wansultoud.com/4/5614977/?rhd=1&var=5694580&ymid={siteid}&var3=15679604_
301 Moved Permanently 162 B URL HTTP/1.1 wansultoud.com/4/5614977/?rhd=1&var=5694580&ymid={siteid}&var3=15679604_
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert quad9 Sinkholed
GET /4/5614977/?rhd=1&var=5694580&ymid={siteid}&var3=15679604_ HTTP/1.1
Host: wansultoud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 03 Feb 2023 19:50:18 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://wansultoud.com/4/5614977/?rhd=1&var=5694580&ymid={siteid}&var3=15679604_
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17553
Expires: Sat, 04 Feb 2023 00:42:52 GMT
Date: Fri, 03 Feb 2023 19:50:19 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11075
Expires: Fri, 03 Feb 2023 22:54:54 GMT
Date: Fri, 03 Feb 2023 19:50:19 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 19:43:35 GMT
content-type: application/json
age: 404
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5011
Expires: Fri, 03 Feb 2023 21:13:50 GMT
Date: Fri, 03 Feb 2023 19:50:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YMFBHYBnUN/Z49PHil+rmfUaqTefEB7JhAVBYKiGW26qZ1kHy+0uC9LZ8KOda2GVgl0sGPtLza8=
x-amz-request-id: T5B2NQJ3NXGEEHT9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 19:23:40 GMT
age: 1599
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:50:19 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 23df7fb1efc33823972e5db2bad0ec58
755b8a77ef5b7c026a21e437fd46ecc3af5cbe0d
db966e65baea6e06f49915ba2e1e3b12f108612c5fe1d0dc591cbbf067278554
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB966E65BAEA6E06F49915BA2E1E3B12F108612C5FE1D0DC591CBBF067278554"
Last-Modified: Fri, 03 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21582
Expires: Sat, 04 Feb 2023 01:50:01 GMT
Date: Fri, 03 Feb 2023 19:50:19 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bb0e1ff82ab6199f715e00974b7f6957
74edba6943c202d060b471c30a3c626542bfac84
d982aa0ae1b32ffba27f789ad265b594dfef0bc4c55a0d0489d38b0827e6a7e2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D982AA0AE1B32FFBA27F789AD265B594DFEF0BC4C55A0D0489D38B0827E6A7E2"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9460
Expires: Fri, 03 Feb 2023 22:27:59 GMT
Date: Fri, 03 Feb 2023 19:50:19 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/DPv2Tv_7RGg
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/DPv2Tv_7RGg
IP
Hash 0756b01b2b397d063746f556e3072d8e
f42502d05173cf8ebacdc0118af943d109fc2aa2
a275c94d4bb02d3a121c9a7a83addb42c93c5978e5d376e6d267abfbf33f36ae
POST /s/gts1p5/DPv2Tv_7RGg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 19:50:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wansultoud.com/favicon.ico
204 No Content 0 B URL HTTP/2 wansultoud.com/favicon.ico
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: wansultoud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: OAID=b7285a73c3bb418095abebd36ae9f461; oaidts=1675453819
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 03 Feb 2023 19:50:19 GMT
strict-transport-security: max-age=60
x-content-type-options: nosniff
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=merge&userId=b7285a73c3bb418095abebd36ae9f461
200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=merge&userId=b7285a73c3bb418095abebd36ae9f461
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=merge&userId=b7285a73c3bb418095abebd36ae9f461 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:50:19 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=b7285a73c3bb418095abebd36ae9f461; expires=Sat, 03 Feb 2024 19:50:19 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 19:07:19 GMT
age: 2580
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4576
Expires: Fri, 03 Feb 2023 21:06:36 GMT
Date: Fri, 03 Feb 2023 19:50:20 GMT
Connection: keep-alive
www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
200 OK 8.5 kB URL HTTP/2 www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8453), with no line terminators
Hash f73bb467f2de77c3c8b80c7dc7f106cc
4b26ea34270d4dbf47bcd63fcad4e6dc0e09ed32
2d26e90a7ef6d0647b4fd4ed977b5d4092565ef15b80aafb8e521551d72de56e
GET /no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 8453
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:21 GMT
etag: "f73bb467f2de77c3c8b80c7dc7f106cc"
x-cache: Error from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GWHR2Yiuz89ONcF_XJCcvJDtSZ1WbokN0S0EnXbNxoXjnBcoup-bew==
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-Regular.ttf
200 OK 97 kB URL HTTP/2 www.ibet.com/fonts/OpenSans-Regular.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Hash 3ed9575dcc488c3e3a5bd66620bdf5a4
babe8dce93a3e48b6c3c79720a0c048e88dd1fe7
037236ed4bf58a85f67074c165d308260fd6be01c86d7df4e79ea16eb273f8c5
GET /fonts/OpenSans-Regular.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/font-sfnt
content-length: 96932
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:21 GMT
etag: "3ed9575dcc488c3e3a5bd66620bdf5a4"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dLr1_APlsa7ArM2lHH3Ybr4f9DuoyiH2CtU_jMXciY1VedZEL82nbA==
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-SemiBold.ttf
200 OK 101 kB URL HTTP/2 www.ibet.com/fonts/OpenSans-SemiBold.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Digitized data copyright \251 2011, Google Corporation.Open Sans SemiBoldRegular1.10;1ASC;OpenSa\012- data
Size 101 kB (100820 bytes)
Hash ba5cde21eeea0d57ab7efefc99596cce
e256f8391718ef61f253dfb4e95bbeb3c5857afc
5e8d9e1a89083cd1b0849993fe2f3acc9aa33b7f439f7e8616872f6897f30684
GET /fonts/OpenSans-SemiBold.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/font-sfnt
content-length: 100820
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:21 GMT
etag: "ba5cde21eeea0d57ab7efefc99596cce"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: u_Wg9-HswOMWjz97wZf6-gssXGhHXPDKPcilfjIscz7CtMr29wOC-Q==
X-Firefox-Spdy: h2
www.ibet.com/static/js/56.2ed00168.chunk.js
200 OK 1.2 MB URL HTTP/2 www.ibet.com/static/js/56.2ed00168.chunk.js
IP
File type ASCII text, with very long lines (65461)
Size 1.2 MB (1238789 bytes)
Hash 5b98e1b5c0306fbb6a00599a1f71ec11
3fe04bd9c37bee0468e73447ba3a48e919767914
12df518fc3b1e454fcc10f93ebdf7594e981eee90abe3079890cd17547f38883
GET /static/js/56.2ed00168.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1238789
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:21 GMT
etag: "5b98e1b5c0306fbb6a00599a1f71ec11"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NWQz80lDMXwKDaG99X03JS0XyVR-W4_6O_pbhxigivZWCGEA1jXhCg==
X-Firefox-Spdy: h2
www.ibet.com/static/js/main.1ea8a9f9.chunk.js
200 OK 1.7 MB URL HTTP/2 www.ibet.com/static/js/main.1ea8a9f9.chunk.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.7 MB (1728511 bytes)
Hash d5fee69f9f3840934ed0ec43d231353f
b431b619540acfb2cd950abbc9f9b01b367129f9
ab8ec9c6f8ee993ce28b5b6d77e47158f8938ab7d970eb8a3f9b02501da134fc
GET /static/js/main.1ea8a9f9.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1728511
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:21 GMT
etag: "d5fee69f9f3840934ed0ec43d231353f"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pa03sQTmSWtZEzDTBBd4eb7vQ26_JxMoudla4TTwGVIFjjVH3dV5gw==
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Rb+877IGj64jAkV+YY6hiw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: l0WtLu62lPkihreXkXOHAOvTspk=
www.ibet.com/static/css/56.07bf056b.chunk.css
200 OK 2.0 kB URL HTTP/2 www.ibet.com/static/css/56.07bf056b.chunk.css
IP
File type ASCII text, with very long lines (2049), with no line terminators
Hash 36b2f8ea1e16e9f607c1701f688c13da
bbcf0e61433d91d8ccf793fddaf638b0326f254d
2ce59990e026b2074cb274798dd1ee8b536bf4e628d481003e015ece685c00da
GET /static/css/56.07bf056b.chunk.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 2049
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:21 GMT
etag: "36b2f8ea1e16e9f607c1701f688c13da"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RP-_TQr6IY-0vqn9X616fFogwa-SvMzlaZLFUq2qQuSErc7qKba-8A==
X-Firefox-Spdy: h2
www.ibet.com/static/css/main.17c66d77.chunk.css
200 OK 36 kB URL HTTP/2 www.ibet.com/static/css/main.17c66d77.chunk.css
IP
File type ASCII text, with very long lines (24239)
Hash 9f7fa2e99942f15807e2e6f5cd62aca5
cdf6ed1947e285ae3be5f68949f6d0e5cf057a23
ec55dea9a5ac90bd72bc727eebe8545b58b19470d28c5892894bc3754d97da60
GET /static/css/main.17c66d77.chunk.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 35641
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:21 GMT
etag: "9f7fa2e99942f15807e2e6f5cd62aca5"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XP1_NGVKUQrsLd3rllZFu_KBdqDl92LoUkquYb8dBDoyGmZEDLIKWg==
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-Bold.ttf
200 OK 104 kB URL HTTP/2 www.ibet.com/fonts/OpenSans-Bold.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansBold1.10;1ASC;OpenSans-Bold\012- data
Size 104 kB (104120 bytes)
Hash 1025a6e0fb0fa86f17f57cc82a6b9756
1e3704ee48b5ff7e582488ead87b05249f14dc1c
f7916a37377e38527d4306303cfe89b653b49b0a6b0b05c6b7593f7ab0248da8
GET /fonts/OpenSans-Bold.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/font-sfnt
content-length: 104120
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:21 GMT
etag: "1025a6e0fb0fa86f17f57cc82a6b9756"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vFQfo33udRK6fRVCfjPWvtmfAqgpXxIspFbWNwQXr-hFlClyN64qNw==
X-Firefox-Spdy: h2
d1w3v8ahdm9uzk.cloudfront.net/prod/api/v1/player/access/context
200 OK 370 B URL HTTP/2 d1w3v8ahdm9uzk.cloudfront.net/prod/api/v1/player/access/context
IP
File type JSON data\012- , ASCII text
Hash a9058bcafaa20f452059d17d71366809
36aafe52e527968827415e32b53af7d537ac2ff9
181dd6c8374efe4830ed13c69dc30510b272911f318ab3ca6e0f1d80f421ca15
GET /prod/api/v1/player/access/context HTTP/1.1
Host: d1w3v8ahdm9uzk.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 370
date: Fri, 03 Feb 2023 19:50:20 GMT
x-amzn-requestid: 29a356dc-2502-44c7-baa1-364d30a0b32c
access-control-allow-origin: *
x-amz-apigw-id: fxzLhFqNDoEF6dw=
x-amzn-trace-id: Root=1-63dd657c-3462b338745031856ec07266
x-cache: Miss from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yLYE2pemP-8yaUwXz3Gm9UlCumnQBWmUQZjcBR1hKik--tfOOWMKXA==
X-Firefox-Spdy: h2
www.ibet.com/favicon.ico
200 OK 104 kB IP
File type MS Windows icon resource - 6 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size 104 kB (103505 bytes)
Hash c4ec29ec7a9b51ab3672ad4235022800
3b38d99e09a5935441eeb46a7ff6325ff253a243
852384ec427a20845c6be9329635438d03e9ce66712989c2b03a653b8c0169a3
GET /favicon.ico HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 103505
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:21 GMT
etag: "c4ec29ec7a9b51ab3672ad4235022800"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Y1oIdVShnwa2B5UmVP2-dx9v4E7PIY1Fx5RMsPT4cOz-q70cxRFBTA==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash a87d8a919b10bfacffe702c368b58e61
88182f1643f50c8ee613607ae7283d1cfdd78e5f
69c77a2be0351707b1eb6cc5a6fbf0bd4ecfb5c814c9b1cf8243daa36b36238e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 16:56:15 GMT
Expires: Thu, 09 Feb 2023 16:56:14 GMT
Etag: "88182f1643f50c8ee613607ae7283d1cfdd78e5f"
Cache-Control: max-age=507353,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1ecdfae1c02-OSL
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D
200 OK 28 kB URL HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65221), with no line terminators
Hash 1c7fe3f08afa3e6487cfa8bf9a04065c
68d3e1e530f28595ccbae30973d4f3d11dfd3a9c
4af225b2da03377bee2f977172e0a4b67b5e8ac0a0664b9459d719d089606876
GET /v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 03 Feb 2023 19:17:24 GMT
server-timing: api;dur=526
x-sanity-shard: gcp-eu-w1-01-prod-1013
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
content-encoding: br
x-sanity-age: 1976
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 28132
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/static/js/GoogleTagManager.be9a14e5.chunk.js
200 OK 5.8 kB URL HTTP/2 www.ibet.com/static/js/GoogleTagManager.be9a14e5.chunk.js
IP
File type ASCII text, with very long lines (5790), with no line terminators
Hash 205c5f208d88e6b99d785b986bf9b9b5
bbcaabff0472d6093e1d8865675d09ef152d1883
9b5a20b5c436c34dbca9108cb771204fb028d9abc59ec48639e0e7c6fb98dc59
GET /static/js/GoogleTagManager.be9a14e5.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 5790
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "205c5f208d88e6b99d785b986bf9b9b5"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: T8kL9xRclDBiLJ03CPW-r-3kT80oHJKSu8BcOkFd9ONpPcvZJTXlvg==
X-Firefox-Spdy: h2
www.ibet.com/static/js/ScrollToTopOnRouteChange.f0af955f.chunk.js
200 OK 279 B URL HTTP/2 www.ibet.com/static/js/ScrollToTopOnRouteChange.f0af955f.chunk.js
IP
File type ASCII text, with no line terminators
Hash 057be0c51a8d595af5f093393d82b68b
9101c6bbc32f67e1a611e63d32366307ce5d98fb
a3fe499aab0e0ecb2d142ef4487e67d78b9fd8b4d3ee516946250ebf6cb5f231
GET /static/js/ScrollToTopOnRouteChange.f0af955f.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 279
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "057be0c51a8d595af5f093393d82b68b"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _oD1mbZkn2xLlHmoOB4CMmBvchwhsoRPAlZoAmYidF6-PgCd0386Nw==
X-Firefox-Spdy: h2
www.ibet.com/static/js/ToastNotification.cf6c1eb6.chunk.js
200 OK 2.7 kB URL HTTP/2 www.ibet.com/static/js/ToastNotification.cf6c1eb6.chunk.js
IP
File type ASCII text, with very long lines (2714), with no line terminators
Hash ba1d06cb70d2b2c64cac8094c3d8f2d3
776fe2616d23ec011ac634180d09d853f0811103
68f0be364f0b4b6305a59a2f5f16225773cd59a4457ec318fe364b2cb44707c3
GET /static/js/ToastNotification.cf6c1eb6.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 2714
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "ba1d06cb70d2b2c64cac8094c3d8f2d3"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VY4iLh38szQAzWY7Nyc7GZ6XRNlSKv_nAEvqZJDXArQpbMTB4AlpTA==
X-Firefox-Spdy: h2
www.ibet.com/static/js/AppRoutes.50c58bf0.chunk.js
200 OK 12 kB URL HTTP/2 www.ibet.com/static/js/AppRoutes.50c58bf0.chunk.js
IP
File type ASCII text, with very long lines (11849), with no line terminators
Hash ef56513927c442d468ffcc1ceee2cc9a
e5611447dceea9a54b03279caefadb44e83244d3
17f238d5c1ef5955f5ed2b22fe639016018110d530e002d0e09ab0947debb335
GET /static/js/AppRoutes.50c58bf0.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 11849
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "ef56513927c442d468ffcc1ceee2cc9a"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: glbm7kZ3mwUz0w_Za5kDgDKghsI4M0ZMo5_c4OAhmduNRPNh3obb5g==
X-Firefox-Spdy: h2
www.ibet.com/static/js/SiteFooter.c577284c.chunk.js
200 OK 61 kB URL HTTP/2 www.ibet.com/static/js/SiteFooter.c577284c.chunk.js
IP
File type ASCII text, with very long lines (60710), with no line terminators
Hash 7950bcbb5fb522eb1b565b149c5a2a5c
91ef126927a316da5385265373e723ba78c62cb2
f2bdbbe5c2bd6a5f39f52476b077ee0f4130eb6915ff2572245d031920f4d2cb
GET /static/js/SiteFooter.c577284c.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 60710
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "7950bcbb5fb522eb1b565b149c5a2a5c"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8rX6PoKou_s-tiJf9DcVDiry-X011EJxcyboXWAJi6LyFLSTenDDBA==
X-Firefox-Spdy: h2
www.ibet.com/static/js/SiteHeader.c48a74c4.chunk.js
200 OK 126 kB URL HTTP/2 www.ibet.com/static/js/SiteHeader.c48a74c4.chunk.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 126 kB (126322 bytes)
Hash ce51f792d443e430e0d602dfeac29434
72e6509f532a0bdfc8bf3c1a4752793393dd331f
43a05242bcc5b27217cb04a6fa78e03f4afcac4a938c61d53981c531bad54676
GET /static/js/SiteHeader.c48a74c4.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 126322
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "ce51f792d443e430e0d602dfeac29434"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NBDAJ9bcDorHJf0gbfxE23dyEFUoxxpGSiyovAoM1bLW-_HHKL623g==
X-Firefox-Spdy: h2
www.ibet.com/static/js/FEReload.588ab5c8.chunk.js
200 OK 1.5 kB URL HTTP/2 www.ibet.com/static/js/FEReload.588ab5c8.chunk.js
IP
File type ASCII text, with very long lines (1469), with no line terminators
Hash d1e7e43f0c2e7eae5e38b92128c06205
35773de13762b35d1c9d56bc2b4bbbce020d31c9
aeac9660e902c52d04829718c580fb5098799f5d61e311c4d0db726477cbd283
GET /static/js/FEReload.588ab5c8.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1469
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "d1e7e43f0c2e7eae5e38b92128c06205"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EBV6RXOv3oXWsh7iff_uowJM2exwyeXPCnvAM0Spu1oTuI-8A8j8cg==
X-Firefox-Spdy: h2
www.ibet.com/js/iovation/loader.js
200 OK 3.7 kB URL HTTP/2 www.ibet.com/js/iovation/loader.js
IP
File type ASCII text, with very long lines (566)
Hash 345143e355b88a10dd5e7e47b83f2348
d53b59af90bba7818c705ad9cc3ef813a44bf9b0
834949bd4e4b0149dc8655578cfab9ef4e66af0989de0ded9d9e4cd0da97fd06
GET /js/iovation/loader.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3655
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "345143e355b88a10dd5e7e47b83f2348"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XuQ3ZeLIM52haVi0T64bD8nzI0hH-1Bou_odxT9ed0SB-j-Yj7B-LA==
X-Firefox-Spdy: h2
www.ibet.com/static/js/MaxAttemptsModal.7e3eba41.chunk.js
200 OK 1.5 kB URL HTTP/2 www.ibet.com/static/js/MaxAttemptsModal.7e3eba41.chunk.js
IP
File type ASCII text, with very long lines (1454), with no line terminators
Hash 015bc9d0ac6756e7c694c12c14a0fada
7847d25c07d3a55f865c3601ce1721fac73739bd
bf8c832128595cb321b74ae7a26cb45e11003d5bfb09c9223f497e5c290b3674
GET /static/js/MaxAttemptsModal.7e3eba41.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1454
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "015bc9d0ac6756e7c694c12c14a0fada"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 95jctUenLxzTVj3_sxruIWO3zEdfXEz8cYA7aDCkABa4Mm7CndpbJA==
X-Firefox-Spdy: h2
www.ibet.com/static/js/58.5a328239.chunk.js
200 OK 64 kB URL HTTP/2 www.ibet.com/static/js/58.5a328239.chunk.js
IP
File type ASCII text, with very long lines (64231), with no line terminators
Hash e6f104c1fb10b3cbd61573a1131ffec5
20f0624cdfa9d527e81a02028b69c03c76f49a46
352d7cc76556ff8d3f1a5552ec21919a1b8a70b62d5990b37b4f56f1c98bf5bc
GET /static/js/58.5a328239.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 64231
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "e6f104c1fb10b3cbd61573a1131ffec5"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2n-C36VQ3K5sG-Vvs1a5c3zyGmstULC2jXgG7ywE732SEczmdRCzlA==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 19:50:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ibet.com/static/js/5.4dcf6ecd.chunk.js
200 OK 9.2 kB URL HTTP/2 www.ibet.com/static/js/5.4dcf6ecd.chunk.js
IP
File type ASCII text, with very long lines (9240), with no line terminators
Hash 82f5caf259cf6a1c1bbfceabd6b50013
3e711f24aed1b4cb3657b86ac2d79391e53f0ed0
8aa44f40ea43d09a4575ac9099eaefa9b497c88b3bf912cc6d89a21b61591c86
GET /static/js/5.4dcf6ecd.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 9240
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "82f5caf259cf6a1c1bbfceabd6b50013"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MP1uQNCNJxfKJOeCh0tImXOAy8ySd0lj2i5Q_v9AViox56agpsjIDw==
X-Firefox-Spdy: h2
www.ibet.com/static/js/CookiesNotification.51f829fe.chunk.js
200 OK 9.5 kB URL HTTP/2 www.ibet.com/static/js/CookiesNotification.51f829fe.chunk.js
IP
File type ASCII text, with very long lines (9504), with no line terminators
Hash 5de9be99e1cca1b971dbea5d976a4216
0bd64b20947927561d9fa2cf5b8894386641403c
170f5cbedbb06b653978d94a4791ad3ebbbb9bdc4ed80f3a897c8d91f06d1b7e
GET /static/js/CookiesNotification.51f829fe.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 9504
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "5de9be99e1cca1b971dbea5d976a4216"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f76n-jN9qCpgh6TSVZLgqmuAKz87rJECeek2CXS8FY43JPWeVe047Q==
X-Firefox-Spdy: h2
www.ibet.com/static/js/AffiliateId.c0b02e79.chunk.js
200 OK 382 B URL HTTP/2 www.ibet.com/static/js/AffiliateId.c0b02e79.chunk.js
IP
File type ASCII text, with very long lines (382), with no line terminators
Hash 8f61d14714cab76e1f57265976a2d0d4
fc0ccb9f3daa1a095f97e392cc4eab43f2d0f3e6
ee321134757f62b7fe82ceb10413d3e10edfce8ee05aabcf353271a9e261d448
GET /static/js/AffiliateId.c0b02e79.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 382
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "8f61d14714cab76e1f57265976a2d0d4"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 09CdVHTZPiUoAadd4it9Z_Xd-Isd2p3yXoaVjvsn1fkyb0X99vjBfg==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash a87d8a919b10bfacffe702c368b58e61
88182f1643f50c8ee613607ae7283d1cfdd78e5f
69c77a2be0351707b1eb6cc5a6fbf0bd4ecfb5c814c9b1cf8243daa36b36238e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 16:56:15 GMT
Expires: Thu, 09 Feb 2023 16:56:14 GMT
Etag: "88182f1643f50c8ee613607ae7283d1cfdd78e5f"
Cache-Control: max-age=507352,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1ee48f01c02-OSL
www.googletagmanager.com/gtm.js?id=GTM-PCVT5ZK
200 OK 74 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PCVT5ZK
IP
File type Unicode text, UTF-8 text, with very long lines (27763)
Hash 20f0a01ee6aa4b1f43e833292ba65fbd
10b22075d1335b525d212f16315b997d0addbf1f
dfda03e00b0609fa5079a5bc530f99afe796ac709da04b7eab498745dc947d76
GET /gtm.js?id=GTM-PCVT5ZK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 19:50:21 GMT
expires: Fri, 03 Feb 2023 19:50:21 GMT
cache-control: private, max-age=900
last-modified: Fri, 03 Feb 2023 19:32:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73943
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash e0002087c53128a0ec00e18ccf327aa7
2dee3f4ae93e5956d2f7e8fba4c501fb183ab01e
5085057ebf15232eeadd9a39cd828eacf1ad20333f346f045fecc6a208dad3b6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:21 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 18:36:58 GMT
Expires: Fri, 10 Feb 2023 18:36:57 GMT
Etag: "2dee3f4ae93e5956d2f7e8fba4c501fb183ab01e"
Cache-Control: max-age=599795,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1ef5fb8b509-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 19:50:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ibet.com/static/js/FooterImageContainer.0bd48991.chunk.js
200 OK 673 B URL HTTP/2 www.ibet.com/static/js/FooterImageContainer.0bd48991.chunk.js
IP
File type ASCII text, with very long lines (673), with no line terminators
Hash 007a27a39ed59ad8c742a6290d085cae
90cf703ba626fb71329f0d8a21dc0147c955906f
56d2505682228db27598098f9aa19526f3291d1121df94e765922b750fbcbd41
GET /static/js/FooterImageContainer.0bd48991.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 673
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "007a27a39ed59ad8c742a6290d085cae"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lUsDWL_cuheIuke5PZSNa5srOo6DoS-DSjmru6fCyDbsNgNhCz5s6Q==
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D
200 OK 1.3 kB URL HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D
IP
File type JSON data\012- , ASCII text, with very long lines (5109), with no line terminators
Hash 148281686f3dae8f31847651aa6bf15b
5fa1ecbd21a8e4f7d09f94940d322ed015159d5b
bad1c88340f58abb81b5d8c3e2ffe77f0a958463f3f981f2fa1195783a8bfc0f
GET /v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 03 Feb 2023 19:07:50 GMT
server-timing: api;dur=18
x-sanity-shard: gcp-eu-w1-01-prod-1013
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
content-encoding: br
x-sanity-age: 2550
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 1286
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/static/js/60.5575fe00.chunk.js
200 OK 63 B URL HTTP/2 www.ibet.com/static/js/60.5575fe00.chunk.js
IP
File type ASCII text, with no line terminators
Hash 813b17a6690bbfb32d877fbda442ef4c
c7f56f22b32af8454a849639dea6745008535859
7e4269e3372452b4d9a3ab8c989d084c3fa9fd43c963f558637a1ffdf7d25f88
GET /static/js/60.5575fe00.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 67663
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "84ce6a1c5443e84e5145682a532c0853"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: InvkcyiJy3JPofMkwT_CCF4q4rC7rneZxa6rGoZ5G7diXClassUBqA==
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20
200 OK 661 B URL HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20
IP
File type JSON data\012- , ASCII text, with very long lines (1673), with no line terminators
Hash 23a693a18db9eb44ba5ee06ac2cf4846
4d24ea0d559a74ed01c9219aa0276bfc6c987afb
184969893edc22169845f84e60a7541f8e1d62f7b28f02a52ff6a6d742610ea9
GET /v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20 HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 03 Feb 2023 19:13:53 GMT
server-timing: api;dur=31
x-sanity-shard: gcp-eu-w1-01-prod-1013
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
content-encoding: br
x-sanity-age: 2188
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 661
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
salesiq.zoho.eu/widget
200 35 kB IP
ASN #205111 ZOHO Corporation B.V
File type ASCII text, with very long lines (65536), with no line terminators
Hash d6cb12ff1db84e3523b349971061219f
5ba3e28a6dfca16b92a20c27072650e7008f39f1
6624036f26858c56846bbcf4c5cc5c8b52f08106e3ae5fab8b2cc5e95acc20f1
GET /widget HTTP/1.1
Host: salesiq.zoho.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: ZGS
Date: Fri, 03 Feb 2023 19:50:21 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: b3e783bb62=3b25613755bedb7ecf913eeaa36b4a8c; Path=/
Access-Control-Allow-Origin: *
Cache-Control: must-revalidate
Pragma:
Expires: Fri, 03 Feb 2023 19:55:21 GMT
ETag: W/40dec934df8e25d85c9fc774974ff1a84072f929315c3b2c78f1b2ede3629833
vary: accept-encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
www.ibet.com/asset-manifest.json?rand=90174
200 OK 14 kB URL HTTP/2 www.ibet.com/asset-manifest.json?rand=90174
IP
File type JSON data\012- , ASCII text
Hash c183387f74c3bf921d0470bc8128b64f
8c8db45022aa9cfcf02311a2fe7473291b23fd82
82e95849c862d5f880c371dd360bf9539a1ee1a71fdadd4cd243e46b0158ad37
GET /asset-manifest.json?rand=90174 HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 13926
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "c183387f74c3bf921d0470bc8128b64f"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iyJfefeGSatp0i5-MC1xR5QCnz41o6lrFCWtNU7bC9TXftHn1I3xSA==
X-Firefox-Spdy: h2
www.ibet.com/static/js/Home.f02190a4.chunk.js
200 OK 53 kB URL HTTP/2 www.ibet.com/static/js/Home.f02190a4.chunk.js
IP
File type ASCII text, with very long lines (53163), with no line terminators
Hash 8d750721404b54f712ebdc10ac50abb0
d2b55b6de69d83f7f8ff1ed6e38cefc88bb805e4
3271d7f2e6168cf2e9ed9e60e3b24dc775f8b300c3b4a8f37df1b007acb4f7d6
GET /static/js/Home.f02190a4.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 53163
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "8d750721404b54f712ebdc10ac50abb0"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p476uJseFgIVXZ4Cf4JHxOoheimdQkz6_psGLCKEyWGVO06JCN0F6g==
X-Firefox-Spdy: h2
www.ibet.com/static/media/ibet-logo-red.6daec8ec.svg
200 OK 3.4 kB URL HTTP/2 www.ibet.com/static/media/ibet-logo-red.6daec8ec.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2861)
Hash 6daec8ec3cf491542936b5840240e511
7570d251da8522b314c1adffe9ce8be30120738c
9436edb0bd4d0b11e27997468fed995d01fd87d7b1e89d93f930064c4a21a901
GET /static/media/ibet-logo-red.6daec8ec.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 3445
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "6daec8ec3cf491542936b5840240e511"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qYE5SOSU9RDX2bcm0GQL36bJBaBHy2MwkywiswrBK1bH-hTzqlBVbw==
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10387
Expires: Fri, 03 Feb 2023 22:43:28 GMT
Date: Fri, 03 Feb 2023 19:50:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10387
Expires: Fri, 03 Feb 2023 22:43:28 GMT
Date: Fri, 03 Feb 2023 19:50:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10387
Expires: Fri, 03 Feb 2023 22:43:28 GMT
Date: Fri, 03 Feb 2023 19:50:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10387
Expires: Fri, 03 Feb 2023 22:43:28 GMT
Date: Fri, 03 Feb 2023 19:50:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10387
Expires: Fri, 03 Feb 2023 22:43:28 GMT
Date: Fri, 03 Feb 2023 19:50:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:28:50 GMT
age: 76891
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 04:53:21 GMT
age: 53820
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3490571dd2de0a747987b9a0e18cccc8
18e9f8f160d3515f1cb31fc7538ac762a6cab344
1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10796
x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi0XKG93oAMFtsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vUJO-Pt9Hi1ndrCQQT1nNCGT7oDOYBpA8-EawHanESoZAsZv32dQdg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 00:25:04 GMT
age: 69917
etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cf80667db0c35c9c6139eca4ba5d12fd
4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590
d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13065
x-amzn-requestid: 20c6f462-0f1f-44d1-9b6b-6afbc4e79e8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpYpcELtIAMFvFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da07d5-44cd803c0feba28919b0a9ec;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 06:33:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T3PhGRcHX1X2hn8K_4587fXBrEyuY5Em-b9Jg41uH4uyQXeFoRBIYg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:55:01 GMT
age: 78920
etag: "4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 114e345e134986d7451148fcea31b29d
541e878afee68c8802bb52b0cbbe5a5a0a185392
5030244d4babd1023166f39c935029d789a91ba90aa3a44c6f4c88ddc947b678
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8211
x-amzn-requestid: 2df5779a-a808-46ec-9246-1a9b9bddd9e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmKLVHwroAMF72Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bd7b-3cfe97e07d17958836425784;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:04:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZZXEXszbtmGh7kLfhabCGd41rZRnSmQvdcySUQRTDtJRBqZVUK3LaQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 07:19:27 GMT
age: 45054
etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G0R-0w9HtLB5OXb-w-RyR9QCnrddkS29FqF_GeAQa1CRWkqaUJwQoA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:27:53 GMT
age: 76948
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ibet.com/static/js/MenuIcon.d2e33758.chunk.js
200 OK 81 kB URL HTTP/2 www.ibet.com/static/js/MenuIcon.d2e33758.chunk.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash e38a7661715a8dc6e232107d769c4b40
2556cb8f1d7405782b1707bcbc531e26ac60e63d
dee2dac553c443e4dced293ed749200a8f4c7e28750d48360b4a9f5e30c08c71
GET /static/js/MenuIcon.d2e33758.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 81074
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:22 GMT
etag: "e38a7661715a8dc6e232107d769c4b40"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jHWIeV6yXnb21EhyeOuzgTdAqrBl2MdV5AO23YdUqecLpwj4BAGYKg==
X-Firefox-Spdy: h2
www.ibet.com/iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
200 OK 17 kB URL HTTP/2 www.ibet.com/iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP
File type ASCII text, with very long lines (985)
Hash c228b4b5e2573b5de883a0dbad70a6bb
af24ad9b80b125c33139de6f7a4d2d57ac273993
e0d41b5b7be2a81b0cc4e757f3330d44069b4aa9708d5b3ee25d2659c68bdff9
GET /iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Fri, 03 Feb 2023 19:50:21 GMT
last-modified: Tue, 06 May 2014 00:01:40 GMT
expires: Sun, 05 Mar 2023 19:50:21 GMT
cache-control: private
p3p: CP="NON DSP COR CURa"
accept-ch: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J5la35VtOuQpps3_20if5FCVDZ8sBWvoqnJrxtfflpHgeQGYRay1YA==
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash a0d4888ef7d2f7cbbb3d860e2634d530
7df63ac4568e08b98d880355c0dd50400aad4bb2
824da78de163ee49c67fe1a0f6b23f3da42043b05deadc602f9c0db8c0e8585e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2352
Cache-Control: max-age=153799
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 19:50:21 GMT
Etag: "63dd1214-1d7"
Expires: Sun, 05 Feb 2023 14:33:40 GMT
Last-Modified: Fri, 03 Feb 2023 13:54:28 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
200 OK 472 B IP
Hash 702cfef902bcd30e35659a65467cc7ca
54a594ebfbb7ab7913261acf03a0e3d5418eaeb9
13c038afd36dad5e03cc38f01d49c8cb4567f32974a42489c6fc22efbcda7159
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:21 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 01:59:51 GMT
Expires: Wed, 08 Feb 2023 01:59:50 GMT
Etag: "54a594ebfbb7ab7913261acf03a0e3d5418eaeb9"
Cache-Control: max-age=367168,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1f1bca51c02-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 702cfef902bcd30e35659a65467cc7ca
54a594ebfbb7ab7913261acf03a0e3d5418eaeb9
13c038afd36dad5e03cc38f01d49c8cb4567f32974a42489c6fc22efbcda7159
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:21 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 01:59:51 GMT
Expires: Wed, 08 Feb 2023 01:59:50 GMT
Etag: "54a594ebfbb7ab7913261acf03a0e3d5418eaeb9"
Cache-Control: max-age=367168,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1f1cba70afa-OSL
www.ibet.com/iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
200 OK 505 B URL HTTP/2 www.ibet.com/iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
IP
File type ASCII text, with very long lines (377)
Hash 9d8f15d36b2ab4afde2701bae09d935b
af3b945ae03005ee4b69d572924f46cd6a0c4a7f
02164f79567d0897decea6e957de77f73ccd8fa80fbd60ba23c35447564b078a
GET /iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 505
date: Fri, 03 Feb 2023 19:50:21 GMT
last-modified: Tue, 06 May 2014 00:01:40 GMT
expires: Sat, 03 Feb 2024 19:50:21 GMT
cache-control: private
p3p: CP="NON DSP COR CURa"
accept-ch: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DsxI0BVriRf4H5NRkJHBPawTbj1CFuKGszMHHGcRJbau7_r4ehr1cA==
X-Firefox-Spdy: h2
mpsnare.iesnare.com/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
200 OK 19 kB URL HTTP/1.1 mpsnare.iesnare.com/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP
File type ASCII text, with very long lines (1056)
Hash 3089b719b294b663e7c44120f8089d46
be44a1e381ade93e2366f7e0b5e905bcb129eef1
1dcceea38caf20a067e5b67a8b06f3fbbc67514f9abbd6808797aaa216a0b035
GET /general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 19:50:21 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: io_token_7c6a6574-f011-4c9a-abdd-9894a102ccef=36n6cZLE3TQe/birESgl2KgAqXdlTH+zzewlwtnjYAk=;Path=/;Expires=Sat, 03-Feb-2024 19:50:21 GMT;Max-Age=31536000;Secure;HttpOnly;SameSite=None
Cache-Control: no-cache, private
Pragma: no-cache
Expires: 0
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
cdn.sanity.io/images/w9lc5y04/production/417d814c6c80a9400e9b057707dbb54c08cfefd4-897x497.png
200 OK 19 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/417d814c6c80a9400e9b057707dbb54c08cfefd4-897x497.png
IP
File type PNG image data, 897 x 497, 8-bit/color RGBA, non-interlaced\012- data
Hash 7f9d14d17f40f7e7ee9a226a905b08bd
417d814c6c80a9400e9b057707dbb54c08cfefd4
ed8b6c84dbbf53d89846770b7765d9c33ca294cb5c7cddd73a8e7cb3fc102d48
GET /images/w9lc5y04/production/417d814c6c80a9400e9b057707dbb54c08cfefd4-897x497.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 18989
x-b3-traceid: 18cbe0a13be0e52e5b8ff2c6dee1244f
x-b3-parentspanid: f397ea68b6f9aade
x-b3-spanid: 824e0270be3f959e
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
vha6-origin: image-varnish-ssd-8
date: Thu, 26 Jan 2023 23:38:38 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 677503
last-modified: Thu, 29 Sep 2022 08:53:29 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png
200 OK 1.8 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png
IP
File type PNG image data, 270 x 93, 8-bit colormap, non-interlaced\012- data
Hash e4b9e11554e481b113004a5fa1bcd3ca
55d86f60b146584dbf41fcd8444f32cad91ce0ae
5bff602b52530e6bf9e7328c551a062ffb4153b63b1a22a3e2701270b24cf694
GET /images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 1819
x-b3-traceid: 4f2c7923042f4a15de3ccccb57ff05fb
x-b3-parentspanid: 20c326142bb8c893
x-b3-spanid: 84a4db3681fb78df
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Fri, 27 Jan 2023 06:59:06 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:39:31 GMT
content-type: image/png
age: 651075
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/9baabec764476ca445f88710f67677b633a54b95-430x100.png
200 OK 3.6 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/9baabec764476ca445f88710f67677b633a54b95-430x100.png
IP
File type PNG image data, 430 x 100, 8-bit colormap, non-interlaced\012- data
Hash b3af83174bcd7c3365106aec05ceabc1
9baabec764476ca445f88710f67677b633a54b95
42fae6932054cb4d37203480d9e5c6cf8787934f3b5ac09176da4f1867a992de
GET /images/w9lc5y04/production/9baabec764476ca445f88710f67677b633a54b95-430x100.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3612
x-b3-traceid: 22699caa888393d4f10bcee065fb16d4
x-b3-parentspanid: e5f055cd93a920c4
x-b3-spanid: f0d70ab65a47f37d
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 2129
accept-ranges: bytes
via: 1.1 google
date: Thu, 02 Feb 2023 12:35:39 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:37:46 GMT
content-type: image/png
age: 112482
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/bc900fced5d5b640bf862dee4f6f672c336eb059-395x97.png
200 OK 3.1 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/bc900fced5d5b640bf862dee4f6f672c336eb059-395x97.png
IP
File type PNG image data, 395 x 97, 8-bit colormap, non-interlaced\012- data
Hash bae88acf6501b95d744ac42753fd154e
bc900fced5d5b640bf862dee4f6f672c336eb059
a9b8a511c5a65723741f141c52a491e45a6d1d47d4cdc57c8b29f39e2ca0fe41
GET /images/w9lc5y04/production/bc900fced5d5b640bf862dee4f6f672c336eb059-395x97.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3072
x-b3-traceid: deb5273c00b493ea99e4989cecfd1af8
x-b3-parentspanid: 81f3e761b9a77920
x-b3-spanid: 41f35c40ff2f3475
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 23719
accept-ranges: bytes
via: 1.1 google
date: Sun, 29 Jan 2023 18:21:31 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 437330
last-modified: Wed, 14 Jul 2021 11:38:03 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png
200 OK 3.3 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png
IP
File type PNG image data, 560 x 107, 8-bit colormap, non-interlaced\012- data
Hash e83e505077311e5f9cd28570d22b274c
d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f
f0571891d0bb64899275389561c72cf12622f87bc6921910c0fea86108c13fae
GET /images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3304
x-b3-traceid: 66f7b5776ecb164ae0745d7e3ea6fb20
x-b3-parentspanid: 5fd15eb28f6c62e6
x-b3-spanid: 9725b10e4927e38c
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-6
x-varnish-age: 16742
accept-ranges: bytes
via: 1.1 google
date: Sun, 29 Jan 2023 02:55:56 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 492865
last-modified: Wed, 14 Jul 2021 11:37:21 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3-256x90.png
200 OK 2.3 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3-256x90.png
IP
File type PNG image data, 256 x 90, 8-bit colormap, non-interlaced\012- data
Hash 3cc63e63d23d84e22251a97cae156b43
261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3
a24220152c92cc21497f600a6ec7abe14875485a719e1ef2841919188681d803
GET /images/w9lc5y04/production/261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3-256x90.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 2272
x-b3-traceid: 59b6235f44b115da2a02d908fb5631e7
x-b3-parentspanid: b481e27c3ee65889
x-b3-spanid: 1b1d48cd8645b298
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-7
x-varnish-age: 10899
accept-ranges: bytes
via: 1.1 google
date: Tue, 17 Jan 2023 13:36:45 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1491216
last-modified: Wed, 14 Jul 2021 11:35:44 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/98a1fe10a380461fda22a3baccc6031744fef4fb-991x225.png
200 OK 23 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/98a1fe10a380461fda22a3baccc6031744fef4fb-991x225.png
IP
File type PNG image data, 991 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash ded03dbc96554750e94cb0f5b1b780ff
98a1fe10a380461fda22a3baccc6031744fef4fb
e001ab0ed5f5808d34f62add059289fc8fa6ccb6a347a610b7e0a668d810cf0b
GET /images/w9lc5y04/production/98a1fe10a380461fda22a3baccc6031744fef4fb-991x225.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 22817
x-b3-traceid: 30eba1789aaa47bb60b6b3c2a1a4769a
x-b3-parentspanid: 052a368a7f8e41c5
x-b3-spanid: fd4fedada1837b3c
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-8
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Sat, 07 Jan 2023 22:01:43 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 2324918
last-modified: Thu, 28 Apr 2022 12:46:16 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg
200 OK 1.5 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2523)
Hash 2ad526f14821d156aa6ce0121aa08ce7
8593c593a45edaaee6f643cfb1721ad99e9ab3d8
c8b2ebb7f2ac2a8d902463ff865937d7136396cb72d0693d5505cffd15b7ac64
GET /images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding, origin, accept-encoding
x-b3-traceid: 0ea2eeddc4bfea5e62d2ac095fda658c
x-b3-parentspanid: 2e24b0c133f79fc1
x-b3-spanid: a07d1a6c3cab0ac
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
content-encoding: br
vha6-origin: image-varnish-ssd-5
x-varnish-age: 7948
accept-ranges: bytes
content-length: 1454
via: 1.1 google
date: Sun, 15 Jan 2023 18:12:17 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1647484
last-modified: Wed, 20 Jul 2022 10:00:20 GMT
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.adsrvr.org/up_loader.1.1.0.js
200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP
File type ASCII text, with very long lines (4593), with no line terminators
Hash bb21b4ac5c8f198136244beb5c8e0804
0eab22f7b9ca0610c0e416296b93087de5e37a63
37d542a03db1e2e120cb42dc3d6cbd94e15005cdfd605cbe070eb27e986f6095
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Fri, 03 Feb 2023 08:26:12 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8S8KA3Hl5aIq7V0pdAmvFZfVg7xQrJpTuBbhxKLcTUpqWv0k_xhbNQ==
Age: 41050
mpsnare.iesnare.com/star
101 Switching Protocols 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hPF4fXWdWPD2CG6W3UbiBQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 03 Feb 2023 19:50:21 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: /qjCC4QdJd6fbbX6Nze/R9xtx2c=
Upgrade: WebSocket
ocsp.sectigo.com/
200 OK 472 B IP
Hash 702cfef902bcd30e35659a65467cc7ca
54a594ebfbb7ab7913261acf03a0e3d5418eaeb9
13c038afd36dad5e03cc38f01d49c8cb4567f32974a42489c6fc22efbcda7159
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:21 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 01:59:51 GMT
Expires: Wed, 08 Feb 2023 01:59:50 GMT
Etag: "54a594ebfbb7ab7913261acf03a0e3d5418eaeb9"
Cache-Control: max-age=367168,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1f1ab4eb509-OSL
cdn.sanity.io/images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png
200 OK 1.0 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png
IP
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash c54b1baea0fee1c28f161b98caca9b6f
73b98cda447fa00944f7922509f1c40435f9a2c3
84ae01ad9032bb57c873dac068aaad998c5b813259b1a0b200cede6061d9044f
GET /images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 1009
x-b3-traceid: 99af7f759453ec50ee99c0af0d213f1e
x-b3-parentspanid: 8be4b8513f34db6f
x-b3-spanid: 8efbe582d3a45131
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Sun, 22 Jan 2023 03:36:47 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1095214
last-modified: Mon, 28 Feb 2022 12:12:47 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 23cc88b6230cc9c1a0b9257b72dad1a3
60771bee645593abaade8e3ab3859dabfbbac7a8
3d7dda35c22b40048c439121dd13bf6719dd75f5f76451b9fcbaab75003551c8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6510
Cache-Control: max-age=103632
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 19:50:21 GMT
Etag: "63dc3ddf-117"
Expires: Sun, 05 Feb 2023 00:37:33 GMT
Last-Modified: Thu, 02 Feb 2023 22:49:03 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
ocsp.sectigo.com/
200 OK 472 B IP
Hash 702cfef902bcd30e35659a65467cc7ca
54a594ebfbb7ab7913261acf03a0e3d5418eaeb9
13c038afd36dad5e03cc38f01d49c8cb4567f32974a42489c6fc22efbcda7159
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:21 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 01:59:51 GMT
Expires: Wed, 08 Feb 2023 01:59:50 GMT
Etag: "54a594ebfbb7ab7913261acf03a0e3d5418eaeb9"
Cache-Control: max-age=367168,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1f1dcce1c06-OSL
salesiq.zoho.eu/visitor/v2/channels/website?widgetcode=429c68585fd2941a35c4c0726de2afe5f3c8164b72b4840747ca2e980e0011f9&internal_channel_req=true&language_api=true&browser_language=en¤t_domain=https%3A%2F%2Fibet.com&pagetitle=iBet.com&include_fields=avuid
200 8.9 kB URL HTTP/1.1 salesiq.zoho.eu/visitor/v2/channels/website?widgetcode=429c68585fd2941a35c4c0726de2afe5f3c8164b72b4840747ca2e980e0011f9&internal_channel_req=true&language_api=true&browser_language=en¤t_domain=https%3A%2F%2Fibet.com&pagetitle=iBet.com&include_fields=avuid
IP
ASN #205111 ZOHO Corporation B.V
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (22614), with no line terminators
Hash d308a38d3366dc91eb553365fdac34a3
87522dcb252c0bc6921f85da8ad3305faefe58e8
2d9dd06964b48b16f559ac31c99d9f274e14138f2416bebe217a110725d81c92
GET /visitor/v2/channels/website?widgetcode=429c68585fd2941a35c4c0726de2afe5f3c8164b72b4840747ca2e980e0011f9&internal_channel_req=true&language_api=true&browser_language=en¤t_domain=https%3A%2F%2Fibet.com&pagetitle=iBet.com&include_fields=avuid HTTP/1.1
Host: salesiq.zoho.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: ZGS
Date: Fri, 03 Feb 2023 19:50:21 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Encoding: UTF-8
X-XSS-Protection: 1
Set-Cookie: b3e783bb62=3b25613755bedb7ecf913eeaa36b4a8c; Path=/
LS_CSRF_TOKEN=4d6951c3-33fa-48ae-8de3-ef1b775bfd1a;path=/;SameSite=None;Secure;priority=high
_zcsr_tmp=4d6951c3-33fa-48ae-8de3-ef1b775bfd1a;path=/;SameSite=Strict;Secure;priority=high
uesign=f8a573341f9feaa6d82eaf8f0d9e49200f5a70e138ae9c9773ab336f3a44dfb2fb7c81f0971635b494e498336a01a2c5;Max-Age=2592000;Path=/;Secure;SameSite=None;priority=high
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Headers: Content-Type,x-siq-internal-channel
Access-Control-Allow-Origin: https://www.ibet.com
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Content-Language: en-US
Strict-Transport-Security: max-age=63072000
Content-Encoding: gzip
cdn.sanity.io/images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png
200 OK 5.2 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png
IP
File type PNG image data, 318 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash 54f08de44053ac484ef92bd1b2490323
fbfd97517c2b1e30611014c9938e5ac6f75e3315
68d588a5d493dc1ad73240aa42bbf23a7b522f8ab1c42b8718ce05a027293ac7
GET /images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 5240
x-b3-traceid: 2ba79a8e9b8baaff8166caa57a9f9898
x-b3-parentspanid: 9b38e79204f6a8a9
x-b3-spanid: 44bc33c0e90889ea
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-2
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Tue, 17 Jan 2023 23:56:23 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1454038
last-modified: Fri, 25 Nov 2022 13:38:56 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 702cfef902bcd30e35659a65467cc7ca
54a594ebfbb7ab7913261acf03a0e3d5418eaeb9
13c038afd36dad5e03cc38f01d49c8cb4567f32974a42489c6fc22efbcda7159
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:21 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 01:59:51 GMT
Expires: Wed, 08 Feb 2023 01:59:50 GMT
Etag: "54a594ebfbb7ab7913261acf03a0e3d5418eaeb9"
Cache-Control: max-age=367168,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1f20ce91c02-OSL
tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAUT
200 OK 37 kB URL HTTP/2 tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAUT
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (61814)
Hash 7a4c7084a1cc66299069cae286e77ae9
69e0d50e779ea14bf86e8da3791c0ac246317499
08a9e9ea264c09e8bbed7876e604711eaa12870ead3a524324bc429b415032a0
GET /dist/tag-manager.js?id=STM-AAAAUT HTTP/1.1
Host: tm.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
apigw-requestid: fxxQvgbWjoEEM0g=
vary: Accept-Encoding
content-encoding: gzip
content-length: 37374
date: Fri, 03 Feb 2023 19:50:21 GMT
cache-control: max-age=900, public
x-n: S
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 8b85303292e144e28418e6c347e6eea7
4e2d09bf2e1c6e2813f22418c2e48fbd55349d9d
719a731fcf5e2008bc7ea549443f2711f1140897d65a6fea8450e5f4cf7e3060
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:21 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 07 Feb 2023 17:09:38 GMT
ETag: "4e2d09bf2e1c6e2813f22418c2e48fbd55349d9d"
Last-Modified: Fri, 03 Feb 2023 17:09:39 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1968
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793db1f359770b31-OSL
cdn.sanity.io/images/w9lc5y04/production/6eaf3f7de1d528ed78b8688cefbec35445c8ff36-1645x431.png
200 OK 36 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/6eaf3f7de1d528ed78b8688cefbec35445c8ff36-1645x431.png
IP
File type PNG image data, 1645 x 431, 8-bit/color RGBA, non-interlaced\012- data
Hash a57ec28bccc522d198b3598e4eb13e59
1d65ef967d8721e57f3b00dac541abea1f0b1abe
100cd0aece050389896c5c55e1e935e31769844a6041c58d8c172a3f29458ca1
GET /images/w9lc5y04/production/6eaf3f7de1d528ed78b8688cefbec35445c8ff36-1645x431.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 35674
x-b3-traceid: 64b3db939504167d0b3a90888f0b5093
x-b3-parentspanid: 7172bf8531cb1726
x-b3-spanid: d55151011e0b445e
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 6213
accept-ranges: bytes
via: 1.1 google
vha6-origin: image-varnish-ssd-8
date: Tue, 10 Jan 2023 09:57:26 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 2109175
last-modified: Fri, 15 Jul 2022 13:13:15 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
imagesrv.adition.com/js/aut.js
200 OK 3.6 kB URL HTTP/2 imagesrv.adition.com/js/aut.js
IP
ASN #24961 myLoc managed IT AG
File type C source, ASCII text, with very long lines (575)
Hash 20bcb89e1593d0791dc1e75cddc1651d
d696cd7a407d3d95f197c44cf1d8e47312242e1b
453f86a616db4a42e5dd92fc00a580d769a6275c0adb56700b134290c8302971
GET /js/aut.js HTTP/1.1
Host: imagesrv.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
etag: "2397954584-br"
last-modified: Wed, 11 Jan 2023 08:47:11 GMT
content-length: 3634
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: br
date: Fri, 03 Feb 2023 19:50:22 GMT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 702cfef902bcd30e35659a65467cc7ca
54a594ebfbb7ab7913261acf03a0e3d5418eaeb9
13c038afd36dad5e03cc38f01d49c8cb4567f32974a42489c6fc22efbcda7159
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:22 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 01:59:51 GMT
Expires: Wed, 08 Feb 2023 01:59:50 GMT
Etag: "54a594ebfbb7ab7913261acf03a0e3d5418eaeb9"
Cache-Control: max-age=367167,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1f2cc840afa-OSL
ocsp.digicert.com/
200 OK 279 B IP
Hash 23cc88b6230cc9c1a0b9257b72dad1a3
60771bee645593abaade8e3ab3859dabfbbac7a8
3d7dda35c22b40048c439121dd13bf6719dd75f5f76451b9fcbaab75003551c8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6511
Cache-Control: max-age=103632
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 19:50:22 GMT
Etag: "63dc3ddf-117"
Expires: Sun, 05 Feb 2023 00:37:34 GMT
Last-Modified: Thu, 02 Feb 2023 22:49:03 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
www.ibet.com/media/home/features/features-desktop.jpg
200 OK 136 kB URL HTTP/2 www.ibet.com/media/home/features/features-desktop.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1440x824, components 3\012- data
Size 136 kB (135662 bytes)
Hash fffc21166194075701552a7d2218a9fc
c84cc4212579053740c58bf3245759c2371436f3
02ab2a6abaaa6981603402a187337d197b57578609f7ebf09b9b49dba94ca276
GET /media/home/features/features-desktop.jpg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Cookie: _gcl_au=1.1.864185020.1675453854; isiframeenabled=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 135662
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:23 GMT
etag: "fffc21166194075701552a7d2218a9fc"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: E0L60NkJyqcw_0EpF1eekh72LJZybe7lVMwMf3TxKPmVo4LnYEHdfg==
X-Firefox-Spdy: h2
mpsnare.iesnare.com/star
101 Switching Protocols 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: A9TpVIau72dKyjxgXYGYvQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 03 Feb 2023 19:50:22 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: TOUIZxheKIc1oxINtG1Rd6Rfc8I=
Upgrade: WebSocket
www.ibet.com/static/media/IntegralCF-Regular.2bead141.woff2
200 OK 18 kB URL HTTP/2 www.ibet.com/static/media/IntegralCF-Regular.2bead141.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 18484, version 1.6553\012- data
Hash 2bead14105eb2526e9547d6dd69ed86c
23601938b7bbb0631b6a33f7f6c7e73700241dea
07839fe34039d0bf261f3cb68b299f96f43705a4c8a0bce5063d6376a311c4d6
GET /static/media/IntegralCF-Regular.2bead141.woff2 HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
Cookie: _gcl_au=1.1.864185020.1675453854; isiframeenabled=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 18484
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 03 Feb 2023 19:50:23 GMT
etag: "2bead14105eb2526e9547d6dd69ed86c"
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AOPAhVoMvorkZgcdgWsZjGrnc2v3Eg6Iq9IHS8T1vh4T9vP_4DKsfw==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 750eea13270d515ca3d0e42b5db8885c
17d65469a0c73fe5ae4d5f51a25051d54010dd4a
6cd245cb7388b0b1bf584ca48cdd293d835bbe95e33c533befb1e85f23d417ee
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 03:09:29 GMT
Expires: Fri, 10 Feb 2023 03:09:28 GMT
Etag: "17d65469a0c73fe5ae4d5f51a25051d54010dd4a"
Cache-Control: max-age=544145,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1f5988fb509-OSL
js.zohocdn.com/salesiq/js/floatbutton1_aaa7d7b4872c11015e75ee4b6a789bc6_.js
200 OK 13 kB URL HTTP/2 js.zohocdn.com/salesiq/js/floatbutton1_aaa7d7b4872c11015e75ee4b6a789bc6_.js
IP
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (36889), with no line terminators
Hash 442bffdefe2ad3df847c10003dfaa48e
8e99d0948737ae632d6e3e71a4e6224c60330abf
74712da9d15ad35a1cd198fb88274206dc23cf453b0e34a77c29a63dddae9e0f
GET /salesiq/js/floatbutton1_aaa7d7b4872c11015e75ee4b6a789bc6_.js HTTP/1.1
Host: js.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Fri, 03 Feb 2023 19:50:22 GMT
content-type: application/javascript;charset=UTF-8
content-length: 12566
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "442bffdefe2ad3df847c10003dfaa48e"
content-language: en-US
last-modified: Wed, 01 Feb 2023 13:08:55 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 4cc0ad110f4d77c31d9ffbbea562819e
z-origin-id: ex1-4f40072a62474b55ad0bb57ef5f71748
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 750eea13270d515ca3d0e42b5db8885c
17d65469a0c73fe5ae4d5f51a25051d54010dd4a
6cd245cb7388b0b1bf584ca48cdd293d835bbe95e33c533befb1e85f23d417ee
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 03:09:29 GMT
Expires: Fri, 10 Feb 2023 03:09:28 GMT
Etag: "17d65469a0c73fe5ae4d5f51a25051d54010dd4a"
Cache-Control: max-age=544145,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1f598ca1c06-OSL
mpsnare.iesnare.com/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
200 OK 420 B URL HTTP/1.1 mpsnare.iesnare.com/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
IP
File type ASCII text, with very long lines (377)
Hash e409a679442c10c41f8ce6d5ce1120d1
365a3f3304a69122d810618895b62c247cae3f04
7e11df9211bf1a55982c9f28f5c76d5d8aa7a91e6f735f6d9ff70430e5d9c9a3
GET /5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 19:50:22 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 May 2014 00:01:40 GMT
Expires: Sat, 03 Feb 2024 19:50:22 GMT
Cache-Control: private
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
amplify.outbrain.com/cp/obtp.js
200 OK 5.9 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP
File type ASCII text, with very long lines (17769), with no line terminators
Hash 939f95ffc91ae8a9eacb6998ec5a635f
e122fe07195821f6abf871cc65f315c6b9e27f4a
49462b3c223095ac3fc223f11a29e4bceed96feba62e167d444e9a082626fc17
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "b07048fb19f7c325242e254218118e14:1675339769.124179"
Last-Modified: Thu, 02 Feb 2023 09:48:30 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Fri, 03 Feb 2023 20:10:22 GMT
Date: Fri, 03 Feb 2023 19:50:22 GMT
Content-Length: 5911
Connection: keep-alive
origin.acuityplatform.com/event/v2/pixel.js
200 OK 2.4 kB URL HTTP/1.1 origin.acuityplatform.com/event/v2/pixel.js
IP
File type HTML document, ASCII text, with very long lines (2423)
Hash c1e398d8cc65cd9241cc3f1840add2cb
316b1005d23d838c83e8bc65d3c2679b8c098df6
89cf66cb9de8da20fc15e9953845dd4d1de2c0fb465c827a09d818449222c533
GET /event/v2/pixel.js HTTP/1.1
Host: origin.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.0
Content-Type: application/javascript
Content-Length: 2424
Last-Modified: Wed, 04 Jan 2023 18:57:40 GMT
ETag: "63b5cc24-978"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Fri, 03 Feb 2023 19:50:22 GMT
Connection: keep-alive
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 03 Feb 2023 19:44:08 GMT
expires: Fri, 03 Feb 2023 21:44:08 GMT
cache-control: public, max-age=7200
age: 374
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 89d4cca556346b409532ff6de7376041
99bd0178e7335d7e9a9a4676aaf6e465f0404362
fd00c68316619feccb487d44d2c0f7fd338ea7bfc706b0ffb4ccede7faba9a14
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4816
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 19:50:22 GMT
Last-Modified: Fri, 03 Feb 2023 18:30:06 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
cdn.taboola.com/libtrc/unip/1504263/tfa.js
200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1504263/tfa.js
IP
File type ASCII text, with very long lines (59651)
Hash d3d3c2ccdb0c9462aa3df83204450180
c5d2619a338d654b4bd7560cb8b22ee6dcc7d923
d5927aac58d5e54f6a4d091839aef3cee77987851e959bc3542a7bb5ac08e41a
GET /libtrc/unip/1504263/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2X1x3wK2FEt1ZzEwmBfwjTbto/p4nywWy2JHLv3MSSZ0jYQw42vy73L4dk3UPFxVGrvSZ9yqOYA=
x-amz-request-id: 84FXRMQX47GRPNQM
x-amz-replication-status: COMPLETED
last-modified: Sun, 29 Jan 2023 11:04:41 GMT
etag: "355badab51035947f02e74c5bac7c8e1"
x-amz-version-id: fg4cOI2HUqb4qA2yxP21QxLPFzsmUQ7l
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 03 Feb 2023 19:50:22 GMT
via: 1.1 varnish
age: 82
x-served-by: cache-bma1681-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675453823.573213,VS0,VE12
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 99
content-length: 18341
X-Firefox-Spdy: h2
css.zohocdn.com/salesiq/styles/floatbutton1_bd045c29766df2806787522c13149e23_.css
200 OK 5.1 kB URL HTTP/2 css.zohocdn.com/salesiq/styles/floatbutton1_bd045c29766df2806787522c13149e23_.css
IP
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (22576), with no line terminators
Hash 9674bdea22120177e94ec071e3dfbe6c
206b3ab605f3409b8f33e7e4b1b464c02d6831b0
63f3b43a7dfed48774b53a6432331e78e98bd86549e2916cfc0e9eb8fc530c12
GET /salesiq/styles/floatbutton1_bd045c29766df2806787522c13149e23_.css HTTP/1.1
Host: css.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Fri, 03 Feb 2023 19:50:22 GMT
content-type: text/css;charset=UTF-8
content-length: 5141
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "9674bdea22120177e94ec071e3dfbe6c"
content-language: en-US
last-modified: Mon, 09 Jan 2023 12:41:16 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 73622213b4ea3672a68b18ad75a67d54
z-origin-id: ex1-d9d6f077eca2436b8fcbb97ac0861de0
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash e979cb943a245cc0be69046eacd6b3cd
dc40d8c60992c3b51288fdfddd00aeba83051359
c0d3aff5a18068419c3cdbff5a86b5c4a2131bee7f10d09b319f32f5c746de03
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4467
Cache-Control: max-age=171060
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 19:50:22 GMT
Etag: "63dd4d3f-1d7"
Expires: Sun, 05 Feb 2023 19:21:22 GMT
Last-Modified: Fri, 03 Feb 2023 18:06:55 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
mpsnare.iesnare.com/time.mp3?nocache=0.222749140828447
206 Partial Content 504 B URL HTTP/1.1 mpsnare.iesnare.com/time.mp3?nocache=0.222749140828447
IP
File type MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Hash cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.222749140828447 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Server: nginx
Date: Fri, 03 Feb 2023 19:50:22 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
mpsnare.iesnare.com/time.mp3?nocache=0.41641753730616893
206 Partial Content 504 B URL HTTP/1.1 mpsnare.iesnare.com/time.mp3?nocache=0.41641753730616893
IP
File type MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Hash cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.41641753730616893 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Server: nginx
Date: Fri, 03 Feb 2023 19:50:22 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 5d78ed421903dae4b07e7843cb9f9208
0ad9ea29600951f66da7c9ed7fe6b397efb4c8cf
db9df560992cc3cda649ccde29475d16dcc14b061d869a9835282350072b054d
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 07 Feb 2023 16:17:05 GMT
ETag: "0ad9ea29600951f66da7c9ed7fe6b397efb4c8cf"
Last-Modified: Fri, 03 Feb 2023 16:17:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3360
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793db1f78da40b31-OSL
adfarm1.adition.com/i?raw=1&ts=600323966
200 OK 19 B URL HTTP/2 adfarm1.adition.com/i?raw=1&ts=600323966
IP
ASN #24961 myLoc managed IT AG
File type ASCII text, with no line terminators
Hash 3cd12fdbfb912bc4d67a5c2e087466fb
dd90c707b93934428a223b8e707c07dfeb03e3a1
c1cc9670469dc2c2f13e9d3baf5e9f429b409d310a0f5ebbd1c63bc3d8953278
GET /i?raw=1&ts=600323966 HTTP/1.1
Host: adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
content-length: 19
server: ADITIONSERVER v1.0
date: Fri, 03 Feb 2023 20:50:22 +0100
access-control-allow-credentials: true
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: set-cookie
cache-control: max-age=31536000,private
p3p: policyref="https://imagesrv.adition.com/w3c/p3p-ssl.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
set-cookie: UserID1=7196019371459283721; expires=Thu, 04-May-2023 20:50:22 GMT; path=/; domain=.adfarm1.adition.com; SameSite=None; Secure
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
200 OK 22 kB URL HTTP/2 secure.quantserve.com/quant.js
IP
File type Unicode text, UTF-8 text, with very long lines (34188)
Hash 91a13da4428ed6b9c7f7bc8df12cfcd5
1d9af56f632dfc3dd4e05da16563209985122767
3c8ce765d20c5f2bcc6f8110fa3572a9daa2874a3b643c526b51d2d489d824c6
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 19:50:22 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "u+riIbpeWSVolXo4r+dT2g=="
expires: Fri, 10 Feb 2023 19:50:22 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist//sp-2.14.0.js
200 OK 30 kB URL HTTP/2 tracker.ads.sportradar.com/dist//sp-2.14.0.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (64903)
Hash 44f237857b8d03f32b53fe551e83c95a
91536fe6c60d947d29dfcb5f04d09b752b5ccf03
a5e10dc2f3c729300afe8fe24aa430f57d91fdefa8112c0b35dd424ba612caa7
GET /dist//sp-2.14.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "8dba669b94e3865c9205ef8fd15ee4d1"
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: dvubTwXiRCjiJB7wCHMomvWFLhrbYyzD7rIO_O4yfnHhyBM3lf2JMA==
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 03 Feb 2023 19:50:22 GMT
content-length: 30370
cache-control: max-age=900, public
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-QMJ93CW4C3>m=45je3210&_p=131226606&cid=1511714289.1675453855&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675453854&sct=1&seg=0&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&dt=iBet.com%20online%20tipping%2C%20casino%2C%20spill%20-%20F%C3%A5%20din%20250%20Euro%20Velkomstbonus%20n%C3%A5!&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-QMJ93CW4C3>m=45je3210&_p=131226606&cid=1511714289.1675453855&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675453854&sct=1&seg=0&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&dt=iBet.com%20online%20tipping%2C%20casino%2C%20spill%20-%20F%C3%A5%20din%20250%20Euro%20Velkomstbonus%20n%C3%A5!&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-QMJ93CW4C3>m=45je3210&_p=131226606&cid=1511714289.1675453855&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675453854&sct=1&seg=0&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&dt=iBet.com%20online%20tipping%2C%20casino%2C%20spill%20-%20F%C3%A5%20din%20250%20Euro%20Velkomstbonus%20n%C3%A5!&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.ibet.com
date: Fri, 03 Feb 2023 19:50:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash 62d0e3a8fba23e2c4367b78df6425029
8d5d41dcd0a9da3c50682fea6225ce05b8513f85
1550af722223d0f7c2ecf711422b58f7c6789dcc0ea11b486c4030d2daa243de
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "1550AF722223D0F7C2ECF711422B58F7C6789DCC0EA11B486C4030D2DAA243DE"
Last-Modified: Fri, 03 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3517
Expires: Fri, 03 Feb 2023 20:49:00 GMT
Date: Fri, 03 Feb 2023 19:50:23 GMT
Connection: keep-alive
api.fouanalytics.com/api/init-2315cm3nkx3pemx84qeo.js
200 OK 66 kB URL HTTP/2 api.fouanalytics.com/api/init-2315cm3nkx3pemx84qeo.js
IP
File type ASCII text, with very long lines (466)
Hash 0a9b81f4c0b7c210dd5ce4d601e8738a
7a6a65d3f55de4af717e1c9672fde5d009fb72e6
0e451899fd724f7d4f9ff5930e7c413a3ec09c8314c5798dcca53dde65f4abbe
GET /api/init-2315cm3nkx3pemx84qeo.js HTTP/1.1
Host: api.fouanalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 19:50:22 GMT
content-type: text/javascript
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
expires: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lGPdnM%2BA2S2V%2BLrOBW7CpFxMscW1NI8mRsyoMbFhFeVUXFXcjv0U%2F90gLF48Sv2kERsoG9oHrXnWgUAidZQjuoQ8kLTonwlz2WAe%2FSFf6%2F0HF98V44pWGgZdqBgbICGiLJL6QVp1EQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793db1f33aaa76d7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash 62d0e3a8fba23e2c4367b78df6425029
8d5d41dcd0a9da3c50682fea6225ce05b8513f85
1550af722223d0f7c2ecf711422b58f7c6789dcc0ea11b486c4030d2daa243de
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "1550AF722223D0F7C2ECF711422B58F7C6789DCC0EA11B486C4030D2DAA243DE"
Last-Modified: Fri, 03 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3480
Expires: Fri, 03 Feb 2023 20:48:23 GMT
Date: Fri, 03 Feb 2023 19:50:23 GMT
Connection: keep-alive
a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Fri, 03 Feb 2023 19:50:23 GMT
Location: https://a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
Set-Cookie: zuuid=59ac3373-6d64-4520-958d-d06d599d2992; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/pixel?type=js&aid=1622&id=7046
302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/pixel?type=js&aid=1622&id=7046
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?type=js&aid=1622&id=7046 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Fri, 03 Feb 2023 19:50:23 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
Set-Cookie: zuuid=50172648-f008-4ad3-9a49-fc43c872f517; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Cookie: zuuid=50172648-f008-4ad3-9a49-fc43c872f517; c=1675453823; zuuid_lu=1675453823
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Fri, 03 Feb 2023 19:50:23 GMT
Location: https://x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=50172648-f008-4ad3-9a49-fc43c872f517&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D50172648-f008-4ad3-9a49-fc43c872f517
Set-Cookie: zuuid=50172648-f008-4ad3-9a49-fc43c872f517; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4Kd5yYF5ehS-L78MKkgRvKoZum1b75SeqQOSCu4qVgtBWHr8zGwdVg==
age: 24017
X-Firefox-Spdy: h2
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
200 OK 1.5 kB URL HTTP/1.1 a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
IP
File type ASCII text, with very long lines (1527), with no line terminators
Hash 329651ca2233bb5d1e9d5be40fc30f84
82207990972be355109d8799bb70552ca7bb0f39
a89f9afc0832423aac57e7f8db45a46034f0ef41ad895391a532f2ba21e74090
GET /ul_cb/pixel?type=js&aid=1622&id=7046 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Cookie: zuuid=50172648-f008-4ad3-9a49-fc43c872f517; c=1675453823; zuuid_lu=1675453823
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Fri, 03 Feb 2023 19:50:23 GMT
Set-Cookie: zuuid=50172648-f008-4ad3-9a49-fc43c872f517; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
cm4=!bidswitch,444783023; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,444711023; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 1527
Connection: keep-alive
script.hotjar.com/modules.bca0d1c28285412bb689.js
200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js
IP
File type Unicode text, UTF-8 text, with very long lines (49086)
Hash e923aa360dc485b9df86355bd040c998
03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec
9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676
GET /modules.bca0d1c28285412bb689.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67924
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e923aa360dc485b9df86355bd040c998"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: T0P9C5gI0kiqJT102i-78ycIbt6uh7AweAIX9rCyqzuU9-yVL3vxwg==
age: 24017
X-Firefox-Spdy: h2
imagesrv.adition.com/1x1.gif
200 OK 68 B URL HTTP/2 imagesrv.adition.com/1x1.gif
IP
ASN #24961 myLoc managed IT AG
File type GIF image data, version 89a, 1 x 1\012- data
Hash 93e65182fe45341563c2f18f13987dc9
2dfd85967b0ac77f85697b05de2c1aca1b31e934
5fb3bdb7f966c852579fb6b0574517445d5b2d171c804d66227ee67b1bffca9c
GET /1x1.gif HTTP/1.1
Host: imagesrv.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
accept-ranges: bytes
etag: "3122740758"
last-modified: Fri, 24 Jul 2009 13:46:10 GMT
content-length: 68
access-control-allow-origin: *
date: Fri, 03 Feb 2023 19:50:23 GMT
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-SJDus0aEB8nDE.js
200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-SJDus0aEB8nDE.js
IP
Hash 2c7ec77dcb085abc40e3ff98738bfef5
2be6000c8124f67c59a84558ba19702b4fc3efd5
b29a1754d555695ef6044793dc63e4614cdbaf4dc19aa1e1dec711f42ff9d916
GET /rules-p-SJDus0aEB8nDE.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Fri, 14 Oct 2022 00:21:05 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Fri, 03 Feb 2023 19:29:45 GMT
cache-control: max-age=3600
etag: "2c7ec77dcb085abc40e3ff98738bfef5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1uY22v__YcOwSDSfo08oEByGBK75dmUOv7sLpBmZZl8IUWGK1sTkBA==
age: 1241
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=859447133;source=gtm;rf=0;a=p-SJDus0aEB8nDE;url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk;uh=82244417f956ac7c599f191593f7e441a4fafa20a4158fd52e154f1dc4c8ed92;uht=2;fpan=1;fpa=P0-32974130-1675453855085;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=ibet.com;dst=0;et=1675453855866;tzo=0;ogl=type.website%2Ctitle.iBet%252Ecom%20online%20tipping%252C%20casino%252C%20spill%20-%20F%C3%A5%20din%20250%20Euro%20Velkomstbonus%20n%C3%A5!%2Curl.https%3A%2F%2Fwww%252Eibet%252Ecom%2Cdescription.Velkommen%20til%20iBet%252Ecom%20-%20Online%20spill%20p%C3%A5%20sport%20med%20topp%20odds%252C%20spennende%20casino%252C%20;ses=da48699b-85f1-4d93-9de5-4f6560aebc63
200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=859447133;source=gtm;rf=0;a=p-SJDus0aEB8nDE;url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk;uh=82244417f956ac7c599f191593f7e441a4fafa20a4158fd52e154f1dc4c8ed92;uht=2;fpan=1;fpa=P0-32974130-1675453855085;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=ibet.com;dst=0;et=1675453855866;tzo=0;ogl=type.website%2Ctitle.iBet%252Ecom%20online%20tipping%252C%20casino%252C%20spill%20-%20F%C3%A5%20din%20250%20Euro%20Velkomstbonus%20n%C3%A5!%2Curl.https%3A%2F%2Fwww%252Eibet%252Ecom%2Cdescription.Velkommen%20til%20iBet%252Ecom%20-%20Online%20spill%20p%C3%A5%20sport%20med%20topp%20odds%252C%20spennende%20casino%252C%20;ses=da48699b-85f1-4d93-9de5-4f6560aebc63
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=859447133;source=gtm;rf=0;a=p-SJDus0aEB8nDE;url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk;uh=82244417f956ac7c599f191593f7e441a4fafa20a4158fd52e154f1dc4c8ed92;uht=2;fpan=1;fpa=P0-32974130-1675453855085;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=ibet.com;dst=0;et=1675453855866;tzo=0;ogl=type.website%2Ctitle.iBet%252Ecom%20online%20tipping%252C%20casino%252C%20spill%20-%20F%C3%A5%20din%20250%20Euro%20Velkomstbonus%20n%C3%A5!%2Curl.https%3A%2F%2Fwww%252Eibet%252Ecom%2Cdescription.Velkommen%20til%20iBet%252Ecom%20-%20Online%20spill%20p%C3%A5%20sport%20med%20topp%20odds%252C%20spennende%20casino%252C%20;ses=da48699b-85f1-4d93-9de5-4f6560aebc63 HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 19:50:23 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=63dd657f-99381-5e3e0-1ddf3; expires=Tue, 05-Mar-2024 19:50:23 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash f0df48e79faf5d350a0c952a66d76437
52441ee987a0753f9a5976aa9a9478a87ba428e5
00839fe65943b73dcce84416f8ff16a8c8e11ac7ae4ea15b2e391cf28b86f688
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 03 Feb 2023 19:50:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 02 Feb 2023 22:10:04 GMT
Expires: Fri, 03 Feb 2023 22:10:04 GMT
ETag: "52441ee987a0753f9a5976aa9a9478a87ba428e5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sectigo.com/
200 OK 471 B IP
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:23 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=323784,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1fe28881c02-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:23 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=323784,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1fe384a0afa-OSL
e.acuityplatform.com/pj?pk=1371925522788786818&pu=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&pixelKey=1371925522788786818
200 OK 1.4 kB URL HTTP/1.1 e.acuityplatform.com/pj?pk=1371925522788786818&pu=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&pixelKey=1371925522788786818
IP
File type ASCII text, with very long lines (1396), with no line terminators
Hash 8f0954e46bc79edd8ca9d976d1419d33
ccba56e7487cf3ba0f7a7919bb08891f318739ea
8b605771aed5c465a9ddda3380b983f52632c7c785edd4106eb5ae17423fb3a9
GET /pj?pk=1371925522788786818&pu=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&pixelKey=1371925522788786818 HTTP/1.1
Host: e.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 1396
Set-Cookie: aum="OikKAfqbdXNlck1hdGNoQnlVc2VyTWF0Y2hpbmdJZE1hcPqBNjT6jXVzZXJNYXRjaGluZ0lkJAKAkWxhc3REcm9wVGltZU1pbGxpcyUBQwYaR1i8mGxhc3RTdWNjZXNzZnVsTWF0Y2hNaWxsaXMhj3RoaXJkUGFydHlVc2VySWQh+4E0OfpCJAGiQyUBQwYaR1i8RCFFIfuBMTf6QiSiQyUBQwYaR1i8RCFFIfuAMvpCxEMlAUMGGkdYvEQhRSH7gjExNfpCJAOmQyUBQwYaR1i8RCFFIfuCMTM0+kIkBIxDJQFDBhpHWLxEIUUh+4IxMzX6QiQEjkMlAUMGGkdYvEQhRSH7gjEwNfpCJAOSQyUBQwYaR1i8RCFFIfuBNDH6QiQBkkMlAUMGGkdYvEQhRSH7gTEw+kLUQyUBQwYaR1i8RCFFIfv7hnZlcnNpb27C+w=="; Version=1; Domain=.acuityplatform.com; Max-Age=31536000; Expires=Sat, 03-Feb-2024 19:50:23 GMT; Path=/; SameSite=None; Secure
auid=739053184551; Domain=acuityplatform.com; Expires=Sat, 03-Feb-2024 19:50:23 GMT; Path=/; SameSite=None; Secure
Access-Control-Allow-Origin: *
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=e2f123b5-2af3-495d-91c6-f1567dd5377d
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=e2f123b5-2af3-495d-91c6-f1567dd5377d
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=e2f123b5-2af3-495d-91c6-f1567dd5377d HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 19:50:23 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=e2f123b5-2af3-495d-91c6-f1567dd5377d
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=d89444dd-99c1-4013-afb6-ab709eb1054e; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=50172648-f008-4ad3-9a49-fc43c872f517&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D50172648-f008-4ad3-9a49-fc43c872f517
302 Found 0 B URL HTTP/2 x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=50172648-f008-4ad3-9a49-fc43c872f517&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D50172648-f008-4ad3-9a49-fc43c872f517
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /syncd?dsp_id=409&user_group=1&user_id=50172648-f008-4ad3-9a49-fc43c872f517&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D50172648-f008-4ad3-9a49-fc43c872f517 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 19:50:23 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=50172648-f008-4ad3-9a49-fc43c872f517&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D50172648-f008-4ad3-9a49-fc43c872f517
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=13480b31-3589-43fa-ab42-bb54651d78df; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
x.bidswitch.net/syncd?dsp_id=409&user_id=50172648-f008-4ad3-9a49-fc43c872f517&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
302 Found 0 B URL HTTP/2 x.bidswitch.net/syncd?dsp_id=409&user_id=50172648-f008-4ad3-9a49-fc43c872f517&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /syncd?dsp_id=409&user_id=50172648-f008-4ad3-9a49-fc43c872f517&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 19:50:23 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=50172648-f008-4ad3-9a49-fc43c872f517&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=3607bb6c-3a11-44dc-9898-cc639f5454b2; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
tr.outbrain.com/cachedClickId?marketerId=undefined
200 OK 35 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=undefined
IP
File type ASCII text, with no line terminators
Hash 75c843c7b717e7b722777907475c67a3
983d1c9a05b315288039b9d4694ce3b402259240
1d348f9f803c95305f63def9d75fd50e79e54a375e1a4a888edbbea366845580
GET /cachedClickId?marketerId=undefined HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:23 GMT
Content-Type: application/javascript
Content-Length: 35
X-TraceId: 783635966bb1b5887c0ada8450b77460
ocsp.sectigo.com/
200 OK 471 B IP
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:23 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=323784,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1fe39451c06-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:23 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=323784,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793db1fe3dbeb509-OSL
tr.outbrain.com/unifiedPixel?marketerId=0015ef2fd363de31fda729e1cf9b43cc1b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&g=1&optOut=false&bust=08623765086548104&referrer=
200 OK 53 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=0015ef2fd363de31fda729e1cf9b43cc1b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&g=1&optOut=false&bust=08623765086548104&referrer=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 414bd2a5161db03fdd910327b42c6daa
65d4cf50496813c5f1a34eddd5c50dc67d44ff47
b51f3497b0a65f1e1e87e75f5e7e823d871c23bcf76a5ee4101783c8f939e553
GET /unifiedPixel?marketerId=0015ef2fd363de31fda729e1cf9b43cc1b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&g=1&optOut=false&bust=08623765086548104&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 19:50:23 GMT
Content-Type: image/gif;
Content-Length: 53
Cache-Control: no-cache
X-TraceId: 8c6c15fe697b8ebcb9ba4abd827d0834
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=3c3ccda2-3b3e-4cef-a1f5-82d754fba029
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=3c3ccda2-3b3e-4cef-a1f5-82d754fba029
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=3c3ccda2-3b3e-4cef-a1f5-82d754fba029 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 19:50:23 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=3c3ccda2-3b3e-4cef-a1f5-82d754fba029
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=1e4afc0e-5f77-41b1-ba53-e6d4558275c8; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=5487b5a1-6636-493f-835c-e722c2301ab9
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=5487b5a1-6636-493f-835c-e722c2301ab9
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=5487b5a1-6636-493f-835c-e722c2301ab9 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 19:50:23 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=5487b5a1-6636-493f-835c-e722c2301ab9
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=29bfe648-6a62-4b97-9b6d-95a0b80769c8; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675453823; path=/; expires=Sat, 03-Feb-2024 19:50:23 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?CC=1&pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=726541407076&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
200 OK 184 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?CC=1&pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=726541407076&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP
File type ASCII text, with CRLF line terminators
Hash c13136d2b1fe8b16bb3ddf519b6baa78
875cca302b518f903d8eecfd54cd7e20fd3fc161
cd3d2e6d539436e57ae48ccbba84b880e602a77617190b03151ceae877dba860
GET /Serving/TrackPoint/?CC=1&pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=726541407076&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:50:23 GMT
content-type: text/javascript; charset=utf-8
content-length: 184
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=236&user_id=739053184551&expires=30&user_group=1
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=236&user_id=739053184551&expires=30&user_group=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=236&user_id=739053184551&expires=30&user_group=1 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 03 Feb 2023 19:50:23 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=739053184551&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 1e2ea92fc4cfd41bb3b99802f0cc6c0c
f120748637efc31bfc2c217d1bef01d0928be50b
dffdd37a8c3cd588bb5082ef3f457f4b498a3a8f38e3f7b35cf13c7f9b1837e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 623
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 19:50:23 GMT
Last-Modified: Fri, 03 Feb 2023 19:40:00 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=50172648-f008-4ad3-9a49-fc43c872f517&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=50172648-f008-4ad3-9a49-fc43c872f517&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/syncd?dsp_id=409&user_id=50172648-f008-4ad3-9a49-fc43c872f517&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 19:50:23 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=e2f123b5-2af3-495d-91c6-f1567dd5377d
302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=e2f123b5-2af3-495d-91c6-f1567dd5377d
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=e2f123b5-2af3-495d-91c6-f1567dd5377d HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 03 Feb 2023 19:50:23 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=50172648-f008-4ad3-9a49-fc43c872f517&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=50172648-f008-4ad3-9a49-fc43c872f517&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D50172648-f008-4ad3-9a49-fc43c872f517
200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=50172648-f008-4ad3-9a49-fc43c872f517&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D50172648-f008-4ad3-9a49-fc43c872f517
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/syncd?dsp_id=409&user_group=1&user_id=50172648-f008-4ad3-9a49-fc43c872f517&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D50172648-f008-4ad3-9a49-fc43c872f517 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 19:50:23 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=3c3ccda2-3b3e-4cef-a1f5-82d754fba029
302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=3c3ccda2-3b3e-4cef-a1f5-82d754fba029
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=3c3ccda2-3b3e-4cef-a1f5-82d754fba029 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 03 Feb 2023 19:50:23 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=50172648-f008-4ad3-9a49-fc43c872f517&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=5487b5a1-6636-493f-835c-e722c2301ab9
302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=5487b5a1-6636-493f-835c-e722c2301ab9
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=50172648-f008-4ad3-9a49-fc43c872f517&cb=5487b5a1-6636-493f-835c-e722c2301ab9 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 03 Feb 2023 19:50:23 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=50172648-f008-4ad3-9a49-fc43c872f517&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 4815d6c9dac8985229fceea388fadc0f
6b0cbd1759b89f68ef46a41e45db7bda5886ee84
dc2946fb1cd23ccdcac42e0d68740942849df5cd45857a47b2168d563a790afb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5733
Cache-Control: max-age=111127
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 19:50:24 GMT
Etag: "63dc5e33-1d7"
Expires: Sun, 05 Feb 2023 02:42:31 GMT
Last-Modified: Fri, 03 Feb 2023 01:06:59 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
pixel.tapad.com/idsync/ex/receive?partner_id=3150&partner_device_id=739053184551&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739053184551%26uid%3D%24%7BTA_DEVICE_ID%7D
302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive?partner_id=3150&partner_device_id=739053184551&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739053184551%26uid%3D%24%7BTA_DEVICE_ID%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive?partner_id=3150&partner_device_id=739053184551&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739053184551%26uid%3D%24%7BTA_DEVICE_ID%7D HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 19:50:24 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1675453824023;Expires=Tue, 04 Apr 2023 19:50:24 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=fff81c74-579c-444d-aa93-a8539f805cf2;Expires=Tue, 04 Apr 2023 19:50:24 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=3150&partner_device_id=739053184551&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739053184551%26uid%3D%24%7BTA_DEVICE_ID%7D
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 19:50:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 7d70c748b9288211c05eab1f436670ee
91fefada5e7642002e08a1443dc8829f883279bd
8c91d5490eb51f272bc017a0c025995cf1243ba3dc2ba9a5fd58aad4d35ccec9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3452
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 19:50:24 GMT
Last-Modified: Fri, 03 Feb 2023 18:52:52 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 8e4b7b47ed75e9e975adc9fc304e3219
0b4f8dacc8685161103a352dd4221f69aa111626
852df028f28349db72a347eb3627f3f102c4e4dd6418cbdba6b94e44092ab43f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5372
Cache-Control: max-age=128764
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 19:50:24 GMT
Etag: "63dca480-1d7"
Expires: Sun, 05 Feb 2023 07:36:28 GMT
Last-Modified: Fri, 03 Feb 2023 06:06:56 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
secure.adnxs.com/getuid?https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D10%26auid%3D739053184551%26uid%3D%24UID
307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuid?https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D10%26auid%3D739053184551%26uid%3D%24UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D10%26auid%3D739053184551%26uid%3D%24UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 03 Feb 2023 19:50:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D739053184551%2526uid%253D%2524UID
AN-X-Request-Uuid: b2585ca5-d003-45ca-8040-743975c24bb5
Set-Cookie: uuid2=763395073667396183; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 04-May-2023 19:50:24 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160917518-1&cid=1511714289.1675453855&jid=1863132303&gjid=732122687&_gid=478931033.1675453855&_u=YADAAEAAAAAAACAAI~&z=91396016
200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160917518-1&cid=1511714289.1675453855&jid=1863132303&gjid=732122687&_gid=478931033.1675453855&_u=YADAAEAAAAAAACAAI~&z=91396016
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160917518-1&cid=1511714289.1675453855&jid=1863132303&gjid=732122687&_gid=478931033.1675453855&_u=YADAAEAAAAAAACAAI~&z=91396016 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.ibet.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 03 Feb 2023 19:50:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
trc.taboola.com/1504263/log/3/unip?en=all_pages&tim=1675453855080&vi=1675453855052&ri=d410be933e103213f6c5e3ef3f5df63c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&tos=963&ssd=1&scd=0
204 No Content 0 B URL HTTP/2 trc.taboola.com/1504263/log/3/unip?en=all_pages&tim=1675453855080&vi=1675453855052&ri=d410be933e103213f6c5e3ef3f5df63c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&tos=963&ssd=1&scd=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1504263/log/3/unip?en=all_pages&tim=1675453855080&vi=1675453855052&ri=d410be933e103213f6c5e3ef3f5df63c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&tos=963&ssd=1&scd=0 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.ibet.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Fri, 03 Feb 2023 19:50:24 GMT
via: 1.1 varnish
x-served-by: cache-bma1681-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675453824.974401,VS0,VE93
x-vcl-time-ms: 93
X-Firefox-Spdy: h2
match.adsrvr.org/track/upb/?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
200 OK 471 B URL HTTP/2 match.adsrvr.org/track/upb/?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
IP
Hash 1e2ea92fc4cfd41bb3b99802f0cc6c0c
f120748637efc31bfc2c217d1bef01d0928be50b
dffdd37a8c3cd588bb5082ef3f457f4b498a3a8f38e3f7b35cf13c7f9b1837e5
GET /track/upb/?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&upid=6g98c3e&upv=1.1.0 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 19:50:23 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
pixel.advertising.com/ups/55950/sync?uid=739053184551&_origin=1
301 Moved Permanently 355 B URL HTTP/2 pixel.advertising.com/ups/55950/sync?uid=739053184551&_origin=1
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 229632c25e46f5e85eb7a9b0af3ae29a
c9f8892618ad933b96ccbe50de396c492fdc81e6
1e00c262e839a6e8cb2b909e85ee5013192270600fb409edb07a090d569b5642
GET /ups/55950/sync?uid=739053184551&_origin=1 HTTP/1.1
Host: pixel.advertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Fri, 03 Feb 2023 19:50:24 GMT
server: ATS/9.1.10.25
cache-control: no-store
location: https://ups.analytics.yahoo.com/ups/55950/sync?uid=739053184551&_origin=1
content-type: text/html
content-language: en
set-cookie: A3=d=AQABBIBl3WMCEOIs2hHT_xpoaIv3eZcuadkFEgEBAQG33mPnYwAAAAAA_eMAAA&S=AQAAAlM8Sp5wXEgfX3_7YBxC4C0; Expires=Sun, 4 Feb 2024 01:50:24 GMT; Max-Age=31557600; Domain=.advertising.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 355
X-Firefox-Spdy: h2
pixel.tapad.com/idsync/ex/receive/check?partner_id=3150&partner_device_id=739053184551&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739053184551%26uid%3D%24%7BTA_DEVICE_ID%7D
302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive/check?partner_id=3150&partner_device_id=739053184551&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739053184551%26uid%3D%24%7BTA_DEVICE_ID%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive/check?partner_id=3150&partner_device_id=739053184551&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739053184551%26uid%3D%24%7BTA_DEVICE_ID%7D HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 03 Feb 2023 19:50:24 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1675453824066;Expires=Tue, 04 Apr 2023 19:50:24 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=a23ebea7-ab4f-4bdb-9298-d1e33aa6fe3e;Expires=Tue, 04 Apr 2023 19:50:24 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_3WAY_SYNCS=;Expires=Tue, 04 Apr 2023 19:50:24 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://ums.acuityplatform.com/sum?umid=64&auid=739053184551&uid=a23ebea7-ab4f-4bdb-9298-d1e33aa6fe3e
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=5672&nid=2082&put=739053184551&expires=30
204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=5672&nid=2082&put=739053184551&expires=30
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=5672&nid=2082&put=739053184551&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 1da0c96602e9a1076eae4f5554c05cf3
Content-Type: image/gif
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 60fccee58600352aeee9475288db9c28
67542848cf2f0ed7a814e20becbf9cfe95ad0a3d
15556b1b5834a9561e1f1315f8ee1844573a4239f11e4d4a5ed8a0b3488b4c97
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 03 Feb 2023 19:50:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 03 Feb 2023 18:30:13 GMT
Expires: Sat, 04 Feb 2023 18:30:13 GMT
ETag: "67542848cf2f0ed7a814e20becbf9cfe95ad0a3d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D739053184551%2526uid%253D%2524UID
302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D739053184551%2526uid%253D%2524UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D739053184551%2526uid%253D%2524UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Fri, 03 Feb 2023 19:50:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ums.acuityplatform.com/sum?umid=10&auid=739053184551&uid=0
AN-X-Request-Uuid: 3eae0462-a0dd-459a-bf99-3b7c28f830a1
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
tags.bluekai.com/site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D739053184551%26uid%3D%24_BK_UUID
302 Found 0 B URL HTTP/2 tags.bluekai.com/site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D739053184551%26uid%3D%24_BK_UUID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D739053184551%26uid%3D%24_BK_UUID HTTP/1.1
Host: tags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://ums.acuityplatform.com/sum?umid=49&auid=739053184551&uid=$_BK_UUID
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Fri, 03 Feb 2023 19:50:24 GMT
set-cookie: bku=tJ/99/OklVmtwc9V; Path=/; Domain=.bluekai.com; Expires=Thu, 03 Aug 2023 19:50:24 GMT; Secure; SameSite=None
bkpa=KJyA0n6vQp9x9mY7mD5dfCv+x0Q+Wii57uDRuyXXkmx02m6nf4qhBjkNStiy/NT8rQfJtnfSVPC5VbD+z7JFNE1elx92GYIubf9VNLI8Ol65uKgNWWY4iye8/C0OJM1Y23cXwBeRVrGrh+GmLwX7Ga7rptVKc2Bl9vjSJf9=; Path=/; Domain=.bluekai.com; Expires=Thu, 03 Aug 2023 19:50:24 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=12105&dpuuid=739053184551&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D41%26auid%3D739053184551%26uid%3D%24%7BDD_UUID%7D
302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=12105&dpuuid=739053184551&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D41%26auid%3D739053184551%26uid%3D%24%7BDD_UUID%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=12105&dpuuid=739053184551&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D41%26auid%3D739053184551%26uid%3D%24%7BDD_UUID%7D HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v045-02fbabcd7.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=12105&dpuuid=739053184551&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D41%26auid%3D739053184551%26uid%3D%24%7BDD_UUID%7D
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=26703345145879141762123345543302746670; Max-Age=15552000; Expires=Wed, 02 Aug 2023 19:50:24 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: wOoeD93ZQfU=
Content-Length: 0
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 19:50:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ups.analytics.yahoo.com/ups/55950/sync?uid=739053184551&_origin=1
302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/55950/sync?uid=739053184551&_origin=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/55950/sync?uid=739053184551&_origin=1 HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 03 Feb 2023 19:50:24 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/55950/sync?uid=739053184551&_origin=1&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBIBl3WMCEPkNDLMcM3jjwfTi6oUxmCcFEgEBAQG33mPnYwAAAAAA_eMAAA&S=AQAAAqV6TlY_8Q6JzHh0eVowVfw; Expires=Sun, 4 Feb 2024 01:50:24 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash acc6e0e956622e0edcd2ac459c12fe91
01ce4a761ffe6d45e2fbeee435681722824da8a1
21333a80669f45aee8b5b226202317f0857d8022f1f485ecc2692c380b69aad7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121022
Date: Fri, 03 Feb 2023 19:50:24 GMT
Etag: "63dc94fb-1d7"
Expires: Sun, 05 Feb 2023 05:27:26 GMT
Last-Modified: Fri, 03 Feb 2023 05:00:43 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: StOti74nQFKiRCRQGdpLiTsM-uf1yP2k3XYpbsy_lOsiIpFk-PcN_Q==
Age: 1603
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash acc6e0e956622e0edcd2ac459c12fe91
01ce4a761ffe6d45e2fbeee435681722824da8a1
21333a80669f45aee8b5b226202317f0857d8022f1f485ecc2692c380b69aad7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 19:50:24 GMT
Last-Modified: Fri, 03 Feb 2023 19:24:32 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QnLFkOMKHnI3xIIKDIY_MGAVw9X0OVdeWYa8qHzGxx5nixC2e_qefg==
Age: 1552
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash acc6e0e956622e0edcd2ac459c12fe91
01ce4a761ffe6d45e2fbeee435681722824da8a1
21333a80669f45aee8b5b226202317f0857d8022f1f485ecc2692c380b69aad7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121082
Date: Fri, 03 Feb 2023 19:50:24 GMT
Etag: "63dc94fb-1d7"
Expires: Sun, 05 Feb 2023 05:28:26 GMT
Last-Modified: Fri, 03 Feb 2023 05:00:43 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0V0AtQE8MBAkQ7smj75gbYm_WQKe8kriH1lv-QvFhfgyRFFeSGLvag==
Age: 1663
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=12105&dpuuid=739053184551&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D41%26auid%3D739053184551%26uid%3D%24%7BDD_UUID%7D
200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=12105&dpuuid=739053184551&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D41%26auid%3D739053184551%26uid%3D%24%7BDD_UUID%7D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=12105&dpuuid=739053184551&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D41%26auid%3D739053184551%26uid%3D%24%7BDD_UUID%7D HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-0eab94181.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: zgpjqjBiQAQ=
Content-Length: 59
Connection: keep-alive
ups.analytics.yahoo.com/ups/55950/sync?uid=739053184551&_origin=1&verify=true
204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/55950/sync?uid=739053184551&_origin=1&verify=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/55950/sync?uid=739053184551&_origin=1&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 19:50:24 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBIBl3WMCEK7PHUapNnF9DDBrl7CO5JoFEgEBAQG33mPnYwAAAAAA_eMAAA&S=AQAAAmWtcTk-CgqBjhva_8r5Vb4; Expires=Sun, 4 Feb 2024 01:50:24 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ums.acuityplatform.com/sum?umid=64&auid=739053184551&uid=a23ebea7-ab4f-4bdb-9298-d1e33aa6fe3e
204 No Content 0 B URL HTTP/1.1 ums.acuityplatform.com/sum?umid=64&auid=739053184551&uid=a23ebea7-ab4f-4bdb-9298-d1e33aa6fe3e
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sum?umid=64&auid=739053184551&uid=a23ebea7-ab4f-4bdb-9298-d1e33aa6fe3e HTTP/1.1
Host: ums.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
access-control-allow-origin: *
set-cookie: auid=739070200316; Domain=.acuityplatform.com; Expires=Sat, 03-Feb-2024 19:50:24 GMT; Path=/; SameSite=None; Secure
aum="OikKAfqbdXNlck1hdGNoQnlVc2VyTWF0Y2hpbmdJZE1hcPqBNjT6jXVzZXJNYXRjaGluZ0lkJAKAkWxhc3REcm9wVGltZU1pbGxpcyUBQwYaR2aemGxhc3RTdWNjZXNzZnVsTWF0Y2hNaWxsaXMlAUMGGkdmno90aGlyZFBhcnR5VXNlcklkY2EyM2ViZWE3LWFiNGYtNGJkYi05Mjk4LWQxZTMzYWE2ZmUzZfv7hnZlcnNpb27C+w=="; Version=1; Domain=.acuityplatform.com; Max-Age=31536000; Expires=Sat, 03-Feb-2024 19:50:24 GMT; Path=/; SameSite=None; Secure
x-acuity-userid: 739070200316
access-control-expose-headers: X-Acuity-UserID
ums.acuityplatform.com/sum?umid=10&auid=739053184551&uid=0
204 No Content 0 B URL HTTP/1.1 ums.acuityplatform.com/sum?umid=10&auid=739053184551&uid=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sum?umid=10&auid=739053184551&uid=0 HTTP/1.1
Host: ums.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash acc6e0e956622e0edcd2ac459c12fe91
01ce4a761ffe6d45e2fbeee435681722824da8a1
21333a80669f45aee8b5b226202317f0857d8022f1f485ecc2692c380b69aad7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121136
Date: Fri, 03 Feb 2023 19:50:24 GMT
Etag: "63dc94fb-1d7"
Expires: Sun, 05 Feb 2023 05:29:20 GMT
Last-Modified: Fri, 03 Feb 2023 05:00:43 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Mayia8OSLNF_Cj8LlMfcImf1TrXDt9RX_kAVuGrufi9JobJnQH_Qaw==
Age: 1717
cs.admanmedia.com/sync?dsp=acuity&dsp_id=739053184551&to=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D134%26auid%3D739053184551%26uid%3D%5BADM%5D
302 Found 0 B URL HTTP/1.1 cs.admanmedia.com/sync?dsp=acuity&dsp_id=739053184551&to=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D134%26auid%3D739053184551%26uid%3D%5BADM%5D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp=acuity&dsp_id=739053184551&to=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D134%26auid%3D739053184551%26uid%3D%5BADM%5D HTTP/1.1
Host: cs.admanmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 03 Feb 2023 19:50:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: admtr=edb8ff16-d843-4d32-af2f-6b19795108f5; path=/; domain=.admanmedia.com; expires=Fri, 17 Feb 2023 19:50:24 GMT;SameSite=None;Secure
ac_r=CS114; path=/; domain=.admanmedia.com; expires=Fri, 17 Feb 2023 19:50:24 GMT;SameSite=None;Secure
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Location: https://ums.acuityplatform.com/sum?umid=134&auid=739053184551&uid=[ADM]
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
X-Frame-Options: DENY
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=739053184551&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=739053184551&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=739053184551&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 19:50:24 GMT
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=50172648-f008-4ad3-9a49-fc43c872f517&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=50172648-f008-4ad3-9a49-fc43c872f517&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=50172648-f008-4ad3-9a49-fc43c872f517&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 19:50:24 GMT
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=726541407076&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
302 Found 392 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=726541407076&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (320), with CRLF line terminators
Hash 74f337cff1249796c827cabb569cb65d
e292b823983f2d1758823d0f4dc3dbaf2c37f9ef
c72f8598785539d4432b83988a7647dbacb60ca64f5c4836172957a593d2fe35
GET /Serving/TrackPoint/?pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=726541407076&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 19:50:23 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=726541407076&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Fri, 03-Mar-2023 19:50:23 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ums.acuityplatform.com/sum?umid=134&auid=739053184551&uid=[ADM]
204 No Content 0 B URL HTTP/1.1 ums.acuityplatform.com/sum?umid=134&auid=739053184551&uid=[ADM]
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sum?umid=134&auid=739053184551&uid=[ADM] HTTP/1.1
Host: ums.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=50172648-f008-4ad3-9a49-fc43c872f517&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=50172648-f008-4ad3-9a49-fc43c872f517&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=50172648-f008-4ad3-9a49-fc43c872f517&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 19:50:24 GMT
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=50172648-f008-4ad3-9a49-fc43c872f517&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=50172648-f008-4ad3-9a49-fc43c872f517&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=50172648-f008-4ad3-9a49-fc43c872f517&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 19:50:24 GMT
X-Firefox-Spdy: h2
trc-events.taboola.com/1504263/log/3/unip?en=pre_d_eng_tb&tos=2162&scd=0&ssd=1&est=1675453855054&ver=36&isls=true&src=i&invt=1500&msa=2617&rv=1&tim=1675453857216&vi=1675453855052&ri=d410be933e103213f6c5e3ef3f5df63c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1504263/log/3/unip?en=pre_d_eng_tb&tos=2162&scd=0&ssd=1&est=1675453855054&ver=36&isls=true&src=i&invt=1500&msa=2617&rv=1&tim=1675453857216&vi=1675453855052&ri=d410be933e103213f6c5e3ef3f5df63c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1504263/log/3/unip?en=pre_d_eng_tb&tos=2162&scd=0&ssd=1&est=1675453855054&ver=36&isls=true&src=i&invt=1500&msa=2617&rv=1&tim=1675453857216&vi=1675453855052&ri=d410be933e103213f6c5e3ef3f5df63c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Fri, 03 Feb 2023 19:50:25 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.ibet.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc-events.taboola.com/1504263/log/3/unip?en=pre_d_eng_tb&tos=5166&scd=0&ssd=1&est=1675453855054&ver=36&isls=true&src=i&invt=3000&msa=2617&rv=1&tim=1675453860218&vi=1675453855052&ri=d410be933e103213f6c5e3ef3f5df63c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1504263/log/3/unip?en=pre_d_eng_tb&tos=5166&scd=0&ssd=1&est=1675453855054&ver=36&isls=true&src=i&invt=3000&msa=2617&rv=1&tim=1675453860218&vi=1675453855052&ri=d410be933e103213f6c5e3ef3f5df63c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1504263/log/3/unip?en=pre_d_eng_tb&tos=5166&scd=0&ssd=1&est=1675453855054&ver=36&isls=true&src=i&invt=3000&msa=2617&rv=1&tim=1675453860218&vi=1675453855052&ri=d410be933e103213f6c5e3ef3f5df63c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 03 Feb 2023 19:50:27 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.ibet.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
s2.adform.net/banners/scripts/st/trackpoint-async.js
200 OK 0 B URL HTTP/2 s2.adform.net/banners/scripts/st/trackpoint-async.js
IP
GET /banners/scripts/st/trackpoint-async.js HTTP/1.1
Host: s2.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:50:22 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 29 Nov 2022 10:23:25 GMT
x-rgw-object-type: Normal
etag: W/"83eb5fafaa212c785f7393188ff817aa"
x-amz-request-id: tx00000b607f2982f72f17d-006385e0d3-3293868f-default
access-control-allow-origin: *
cache-control: public, max-age=604800
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ad1.adfarm1.adition.com/track?tid=26000&sid=55435&type=image&orderid=&itemno=&descr=&quantity=&price=0.00&total=0.00&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&parm1=&parm2=&parm3=&parm4=
302 Found 0 B URL HTTP/2 ad1.adfarm1.adition.com/track?tid=26000&sid=55435&type=image&orderid=&itemno=&descr=&quantity=&price=0.00&total=0.00&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&parm1=&parm2=&parm3=&parm4=
IP
ASN #24961 myLoc managed IT AG
GET /track?tid=26000&sid=55435&type=image&orderid=&itemno=&descr=&quantity=&price=0.00&total=0.00&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&parm1=&parm2=&parm3=&parm4= HTTP/1.1
Host: ad1.adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/plain
location: https://imagesrv.adition.com/1x1.gif
server: ADITIONSERVER v1.0
date: Fri, 03 Feb 2023 20:50:22 +0100
access-control-allow-origin: *
cache-control: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
p3p: policyref="https://imagesrv.adition.com/w3c/p3p-ssl.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
pragma: no-cache
set-cookie: UserID1=7196019371479729361; expires=Thu, 04-May-2023 20:50:22 GMT; path=/; domain=.adfarm1.adition.com; SameSite=None; Secure
X-Firefox-Spdy: h2
record.ibetaffiliates.com/_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5614977&rdk=rk1
301 Moved Permanently 0 B URL HTTP/2 record.ibetaffiliates.com/_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5614977&rdk=rk1
IP
GET /_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5614977&rdk=rk1 HTTP/1.1
Host: record.ibetaffiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Fri, 03 Feb 2023 19:50:20 GMT
content-type: text/html; charset=utf-8
location: https://www.ibet.com/no-NO/?aff=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk
cache-control: private, no-cache, must-revalidate, Cache-Control: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
set-cookie: VID1=Jy4zNFItMyRSLTBgYApgCg%3D%3D; expires=Sat, 03-Feb-2024 19:50:19 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=None
ZBan=J0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk; expires=Sat, 03-Feb-2024 19:50:19 GMT; Max-Age=31536000; path=/; domain=.ibetaffiliates.com; secure; HttpOnly; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793db1e55abcb4f7-OSL
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
302 Found 0 B URL HTTP/2 insight.adsrvr.org/track/up?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
IP
GET /track/up?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&upid=6g98c3e&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 19:50:23 GMT
content-type: text/html; charset=utf-8
location: https://match.adsrvr.org/track/upb/?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
set-cookie: TDID=28e84bd2-ed03-43de-9eef-d2a330c8cb83; domain=.adsrvr.org; expires=Sat, 03-Feb-2024 19:50:23 GMT; path=/; secure; SameSite=None
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
ad1.adfarm1.adition.com/tagging?type=image&network=834&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&tag[iBet_Retargeting.iBet_Ret_Site_Visit]&userid=7196019371459283721
302 Found 0 B URL HTTP/2 ad1.adfarm1.adition.com/tagging?type=image&network=834&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&tag[iBet_Retargeting.iBet_Ret_Site_Visit]&userid=7196019371459283721
IP
ASN #24961 myLoc managed IT AG
GET /tagging?type=image&network=834&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&tag[iBet_Retargeting.iBet_Ret_Site_Visit]&userid=7196019371459283721 HTTP/1.1
Host: ad1.adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/plain
location: https://imagesrv.adition.com/1x1.gif
server: ADITIONSERVER v1.0
date: Fri, 03 Feb 2023 20:50:22 +0100
access-control-allow-origin: *
p3p: policyref="https://imagesrv.adition.com/w3c/p3p-ssl.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
set-cookie: UserID1=7196019371459283721; expires=Thu, 04-May-2023 20:50:22 GMT; path=/; domain=.adfarm1.adition.com; SameSite=None; Secure
X-Firefox-Spdy: h2
trc.taboola.com/1504263/trc/3/json?tim=1675453855057&data=%7B%22id%22%3A88%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675453855052%2C%22cv%22%3A%2220230129-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.ibet.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Datomikibetsam-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675453855056%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
200 OK 0 B URL HTTP/2 trc.taboola.com/1504263/trc/3/json?tim=1675453855057&data=%7B%22id%22%3A88%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675453855052%2C%22cv%22%3A%2220230129-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.ibet.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Datomikibetsam-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675453855056%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP
GET /1504263/trc/3/json?tim=1675453855057&data=%7B%22id%22%3A88%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675453855052%2C%22cv%22%3A%2220230129-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.ibet.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Datomikibetsam-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675453855056%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DJ0S_pPpssv4Yrp5D8qtuj2Nd7ZgqdRLk%22%2C%22tos%22%3A2%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Fri, 03 Feb 2023 19:50:23 GMT
via: 1.1 varnish
x-served-by: cache-bma1681-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675453824.547126,VS0,VE194
vary: Accept-Encoding
x-vcl-time-ms: 194
X-Firefox-Spdy: h2
wansultoud.com/4/5614977/?rhd=1&var=5694580&ymid={siteid}&var3=15679604_
200 OK 0 B URL HTTP/2 wansultoud.com/4/5614977/?rhd=1&var=5694580&ymid={siteid}&var3=15679604_
IP
Analyzer Verdict Alert quad9 Sinkholed
GET /4/5614977/?rhd=1&var=5694580&ymid={siteid}&var3=15679604_ HTTP/1.1
Host: wansultoud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:50:19 GMT
content-type: text/html; charset=utf8
vary: Accept-Encoding
x-trace-id: 5431c0010849568707b4869b1d1fe5fb
link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://record.ibetaffiliates.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
timing-allow-origin: *
set-cookie: OAID=b7285a73c3bb418095abebd36ae9f461; expires=Sat, 03 Feb 2024 19:50:19 GMT; path=/; secure; SameSite=None
oaidts=1675453819; expires=Sat, 03 Feb 2024 19:50:19 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=60
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3070584.js?sv=7
200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3070584.js?sv=7
IP
GET /c/hotjar-3070584.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Fri, 03 Feb 2023 19:50:13 GMT
cache-control: max-age=60
etag: W/dc11290a44e388789835a1bdd2ac8b90
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zi05tyLuL-TZSGZRYXunO0BfTExCXAw6PwdnH1ppjWAMj2Y4bsa6iQ==
age: 9
X-Firefox-Spdy: h2
139.45.197.151
142.250.74.110
185.20.209.147
23.32.99.71
37.157.6.254
23.36.79.8
18.156.0.31
104.18.191.136
141.226.228.48
34.254.165.240