024 10:11:01 GMT
last-modified: Thu, 08 Jun 2023 12:59:39 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-waf-req-id: c2230a68-6670-4fb8-ae11-dd2223eb11e3-2292023
server: CDN77-Turbo
x-77-nzt: AblMCRQUYbL/n9kJAA
x-77-nzt-ray: af585630e3980396d4cbe76454519919
x-accel-expires: @1723803061
x-accel-date: 1692267061
x-cache: HIT
x-age: 645535
x-77-pop: stockholmSE
x-77-cache: HIT
X-Firefox-Spdy: h2
sportsbook-platform-api.nsoft.com/prematchOffer/getTopOffer?params=%7B%22start_date%22%3A%222023-08-24+21%3A29%3A00%22%2C%22end_date%22%3A%222023-08-27+21%3A29%3A59%22%2C%22id_sport%22%3A%22af79e1ca-46af-4a2b-8844-04969dbd2139%22%2C%22bet_count%22%3A3%2C%22timezone%22%3A%22UTC%22%2C%22delivery_platform%22%3A%22Web%22%2C%22company_uuid%22%3A%22ee010c47-eb96-4ffe-a11f-bf2736607193%22%7D&dataFormat=%7B%22default%22%3A%22object%22%2C%22sports%22%3A%22array%22%2C%22categories%22%3A%22array%22%2C%22tournaments%22%3A%22array%22%2C%22matches%22%3A%22array%22%2C%22betGroups%22%3A%22array%22%7D&topOffer=%7B%22matches%22%3Atrue%7D&language=%7B%22default%22%3A%22en%22%7D&dataShrink=false&cacheRedirect=1
5.1 kB URL sportsbook-platform-api.nsoft.com/prematchOffer/getTopOffer?params=%7B%22start_date%22%3A%222023-08-24+21%3A29%3A00%22%2C%22end_date%22%3A%222023-08-27+21%3A29%3A59%22%2C%22id_sport%22%3A%22af79e1ca-46af-4a2b-8844-04969dbd2139%22%2C%22bet_count%22%3A3%2C%22timezone%22%3A%22UTC%22%2C%22delivery_platform%22%3A%22Web%22%2C%22company_uuid%22%3A%22ee010c47-eb96-4ffe-a11f-bf2736607193%22%7D&dataFormat=%7B%22default%22%3A%22object%22%2C%22sports%22%3A%22array%22%2C%22categories%22%3A%22array%22%2C%22tournaments%22%3A%22array%22%2C%22matches%22%3A%22array%22%2C%22betGroups%22%3A%22array%22%7D&topOffer=%7B%22matches%22%3Atrue%7D&language=%7B%22default%22%3A%22en%22%7D&dataShrink=false&cacheRedirect=1
IP
File type gzip compressed data, from Unix\012- data
Hash e112d5323d16d2c6acb9c59e7e7ee751
308e7b7bf43b964427409c5873ea8bbde0dea6d3
6ba64b732425471d13d52e27fedf6310a0e2fb44ca3330409a2449dbb631e471
GET /prematchOffer/getTopOffer?params=%7B%22start_date%22%3A%222023-08-24+21%3A29%3A00%22%2C%22end_date%22%3A%222023-08-27+21%3A29%3A59%22%2C%22id_sport%22%3A%22af79e1ca-46af-4a2b-8844-04969dbd2139%22%2C%22bet_count%22%3A3%2C%22timezone%22%3A%22UTC%22%2C%22delivery_platform%22%3A%22Web%22%2C%22company_uuid%22%3A%22ee010c47-eb96-4ffe-a11f-bf2736607193%22%7D&dataFormat=%7B%22default%22%3A%22object%22%2C%22sports%22%3A%22array%22%2C%22categories%22%3A%22array%22%2C%22tournaments%22%3A%22array%22%2C%22matches%22%3A%22array%22%2C%22betGroups%22%3A%22array%22%7D&topOffer=%7B%22matches%22%3Atrue%7D&language=%7B%22default%22%3A%22en%22%7D&dataShrink=false&cacheRedirect=1 HTTP/1.1
Host: sportsbook-platform-api.nsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://brazino777.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 24 Aug 2023 21:30:01 GMT
content-type: application/json
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubdomains;
sb-ch: MISS
access-control-allow-origin: https://brazino777.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
200 OK 70 B URL POST HTTP/3 logsdk.kwai-pro.com/rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGlobalSign nv-sa
Subject*.kwai-pro.com
Fingerprint6B:38:FB:27:E1:AC:D7:DC:96:0A:38:C8:E5:D3:FF:59:5A:9D:D3:2B
ValidityMon, 19 Dec 2022 03:50:08 GMT - Sat, 20 Jan 2024 03:50:07 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash b124c4e8db243e402a1cb5eafad3cc2f
cc20ce7f4b44a0d0364ae5444cae7d7a635b53b0
0dbcb5f56ead25afce284dce71cc04445f7cc8ea6f6012475894cb679a6cb347
POST /rest/wd/common/log/collect/radar?v=3.9.50&kpn=ksib.fe.pixel HTTP/1.1
Host: logsdk.kwai-pro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3398
Origin: https://brazino777.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:30:02 GMT
content-type: text/plain;charset=UTF-8
content-length: 70
access-control-allow-origin: https://brazino777.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
dc.services.visualstudio.com/v2/track
176 B URL dc.services.visualstudio.com/v2/track
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with no line terminators
Hash a8632e3e4785ce624faceccbc8e629b2
20c86a2d4ab1b02eefdae83102abf35731b81623
0d52a21811031ec0a927d99d1da03d6c5929a46cd6eca42b0ef830d0ef04016a
POST /v2/track HTTP/1.1
Host: dc.services.visualstudio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=utf-8
Content-Length: 1851
Origin: https://www.galera.bet
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
content-type: application/json; charset=utf-8
x-ms-session-id: A300389A-F88F-43C8-BC0A-04F6ED7C991F
strict-transport-security: max-age=31536000
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Cache-Control, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Thu, 24 Aug 2023 21:30:02 GMT
content-length: 176
X-Firefox-Spdy: h2
20bet.com/cdn-cgi/rum?
0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 401
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:30:03 GMT
access-control-allow-origin: https://20bet.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7fbeb1b99b41b524-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
blaze.com/cdn-cgi/rum?
0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: blaze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 399
Origin: https://blaze.com
DNT: 1
Connection: keep-alive
Referer: https://blaze.com/c?cxd=35074_357665&affid=35074
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:30:03 GMT
access-control-allow-origin: https://blaze.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7fbeb1b9b9200b45-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
platform.20bet.com/api/user/is-auth
204 No Content 23 kB URL OPTIONS HTTP/2 platform.20bet.com/api/user/is-auth
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash b9169af20adb2be940a35d3a8f7508cf
568312af24eadcadb00306bb3cd3cc6b2cf494ea
a53e5b90daea1d5c794bf41c3123c69533f9ea6f821e0051413ec99a1883a153
GET /api/user/is-auth HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb154bf25b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/3922.253bb75e8b58171a.js
200 OK 34 kB URL GET HTTP/2 20bet.com/app/3922.253bb75e8b58171a.js
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (33475), with no line terminators
Hash 879248603aedeeff79e7dbde96c56615
7b62907818c2a215a283c0693306d734be9d6837
2bd4543983832768b8fe05edfb73e26bbd15384133f7a6d6e7757f85552b68bf
GET /app/3922.253bb75e8b58171a.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13bf97bb524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aada-82c3"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:44:42 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/sport/list/-1/0/pt
204 No Content 0 B URL OPTIONS HTTP/2 platform.20bet.com/api/sport/list/-1/0/pt
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/sport/list/-1/0/pt HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:44 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb146f9b0b4eb-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,500,700,300,900&display=swap&subset=cyrillic
200 OK 11 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Roboto:400,500,700,300,900&display=swap&subset=cyrillic
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint2A:06:F9:5A:FD:FC:89:5C:D7:C5:CC:38:F0:25:78:FB:15:9F:5A:67
ValidityMon, 31 Jul 2023 08:22:19 GMT - Mon, 23 Oct 2023 08:22:18 GMT
Hash 26748da50b2e99876bd774065cf8b8a8
82b3a6e1eb483c9ca4be044a3c7b25e3bfb9ddf4
d5b43c13f29156b87b601565e8abe066f9dc7ef32d856deeee11f099f1807748
GET /css?family=Roboto:400,500,700,300,900&display=swap&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Aug 2023 21:29:39 GMT
date: Thu, 24 Aug 2023 21:29:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.brazino-cdnsrv-cst.org/files/categories/yggdrasil-1365.svg?v10263
200 OK 4.4 kB URL GET HTTP/2 www.brazino-cdnsrv-cst.org/files/categories/yggdrasil-1365.svg?v10263
IP
ASN #60068 Datacamp Limited
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subject1107631085.rsc.cdn77.org
FingerprintFC:30:44:F1:AA:FD:BB:46:F5:7C:D2:8B:A5:9E:81:24:08:71:EE:74
ValidityFri, 30 Jun 2023 22:49:32 GMT - Thu, 28 Sep 2023 22:49:31 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4415), with no line terminators
Hash b0af98695699e6dd5e66fd6c4033c8b3
f72b1fadcd43bc09efdef438deee64ac52a98edb
cc4943d214ee71195e9edfc40fa05c5203bd8a65799fcfd06932b2099ca55621
GET /files/categories/yggdrasil-1365.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60ddc604-1110"
expires: Thu, 07 Dec 2023 18:16:28 GMT
last-modified: Thu, 01 Jul 2021 13:41:24 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 1608abfe-8008-4010-ad2e-896ee109c33e-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRS6G27/TPNWAQ
x-77-nzt-ray: af585630e3980396c8cbe764b7605b0d
x-accel-expires: @1701972988
x-accel-date: 1670436988
x-cache: HIT
x-age: 22475596
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
20bet.com/app/1742.e9aacbbf709ed801.js
200 OK 1.9 kB URL GET HTTP/2 20bet.com/app/1742.e9aacbbf709ed801.js
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (1874), with no line terminators
Hash aac411aa1f085f52d9d7cce39326b447
6b9e8c750aabd237af54d8f9325411f294da6037
8e1acd14bf732972e75c34b7a382238f22b818ff0fd7631ebc9703ca96c50a15
GET /app/1742.e9aacbbf709ed801.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: application/javascript
cf-ray: 7fbeb14e4ffeb524-OSL
cf-cache-status: HIT
age: 851
cache-control: public, max-age=14400
etag: W/"64e5aae7-73c"
expires: Fri, 25 Aug 2023 01:29:45 GMT
last-modified: Wed, 23 Aug 2023 06:44:55 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
extra.bet365.com/ServerTime
200 OK 261 B URL GET HTTP/1.1 extra.bet365.com/ServerTime
IP
ASN #209242 Cloudflare London, LLC
Requested by https://www.bet365.com/olpc/nn/143/0/1/open-account
Certificate IssuerGoogle Trust Services LLC
Subjectbet365.com
Fingerprint79:1E:8C:EC:E5:7D:6E:03:CC:83:BC:59:D5:4F:9C:52:B6:C4:8B:A9
ValiditySun, 20 Aug 2023 04:38:02 GMT - Fri, 17 Nov 2023 14:32:45 GMT
File type ASCII text, with no line terminators
Hash 444f9a74a114e449de771775c5ceee0d
08470bb6c9c38a6949efde8521c552b157f0fe92
efb39a362d3ed9e22e2868da315f592e654261c903f6629ddb855cd5f669a68a
GET /ServerTime HTTP/1.1
Host: extra.bet365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bet365.com
DNT: 1
Connection: keep-alive
Referer: https://www.bet365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 21:29:38 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 264
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: *
Content-Security-Policy: connect-src 'self' *.bet365.com
CF-Cache-Status: DYNAMIC
Set-Cookie: pstk=48DF856D555F4AF2BBB6ABADA638E7C1000003; domain=.bet365.com; path=/
aps03=ct=143&lng=9; expires=Wed, 24-Aug-2033 21:29:38 GMT; path=/; secure; SameSite=None
bet365SportsExtra=settings=0,0,0,0,0,4,0,,0,0; expires=Sat, 24-Aug-2024 21:29:38 GMT; path=/
__cf_bm=12vz.mxdP9HdkBlHr1U5dYGxSNxcbGmIFCqu8pP2YxQ-1692912578-0-AZJ2796p1dJ7l6dUUhus5BNANJJijkUft0ikKBBYN1QMMPNVhyC8ovsraLfv7cFNsivxBylRcxP7bznu6+Wptbk=; path=/; expires=Thu, 24-Aug-23 21:59:38 GMT; domain=.bet365.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 7fbeb121293e0b65-OSL
socketv2.bc.game/socket.io/?p=01c8ca547916b44b7318a2973f97f18a2973d69b&t=fb33c0a98d29510418a2973f97f&u=45d28fb08d32e08f17605b11c237ba99&EIO=3&transport=websocket
101 Switching Protocols 0 B URL GET HTTP/1.1 socketv2.bc.game/socket.io/?p=01c8ca547916b44b7318a2973f97f18a2973d69b&t=fb33c0a98d29510418a2973f97f&u=45d28fb08d32e08f17605b11c237ba99&EIO=3&transport=websocket
IP
Requested by https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Certificate IssuerCloudflare, Inc.
Subjectbc.game
Fingerprint0E:D7:DC:DE:16:EC:37:F9:D7:CE:C6:9A:DF:05:D9:FB:0E:F4:6D:37
ValidityWed, 16 Nov 2022 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?p=01c8ca547916b44b7318a2973f97f18a2973d69b&t=fb33c0a98d29510418a2973f97f&u=45d28fb08d32e08f17605b11c237ba99&EIO=3&transport=websocket HTTP/1.1
Host: socketv2.bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://bc.game
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3kgXfHVP2B5/tZDWXo8cvQ==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: invitation-code=4cxse6dr; invitation-url=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Thu, 24 Aug 2023 21:29:43 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: gwJ3tE4ONuZU0/fpDep2Rzlhgcw=
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7fbeb1378cc60b4d-OSL
www.brazino-cdnsrv-cst.org/build/index.167d78a0.js?v10263
200 OK 143 B URL GET HTTP/2 www.brazino-cdnsrv-cst.org/build/index.167d78a0.js?v10263
IP
ASN #60068 Datacamp Limited
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subject1107631085.rsc.cdn77.org
FingerprintFC:30:44:F1:AA:FD:BB:46:F5:7C:D2:8B:A5:9E:81:24:08:71:EE:74
ValidityFri, 30 Jun 2023 22:49:32 GMT - Thu, 28 Sep 2023 22:49:31 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ef9230214c2c1e78c68a2e04dccdfe64
cf0f90a97df6184946d51e32a856f8cfa2597a73
a1d1478895c0d423d41f5527c3b8ac7a64478f2064c539156d0864d4e05d36c4
GET /build/index.167d78a0.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:40 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"6481d0bb-8f"
expires: Thu, 25 Jul 2024 11:36:09 GMT
last-modified: Thu, 08 Jun 2023 12:59:39 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 08ad65b2-cf32-4c97-a71b-8fa3d14fc198-2072023
server: CDN77-Turbo
x-77-nzt: AblMCRSTON7/m8YmAA
x-77-nzt-ray: af585630e3980396c4cbe7649d59bb3a
x-accel-expires: @1721907369
x-accel-date: 1690371369
x-cache: HIT
x-age: 2541211
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/vueNsoftTopOfferBlock.a723ce9c.js?v10263
200 OK 40 kB URL GET HTTP/2 www.brazino-cdnsrv-cst.org/build/vueNsoftTopOfferBlock.a723ce9c.js?v10263
IP
ASN #60068 Datacamp Limited
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subject1107631085.rsc.cdn77.org
FingerprintFC:30:44:F1:AA:FD:BB:46:F5:7C:D2:8B:A5:9E:81:24:08:71:EE:74
ValidityFri, 30 Jun 2023 22:49:32 GMT - Thu, 28 Sep 2023 22:49:31 GMT
File type ASCII text, with very long lines (39827), with no line terminators
Hash 1b8f8c9259ba2033ce19c7172c9fc2f5
bad251331fa42c8c975378262129240c06455f21
48099702d8d76280b1b48c611e04e0d2e767cb9c42071609c7eb042543401e50
GET /build/vueNsoftTopOfferBlock.a723ce9c.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:41 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"64c10040-9b93"
expires: Thu, 25 Jul 2024 11:36:09 GMT
last-modified: Wed, 26 Jul 2023 11:15:12 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: c5f05e08-47f0-42f4-a3fe-2fe9af3d1a75-2072023
server: CDN77-Turbo
x-77-nzt: AblMCRTLerD/nMYmAA
x-77-nzt-ray: af585630e3980396c5cbe76409d6d401
x-accel-expires: @1721907369
x-accel-date: 1690371369
x-cache: HIT
x-age: 2541212
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/images/side-menu-open.664039c0.svg
200 OK 278 B URL GET HTTP/2 www.brazino-cdnsrv-cst.org/build/images/side-menu-open.664039c0.svg
IP
ASN #60068 Datacamp Limited
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subject1107631085.rsc.cdn77.org
FingerprintFC:30:44:F1:AA:FD:BB:46:F5:7C:D2:8B:A5:9E:81:24:08:71:EE:74
ValidityFri, 30 Jun 2023 22:49:32 GMT - Thu, 28 Sep 2023 22:49:31 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (316), with no line terminators
Hash f33a116016c210f42e62ad15bfef98ed
3537f15a37a604efc031fb6dd90c230dff2490ce
f8dcd0512fd230814bc43846fd2ea0f7ab7d08f9b0e71905fad4a6609a8eb751
GET /build/images/side-menu-open.664039c0.svg HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brazino-cdnsrv-cst.org/build/app.d830fcd7.css?v10263
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:42 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"638df9a5-116"
expires: Thu, 07 Dec 2023 10:39:58 GMT
last-modified: Mon, 05 Dec 2022 14:01:09 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: bf066486-306c-46a5-83a8-b7932f4b3b32-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRRMfuj/SF5XAQ
x-77-nzt-ray: af585630e3980396c6cbe7646afab20b
x-accel-expires: @1701945598
x-accel-date: 1670409598
x-cache: HIT
x-age: 22502984
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
platform.20bet.com/api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=pt
204 No Content 0 B URL OPTIONS HTTP/2 platform.20bet.com/api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=pt
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/event/list?sportId_eq=1&limit=10&competitor2Id_neq=&competitor1Id_neq=&oddsExists_eq=1&main=1&status_in%5B%5D=2&status_in%5B%5D=1&relations%5B%5D=odds&relations%5B%5D=withMarketsCount&relations%5B%5D=league&relations%5B%5D=result&relations%5B%5D=competitors&relations%5B%5D=sportCategories&relations%5B%5D=broadcasts&relations%5B%5D=statistics&relations%5B%5D=additionalInfo&relations%5B%5D=tips&lang=pt HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:47 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb15a0a6fb4eb-OSL
X-Firefox-Spdy: h2
my.rtmark.net/p.js?f=sync&lr=1&partner=99c30c16251013f12bce1f916a2a4db7afae111055019941564138603f0f7957
200 OK 697 B URL GET HTTP/2 my.rtmark.net/p.js?f=sync&lr=1&partner=99c30c16251013f12bce1f916a2a4db7afae111055019941564138603f0f7957
IP
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintB4:02:64:AF:5C:AB:27:5B:1B:80:CF:C8:FF:EB:BF:43:29:C3:C5:C1
ValidityTue, 25 Jul 2023 06:29:27 GMT - Mon, 23 Oct 2023 06:29:26 GMT
File type ASCII text, with very long lines (749), with no line terminators
Hash c048b10ebf54f081d4248b6c7da83ca7
06c189df760fbbeba307539083d81a094e6090eb
e84724c13616061d4d4d80aaf50dd44e306d3b07a8fe1dd43aa674e6b3313150
GET /p.js?f=sync&lr=1&partner=99c30c16251013f12bce1f916a2a4db7afae111055019941564138603f0f7957 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: text/javascript
content-length: 697
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/files/categories/Zitro-246.svg?v10263
200 OK 280 B URL GET HTTP/2 www.brazino-cdnsrv-cst.org/files/categories/Zitro-246.svg?v10263
IP
ASN #60068 Datacamp Limited
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subject1107631085.rsc.cdn77.org
FingerprintFC:30:44:F1:AA:FD:BB:46:F5:7C:D2:8B:A5:9E:81:24:08:71:EE:74
ValidityFri, 30 Jun 2023 22:49:32 GMT - Thu, 28 Sep 2023 22:49:31 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (306), with no line terminators
Hash 7784d0104b821933d130003c3b7c94bc
9cb52fef694aeac1c1eaea06fdd22134de88bab7
4cca1ca056a921fdcf352b53630a11c00bfffec722bb25f42be3f8e681d0a003
GET /files/categories/Zitro-246.svg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"60ddbf37-118"
expires: Thu, 07 Dec 2023 18:16:28 GMT
last-modified: Thu, 01 Jul 2021 13:12:23 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: c67c9147-7433-4547-9ad0-97da6a829fe9-3412022
server: CDN77-Turbo
x-77-nzt: AblMCRSEMWT/TPNWAQ
x-77-nzt-ray: af585630e3980396c8cbe764a01a870d
x-accel-expires: @1701972988
x-accel-date: 1670436988
x-cache: HIT
x-age: 22475596
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.galera.bet/webContent/pt_PT_COOKIE_WC?t=1692875326913
200 OK 241 B URL GET HTTP/3 www.galera.bet/webContent/pt_PT_COOKIE_WC?t=1692875326913
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerDigiCert Inc
Subject*.galera.bet
FingerprintCB:56:2F:06:77:6A:D9:92:F5:D0:B9:2B:DA:94:08:5D:5C:04:4B:82
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type HTML document, Unicode text, UTF-8 text, with no line terminators
Hash bc2e51a41e841c9993a39c90680d79f6
44b68d69327a8c58ca85b6af05fee67f43330508
5e632b476fbc799c6449f19469cb30bc56a0fe52884692e7f41f8d5211bb13b0
GET /webContent/pt_PT_COOKIE_WC?t=1692875326913 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.galera.bet/cassino
request-id: |1af1b75bbd9643d0a4c4220daae768b0.280942b79b344566
traceparent: 00-1af1b75bbd9643d0a4c4220daae768b0-280942b79b344566-01
DNT: 1
Connection: keep-alive
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: text/html; charset=UTF-8
cf-ray: 7fbeb147286db517-OSL
cf-cache-status: HIT
age: 873
cache-control: max-age=3600,max-stale=3600
etag: W/"64e73a3e-f1"
last-modified: Thu, 24 Aug 2023 11:08:46 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
20bet.com/assets/sport/1059.svg
200 OK 8.1 kB URL GET HTTP/2 20bet.com/assets/sport/1059.svg
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (8279), with no line terminators
Hash ac4c8587786b0d82b997dc411f897829
86e02d006e529f300750d339329f0b91e77d6b74
59f5b4bde03eb9f9812094dfa9329364b64c2072f6f8787c3ea1cb548d1a6509
GET /assets/sport/1059.svg HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: image/svg+xml
cf-ray: 7fbeb1583b65b524-OSL
cf-cache-status: HIT
age: 289
cache-control: public, max-age=14400
etag: W/"64e5abbb-1fca"
expires: Fri, 25 Aug 2023 01:29:47 GMT
last-modified: Wed, 23 Aug 2023 06:48:27 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
200 OK 920 B URL GET HTTP/2 platform.20bet.com/api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1036), with no line terminators
Hash a9dc848de567663797ef3aa9d6e8f3f4
53170114199a3ed045c2784ff35349409ebc39cd
b8ac1e3d4fd31fcfe72e61fa2b7578c9bea1f636dc2fd4ca696e8e8062f2902c
GET /api/tournaments/bet-tournament/get-active?fields%5B%5D=tournaments&fields%5B%5D=leaderboards&fields%5B%5D=authorizedUsers HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
client-timezone: UTC
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/
Cookie: _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb14828d7b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
bc.game/api/account/get/
200 OK 591 B IP
Requested by https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Certificate IssuerCloudflare, Inc.
Subjectbc.game
Fingerprint0E:D7:DC:DE:16:EC:37:F9:D7:CE:C6:9A:DF:05:D9:FB:0E:F4:6D:37
ValidityWed, 16 Nov 2022 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (669), with no line terminators
Hash 20785a0edae21bb79b3172bed271caf0
c3681f3dfeb80909a2f91ec60d79e676a73dbeea
63c5c72f9648c478648e93701ea42d921f425a4fe5e09e45026a588ae849850f
GET /api/account/get/ HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:41 GMT
content-type: application/json
set-cookie: SESSION=01jckfgrqwarol18a2973f9045811fc71c8d32e08f17605b11; Path=/; Domain=bc.game; Max-Age=315360000; Expires=Sun, 21 Aug 2033 21:29:40 GMT; Secure; HttpOnly; SameSite=Lax
visit-url=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr; Path=/; Domain=bc.game; Secure; HttpOnly
invitation-code=4cxse6dr; Path=/; Domain=bc.game; Max-Age=2592000; Expires=Sat, 23 Sep 2023 21:29:40 GMT; Secure; HttpOnly; SameSite=None
invitation-url=https%3A%2F%2Fbc.game%2Flanding%2Fsports-br%3Fi%3D4cxse6dr%26stag%3D17409_64e7cbc0b13d213d9ea39f20%26utm_source%3D4cxse6dr; Path=/; Domain=bc.game; Max-Age=2592000; Expires=Sat, 23 Sep 2023 21:29:40 GMT; Secure; HttpOnly; SameSite=None
utm_source=4cxse6dr; Path=/; Domain=bc.game; Max-Age=86400; Expires=Fri, 25 Aug 2023 21:29:40 GMT; Secure; SameSite=Lax
JSESSIONID=OWIxY2NmM2QtMDQzZC00ZjViLTk3NDEtNGFkMGY0NGZiM2Qw; Path=/; Secure; HttpOnly; SameSite=Lax
cache-control: no-store
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb12d9b97b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/9983.39f9d39de8f42e75.js
200 OK 27 kB URL GET HTTP/2 20bet.com/app/9983.39f9d39de8f42e75.js
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (26800), with no line terminators
Hash 57cc1d0fd4cf3f3a3ec74021e9ee8d6f
47b463b3ffa002733176cb740e03edff0beedd8a
4b7f3e1be270342532ec5d85fe870d7829641b65ae83f2cab7a4e8fdeff8da21
GET /app/9983.39f9d39de8f42e75.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c5a4db524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aada-68b0"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:44:42 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
bc.game/assets/chunk-7b57c0a1.js
200 OK 15 kB URL GET HTTP/2 bc.game/assets/chunk-7b57c0a1.js
IP
Requested by https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Certificate IssuerCloudflare, Inc.
Subjectbc.game
Fingerprint0E:D7:DC:DE:16:EC:37:F9:D7:CE:C6:9A:DF:05:D9:FB:0E:F4:6D:37
ValidityWed, 16 Nov 2022 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (14730)
Hash 7e28d4fda60f8eeb7c4629e42baf277d
e425100bb3f57d7764d773ad8cf4cfa4d69e117a
95910bedd7f1e4d02c417d2cf10465f58440acdd2bbb6ed8702ae687b20a4fb0
GET /assets/chunk-7b57c0a1.js HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/assets/entry-client-routing.67c67dbd.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:39 GMT
content-type: application/javascript
last-modified: Mon, 21 Aug 2023 14:37:00 GMT
vary: Accept-Encoding
etag: W/"64e3768c-398b"
cache-control: max-age=3600
cf-cache-status: HIT
age: 1664
server: cloudflare
cf-ray: 7fbeb1235e4db529-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/runtime.c126acad.js?v10263
200 OK 3.5 kB URL GET HTTP/2 www.brazino-cdnsrv-cst.org/build/runtime.c126acad.js?v10263
IP
ASN #60068 Datacamp Limited
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subject1107631085.rsc.cdn77.org
FingerprintFC:30:44:F1:AA:FD:BB:46:F5:7C:D2:8B:A5:9E:81:24:08:71:EE:74
ValidityFri, 30 Jun 2023 22:49:32 GMT - Thu, 28 Sep 2023 22:49:31 GMT
File type ASCII text, with very long lines (3590), with no line terminators
Hash a5d16635f20a73cfd98494f788aac725
02b12b3e1a75d01fec1dd5232f564a6551c855be
e921002e990d9bc7fa6cd78c67eec9aea2b1a28f62d1f5f51e10f8cc6aaf1185
GET /build/runtime.c126acad.js?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:41 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"644a44cd-dcb"
expires: Fri, 26 Apr 2024 09:53:26 GMT
last-modified: Thu, 27 Apr 2023 09:47:57 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: d5b6751b-2f67-49f7-8c3b-43fcbf8e2917-1172023
server: CDN77-Turbo
x-77-nzt: AblMCRRHZhL/r4WdAA
x-77-nzt-ray: af585630e3980396c5cbe764ff556002
x-accel-expires: @1714125206
x-accel-date: 1682589206
x-cache: HIT
x-age: 10323375
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.brazino-cdnsrv-cst.org/build/images/scrollTopArrow.9aad31aa.svg
200 OK 830 B URL GET HTTP/2 www.brazino-cdnsrv-cst.org/build/images/scrollTopArrow.9aad31aa.svg
IP
ASN #60068 Datacamp Limited
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subject1107631085.rsc.cdn77.org
FingerprintFC:30:44:F1:AA:FD:BB:46:F5:7C:D2:8B:A5:9E:81:24:08:71:EE:74
ValidityFri, 30 Jun 2023 22:49:32 GMT - Thu, 28 Sep 2023 22:49:31 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (894), with no line terminators
Hash ee84e9bc25974709edc787c4cd035037
8eff3aa11611cfc2f00aab5c1702273a75ad4325
f2267c7b5fc84da7684d3ca685069417a9b98880939cee0b0470d9745dc1319c
GET /build/images/scrollTopArrow.9aad31aa.svg HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brazino-cdnsrv-cst.org/build/app.d830fcd7.css?v10263
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: W/"638df9a5-33e"
expires: Wed, 06 Dec 2023 21:27:19 GMT
last-modified: Mon, 05 Dec 2022 14:01:09 GMT
referrer-policy: same-origin
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
x-waf-req-id: 6a2a98c0-56b8-4bff-ac7c-5c5c080d5a79-3402022
server: CDN77-Turbo
x-77-nzt: AblMCRQjcn//EBhYAQ
x-77-nzt-ray: af585630e3980396c7cbe764eb723f35
x-accel-expires: @1701898039
x-accel-date: 1670362039
x-cache: HIT
x-age: 22550544
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
api.mythad.com/rest/n/adintl/ad/getPixelConfig?pixelId=515717319952965655
200 OK 849 B URL GET HTTP/3 api.mythad.com/rest/n/adintl/ad/getPixelConfig?pixelId=515717319952965655
IP
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerGlobalSign nv-sa
Subject*.mythad.com
Fingerprint23:A6:63:24:92:FB:76:8E:B7:39:EC:C7:9B:DA:30:36:7F:57:93:AC
ValidityThu, 09 Mar 2023 12:25:09 GMT - Tue, 09 Apr 2024 12:25:08 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1071), with no line terminators
Hash fc863578fad1c4865dcfdf4ab1aaddc6
06bfaebd95d4f22e14ea25a989eb60080d78bc8f
a675b22166bf5d3bfa1e5d6a06970d1dbf5582a82df601940c01b1611c44b329
GET /rest/n/adintl/ad/getPixelConfig?pixelId=515717319952965655 HTTP/1.1
Host: api.mythad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://brazino777.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: application/json;charset=UTF-8
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://brazino777.com
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
20bet.com/app/8824.6fe5219e3e43263e.js
200 OK 50 kB URL GET HTTP/2 20bet.com/app/8824.6fe5219e3e43263e.js
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/8824.6fe5219e3e43263e.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c4a1fb524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aae0-c384"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:44:48 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
sportsbook-platform-api.nsoft.com/prematchOffer/getMeta?dataFormat=%7B%22default%22%3A%22object%22%2C%22sports%22%3A%22object%22%2C%22categories%22%3A%22object%22%2C%22tournaments%22%3A%22object%22%2C%22matches%22%3A%22array%22%2C%22betGroups%22%3A%22array%22%7D&dataShrink=false&language=%7B%22default%22%3A%22en%22%7D¶ms=%7B%22start_date%22%3A%222023-08-24%2021%3A29%3A35%22%2C%22end_date%22%3A%222023-08-27%2021%3A29%3A35%22%2C%22timezone%22%3A%22UTC%22%2C%22delivery_platform%22%3A%22Web%22%2C%22company_uuid%22%3A%22ee010c47-eb96-4ffe-a11f-bf2736607193%22%7D&topOffer=%7B%22matches%22%3Atrue%7D
302 Found 943 kB URL GET HTTP/2 sportsbook-platform-api.nsoft.com/prematchOffer/getMeta?dataFormat=%7B%22default%22%3A%22object%22%2C%22sports%22%3A%22object%22%2C%22categories%22%3A%22object%22%2C%22tournaments%22%3A%22object%22%2C%22matches%22%3A%22array%22%2C%22betGroups%22%3A%22array%22%7D&dataShrink=false&language=%7B%22default%22%3A%22en%22%7D¶ms=%7B%22start_date%22%3A%222023-08-24%2021%3A29%3A35%22%2C%22end_date%22%3A%222023-08-27%2021%3A29%3A35%22%2C%22timezone%22%3A%22UTC%22%2C%22delivery_platform%22%3A%22Web%22%2C%22company_uuid%22%3A%22ee010c47-eb96-4ffe-a11f-bf2736607193%22%7D&topOffer=%7B%22matches%22%3Atrue%7D
IP
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerSectigo Limited
Subject*.nsoft.com
Fingerprint5C:94:62:71:55:E6:09:DE:20:8B:0F:93:AA:C0:1B:DA:D8:0E:7C:9C
ValidityThu, 27 Apr 2023 00:00:00 GMT - Mon, 27 May 2024 23:59:59 GMT
Size 943 kB (943385 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prematchOffer/getMeta?dataFormat=%7B%22default%22%3A%22object%22%2C%22sports%22%3A%22object%22%2C%22categories%22%3A%22object%22%2C%22tournaments%22%3A%22object%22%2C%22matches%22%3A%22array%22%2C%22betGroups%22%3A%22array%22%7D&dataShrink=false&language=%7B%22default%22%3A%22en%22%7D¶ms=%7B%22start_date%22%3A%222023-08-24%2021%3A29%3A35%22%2C%22end_date%22%3A%222023-08-27%2021%3A29%3A35%22%2C%22timezone%22%3A%22UTC%22%2C%22delivery_platform%22%3A%22Web%22%2C%22company_uuid%22%3A%22ee010c47-eb96-4ffe-a11f-bf2736607193%22%7D&topOffer=%7B%22matches%22%3Atrue%7D HTTP/1.1
Host: sportsbook-platform-api.nsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://brazino777.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: application/json
location: https://sportsbook-platform-api.nsoft.com/prematchOffer/getMeta?params=%7B%22start_date%22%3A%222023-08-24+21%3A29%3A00%22%2C%22end_date%22%3A%222023-08-27+21%3A29%3A59%22%2C%22timezone%22%3A%22UTC%22%2C%22delivery_platform%22%3A%22Web%22%2C%22company_uuid%22%3A%22ee010c47-eb96-4ffe-a11f-bf2736607193%22%7D&dataFormat=%7B%22default%22%3A%22object%22%2C%22sports%22%3A%22object%22%2C%22categories%22%3A%22object%22%2C%22tournaments%22%3A%22object%22%2C%22matches%22%3A%22array%22%2C%22betGroups%22%3A%22array%22%7D&topOffer=%7B%22matches%22%3Atrue%7D&language=%7B%22default%22%3A%22en%22%7D&dataShrink=false&cacheRedirect=1
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubdomains;
sb-ch: MISS
access-control-allow-origin: https://brazino777.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.galera.bet/webContent/pt_PT_HEADER?t=1692875326913
200 OK 9.3 kB URL GET HTTP/3 www.galera.bet/webContent/pt_PT_HEADER?t=1692875326913
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerDigiCert Inc
Subject*.galera.bet
FingerprintCB:56:2F:06:77:6A:D9:92:F5:D0:B9:2B:DA:94:08:5D:5C:04:4B:82
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9770), with no line terminators
Hash 643fb122efce7621ce6070f924710570
c12dd11eefa3d18ab11ffe628291edbc1f268b82
274babf55d1e8bce041ed09040ad8c6bfd4c390f3d0da5ee9b04b5cdf80aecc2
GET /webContent/pt_PT_HEADER?t=1692875326913 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.galera.bet/cassino
request-id: |1af1b75bbd9643d0a4c4220daae768b0.457680fd4400426b
traceparent: 00-1af1b75bbd9643d0a4c4220daae768b0-457680fd4400426b-01
DNT: 1
Connection: keep-alive
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: text/html; charset=UTF-8
cf-ray: 7fbeb14e8a3bb517-OSL
cf-cache-status: HIT
age: 874
cache-control: max-age=3600,max-stale=3600
etag: W/"64e73a3e-2445"
last-modified: Thu, 24 Aug 2023 11:08:46 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
20bet.com/app/381.08565353ed98b304.js
200 OK 2.2 kB URL GET HTTP/2 20bet.com/app/381.08565353ed98b304.js
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (2314), with no line terminators
Hash 88fbd31378ad7ff0789009e30c752bc3
c0dc2d10937559cbf98d7dfbf541960db79aa107
25ef34aac274ad4d3e30806d627be955214ef6386396e5f65d707be5953fd344
GET /app/381.08565353ed98b304.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c4a3ab524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aaf4-8c6"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:45:08 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
bc.game/assets/TwoFactor.e320f055.css
200 OK 4.2 kB URL GET HTTP/2 bc.game/assets/TwoFactor.e320f055.css
IP
Requested by https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Certificate IssuerCloudflare, Inc.
Subjectbc.game
Fingerprint0E:D7:DC:DE:16:EC:37:F9:D7:CE:C6:9A:DF:05:D9:FB:0E:F4:6D:37
ValidityWed, 16 Nov 2022 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (4200), with no line terminators
Hash eaf2ad42ac44f54abe1f3663f60a8406
435a081a96a6c59b92f2847f85475b3cf99c9b60
c8f07b3a51105d22f171fc0e97123057e103a02bb244f426fc4e64dd6e433ba0
GET /assets/TwoFactor.e320f055.css HTTP/1.1
Host: bc.game
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bc.game/landing/sports-br?i=4cxse6dr&stag=17409_64e7cbc0b13d213d9ea39f20&utm_source=4cxse6dr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:38 GMT
content-type: text/css
last-modified: Thu, 24 Aug 2023 02:46:43 GMT
vary: Accept-Encoding
etag: W/"64e6c493-1067"
cache-control: max-age=3600
cf-cache-status: HIT
server: cloudflare
cf-ray: 7fbeb11fc8ebb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/9629.380c404b3cbc49a4.js
200 OK 20 kB URL GET HTTP/2 20bet.com/app/9629.380c404b3cbc49a4.js
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (20230)
Hash 55ab27bb86626d60dcc38e3a6fd23369
7b7573c2d0f80f443b8d8888b00a2fa2d5e4bcd8
918e26c3932d372531b6d0fc89332561fc52dc71f7c85a0a2da4038d2ed8d490
GET /app/9629.380c404b3cbc49a4.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c4a36b524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aaed-4f55"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:45:01 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.galera.bet/library/Game%20Icons/Playtech/gpas_hitbargl1_pop.webp
200 OK 43 kB URL GET HTTP/3 www.galera.bet/library/Game%20Icons/Playtech/gpas_hitbargl1_pop.webp
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerDigiCert Inc
Subject*.galera.bet
FingerprintCB:56:2F:06:77:6A:D9:92:F5:D0:B9:2B:DA:94:08:5D:5C:04:4B:82
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 65eaf95b54f85bc0912a3de52d75fd10
05576b09c40da56fa27144c99b1798f01302d624
74f147c291c730832a9fadf413036a086a44a6ad949e4a04f9bc1efc4c151523
GET /library/Game%20Icons/Playtech/gpas_hitbargl1_pop.webp HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 42664
cf-ray: 7fbeb14e8a3fb517-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 873
cache-control: max-age=3600,max-stale=3600
etag: "64a6a0cd-a6a8"
last-modified: Thu, 06 Jul 2023 11:09:01 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
platform.20bet.com/api/data/provinces
204 No Content 0 B URL OPTIONS HTTP/2 platform.20bet.com/api/data/provinces
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/provinces HTTP/1.1
Host: platform.20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: client-timezone,content-type,x-requested-with
Referer: https://20bet.com/
Origin: https://20bet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Thu, 24 Aug 2023 21:29:44 GMT
content-length: 0
access-control-allow-origin: https://20bet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,client-timezone,LOCATION-SMART-HTML-SESSION-ID,LOCATION-SMART-DEVICE-SESSION-ID
access-control-expose-headers: Content-Length,Content-Range
access-control-max-age: 86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7fbeb14709c0b4eb-OSL
X-Firefox-Spdy: h2
www.galera.bet/library/Game%20Icons/compressed/220323/Game_art_400x400.webp?siteid=2
200 OK 19 kB URL GET HTTP/3 www.galera.bet/library/Game%20Icons/compressed/220323/Game_art_400x400.webp?siteid=2
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerDigiCert Inc
Subject*.galera.bet
FingerprintCB:56:2F:06:77:6A:D9:92:F5:D0:B9:2B:DA:94:08:5D:5C:04:4B:82
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5be79b5ff68d3c2115a86beb4d8af652
48ad0aad9a9edc817fb1a6126487a4142fcf425c
d8671f05944ed0b4123b14c6cc095b7618a3f25fbb363ed47789b7c828ef675d
GET /library/Game%20Icons/compressed/220323/Game_art_400x400.webp?siteid=2 HTTP/1.1
Host: www.galera.bet
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/cassino
Cookie: banner_domainclick=gig_cph_pop_br%2C%2C%2C%2Cadmap%3A31106CB48A5CA9C72FDF4FF37ED3E984%3Bchannel%3APU_BR_PA_CS_DT_GALERA_VOLD%3Bvar1%3A%3Bvar10%3A%3Bvar2%3A%3Bvar3%3A%3Bvar4%3A%3Bvar5%3A%3Bvar6%3A%3Bvar7%3A%3Bvar8%3A%3Btab%3A%3Bgclid%3A%3Blp_id%3A13544943; ai_user=NVDPxEM4meUQXMyzW1hW3O|2023-08-24T21:29:31.658Z; ai_sessionportal=Glwbg2dj1FBffe7KeHlLC1|1692912572207|1692912572207; __cf_bm=CWJgbhek7ZymXq.WnFBu.fDSXcuG2N8QJmv1ta33ufU-1692912580-0-AcG1qKWeGOp/PG81d8hpOaJplzhzGEKXpdvG1LjQ3pHcWpzEApXwL0WDR7/DwikI9KKU5RxkH3L5GRdCmTn7L/w=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:46 GMT
content-type: image/webp
content-length: 18668
cf-ray: 7fbeb14e8a3db517-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 873
cache-control: max-age=3600,max-stale=3600
etag: "641aae45-48ec"
last-modified: Wed, 22 Mar 2023 07:29:09 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
edge-control: max-age=3600s,downstream-ttl=3600s
server: cloudflare
alt-svc: h3=":443"; ma=86400
20bet.com/api/footer/get-content?lang=pt
200 OK 9.8 kB URL GET HTTP/2 20bet.com/api/footer/get-content?lang=pt
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (11001), with no line terminators
Hash 708bf380b46b0081494311e533a211ac
c7744c306f74b411efd74ed438d7bc5d83f3482a
b4cd000aabe267a9275928d1aebc445acafa897c117e3d16dc6e16baed2acd3d
GET /api/footer/get-content?lang=pt HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:47 GMT
content-type: application/json
cf-ray: 7fbeb154bf1cb524-OSL
cf-cache-status: DYNAMIC
cache-control: no-cache, private
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Range
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
20bet.com/app/1486.3fa0be764fd886d4.js
200 OK 41 kB URL GET HTTP/2 20bet.com/app/1486.3fa0be764fd886d4.js
IP
Requested by https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Certificate IssuerCloudflare, Inc.
Subject20bet.com
FingerprintBC:BC:84:0F:5F:E1:75:8C:8C:C4:E5:BB:48:03:C7:CB:D3:A5:54:9E
ValidityTue, 21 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/1486.3fa0be764fd886d4.js HTTP/1.1
Host: 20bet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://20bet.com/br?btag=668128_B53E1EDAF54E4251BD1E053EB21A0108
Cookie: btag=668128_B53E1EDAF54E4251BD1E053EB21A0108; _sp_srt_ses.1d36=*; _sp_srt_id.1d36=5a08cb25-f04f-4342-a8d9-13462d42c46a.1692912574.1.1692912574..13fa3b2e-41f8-45a2-8af6-1231dac8a9e4....0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:43 GMT
content-type: application/javascript
cf-ray: 7fbeb13c099ab524-OSL
cf-cache-status: HIT
age: 850
cache-control: public, max-age=14400
etag: W/"64e5aafa-a1e3"
expires: Fri, 25 Aug 2023 01:29:43 GMT
last-modified: Wed, 23 Aug 2023 06:45:14 GMT
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
scripts.prdredir.com/safeframe
200 OK 4.0 kB URL GET HTTP/3 scripts.prdredir.com/safeframe
IP
Requested by https://www.galera.bet/cassino
Certificate IssuerGoogle Trust Services LLC
Subjectprdredir.com
Fingerprint97:E6:8C:C8:2F:07:ED:6C:4F:E6:DE:0B:07:1C:D0:C2:3E:B4:3E:7D
ValidityThu, 06 Jul 2023 07:01:15 GMT - Wed, 04 Oct 2023 07:01:14 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4178), with no line terminators
Hash 402ab54c3b90426719ca86de3d5a9996
da4d0648036685efae8cd9914091dcc2c6b2814b
6ce301cc75dae3176b170bb056a1ba78a8e5828ef561db3559f307770ed4d3b3
GET /safeframe HTTP/1.1
Host: scripts.prdredir.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.galera.bet/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 24 Aug 2023 21:29:45 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
status: 200 OK
cache-control: no-cache
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-request-id: 7ff98b21-8c9a-4408-9409-37c68dbac5b4
x-download-options: noopen
x-runtime: 0.002203
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K%2FstlZoXXVfv26RmlhEyH%2B%2BaSi8n3KtO1dMmZru6RVKNrz8Ia0AF0vq4mAo7xmbsz%2FXHBuPyLpL04Iy%2FVN854HKqJT6AqswKvaI7eZ4XMFYTLE8nHr3%2BxDdC4E7JiTAKsgfutpBmTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7fbeb148fca523b3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.brazino-cdnsrv-cst.org/media/cache/default_webp/files/tourImg/156/6c8758659b287954babd9f1989a2fec3.jpg?v10263
200 OK 67 kB URL GET HTTP/2 www.brazino-cdnsrv-cst.org/media/cache/default_webp/files/tourImg/156/6c8758659b287954babd9f1989a2fec3.jpg?v10263
IP
ASN #60068 Datacamp Limited
Requested by https://brazino777.com/en/?ambp=&b7pm=620633f29fd70
Certificate IssuerLet's Encrypt
Subject1107631085.rsc.cdn77.org
FingerprintFC:30:44:F1:AA:FD:BB:46:F5:7C:D2:8B:A5:9E:81:24:08:71:EE:74
ValidityFri, 30 Jun 2023 22:49:32 GMT - Thu, 28 Sep 2023 22:49:31 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 926a70b5b48906f718f0006db402d4fc
d340f45b1860ff4853455ea1e5ab9019c3a0832e
ec6ed20c8d15569b31f4cca3520e17017652919764a64a85566398ca1fc3a5d9
GET /media/cache/default_webp/files/tourImg/156/6c8758659b287954babd9f1989a2fec3.jpg?v10263 HTTP/1.1
Host: www.brazino-cdnsrv-cst.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 24 Aug 2023 21:29:44 GMT
content-type: image/jpeg
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
etag: "64dabfc9-105ae"
expires: Wed, 14 Aug 2024 15:11:52 GMT
last-modified: Mon, 14 Aug 2023 23:59:05 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-waf-req-id: 2a73fd3c-e06b-4715-850a-c6e80faebab4-2272023
server: CDN77-Turbo
x-77-nzt: AblMCRTWb5j/EDYMAA
x-77-nzt-ray: af585630e3980396c8cbe7644c2d310e
x-accel-expires: @1723648312
x-accel-date: 1692112312
x-cache: HIT
x-age: 800272
x-77-pop: stockholmSE
x-77-cache: HIT
X-Firefox-Spdy: h2
172.67.205.61
43.152.140.143
104.18.38.45
95.101.10.171
103.10.205.11
109.74.192.79
213.187.229.147
40.127.232.184
23.83.127.76
3.126.81.211
188.114.96.1
185.76.9.26
0.0.0.0