| track.adspwretf.click/go/75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3 | 3.70.16.242 | 302 Found | 260 B |
URL HTTP/1.1track.adspwretf.click/go/75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3 IP3.70.16.242:0
File typeHTML document, ASCII text, with no line terminators Hashd0453fe40582b85bff3061b67b5e888f 3ae8d6d909294425af7946e1c715f3829fb85666 59c2df168ecf350f876f51fbef08f51f80aabc3084e84ac1ed657a296541de15
GET /go/75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3 HTTP/1.1
Host: track.adspwretf.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: openresty
Date: Mon, 26 Sep 2022 17:53:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 260
Connection: keep-alive
Access-Control-Allow-Origin: *
Location: https://ungroudonchan.com/4/4598789?ymid=7EsDvhw9hf7GDAQNmM4b7t&var=074b5bba-80ab-4a33-86df-edbd736e35eb
Set-Cookie: bemob-uniq-visit:75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3=1; Domain=track.adspwretf.click; Path=/; Expires=Tue, 27 Sep 2022 17:53:58 GMT; HttpOnly
bemob-rotation:75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3:random:bcad9fbed5d562e339b2ddf45707a26c=0-0-10; Domain=track.adspwretf.click; Path=/; Expires=Tue, 27 Sep 2022 17:53:58 GMT; HttpOnly
bemob-click-id=7EsDvhw9hf7GDAQNmM4b7t; Domain=track.adspwretf.click; Path=/; Expires=Tue, 27 Sep 2022 17:53:58 GMT; HttpOnly
Vary: Accept
X-Response-Time: 16.333ms
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.36 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.36:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash2d12f67fe57a87e7366b662d153a5582 d7b02d81cc74f24a251d9363e0f4b0a149264ec1 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 17:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DKiAKwUNjJW8zmIcU8SvKU6xvGqW1Jz8FFNFHPN60O7EdmGTnLv3lQ==
Age: 2321
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashd2560f62890e75b8de444fed96c22f52 334ce0c48e606ee029f31eeb1463af87b1024bb9 4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8583
Expires: Mon, 26 Sep 2022 20:17:02 GMT
Date: Mon, 26 Sep 2022 17:53:59 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain | 143.204.55.25 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain IP143.204.55.25:0
File typePEM certificate\012- , ASCII text Hash6113f8408c59aebe188d6af273b90743 7398873bf00f99944eaa77ad3ebc0d43c23dba6b b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QxjJJEPDQQw1vXXpYnAqtE5en1XG2kfV01lcuy35dOstekJryhAzQA==
age: 47924
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashec4b8f152307f85904bff60970050298 ed5d16f0531528d041d51e116f58ed6e8cc0bb42 9470542c63170465b1929fcd6a7451e75d6632004175a6ef7c057e76af2d89ee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9470542C63170465B1929FCD6A7451E75D6632004175A6EF7C057E76AF2D89EE"
Last-Modified: Mon, 26 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11628
Expires: Mon, 26 Sep 2022 21:07:47 GMT
Date: Mon, 26 Sep 2022 17:53:59 GMT
Connection: keep-alive
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 17:53:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash3bba085e67dc79a5d7fa489bedbc1d40 a8aff51eb65043726f883a3e5b99fed2ee6e881d b47f8b1b624bcb0f8f4e0c826d43d75a6e5cf7394c78bb642fb91ec89208ccb2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B47F8B1B624BCB0F8F4E0C826D43D75A6E5CF7394C78BB642FB91EC89208CCB2"
Last-Modified: Sat, 24 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10086
Expires: Mon, 26 Sep 2022 20:42:05 GMT
Date: Mon, 26 Sep 2022 17:53:59 GMT
Connection: keep-alive
|
|
| ungroudonchan.com/favicon.ico | 139.45.197.238 | 204 No Content | 0 B |
URL HTTP/2ungroudonchan.com/favicon.ico IP139.45.197.238:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /favicon.ico HTTP/1.1
Host: ungroudonchan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: OAID=65fd75f6697947aaabb95e0d505f49e2; oaidts=1664214839
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 26 Sep 2022 17:53:59 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
X-Firefox-Spdy: h2
|
|
| eu.can-get-so.me/pr?ids=wbwslwlvdta&hash=ea249b91a8a738ab&ext_req_id=598323003071406418&subid1=4598789&cost=0.000325&rdk=rk1 | 157.90.33.79 | 302 Found | 0 B |
URL HTTP/2eu.can-get-so.me/pr?ids=wbwslwlvdta&hash=ea249b91a8a738ab&ext_req_id=598323003071406418&subid1=4598789&cost=0.000325&rdk=rk1 IP157.90.33.79:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pr?ids=wbwslwlvdta&hash=ea249b91a8a738ab&ext_req_id=598323003071406418&subid1=4598789&cost=0.000325&rdk=rk1 HTTP/1.1
Host: eu.can-get-so.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Mon, 26 Sep 2022 17:53:59 GMT
content-length: 0
referrer-policy: no-referrer
location: http://35.227.234.222/2/PU_NO_RA_CS_DT_MEGARUSH?source=643178&geo=NO&device=desktop
set-cookie: rauid=CaAzcL7bTCGBPftxm3FGHA; expires=Tue, 26 Sep 2023 17:53:59 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.36 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.36:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 17:10:46 GMT
Expires: Mon, 26 Sep 2022 17:33:16 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZdV33TzlGsY7IcLjPOXh01cbFhYTVQ-aG-cNKjXtsBt4DqlbZ59-jg==
Age: 2593
|
|
| 35.227.234.222/2/PU_NO_RA_CS_DT_MEGARUSH?source=643178&geo=NO&device=desktop | 35.227.234.222 | 302 Found | 0 B |
URL HTTP/1.135.227.234.222/2/PU_NO_RA_CS_DT_MEGARUSH?source=643178&geo=NO&device=desktop IP35.227.234.222:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2/PU_NO_RA_CS_DT_MEGARUSH?source=643178&geo=NO&device=desktop HTTP/1.1
Host: 35.227.234.222
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 26 Sep 2022 17:53:59 GMT
Content-Length: 0
Location: https://media.megarushaffiliates.com/redirect.aspx?pid=6426&bid=1575
Via: 1.1 google
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 471 B |
IP104.18.32.68:0
Hash0869109d63ef5270595fb34384023a90 f2ec69fdaca2a0327cd3599ac05d0051df3dee41 c4a67afda7094519228049f837e2e0c1674148bd2e564ae2dccc3458bbdb9ed4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 17:53:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 06:25:19 GMT
Expires: Mon, 03 Oct 2022 06:25:18 GMT
Etag: "f2ec69fdaca2a0327cd3599ac05d0051df3dee41"
Cache-Control: max-age=562878,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750ddcbafbed0b51-OSL
|
|
| my.rtmark.net/img.gif?f=merge&userId=65fd75f6697947aaabb95e0d505f49e2 | 139.45.195.8 | 200 OK | 43 B |
URL HTTP/2my.rtmark.net/img.gif?f=merge&userId=65fd75f6697947aaabb95e0d505f49e2 IP139.45.195.8:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashb4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=merge&userId=65fd75f6697947aaabb95e0d505f49e2 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 17:53:59 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=65fd75f6697947aaabb95e0d505f49e2; expires=Tue, 26 Sep 2023 17:53:59 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| media.megarushaffiliates.com/redirect.aspx?pid=6426&bid=1575 | 23.36.79.9 | 301 Moved Permanently | 0 B |
URL HTTP/2media.megarushaffiliates.com/redirect.aspx?pid=6426&bid=1575 IP23.36.79.9:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=6426&bid=1575 HTTP/1.1
Host: media.megarushaffiliates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 0
location: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Mon, 26 Sep 2022 17:53:59 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 26 Sep 2022 17:53:59 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a6426%2c%22BID%22%3a1575%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1664214839755)%5c%2f%22%2c%22CookieTag%22%3a%2215756426451240919C20229261753%22%7d%5d; SameSite=None;; domain=.megarushaffiliates.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%225236654%7c1%22%7d%5d; domain=.megarushaffiliates.com; expires=Wed, 26-Sep-3021 17:53:59 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=20, origin; dur=34
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash42dfffb5c4fdedd7b346a88dbb8e66e7 551ff4af0eb0a0ecd67eae9ad32750cc031e1a4d c9589f808a417ec3eaf241384dd118d72e74f9995020b4d336080b9c05237194
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5287
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:53:59 GMT
Last-Modified: Mon, 26 Sep 2022 16:25:52 GMT
Server: ECS (amb/6B86)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash5adb7eb1d103eadeeafac36e663ffdd3 23b784388dd634fa736cd60aed71570661e73d02 5c95ba48bc342887b4f7ef697bd4def50f6f2f472f654169179e5ac44df883d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6238
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:53:59 GMT
Last-Modified: Mon, 26 Sep 2022 16:10:01 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
|
| www.megarush.com/fonts/Inter-ExtraBold.woff2 | 104.22.31.168 | 200 OK | 10 kB |
URL HTTP/2www.megarush.com/fonts/Inter-ExtraBold.woff2 IP104.22.31.168:0
File typeWeb Open Font Format (Version 2), TrueType, length 10484, version 3.1245\012- data Hashd23da8f3e4e37a17c1d3ed7a1a11d429 9dda69da77b703d438db74468375685f6983625d a936dafc61b666c42182807bb1c5e564ec73c07f8b6fb7352d15090db9165a7c
GET /fonts/Inter-ExtraBold.woff2 HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:53:59 GMT
content-type: font/woff2
content-length: 10484
last-modified: Wed, 14 Sep 2022 14:51:51 GMT
etag: "6321ea87-28f4"
access-control-allow-origin: *
cache-control: max-age=7200
cf-cache-status: HIT
age: 6990
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcbdafaeb50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/fonts/Inter-Regular.woff2 | 104.22.31.168 | 200 OK | 10 kB |
URL HTTP/2www.megarush.com/fonts/Inter-Regular.woff2 IP104.22.31.168:0
File typeWeb Open Font Format (Version 2), TrueType, length 10108, version 3.1245\012- data Hash5ec57a5a91c67095e4a7e91ac375ffb1 23b60d1dd6790eeeb11e3c90d1f75c16d1db60d9 9b3f3dc1e7ce0a5a28f768d6d84d4174ffe56384db534daccc47321dea379ed5
GET /fonts/Inter-Regular.woff2 HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:53:59 GMT
content-type: font/woff2
content-length: 10108
last-modified: Wed, 14 Sep 2022 14:51:51 GMT
etag: "6321ea87-277c"
access-control-allow-origin: *
cache-control: max-age=7200
cf-cache-status: HIT
age: 6990
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcbdafb4b50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/fonts/Inter-Bold.woff2 | 104.22.31.168 | 200 OK | 10 kB |
URL HTTP/2www.megarush.com/fonts/Inter-Bold.woff2 IP104.22.31.168:0
File typeWeb Open Font Format (Version 2), TrueType, length 10508, version 3.1245\012- data Hasha2517956b299e0c02bfc2a92eb05f623 ae4c129ebfe3aec739aac5662d2ef9fcaa4d80db 412a6a99c5283c71838322a7f25e7a0bc4dd324e013f88a202b56af736b13d37
GET /fonts/Inter-Bold.woff2 HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:53:59 GMT
content-type: font/woff2
content-length: 10508
last-modified: Wed, 14 Sep 2022 14:51:51 GMT
etag: "6321ea87-290c"
access-control-allow-origin: *
cache-control: max-age=7200
cf-cache-status: HIT
age: 220
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcbdafb1b50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/fonts/DS-Digital.woff2 | 104.22.31.168 | 200 OK | 776 B |
URL HTTP/2www.megarush.com/fonts/DS-Digital.woff2 IP104.22.31.168:0
File typeWeb Open Font Format (Version 2), TrueType, length 776, version 1.0\012- data Hash789f060683abdb5574a93bf59c7dd2e2 17b677d648dfdc9e290a25e8c137ebb0448c069b 375c5411d43daa0ccc1234d8bf20effba17a231408ab44fa17c96b2f9a995248
GET /fonts/DS-Digital.woff2 HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:53:59 GMT
content-type: font/woff2
content-length: 776
last-modified: Wed, 14 Sep 2022 14:51:51 GMT
etag: "6321ea87-308"
access-control-allow-origin: *
cache-control: max-age=7200
cf-cache-status: HIT
age: 6990
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcbdafb6b50c-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashc939f97c8bcbfea356e92036803714bc 608c795e7c4fb943a4db49a4e4533c41ea717023 b05b38c78c15c259720bfc6783ac65ab60ceb1e6037b45b08113f183554f08cb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:54:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.megarush.com/base.css | 104.22.31.168 | 200 OK | 52 kB |
URL HTTP/2www.megarush.com/base.css IP104.22.31.168:0
Hash9fa2814ecec1367a1cd89dd47bc78b1c 41320d999fc7f805c65d8b5d85eb21fc1d58af23 9887b93c39393b2d7634a19ce9fc92ba744373b262ee98a5e944bd4a6542077b
GET /base.css HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:53:59 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=3913
access-control-allow-origin: *
cache-control: max-age=7200
etag: W/"6321ea87-f49"
expires: Tue, 20 Sep 2022 19:46:31 GMT
last-modified: Wed, 14 Sep 2022 14:51:51 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 6909
server: cloudflare
cf-ray: 750ddcbdafb7b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash1db3e1d6bf7a5e2d0c87eab75a6e52fe b923a169beb9248ea6a5070a04b57bc0aa44799b f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:54:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 54.186.209.73 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.186.209.73:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: s3AaIT+LSqaxdRjRvH127g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mg2tBlA8Cy0Zm16zgnn5zw1J6HA=
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 344 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash7742a05d973f02cf3432d34b2a3a5624 ecb79d116cb857b82c184e8444d7e046ee47029b d88363206be929a01659c67bc1f86913b9b14039ae509fa14545263d6d2b50c1
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "D88363206BE929A01659C67BC1F86913B9B14039AE509FA14545263D6D2B50C1"
Last-Modified: Sat, 24 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11637
Expires: Mon, 26 Sep 2022 21:07:57 GMT
Date: Mon, 26 Sep 2022 17:54:00 GMT
Connection: keep-alive
|
|
| www.megarush.com/favicons/favicon-194x194.png | 104.22.31.168 | 200 OK | 12 kB |
URL HTTP/2www.megarush.com/favicons/favicon-194x194.png IP104.22.31.168:0
File typePNG image data, 194 x 194, 8-bit/color RGBA, non-interlaced\012- data Hash3bc9ecb2b8d9e78d83d49da52c0292fc b13fda2aa7ff6d2d185a90dbe6446ad52f63d244 9b35e254d53d3c4b6f0ce1185de9463355d340808f64b0e831162fb03cf5b39c
GET /favicons/favicon-194x194.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/png
content-length: 11668
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: "6123a103-2d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 34424983
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc0dcfab50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/index.3e5fca25e481a764411c.css | 104.22.31.168 | 200 OK | 34 kB |
URL HTTP/2www.megarush.com/index.3e5fca25e481a764411c.css IP104.22.31.168:0
Hash903fc7eece4684dd6717f933ae385cba a9d90bbde07e8adad90ea7ed1fa1b69f7863bb33 ebe6e9f6a4606bd090f29ea6ca5567dfbd3df28e91634116edd963407270f715
GET /index.3e5fca25e481a764411c.css HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:53:59 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=228335
access-control-allow-origin: *
cache-control: max-age=7200
etag: W/"6321ea87-37bef"
expires: Thu, 22 Sep 2022 07:48:59 GMT
last-modified: Wed, 14 Sep 2022 14:51:51 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 7133
server: cloudflare
cf-ray: 750ddcbdafbdb50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| d3mi6d1ao3fzsg.cloudfront.net/webpush/1/webpush.min.js | 54.230.245.125 | 200 OK | 16 kB |
URL HTTP/1.1d3mi6d1ao3fzsg.cloudfront.net/webpush/1/webpush.min.js IP54.230.245.125:0
File typeASCII text, with very long lines (16536) Hash9f2263de140cc78c0737d17051307016 0174dfe38c88f9e7043b002fb9131c7a71399d77 17ada4aeba85fbedca030d812ae829162ed2ad5d7a96d5c05b2b288e801a1b3a
GET /webpush/1/webpush.min.js HTTP/1.1
Host: d3mi6d1ao3fzsg.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 16537
Connection: keep-alive
Date: Sun, 25 Sep 2022 18:50:46 GMT
Last-Modified: Thu, 27 May 2021 15:02:08 GMT
ETag: "9f2263de140cc78c0737d17051307016"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PRQkLw8v4WLD67N4CRQRDpE24YXexJf97nkPPPcCaTUd5E9j6kSbPQ==
Age: 82995
|
|
| www.google-analytics.com/analytics.js | 142.250.74.174 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.174:0
File typeASCII text, with very long lines (1325) Hashcae538dcce82598fbe43c0bf443e62dd cc68ac6be9c5e0087a0000e5735b83270ace30f5 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 26 Sep 2022 16:41:09 GMT
expires: Mon, 26 Sep 2022 18:41:09 GMT
cache-control: public, max-age=7200
age: 4371
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashbe340580e17615836284a039de08476a 95e4cad1eec2546175c4bf5f8d432f6142229f4d 9e8a24a3f45f170a1c3d9be305b127034f7d1cbdcf1db0ff35a7ca6799dac044
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4696
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:54:00 GMT
Last-Modified: Mon, 26 Sep 2022 16:35:44 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/s/gts1d4/nGJjDlG2mg8 | 142.250.74.3 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/nGJjDlG2mg8 IP142.250.74.3:0
Hashebf8a8b6955020c30b947c063c1e2687 4f61cb8ee32f9ad584d17672d37f5b5c9b524278 0f8bd1f1ae51a01762a7e7d7610930d5461e3f8a7443633d3600ea6b8156004f
POST /s/gts1d4/nGJjDlG2mg8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:54:00 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google-analytics.com/collect?v=1&_v=j97&a=419426655&t=event&ni=0&_s=1&dl=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_EAF8F9C2364049EE927CEEB4DC8E8764&ul=en-us&de=UTF-8&dt=MegaRush&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=undefined&ea=undefined&_u=YEDAAEABAAAAAC~&jid=&gjid=&cid=202831336.1664214839&tid=UA-143790984-2&_gid=939076235.1664214839>m=2wg9l0K4GPX49&z=761129568 | 142.250.74.174 | 200 OK | 35 B |
URL HTTP/2www.google-analytics.com/collect?v=1&_v=j97&a=419426655&t=event&ni=0&_s=1&dl=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_EAF8F9C2364049EE927CEEB4DC8E8764&ul=en-us&de=UTF-8&dt=MegaRush&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=undefined&ea=undefined&_u=YEDAAEABAAAAAC~&jid=&gjid=&cid=202831336.1664214839&tid=UA-143790984-2&_gid=939076235.1664214839>m=2wg9l0K4GPX49&z=761129568 IP142.250.74.174:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash28d6814f309ea289f847c69cf91194c6 0f4e929dd5bb2564f7ab9c76338e04e292a42ace 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j97&a=419426655&t=event&ni=0&_s=1&dl=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_EAF8F9C2364049EE927CEEB4DC8E8764&ul=en-us&de=UTF-8&dt=MegaRush&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=undefined&ea=undefined&_u=YEDAAEABAAAAAC~&jid=&gjid=&cid=202831336.1664214839&tid=UA-143790984-2&_gid=939076235.1664214839>m=2wg9l0K4GPX49&z=761129568 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Mon, 26 Sep 2022 05:50:19 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 43421
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/j/collect?v=1&_v=j97&a=419426655&t=event&ni=0&_s=1&dl=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_EAF8F9C2364049EE927CEEB4DC8E8764&ul=en-us&de=UTF-8&dt=MegaRush&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=undefined&ea=undefined&_u=YEBAAEABAAAAAC~&jid=250607139&gjid=626564040&cid=202831336.1664214839&tid=UA-143790984-2&_gid=939076235.1664214839&_r=1>m=2wg9l0K4GPX49&z=906028515 | 142.250.74.174 | 200 OK | 1 B |
URL HTTP/2www.google-analytics.com/j/collect?v=1&_v=j97&a=419426655&t=event&ni=0&_s=1&dl=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_EAF8F9C2364049EE927CEEB4DC8E8764&ul=en-us&de=UTF-8&dt=MegaRush&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=undefined&ea=undefined&_u=YEBAAEABAAAAAC~&jid=250607139&gjid=626564040&cid=202831336.1664214839&tid=UA-143790984-2&_gid=939076235.1664214839&_r=1>m=2wg9l0K4GPX49&z=906028515 IP142.250.74.174:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j97&a=419426655&t=event&ni=0&_s=1&dl=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_EAF8F9C2364049EE927CEEB4DC8E8764&ul=en-us&de=UTF-8&dt=MegaRush&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=undefined&ea=undefined&_u=YEBAAEABAAAAAC~&jid=250607139&gjid=626564040&cid=202831336.1664214839&tid=UA-143790984-2&_gid=939076235.1664214839&_r=1>m=2wg9l0K4GPX49&z=906028515 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.megarush.com
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.megarush.com
date: Mon, 26 Sep 2022 17:54:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| edge.fullstory.com/s/fs.js | 35.201.112.186 | 200 OK | 63 kB |
URL HTTP/2edge.fullstory.com/s/fs.js IP35.201.112.186:0
File typeASCII text, with very long lines (65410) Hashedaddb07c1ac69eeace0618371748121 d6a2dd58b9b4d56425a1391e0ce2354b85d27b13 2853842ec4546df8fa58052aa6715ea4b8321bbbaea78b32d1682a93b009b44b
GET /s/fs.js HTTP/1.1
Host: edge.fullstory.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.megarush.com
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsJxavrEs3EG0NYpiOTULDAOBagq-F9UgInfXkYpvetYWoS2_k7veFIR_NAzgzZo8kAuYN-ylv891mefU_PySo0nEboDw6i
x-goog-generation: 1663785557634490
x-goog-metageneration: 1
x-goog-stored-content-encoding: br
x-goog-stored-content-length: 63203
content-encoding: br
x-goog-hash: crc32c=S3DyuA==, md5=7a3bB8Gsae6s4GGDcXSBIQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 63203
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 26 Sep 2022 17:32:59 GMT
expires: Mon, 26 Sep 2022 18:32:59 GMT
cache-control: public, max-age=3600,no-transform
age: 1261
last-modified: Wed, 21 Sep 2022 18:39:17 GMT
etag: "edaddb07c1ac69eeace0618371748121"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764 | 104.22.31.168 | 200 OK | 3.3 kB |
URL HTTP/2www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764 IP104.22.31.168:0
Hash4c2b7e19cbd6c5c34f593fc38f4d4bd5 4012248b6007937a4eb7de0a94010a1fcf881d7b e6a6169e0f3ed475e0fd60d70efa7a7825ac612c07d7092bcd116157fdebc49c
GET /nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764 HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:53:59 GMT
content-type: text/html
last-modified: Wed, 14 Sep 2022 14:51:51 GMT
vary: Accept-Encoding
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
set-cookie: geoip_country=no; Path=/;
webserver=megarush-prd-64c858bd68-ht8z4; Domain=www.megarush.com; Path=/;
geoip_country=no; Domain=www.megarush.com; Path=/;
LanguageCode=nb-no; Domain=www.megarush.com; Path=/;
73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; path=/; HttpOnly; Secure; SameSite=None
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750ddcbd1f10b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| megalotto-api.gigmagic.io/v2?key=5c7e3e9c1c62609cee83f960&isDesktopDevice=true&sid=6331e7366aacc3f3dfc9b67b | 104.18.38.157 | 101 Switching Protocols | 0 B |
URL HTTP/1.1megalotto-api.gigmagic.io/v2?key=5c7e3e9c1c62609cee83f960&isDesktopDevice=true&sid=6331e7366aacc3f3dfc9b67b IP104.18.38.157:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2?key=5c7e3e9c1c62609cee83f960&isDesktopDevice=true&sid=6331e7366aacc3f3dfc9b67b HTTP/1.1
Host: megalotto-api.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.megarush.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zxh8v3B8+1kWMYfkJq4b1w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 26 Sep 2022 17:54:00 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: rJ5bi+HE8lAG0LwdSDlffpxiUc8=
set-cookie: e9ef0023e1df886bed2d1501b6b20a23=ec165fe678b48342d2debd4134e1852b; path=/; HttpOnly; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750ddcc109ffb521-OSL
|
|
| ocsp.pki.goog/s/gts1d4/nGJjDlG2mg8 | 142.250.74.3 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/nGJjDlG2mg8 IP142.250.74.3:0
Hashebf8a8b6955020c30b947c063c1e2687 4f61cb8ee32f9ad584d17672d37f5b5c9b524278 0f8bd1f1ae51a01762a7e7d7610930d5461e3f8a7443633d3600ea6b8156004f
POST /s/gts1d4/nGJjDlG2mg8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:54:00 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| megalotto-static.gigmagic.io/translations/no.json | 104.18.38.157 | 200 OK | 75 kB |
URL HTTP/2megalotto-static.gigmagic.io/translations/no.json IP104.18.38.157:0
File typeJSON data\012- , Unicode text, UTF-8 text, with very long lines (65298), with no line terminators Hashc2bbcc94bb88bd8501e783cb5309f53a 0866706258d25179ff9f25f1185d54e8a9222eec dc6d64b029ac273b3bfb1434db5f41e784532e7896343388fc5635fdbbd91cd2
GET /translations/no.json HTTP/1.1
Host: megalotto-static.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/
Origin: https://www.megarush.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: application/json; charset=utf-8
content-length: 75076
access-control-allow-origin: *
access-control-allow-methods: GET, POST
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Tue, 20 Sep 2022 12:59:05 GMT
etag: "c2bbcc94bb88bd8501e783cb5309f53a"
content-encoding: gzip
accept-ranges: bytes
set-cookie: e242caeacb7729c5149f03e087bd04c7=3d1bf3a1a08cce8e844762f5ad0a7d37; path=/; HttpOnly; Secure; SameSite=None
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750ddcc1bf86b512-OSL
X-Firefox-Spdy: h2
|
|
| scripts.mediamathrdrt.com/scripts/b_megarush.js | 172.64.138.19 | 200 OK | 755 B |
URL HTTP/2scripts.mediamathrdrt.com/scripts/b_megarush.js IP172.64.138.19:0
Hashe6e12bd92ce13f4637089d58e6c0a420 8b7815c5c75c66e0f10a1923e6a3f8d30d2a0fcb 2d24d4c6437b04a2e964ac3c1090dc759bbb5ac923549edf797080966238b4b9
GET /scripts/b_megarush.js HTTP/1.1
Host: scripts.mediamathrdrt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: text/javascript; charset=utf-8
status: 200 OK
cache-control: max-age=0, public
access-control-allow-origin: *
x-request-id: 83dc45c2-533d-49cf-95b0-67043ada27bd
etag: W/"b89528e21d6f85cc11459c7b6ec733cb"
x-runtime: 0.003554
expires: 2022-08-27 17:54:00 UTC
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7ukwAL3GEOgQ5c6fji3ytm0uhK3V63QMMbWlwhGlqtq23SFuumHCvHciBUYcb7vlML5OGThEMPFHPxl%2BRdA1xYXNKfZV8s6GDzOF3ZDg8HHVxRSSupItzrGpJHq%2BlO8YkCVnt9wXUjCN1zTl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 750ddcbf8fb40732-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| s2.adform.net/banners/scripts/st/trackpoint-async.js | 37.157.6.235 | 200 OK | 31 kB |
URL HTTP/2s2.adform.net/banners/scripts/st/trackpoint-async.js IP37.157.6.235:0
Hash318b946823e1df572e685326a0c7eb6b 5ef271234d1c83f103cd3a5f37104e2c33a67805 e1e5278c56f418ead8947532444f8749f8eb986c504d151d6d05a66240c7e3d5
GET /banners/scripts/st/trackpoint-async.js HTTP/1.1
Host: s2.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 23 Sep 2022 11:35:31 GMT
x-rgw-object-type: Normal
etag: W/"64271612f9771203ff18d1de033d1b31"
x-amz-request-id: tx000000000000000989498-006331cc39-328fb047-default
access-control-allow-origin: *
cache-control: public, max-age=604800
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| megalotto-api.gigmagic.io/igc/megalotto/games/jackpots | 104.18.38.157 | 200 OK | 2 B |
URL HTTP/2megalotto-api.gigmagic.io/igc/megalotto/games/jackpots IP104.18.38.157:0
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /igc/megalotto/games/jackpots HTTP/1.1
Host: megalotto-api.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-api-key,x-api-session-id
Referer: https://www.megarush.com/
Origin: https://www.megarush.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-length: 2
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With, Content-Type, Accept, X-API-Key, X-API-Session-Id, x-api-sid, X-Request-ID
set-cookie: e9ef0023e1df886bed2d1501b6b20a23=ec165fe678b48342d2debd4134e1852b; path=/; HttpOnly; Secure; SameSite=None
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750ddcc309c1b512-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/home-page/coin-3-2.png | 104.22.31.168 | 200 OK | 2.2 kB |
URL HTTP/2www.megarush.com/img/home-page/coin-3-2.png IP104.22.31.168:0
File typePNG image data, 89 x 83, 8-bit colormap, non-interlaced\012- data Hashc90348c562ec643acfbdf36d973d8326 90c07f0c13fd06f043d36c223eb9afaa34abdf7c 68cf52e8ce0267c83f6bac7a67944d9b4fe37c74999eed858cde51705a148aca
GET /img/home-page/coin-3-2.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/png
content-length: 2192
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: "629daa4a-890"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7257462
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc35955b50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/home-page/coin-2-4.png | 104.22.31.168 | 200 OK | 786 B |
URL HTTP/2www.megarush.com/img/home-page/coin-2-4.png IP104.22.31.168:0
File typePNG image data, 29 x 33, 8-bit colormap, non-interlaced\012- data Hashdca8df1b0d982ac3fbbc6c0b506cc0f2 392422815633ebaf9eef022677f0b73e1352ae66 a027ddd9187b5d6a7a537aada497af6ebfca00c2a9f50e7950aaf6ad599b0b09
GET /img/home-page/coin-2-4.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/png
content-length: 786
last-modified: Thu, 30 Sep 2021 14:59:04 GMT
etag: "6155d0b8-312"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 31200236
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc35953b50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/home-page/coin-3-3.png | 104.22.31.168 | 200 OK | 1.8 kB |
URL HTTP/2www.megarush.com/img/home-page/coin-3-3.png IP104.22.31.168:0
File typePNG image data, 64 x 71, 8-bit colormap, non-interlaced\012- data Hashfbdad22b02cf9a7a23c2f0553b1459e7 b64101b18924eba076f35318cce3e8a8bdec28b0 7aab4f9003ad7bd6b60fc361b6f2a0d2ddda28b35ea8ef6b0eff0f9a2cb81680
GET /img/home-page/coin-3-3.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/png
content-length: 1807
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: "629daa4a-70f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 9661225
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc3595ab50c-OSL
X-Firefox-Spdy: h2
|
|
| megalotto-api.gigmagic.io/igc/megalotto/promotions/filter | 104.18.38.157 | 200 OK | 2 B |
URL HTTP/2megalotto-api.gigmagic.io/igc/megalotto/promotions/filter IP104.18.38.157:0
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /igc/megalotto/promotions/filter HTTP/1.1
Host: megalotto-api.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-api-key,x-api-session-id
Referer: https://www.megarush.com/
Origin: https://www.megarush.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-length: 2
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With, Content-Type, Accept, X-API-Key, X-API-Session-Id, x-api-sid, X-Request-ID
set-cookie: e9ef0023e1df886bed2d1501b6b20a23=ec165fe678b48342d2debd4134e1852b; path=/; HttpOnly; Secure; SameSite=None
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750ddcc34a0cb512-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/home-page/coin-1-1.png | 104.22.31.168 | 200 OK | 4.3 kB |
URL HTTP/2www.megarush.com/img/home-page/coin-1-1.png IP104.22.31.168:0
File typePNG image data, 106 x 105, 8-bit colormap, non-interlaced\012- data Hash214e2f889379dcba70bace5878068150 d6873dae324b9fd44a70e73f20dc9eb81253a7ae bb731b067cd838fadedeab50866dc81f725b8f6e49f4dc2e3b4332eae36c9ef0
GET /img/home-page/coin-1-1.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/png
content-length: 4257
last-modified: Thu, 30 Sep 2021 14:59:04 GMT
etag: "6155d0b8-10a1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 31200236
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc379d3b50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/home-page/mega-jackpots.png | 104.22.31.168 | 200 OK | 64 kB |
URL HTTP/2www.megarush.com/img/home-page/mega-jackpots.png IP104.22.31.168:0
File typePNG image data, 1618 x 188, 8-bit colormap, non-interlaced\012- data Hashb4342b052aabdba3960a5b2b5c7e519a aebc2a2c7be9d8d2895694af3fde7674affef4c2 d3fa51da3d01f8341766925f65cf161fc2e403be7594f213c5019f8e27f3ad1d
GET /img/home-page/mega-jackpots.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/png
content-length: 63747
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: "629daa4a-f903"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 9654766
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc369b1b50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/home-page/coin-3-1.png | 104.22.31.168 | 200 OK | 4.4 kB |
URL HTTP/2www.megarush.com/img/home-page/coin-3-1.png IP104.22.31.168:0
File typePNG image data, 118 x 119, 8-bit colormap, non-interlaced\012- data Hash3da73129d9d4dd65c43060dacf06f3df 9abf4ea9710ba53af92778718c245ddf64c42a5f 6b899e2fa680a916e6d1fe6226eaff68b415eee4658537497ae951024d5793a6
GET /img/home-page/coin-3-1.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/png
content-length: 4434
last-modified: Thu, 30 Sep 2021 14:59:04 GMT
etag: "6155d0b8-1152"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 31200236
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc379e6b50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/benefits/loyalty.png | 104.22.31.168 | 200 OK | 9.7 kB |
URL HTTP/2www.megarush.com/img/benefits/loyalty.png IP104.22.31.168:0
File typePNG image data, 216 x 216, 8-bit colormap, non-interlaced\012- data Hashdf4d6dc1ebb3bbbace8d15ec77486d46 287e7185a17258c716cbf616aa95287c0db255a9 a6332d5469054e898655c9dc6f8fba37e6c300b523199c1a18441f7ce62878d8
GET /img/benefits/loyalty.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/png
content-length: 9659
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: "629daa4a-25bb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 9657068
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc379ecb50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/home-page/coin-2-2.png | 104.22.31.168 | 200 OK | 2.6 kB |
URL HTTP/2www.megarush.com/img/home-page/coin-2-2.png IP104.22.31.168:0
File typePNG image data, 61 x 69, 8-bit colormap, non-interlaced\012- data Hashbba9175cb7f05129ab03029f757b73ec 3efab582d082e5eb7f9ad9106f564c6f95e1fcc0 5ec2a2d82d3f356dcda627c1858e64278702b9c348f707287c9e72d0cbe05ad7
GET /img/home-page/coin-2-2.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/png
content-length: 2616
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: "629daa4a-a38"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 9657068
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc379dbb50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/home-page/coin-2-1.png | 104.22.31.168 | 200 OK | 3.5 kB |
URL HTTP/2www.megarush.com/img/home-page/coin-2-1.png IP104.22.31.168:0
File typePNG image data, 80 x 64, 8-bit colormap, non-interlaced\012- data Hash09e800f81a52a109cbf3a8b2f8e727bf d44509cdbddce4991b70f10276c47786e9993d0b 8ab09b1bcb8c69b51ba57b7c5ee96a36994e6e97e7df49d3cce993e8881ff376
GET /img/home-page/coin-2-1.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/png
content-length: 3452
last-modified: Thu, 30 Sep 2021 14:59:04 GMT
etag: "6155d0b8-d7c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 31200236
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc379d9b50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/benefits/promotions.png | 104.22.31.168 | 200 OK | 21 kB |
URL HTTP/2www.megarush.com/img/benefits/promotions.png IP104.22.31.168:0
File typePNG image data, 216 x 216, 8-bit/color RGBA, non-interlaced\012- data Hash0d9863db2ba8c87a673de9ea91482d5e daca14014aeb80e137b6682a8c816cdd92639b2c 131582b1399fc62d9464a553a37bf6938d29fa48852a4d2564a3f6315f366911
GET /img/benefits/promotions.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/png
content-length: 21005
last-modified: Thu, 25 Aug 2022 14:33:43 GMT
etag: "63078847-520d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 2776523
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc379e8b50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/playAndGo.svg | 104.22.31.168 | 200 OK | 12 kB |
URL HTTP/2www.megarush.com/img/icons/playAndGo.svg IP104.22.31.168:0
Hasha30fb7d97c1442853a9cd8c33783b45b 541dd725105d9368c231d2ae3afdd200907ec751 301d6d777103a33673bf3828611a749c6fd5411f420df048932d8e0989b0b5c7
GET /img/icons/playAndGo.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Sep 2021 14:59:04 GMT
etag: W/"6155d0b8-dfe"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 31200067
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc3597bb50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/home-page/feel-the-rush.png | 104.22.31.168 | 200 OK | 49 kB |
URL HTTP/2www.megarush.com/img/home-page/feel-the-rush.png IP104.22.31.168:0
File typePNG image data, 1382 x 188, 8-bit colormap, non-interlaced\012- data Hash141c6d0e374b086cf1d604173cb607c8 9e5531e6e26ad4cb621dd35d9521b167ce99ca53 c4bace32963528c901f6784df93b3aecc91e0b39b70cd6ba77bcce02c4e983e2
GET /img/home-page/feel-the-rush.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/png
content-length: 48691
last-modified: Thu, 30 Sep 2021 14:59:04 GMT
etag: "6155d0b8-be33"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 31200236
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc38a02b50c-OSL
X-Firefox-Spdy: h2
|
|
| rs.fullstory.com/rec/page | 35.186.194.58 | 202 Accepted | 76 B |
URL HTTP/2rs.fullstory.com/rec/page IP35.186.194.58:0
File typeJSON data\012- , ASCII text Hash483ffa09cea154d304956a80f8b6b0cc 8c4675aeda7de53c381d4027ac239f0ea83a82ca 39cd29318acd06252db1fc7edf14ce35ebbd083cf672cd371bb0e40340370f08
POST /rec/page HTTP/1.1
Host: rs.fullstory.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 376
Origin: https://www.megarush.com
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
access-control-allow-credentials: true
access-control-allow-origin: https://www.megarush.com
content-type: text/plain; charset=utf-8
x-content-type-options: nosniff
date: Mon, 26 Sep 2022 17:54:00 GMT
content-length: 76
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/affiliates/online-gamblers.png | 104.22.31.168 | 200 OK | 14 kB |
URL HTTP/2www.megarush.com/img/affiliates/online-gamblers.png IP104.22.31.168:0
File typePNG image data, 800 x 104, 8-bit/color RGBA, non-interlaced\012- data Hash9c612bb3dbe37436b86ec881eecb90c4 45722b1f16d3b61f2803fa3bb78403414bd3a442 e92c2f751a6eddbd489bf745193c6af18af7d1f270396f0a0d40efc778c5672c
GET /img/affiliates/online-gamblers.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/png
content-length: 14178
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: "6123a103-3762"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 34425664
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc39a11b50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/affiliates/norges-casino.png | 104.22.31.168 | 200 OK | 12 kB |
URL HTTP/2www.megarush.com/img/affiliates/norges-casino.png IP104.22.31.168:0
File typePNG image data, 800 x 104, 8-bit colormap, non-interlaced\012- data Hash453efb7650d4c514229ddc7cb4b5d04f f00e51876a720516521db90908019e5ccebe0397 d4d9aa8ca8aba5b99c183e32aee4d416e8c7768dffeb84e644e2ef5c597c546e
GET /img/affiliates/norges-casino.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/png
content-length: 12111
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: "6123a103-2f4f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 34425664
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc39a16b50c-OSL
X-Firefox-Spdy: h2
|
|
| megalotto-img.gigmagic.io/promos/img/arcade-machine.png?w=412&auto=format&fm=png | 104.18.38.157 | 200 OK | 31 kB |
URL HTTP/2megalotto-img.gigmagic.io/promos/img/arcade-machine.png?w=412&auto=format&fm=png IP104.18.38.157:0
File typeISO Media, AVIF Image\012- data Hasha120f99e6d07b9526d8720e520942423 57edcb554c28a5787dd54c7f64b12ce9b7007d9b c006a30b946ca1a403a8eaca8cdf20fa22b9ea6912b59023689f6aa65c83b137
GET /promos/img/arcade-machine.png?w=412&auto=format&fm=png HTTP/1.1
Host: megalotto-img.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/avif
content-length: 30644
last-modified: Tue, 06 Sep 2022 09:45:02 GMT
cache-control: public, max-age=31536000, private
x-imgix-id: 66cd5b3423986c504740641be9f0a18ddd2feace
x-imgix-render-farm: 01.1072
age: 1757338
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10024-SJC, cache-ams12765-AMS
x-cache: MISS, HIT
vary: Accept, User-Agent
set-cookie: e7105a0137896fd7032010d42344fdb4=1b3a24f4123fe071faad6589460b775b; path=/; HttpOnly; Secure; SameSite=None
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750ddcc35be61c06-OSL
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashb58b1c30201461d76f8ca5b96dceb777 e9758dc832f299f17cee36c92e183f3e90a122ac be364ad3e248208db010e118dd5698fa23850e682c2161f8e1865e0df69c079c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE364AD3E248208DB010E118DD5698FA23850E682C2161F8E1865E0DF69C079C"
Last-Modified: Mon, 26 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10912
Expires: Mon, 26 Sep 2022 20:55:52 GMT
Date: Mon, 26 Sep 2022 17:54:00 GMT
Connection: keep-alive
|
|
| megalotto-static.gigmagic.io/games/no_NO.json | 104.18.38.157 | 200 OK | 714 kB |
URL HTTP/2megalotto-static.gigmagic.io/games/no_NO.json IP104.18.38.157:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Size714 kB (714008 bytes) Hash2b8d7eb8d9f56918e231833888a022c4 38aa421f60d49dc4f204d473c435e34529e2e9e8 b3fe1abb3128d08ba81a2de1ae727dba1fc4fec2f829a44dceeb23a219dfc3f9
GET /games/no_NO.json HTTP/1.1
Host: megalotto-static.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/
Origin: https://www.megarush.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: application/json; charset=utf-8
content-length: 714008
access-control-allow-origin: *
access-control-allow-methods: GET, POST
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Tue, 06 Sep 2022 08:13:41 GMT
etag: "2b8d7eb8d9f56918e231833888a022c4"
content-encoding: gzip
accept-ranges: bytes
set-cookie: e242caeacb7729c5149f03e087bd04c7=81f17ed54a83fe51a535d9a669b8de47; path=/; HttpOnly; Secure; SameSite=None
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750ddcc309beb512-OSL
X-Firefox-Spdy: h2
|
|
| megalotto-img.gigmagic.io/promos/img/arcade-machine.png?w=412&auto=format&fm=png | 104.18.38.157 | 304 Not Modified | 0 B |
URL HTTP/2megalotto-img.gigmagic.io/promos/img/arcade-machine.png?w=412&auto=format&fm=png IP104.18.38.157:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /promos/img/arcade-machine.png?w=412&auto=format&fm=png HTTP/1.1
Host: megalotto-img.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Cookie: e7105a0137896fd7032010d42344fdb4=1b3a24f4123fe071faad6589460b775b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Tue, 06 Sep 2022 09:45:02 GMT
TE: trailers
HTTP/2 304 Not Modified
date: Mon, 26 Sep 2022 17:54:00 GMT
cache-control: public, max-age=31536000
age: 1757338
x-imgix-id: c37684b41c0ae3efc6648e81a5afd3de87cf9bb9
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-ams12730-AMS
x-cache: HIT
vary: Accept, User-Agent
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750ddcc3ec7b1c06-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/live-casino--yellow.svg | 104.22.31.168 | 200 OK | 1.5 kB |
URL HTTP/2www.megarush.com/img/icons/live-casino--yellow.svg IP104.22.31.168:0
Hash9cb782aa3857d8e0bd36ff93805fe830 459c67a4d5d65e5a31c05a35bc766619c195e45e 3d56e1a81435705cbb2cf1c1d7cb5db315ddf66c1650e9d95767512bac3a3534
GET /img/icons/live-casino--yellow.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/svg+xml
last-modified: Mon, 28 Feb 2022 16:02:10 GMT
etag: W/"621cf202-9b1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 18150535
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc42b8cb50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/pragmaticPlay.svg | 104.22.31.168 | 200 OK | 10 kB |
URL HTTP/2www.megarush.com/img/icons/pragmaticPlay.svg IP104.22.31.168:0
Hash4db795c675a6efd5a587a8aa4a967c7b 5e524a2b13bd837d4917d69b3cb9174d7e2b46c8 0c4bd7e6f58bcd19384d6ada55e3c34cb3ff80380c5b174bb56a044d3754b676
GET /img/icons/pragmaticPlay.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-1799"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 9493859
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc369acb50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| megalotto-api.gigmagic.io/igc/megalotto/promotions/filter | 104.18.38.157 | 200 OK | 37 kB |
URL HTTP/2megalotto-api.gigmagic.io/igc/megalotto/promotions/filter IP104.18.38.157:0
Hash2c3a597337e76933b7af8a6e83da0b99 54cea6fe091122b83d72a84112e9d377abfdf73e a3b8251c0f025abe5402a02e8cdfb26a446d2c9cdeb1193cd36d00e26cd09f27
POST /igc/megalotto/promotions/filter HTTP/1.1
Host: megalotto-api.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/
Content-Type: application/json; charset=utf-8
X-API-Key: 5c7e3e9c1c62609cee83f960
X-API-Session-Id: 6331e7366aacc3f3dfc9b67b
Origin: https://www.megarush.com
Content-Length: 47
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:01 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With, Content-Type, Accept, X-API-Key, X-API-Session-Id, x-api-sid, X-Request-ID
set-cookie: e9ef0023e1df886bed2d1501b6b20a23=ec165fe678b48342d2debd4134e1852b; path=/; HttpOnly; Secure; SameSite=None
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750ddcc37a80b512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/live-casino--flat.svg | 104.22.31.168 | 200 OK | 55 kB |
URL HTTP/2www.megarush.com/img/icons/live-casino--flat.svg IP104.22.31.168:0
Hash464e93ee4c42fed95ec6330272164677 7aee0a259429e302727c64a689d4bf66625db121 8de348ce2c9c0822c4a42dfa38f405756cb66a6749d1932a3f25af2093e7db4d
GET /img/icons/live-casino--flat.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:01 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-f78"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 34425663
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc43ba0b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/megaclub--updated.svg | 104.22.31.168 | 200 OK | 79 kB |
URL HTTP/2www.megarush.com/img/icons/megaclub--updated.svg IP104.22.31.168:0
Hashbee7bba9bbde92984d84b2994e1cb162 bd3ce8fa772165df65ffd6fb01000181afd59f9e 582ff4f5646362053b9098228c242e6d21722ce685d2d8c948555fde6cc39264
GET /img/icons/megaclub--updated.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-2ed"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 9662814
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc42b8eb50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/gamcare.svg | 104.22.31.168 | 200 OK | 85 kB |
URL HTTP/2www.megarush.com/img/icons/gamcare.svg IP104.22.31.168:0
Hashdfd9b04cbae9493a81e4d633729360ce 8accf296759c9054d9a1cb92293f4d351eed939f facff3aa8052b14359d958f184314a92c1810393a3e86571649010e23476bfa8
GET /img/icons/gamcare.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:01 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-dd1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 34425664
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc4bca9b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/relaxGaming.svg | 104.22.31.168 | 200 OK | 68 kB |
URL HTTP/2www.megarush.com/img/icons/relaxGaming.svg IP104.22.31.168:0
Hash81500d0f78f7ddcb9ef25eafe0384796 f1ca75d9e552c2f549e5693d29e25546d21805b6 5b25ef17a64e15bc134dc352b817ef350c901013e3bb90d7cf7f3015bb800b8b
GET /img/icons/relaxGaming.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-22fa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7257462
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc36981b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| track.adform.net/Serving/TrackPoint/?CC=1&pm=2381934&ADFdivider=|&ord=478982482134&ADFtpmode=2&loc=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_EAF8F9C2364049EE927CEEB4DC8E8764&Set1=en-US%7Cen-US%7C1280x1024%7C24 | 37.157.6.242 | 200 OK | 388 B |
URL HTTP/2track.adform.net/Serving/TrackPoint/?CC=1&pm=2381934&ADFdivider=|&ord=478982482134&ADFtpmode=2&loc=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_EAF8F9C2364049EE927CEEB4DC8E8764&Set1=en-US%7Cen-US%7C1280x1024%7C24 IP37.157.6.242:0
File typeASCII text, with CRLF line terminators Hash87896aba6f8a38bd86af0cb77be4f0e1 7e3c406fb6f06092e700fb6796e1c9177bf00a2e 14d411cc1adc5e35c99e4a8ae657d06b6b93cf1ea80b9149dc2427350b8c74be
GET /Serving/TrackPoint/?CC=1&pm=2381934&ADFdivider=|&ord=478982482134&ADFtpmode=2&loc=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_EAF8F9C2364049EE927CEEB4DC8E8764&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 17:54:01 GMT
content-type: text/javascript; charset=utf-8
content-length: 388
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
|
|
| megalotto-api.gigmagic.io/igc/megalotto/games/jackpots | 104.18.38.157 | 200 OK | 1.3 kB |
URL HTTP/2megalotto-api.gigmagic.io/igc/megalotto/games/jackpots IP104.18.38.157:0
Hashcabf6a13bbbd1e00ecd360bef3d4c15d fe8e61e00d3e0289697d2f248a778a50529c71d4 6a3a826866f4323bd58134a4fb56db32bded75ed01fc8e5154584819b217ba89
POST /igc/megalotto/games/jackpots HTTP/1.1
Host: megalotto-api.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/
Content-Type: application/json; charset=utf-8
X-API-Key: 5c7e3e9c1c62609cee83f960
X-API-Session-Id: 6331e7366aacc3f3dfc9b67b
Origin: https://www.megarush.com
Content-Length: 18
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With, Content-Type, Accept, X-API-Key, X-API-Session-Id, x-api-sid, X-Request-ID
set-cookie: e9ef0023e1df886bed2d1501b6b20a23=a97e9b23ef57e88ea120d9331828b0a7; path=/; HttpOnly; Secure; SameSite=None
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750ddcc34a0fb512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash5a6097201b7da81f6e9a6d99a7353a0c d4240fe80c76013b9f7b6fd09963aa47151b8d6a 519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11102
Expires: Mon, 26 Sep 2022 20:59:03 GMT
Date: Mon, 26 Sep 2022 17:54:01 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash5a6097201b7da81f6e9a6d99a7353a0c d4240fe80c76013b9f7b6fd09963aa47151b8d6a 519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11102
Expires: Mon, 26 Sep 2022 20:59:03 GMT
Date: Mon, 26 Sep 2022 17:54:01 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash5a6097201b7da81f6e9a6d99a7353a0c d4240fe80c76013b9f7b6fd09963aa47151b8d6a 519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11102
Expires: Mon, 26 Sep 2022 20:59:03 GMT
Date: Mon, 26 Sep 2022 17:54:01 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg | 34.120.237.76 | 200 OK | 8.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd02ede0c964f3346fd53ae2950bf2a62 e49306a3713cb724be024a4ddb5e90645718a718 c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HCJ483GPdpPhC7oYm1GrA02BqqST9sfqfCBSA93rZqaQYl-jezgP5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:20:40 GMT
age: 70401
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/logo.4c52d90d.svg | 104.22.31.168 | 200 OK | 6.2 kB |
URL HTTP/2www.megarush.com/img/logo.4c52d90d.svg IP104.22.31.168:0
Hash5811c398510af6d54d1d7652d03cf64b 429e92ffb57ee7dc53f4431da8b0f2d7f8ce5a2b 09b5e50cf2d0fc18a559bd4213d2d16c720216896ca773f00a4055fc67dda7ae
GET /img/logo.4c52d90d.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/index.3e5fca25e481a764411c.css
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:01 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-931"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 9657069
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc59e6bb50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/iso.fc5b238b.svg | 104.22.31.168 | 200 OK | 11 kB |
URL HTTP/2www.megarush.com/img/iso.fc5b238b.svg IP104.22.31.168:0
Hasha0f8528a2f1315598f150bab7795310a e0a66f8ef9b61708251a6a74f3a963e473400a4d 1744f74a0a9e069b2725c3ffa6301115eec60a10f36698661643dba61b071777
GET /img/iso.fc5b238b.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/index.3e5fca25e481a764411c.css
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:01 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-363"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 34425664
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc59e68b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/js/index.94a008e8.js | 104.22.31.168 | 200 OK | 294 kB |
URL HTTP/2www.megarush.com/js/index.94a008e8.js IP104.22.31.168:0
Size294 kB (293993 bytes) Hashdfeef82fb4087e5fdcfa19ea4511a292 9912d924307fc7149b39bf02b2b122c80eb63eff a377b0addfbd866ddaf904920e5c94024b9503b3ce50f86d59a09cc7b9bdee2a
GET /js/index.94a008e8.js HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:53:59 GMT
content-type: application/javascript
cf-bgj: minify
access-control-allow-origin: *
cache-control: max-age=7200
etag: W/"6321ea87-160e97"
expires: Thu, 22 Sep 2022 07:48:59 GMT
last-modified: Wed, 14 Sep 2022 14:51:51 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 7133
server: cloudflare
cf-ray: 750ddcbdbfd5b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| track.adform.net/Serving/TrackPoint/?pm=2381934&ADFdivider=|&ord=478982482134&ADFtpmode=2&loc=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_EAF8F9C2364049EE927CEEB4DC8E8764&Set1=en-US%7Cen-US%7C1280x1024%7C24 | 37.157.6.242 | 302 Found | 6.4 kB |
URL HTTP/2track.adform.net/Serving/TrackPoint/?pm=2381934&ADFdivider=|&ord=478982482134&ADFtpmode=2&loc=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_EAF8F9C2364049EE927CEEB4DC8E8764&Set1=en-US%7Cen-US%7C1280x1024%7C24 IP37.157.6.242:0
Hashbb6ac3432ddff2bea03549e535562aff c43bf979dca51d010365e8d92e8109e95671715b f5e875e0bbe8f771837522a0565b13ff6f0c434326b328cc183293fffa7970dd
GET /Serving/TrackPoint/?pm=2381934&ADFdivider=|&ord=478982482134&ADFtpmode=2&loc=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_EAF8F9C2364049EE927CEEB4DC8E8764&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=2381934&ADFdivider=|&ord=478982482134&ADFtpmode=2&loc=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_EAF8F9C2364049EE927CEEB4DC8E8764&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Wed, 26-Oct-2022 17:54:00 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2c11e6fef1be62b971bd9daf378bfc95 ef9d756cbcda72cf7ef5029b7d384cd1fbaed633 b8369f83d6dddcd2355b81d8eb200791788165e56881ce21e1a1e9c8bb1bb2ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13584
x-amzn-requestid: 198bd2b4-d4ae-4f19-a500-463aee52b890
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHgFdNoAMFwEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc9-19a1f7d2102820da4b21f18b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yl8BCwdlIePsc4gIX4IYH0L6NHipn_5fBsa9nyYy14w0m49jPUYXBw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:57:51 GMT
age: 71770
etag: "ef9d756cbcda72cf7ef5029b7d384cd1fbaed633"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 344 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash7742a05d973f02cf3432d34b2a3a5624 ecb79d116cb857b82c184e8444d7e046ee47029b d88363206be929a01659c67bc1f86913b9b14039ae509fa14545263d6d2b50c1
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "D88363206BE929A01659C67BC1F86913B9B14039AE509FA14545263D6D2B50C1"
Last-Modified: Sat, 24 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11636
Expires: Mon, 26 Sep 2022 21:07:57 GMT
Date: Mon, 26 Sep 2022 17:54:01 GMT
Connection: keep-alive
|
|
| www.megarush.com/img/icons/mega-checked-badge-new.svg | 104.22.31.168 | 200 OK | 1.5 kB |
URL HTTP/2www.megarush.com/img/icons/mega-checked-badge-new.svg IP104.22.31.168:0
Hash9bc37dac7000fc46b011f50d78c6f44f 53a89b9c8929fd5ad30918d978517cea8f6c52b5 b275807f639494d107d8ef9fbb627b7fb8195f971194c4a3d2a0242ce7afcc09
GET /img/icons/mega-checked-badge-new.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:01 GMT
content-type: image/svg+xml
last-modified: Mon, 18 Oct 2021 10:01:21 GMT
etag: W/"616d45f1-66f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 29663083
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc48c2ab50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 346 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash5f5a5d5076b1442d0bbd18573ac5c651 5f500985cb01dfecbb1c2b9ca0c94fc9d39e376e f46b9aaba2591c897b967cf8dc3b904f22c3c4adb13e35ebb45d47c9077eeffb
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "F46B9AABA2591C897B967CF8DC3B904F22C3C4ADB13E35EBB45D47C9077EEFFB"
Last-Modified: Mon, 26 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5010
Expires: Mon, 26 Sep 2022 19:17:31 GMT
Date: Mon, 26 Sep 2022 17:54:01 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 346 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash5f5a5d5076b1442d0bbd18573ac5c651 5f500985cb01dfecbb1c2b9ca0c94fc9d39e376e f46b9aaba2591c897b967cf8dc3b904f22c3c4adb13e35ebb45d47c9077eeffb
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "F46B9AABA2591C897B967CF8DC3B904F22C3C4ADB13E35EBB45D47C9077EEFFB"
Last-Modified: Mon, 26 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5010
Expires: Mon, 26 Sep 2022 19:17:31 GMT
Date: Mon, 26 Sep 2022 17:54:01 GMT
Connection: keep-alive
|
|
| track.adform.net/serving/container/?pm=2381934&lid=95292615&ctype=0&media=0&PageName=megarush.com%2fnb-no&rnd=1797902602&cpref=&loc=https%3a%2f%2fwww.megarush.com%2fnb-no%3fbtag%3d656126_EAF8F9C2364049EE927CEEB4DC8E8764 | 37.157.6.242 | 200 OK | 11 kB |
URL HTTP/2track.adform.net/serving/container/?pm=2381934&lid=95292615&ctype=0&media=0&PageName=megarush.com%2fnb-no&rnd=1797902602&cpref=&loc=https%3a%2f%2fwww.megarush.com%2fnb-no%3fbtag%3d656126_EAF8F9C2364049EE927CEEB4DC8E8764 IP37.157.6.242:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (26740) Hash6c240311e4396585392350f55e1ffde4 a0dac47fc62a4047f5d4b08d55158bc3f9297ace 5f9d1f0e46da132cdda1259f3cb4f6af02534be89970af974738cf807b0b48bc
GET /serving/container/?pm=2381934&lid=95292615&ctype=0&media=0&PageName=megarush.com%2fnb-no&rnd=1797902602&cpref=&loc=https%3a%2f%2fwww.megarush.com%2fnb-no%3fbtag%3d656126_EAF8F9C2364049EE927CEEB4DC8E8764 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 17:54:01 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
|
|
| rules.quantcount.com/rules-p--B_1AZ6v1_YDr.js | 54.230.111.16 | 200 OK | 271 B |
URL HTTP/2rules.quantcount.com/rules-p--B_1AZ6v1_YDr.js IP54.230.111.16:0
Hash34e255255d25312b08a2cc8566b5bf38 56eb0a5a1cb20d2b51fa071b968ad50a3ac16f85 1980f7805afc0ade5f7d949212900dfe36abaa52cc804b7eeac07a620852cf23
GET /rules-p--B_1AZ6v1_YDr.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://track.adform.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 271
last-modified: Tue, 23 Aug 2022 12:06:41 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Mon, 26 Sep 2022 17:26:38 GMT
cache-control: max-age=3600
etag: "34e255255d25312b08a2cc8566b5bf38"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7D8Rc3ADD6lvjni_Opa-Mc-2MXnTs8-WmVSqN36IxqOug2CPm-vkNg==
age: 1644
X-Firefox-Spdy: h2
|
|
| pxl.qccerttest.com/pixel?r=68226423;fpan=1;fpa=P0-892456422-1664214840032;pbc=;ns=1;ce=0;qjs=1;qv=d18171e5-20220913105912;ref=https%3A%2F%2Fwww.megarush.com%2F;cm=;gdpr=0;d=track.adform.net;dst=0;et=1664214840032;tzo=0;url=https%3A%2F%2Ftrack.adform.net%2Fserving%2Fcontainer%2F%3Fpm%3D2381934%26lid%3D95292615%26ctype%3D0%26media%3D0%26PageName%3Dmegarush.com%252fnb-no%26rnd%3D1797902602%26cpref%3D%26loc%3Dhttps%253a%252f%252fwww.megarush.com%252fnb-no%253fbtag%253d656126_EAF8F9C2364049EE927CEEB4DC8E8764;ogl= | 13.32.123.50 | 200 OK | 35 B |
URL HTTP/2pxl.qccerttest.com/pixel?r=68226423;fpan=1;fpa=P0-892456422-1664214840032;pbc=;ns=1;ce=0;qjs=1;qv=d18171e5-20220913105912;ref=https%3A%2F%2Fwww.megarush.com%2F;cm=;gdpr=0;d=track.adform.net;dst=0;et=1664214840032;tzo=0;url=https%3A%2F%2Ftrack.adform.net%2Fserving%2Fcontainer%2F%3Fpm%3D2381934%26lid%3D95292615%26ctype%3D0%26media%3D0%26PageName%3Dmegarush.com%252fnb-no%26rnd%3D1797902602%26cpref%3D%26loc%3Dhttps%253a%252f%252fwww.megarush.com%252fnb-no%253fbtag%253d656126_EAF8F9C2364049EE927CEEB4DC8E8764;ogl= IP13.32.123.50:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash55d25e9dc950d5db4d53a3b195c046c6 75e91ae3e549dab12ed1c9787ade9131aef1c981 a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel?r=68226423;fpan=1;fpa=P0-892456422-1664214840032;pbc=;ns=1;ce=0;qjs=1;qv=d18171e5-20220913105912;ref=https%3A%2F%2Fwww.megarush.com%2F;cm=;gdpr=0;d=track.adform.net;dst=0;et=1664214840032;tzo=0;url=https%3A%2F%2Ftrack.adform.net%2Fserving%2Fcontainer%2F%3Fpm%3D2381934%26lid%3D95292615%26ctype%3D0%26media%3D0%26PageName%3Dmegarush.com%252fnb-no%26rnd%3D1797902602%26cpref%3D%26loc%3Dhttps%253a%252f%252fwww.megarush.com%252fnb-no%253fbtag%253d656126_EAF8F9C2364049EE927CEEB4DC8E8764;ogl= HTTP/1.1
Host: pxl.qccerttest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://track.adform.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 35
last-modified: Thu, 04 Aug 2022 16:01:04 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 01:48:50 GMT
etag: "55d25e9dc950d5db4d53a3b195c046c6"
x-cache: Hit from cloudfront
via: 1.1 70ad464a78307ca3be49f99be11c879e.cloudfront.net (CloudFront)
x-amz-cf-pop: HEL50-C2
x-amz-cf-id: Ti5I5rOx6AtJ_x-algVdM3XZnJidv2EMoWJCq8efSXcTNobaONp21g==
age: 57912
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| pixel.quantserve.com/pixel;r=630624118;labels=_fp.event.PageView;rf=0;a=p--B_1AZ6v1_YDr;url=https%3A%2F%2Ftrack.adform.net%2Fserving%2Fcontainer%2F%3Fpm%3D2381934%26lid%3D95292615%26ctype%3D0%26media%3D0%26PageName%3Dmegarush.com%252fnb-no%26rnd%3D1797902602%26cpref%3D%26loc%3Dhttps%253a%252f%252fwww.megarush.com%252fnb-no%253fbtag%253d656126_EAF8F9C2364049EE927CEEB4DC8E8764;ref=https%3A%2F%2Fwww.megarush.com%2F;uht=2;fpan=0;fpa=P0-892456422-1664214840032;pbc=;ns=1;ce=0;qjs=1;qv=d18171e5-20220913105912;cm=;gdpr=0;d=track.adform.net;dst=0;et=1664214840035;tzo=0;ogl=;ses=e0bd8fef-dca1-4f95-9fbe-612e22c3dd2e | 91.228.74.200 | 200 OK | 35 B |
URL HTTP/2pixel.quantserve.com/pixel;r=630624118;labels=_fp.event.PageView;rf=0;a=p--B_1AZ6v1_YDr;url=https%3A%2F%2Ftrack.adform.net%2Fserving%2Fcontainer%2F%3Fpm%3D2381934%26lid%3D95292615%26ctype%3D0%26media%3D0%26PageName%3Dmegarush.com%252fnb-no%26rnd%3D1797902602%26cpref%3D%26loc%3Dhttps%253a%252f%252fwww.megarush.com%252fnb-no%253fbtag%253d656126_EAF8F9C2364049EE927CEEB4DC8E8764;ref=https%3A%2F%2Fwww.megarush.com%2F;uht=2;fpan=0;fpa=P0-892456422-1664214840032;pbc=;ns=1;ce=0;qjs=1;qv=d18171e5-20220913105912;cm=;gdpr=0;d=track.adform.net;dst=0;et=1664214840035;tzo=0;ogl=;ses=e0bd8fef-dca1-4f95-9fbe-612e22c3dd2e IP91.228.74.200:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash55d25e9dc950d5db4d53a3b195c046c6 75e91ae3e549dab12ed1c9787ade9131aef1c981 a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=630624118;labels=_fp.event.PageView;rf=0;a=p--B_1AZ6v1_YDr;url=https%3A%2F%2Ftrack.adform.net%2Fserving%2Fcontainer%2F%3Fpm%3D2381934%26lid%3D95292615%26ctype%3D0%26media%3D0%26PageName%3Dmegarush.com%252fnb-no%26rnd%3D1797902602%26cpref%3D%26loc%3Dhttps%253a%252f%252fwww.megarush.com%252fnb-no%253fbtag%253d656126_EAF8F9C2364049EE927CEEB4DC8E8764;ref=https%3A%2F%2Fwww.megarush.com%2F;uht=2;fpan=0;fpa=P0-892456422-1664214840032;pbc=;ns=1;ce=0;qjs=1;qv=d18171e5-20220913105912;cm=;gdpr=0;d=track.adform.net;dst=0;et=1664214840035;tzo=0;ogl=;ses=e0bd8fef-dca1-4f95-9fbe-612e22c3dd2e HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://track.adform.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:01 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=6331e739-eec26-fdac5-a2dcd; expires=Fri, 27-Oct-2023 17:54:01 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
|
|
| megalotto-static.gigmagic.io/video/header-video-720p.webm | 104.18.38.157 | 206 Partial Content | 1.3 MB |
URL HTTP/2megalotto-static.gigmagic.io/video/header-video-720p.webm IP104.18.38.157:0
File typeWebM\012- EBML file, creator webmB\20\012- data Size1.3 MB (1336865 bytes) Hash63177b286fe4cb8a5431377710ad3715 e762daea246c011e634a226f6062a9a27a344f80 ef3410a95d2b7bea43ca9dffb3e26c92db871a1ab9c2600dedf40847050cf817
GET /video/header-video-720p.webm HTTP/1.1
Host: megalotto-static.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Origin: https://www.megarush.com
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Mon, 26 Sep 2022 17:54:02 GMT
content-type: video/webm
content-length: 1336865
access-control-allow-origin: *
access-control-allow-methods: GET, POST
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Wed, 27 Oct 2021 09:33:10 GMT
etag: "63177b286fe4cb8a5431377710ad3715"
cache-control: public, max-age=14400
cf-cache-status: MISS
expires: Mon, 26 Sep 2022 21:54:02 GMT
content-range: bytes 0-1336864/1336865
server: cloudflare
cf-ray: 750ddcc9bbefb512-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashad43a9bd05a9274c0369a5c37a6b9d15 6ade07422d2c9ae75c9d988902ada4b8472eca3d 19d20fbc0f0937ca8de19637b590c418b81f3ab234fb463e334c3a36c94a5e86
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4900
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:54:05 GMT
Last-Modified: Mon, 26 Sep 2022 16:32:25 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
|
| www.megarush.com/img/icons/netent.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/netent.svg IP104.22.31.168:0
GET /img/icons/netent.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-519"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 9662506
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc36993b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/casino--side-nav.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/casino--side-nav.svg IP104.22.31.168:0
GET /img/icons/casino--side-nav.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/svg+xml
last-modified: Mon, 28 Feb 2022 09:33:37 GMT
etag: W/"621c96f1-9ef"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 18173261
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc3fafeb50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/games--flat.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/games--flat.svg IP104.22.31.168:0
GET /img/icons/games--flat.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-8c5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 34425663
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc42b9cb50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/mastercard--white.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/mastercard--white.svg IP104.22.31.168:0
GET /img/icons/mastercard--white.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:01 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-939"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 34425664
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc45bd5b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/payments.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/payments.svg IP104.22.31.168:0
GET /img/icons/payments.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-429"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 9661225
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc42b93b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/onlinedisputeresolution.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/onlinedisputeresolution.svg IP104.22.31.168:0
GET /img/icons/onlinedisputeresolution.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:01 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-1a7e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 8907436
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc4ac92b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/help-round.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/help-round.svg IP104.22.31.168:0
GET /img/icons/help-round.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-5e8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 34425663
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc42b9bb50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/service-worker.js | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/service-worker.js IP104.22.31.168:0
GET /service-worker.js HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:05 GMT
content-type: application/javascript
last-modified: Wed, 14 Sep 2022 14:51:51 GMT
vary: Accept-Encoding
etag: W/"6321ea87-64d2"
expires: Mon, 26 Sep 2022 17:54:35 GMT
cache-control: max-age=30
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750ddcdee9fcb50c-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/js/chunk-vendors.25e1a372.js | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/js/chunk-vendors.25e1a372.js IP104.22.31.168:0
GET /js/chunk-vendors.25e1a372.js HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:53:59 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=326117
access-control-allow-origin: *
cache-control: max-age=7200
etag: W/"6321ea87-4f9e5"
expires: Tue, 20 Sep 2022 07:45:04 GMT
last-modified: Wed, 14 Sep 2022 14:51:51 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 7133
server: cloudflare
cf-ray: 750ddcbdbfcdb50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/promotions--updated.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/promotions--updated.svg IP104.22.31.168:0
GET /img/icons/promotions--updated.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-306"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 9657068
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc42b90b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/promotions--flat.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/promotions--flat.svg IP104.22.31.168:0
GET /img/icons/promotions--flat.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-64c858bd68-ht8z4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=eae23b5a89ac6f8e293aca5447e917bc; _ga=GA1.2.202831336.1664214839; _gid=GA1.2.939076235.1664214839; _gat_UA-143790984-2=1; btag=656126_EAF8F9C2364049EE927CEEB4DC8E8764
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:01 GMT
content-type: image/svg+xml
last-modified: Mon, 28 Feb 2022 16:02:10 GMT
etag: W/"621cf202-1d7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 18150536
vary: Accept-Encoding
server: cloudflare
cf-ray: 750ddcc44bbab50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| scripts.mediamathrdrt.com/safeframe | 172.64.138.19 | 200 OK | 0 B |
URL HTTP/2scripts.mediamathrdrt.com/safeframe IP172.64.138.19:0
GET /safeframe HTTP/1.1
Host: scripts.mediamathrdrt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:00 GMT
content-type: text/html; charset=utf-8
status: 200 OK
cache-control: no-cache
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-request-id: f0742f26-2721-4c04-b8f8-75bd6eee8af9
x-download-options: noopen
x-runtime: 0.001563
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ads%2FWruAzwsecMLGlQ6IP8EFERRKKiAL73SZX3yjCpP%2FzsJMbMqyTvIX%2B3E7nUhMFxfvFMHGCRmniJCBNlrD6Pi2eASnmUCee9wVK5LZ1t5ai83LpTtaQVum5RvWpW8aUbiQvCZhNiksLwqn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 750ddcc0c9a60732-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| graphql.datocms.com/ | 104.22.2.238 | 200 OK | 0 B |
IP104.22.2.238:0
POST / HTTP/1.1
Host: graphql.datocms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
authorization: Bearer 35d777e787abbc619166a62135c433
Content-Length: 151
Origin: https://www.megarush.com
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 17:54:01 GMT
content-type: application/json; charset=utf-8
cf-ray: 750ddcc9d82b0b39-OSL
accept-ranges: bytes
access-control-allow-origin: https://www.megarush.com
age: 1778049
cache-control: no-store
content-encoding: gzip
etag: W/"ecbfaf9fbc81080cc951cc7e2c371cf6"
expires: 0
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Authorization, Accept-Encoding, X-Environment, X-Include-Drafts, X-Exclude-Invalid, Origin
via: 1.1 vegur, 1.1 varnish, 1.1 varnish
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: authorization, content-type, x-environment, x-include-drafts, x-exclude-invalid
access-control-allow-methods: GET, POST
access-control-expose-headers: x-ratelimit-limit, x-ratelimit-remaining, x-ratelimit-reset, x-entities
access-control-max-age: 1728000
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
x-cache: HIT, HIT
x-cache-hits: 1, 394
x-cacheable-on-cdn: true
x-cacheable-on-cdn-query-length-limit: 203/8192
x-complexity: 92
x-content-type-options: nosniff
x-download-options: noopen
x-environment: main
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-queue-time: 2ms
x-request-id: 25abc3a9-72d7-44b4-b4db-24870cb86aac
x-runtime: 0.085895
x-served-by: cache-dub4336-DUB, cache-bma1640-BMA
x-timer: S1664214842.920800,VS0,VE0
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
|
|
| open.spotify.com/embed/playlist/2ucixR5s50chGr0o0pm4Pi | 35.186.224.25 | 302 Found | 0 B |
URL HTTP/2open.spotify.com/embed/playlist/2ucixR5s50chGr0o0pm4Pi IP35.186.224.25:0
GET /embed/playlist/2ucixR5s50chGr0o0pm4Pi HTTP/1.1
Host: open.spotify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 26 Sep 2022 17:54:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: sp_t=e09d4701273326952b57e450181c9f04; path=/; expires=Tue, 26 Sep 2023 17:54:05 GMT; domain=.spotify.com; samesite=none; secure
sp_landing=https%3A%2F%2Fopen.spotify.com%2Fembed%2Fplaylist%2F2ucixR5s50chGr0o0pm4Pi%3Fsp_cid%3De09d4701273326952b57e450181c9f04%26device%3Ddesktop; path=/; expires=Tue, 27 Sep 2022 17:54:05 GMT; domain=.spotify.com; samesite=none; secure; httponly
location: /embed-legacy/playlist/2ucixR5s50chGr0o0pm4Pi
sp-trace-id: d60095ac88011c6d
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-encoding: gzip
server: envoy
via: HTTP/2 edgeproxy, 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ungroudonchan.com/4/4598789?ymid=7EsDvhw9hf7GDAQNmM4b7t&var=074b5bba-80ab-4a33-86df-edbd736e35eb | 139.45.197.238 | 200 OK | 0 B |
URL HTTP/2ungroudonchan.com/4/4598789?ymid=7EsDvhw9hf7GDAQNmM4b7t&var=074b5bba-80ab-4a33-86df-edbd736e35eb IP139.45.197.238:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /4/4598789?ymid=7EsDvhw9hf7GDAQNmM4b7t&var=074b5bba-80ab-4a33-86df-edbd736e35eb HTTP/1.1
Host: ungroudonchan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 17:53:59 GMT
content-type: text/html; charset=utf8
x-trace-id: 5d0131083f215d87c74b44be22b1ab32
link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://eu.can-get-so.me>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-credentials: true
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=65fd75f6697947aaabb95e0d505f49e2; expires=Tue, 26 Sep 2023 17:53:59 GMT; path=/; secure; SameSite=None
oaidts=1664214839; expires=Tue, 26 Sep 2023 17:53:59 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *, *
access-control-allow-methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Accept, Content-Type, Content-Length, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|