www.googletagmanager.com/gtag/js?id=G-F0JFDXF7TQ
200 OK 94 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-F0JFDXF7TQ
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (7711)
Hash a98549ab39dba9bcd58a34941d274224
aea9a692064df579fc90e2f3b0ce9eeeb0467e80
36f2939306689bb26488d6a3384aba1c38b7fa496d0eaf5cb87d88161b98a1ab
GET /gtag/js?id=G-F0JFDXF7TQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 12:54:40 GMT
expires: Sun, 03 Dec 2023 12:54:40 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94059
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ak.glersooy.net/4/5776779/?ymid=&var=&var3=
200 OK 637 B URL GET HTTP/2 ak.glersooy.net/4/5776779/?ymid=&var=&var3=
IP
ASN #20940 Akamai International B.V.
Certificate IssuerLet's Encrypt
Subjectak.hetaruwg.com
FingerprintC9:F5:9D:F6:D9:AC:05:68:7A:64:73:24:E7:05:EC:EB:8A:D4:88:E9
ValidityTue, 28 Nov 2023 14:24:23 GMT - Mon, 26 Feb 2024 14:24:22 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0245efeb68971dec0626c1bb058cf636
4c0934f30339c6251b29c3b050c0c6bd919fdef3
d2d4ad158e8c0f4409df506e3f77c32ea6030d36ae753fffe5da5d70dbc09207
GET /4/5776779/?ymid=&var=&var3= HTTP/1.1
Host: ak.glersooy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf8
x-trace-id: dfb64ea880a894723c6f8a5438d53a25
link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://record.ibetaffiliates.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-credentials: true
access-control-max-age: 86400
timing-allow-origin: *
access-control-allow-origin: *, *
access-control-allow-methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, Accept, Content-Type, Content-Length, Accept-Encoding, favicon
content-encoding: gzip
expires: Sun, 03 Dec 2023 12:54:40 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 03 Dec 2023 12:54:40 GMT
content-length: 637
vary: Accept-Encoding
set-cookie: OAID=e4e68c75229e4671bbd689aaa0dfc216; expires=Mon, 02 Dec 2024 12:54:40 GMT; path=/; secure; SameSite=None
oaidts=1701608080; expires=Mon, 02 Dec 2024 12:54:40 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
X-Firefox-Spdy: h2
i.th61.com/watch?zone=5776779&var=empty&ymid=vhqgug8pjsb&s=3
521 No Reason Phrase 6.8 kB URL POST HTTP/2 i.th61.com/watch?zone=5776779&var=empty&ymid=vhqgug8pjsb&s=3
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint80:B8:25:47:ED:82:D4:A7:46:25:E7:D0:EF:21:B6:EE:31:E1:D5:63
ValidityMon, 20 Feb 2023 00:00:00 GMT - Tue, 20 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 29c1706c54fb8c1f13e5b9f27fd6dc40
7d3f4fd2ee87b89a3f8f56298f93a6bc1bb30186
84d4e7c41ad4cb8fe94585f667ac378f99e15fca27ab84f2a3362d911b1488bc
POST /watch?zone=5776779&var=empty&ymid=vhqgug8pjsb&s=3 HTTP/1.1
Host: i.th61.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 521 No Reason Phrase
date: Sun, 03 Dec 2023 12:54:40 GMT
content-type: text/html; charset=UTF-8
content-length: 6799
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JVNpG%2BR0JmgWQALN%2BpSpMOAgQU4CXedal0baKhXSsccnBgGqkFlvCw6OWXV%2BiNaT1lLyzqiSffvinUl06ijrAXsMqUCUSAYnO2VLY4Mi3P9%2FwL1tFeSZCGliDu61"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
server: cloudflare
cf-ray: 82fbf5a6bade34ee-WAW
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
stootsou.net/zone?pub=0&zone_id=5776812&is_mobile=false&domain=rewardario.com&var=&ymid=&var_3=&tg=0&sw=3.1.471
200 OK 880 B URL GET HTTP/2 stootsou.net/zone?pub=0&zone_id=5776812&is_mobile=false&domain=rewardario.com&var=&ymid=&var_3=&tg=0&sw=3.1.471
IP
Certificate IssuerLet's Encrypt
Subjectstootsou.net
Fingerprint7B:74:99:B5:70:60:13:AA:4D:53:BA:14:89:45:5F:F7:58:7C:C9:1C
ValidityTue, 21 Nov 2023 05:14:26 GMT - Mon, 19 Feb 2024 05:14:25 GMT
File type JSON data\012- , ASCII text, with very long lines (879)
Hash 65edd75ed6e04034ab8f1ba8dafecfb7
e54bdb66a0b93f16c77405557c5287374cbc4077
40d9b83a97ac3c5f16f99ca130db6bd65be12ab8cc1801abc56603a194dedb1b
GET /zone?pub=0&zone_id=5776812&is_mobile=false&domain=rewardario.com&var=&ymid=&var_3=&tg=0&sw=3.1.471 HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:40 GMT
content-type: application/json; charset=utf-8
content-length: 880
x-trace-id: 19b898e645f2861ab27eb1c9e39c9b6d
access-control-allow-origin: https://rewardario.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=merge&userId=e4e68c75229e4671bbd689aaa0dfc216
43 B URL my.rtmark.net/img.gif?f=merge&userId=e4e68c75229e4671bbd689aaa0dfc216
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=merge&userId=e4e68c75229e4671bbd689aaa0dfc216 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:41 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=e4e68c75229e4671bbd689aaa0dfc216; expires=Mon, 02 Dec 2024 12:54:41 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
my.rtmark.net/gid.js
200 OK 65 B IP
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT
File type JSON data\012- , ASCII text
Hash 3f408dc98834c9a579c160ab3351bd2b
f2faa559b9d44fe4973f3a5aa02111f09ae1a057
4883cb1a4a26f6fd3329c319226f808483644103021b5a0d2365bec17f6becdf
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:41 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://rewardario.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=c5d479bb3c974219b47393ae553cfb97; expires=Mon, 02 Dec 2024 12:54:41 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
stootsou.net/custom
200 OK 0 B IP
Certificate IssuerLet's Encrypt
Subjectstootsou.net
Fingerprint7B:74:99:B5:70:60:13:AA:4D:53:BA:14:89:45:5F:F7:58:7C:C9:1C
ValidityTue, 21 Nov 2023 05:14:26 GMT - Mon, 19 Feb 2024 05:14:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://rewardario.com/
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:41 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://rewardario.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
stootsou.net/custom
200 OK 0 B IP
Certificate IssuerLet's Encrypt
Subjectstootsou.net
Fingerprint7B:74:99:B5:70:60:13:AA:4D:53:BA:14:89:45:5F:F7:58:7C:C9:1C
ValidityTue, 21 Nov 2023 05:14:26 GMT - Mon, 19 Feb 2024 05:14:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://rewardario.com/
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:41 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://rewardario.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
stootsou.net/custom
200 OK 39 B IP
Certificate IssuerLet's Encrypt
Subjectstootsou.net
Fingerprint7B:74:99:B5:70:60:13:AA:4D:53:BA:14:89:45:5F:F7:58:7C:C9:1C
ValidityTue, 21 Nov 2023 05:14:26 GMT - Mon, 19 Feb 2024 05:14:25 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
Content-Type: application/json
Content-Length: 392
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:41 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 010b48340c4ce30891a41b15bdc8c868
access-control-allow-origin: https://rewardario.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
stootsou.net/custom
200 OK 39 B IP
Certificate IssuerLet's Encrypt
Subjectstootsou.net
Fingerprint7B:74:99:B5:70:60:13:AA:4D:53:BA:14:89:45:5F:F7:58:7C:C9:1C
ValidityTue, 21 Nov 2023 05:14:26 GMT - Mon, 19 Feb 2024 05:14:25 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
Content-Type: application/json
Content-Length: 768
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:41 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 2894c3544991a580271e9ecf8f1e0e9b
access-control-allow-origin: https://rewardario.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
amunfezanttor.com/event
200 OK 0 B IP
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://rewardario.com/
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:41 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://rewardario.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
stootsou.net/custom
200 OK 39 B IP
Certificate IssuerLet's Encrypt
Subjectstootsou.net
Fingerprint7B:74:99:B5:70:60:13:AA:4D:53:BA:14:89:45:5F:F7:58:7C:C9:1C
ValidityTue, 21 Nov 2023 05:14:26 GMT - Mon, 19 Feb 2024 05:14:25 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
Content-Type: application/json
Content-Length: 401
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:41 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: ecb1ed578216f12bfc1be757ad25703c
access-control-allow-origin: https://rewardario.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
datatechonert.com/log/add?cid=4fdc95c9-9001-4768-aac8-c1886405d3a9
200 OK 12 B URL POST HTTP/1.1 datatechonert.com/log/add?cid=4fdc95c9-9001-4768-aac8-c1886405d3a9
IP
ASN #60781 LeaseWeb Netherlands B.V.
Certificate IssuerSectigo Limited
Subjectdatatechonert.com
Fingerprint6F:17:15:C2:7F:CC:16:6C:9D:C0:AD:C3:EE:DA:69:61:8C:77:0B:5B
ValiditySun, 18 Dec 2022 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /log/add?cid=4fdc95c9-9001-4768-aac8-c1886405d3a9 HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 1296
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sun, 03 Dec 2023 12:54:41 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://rewardario.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
amunfezanttor.com/event
200 OK 94 B IP
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT
File type JSON data\012- , ASCII text
Hash 4808a1b362efef0e84e217225ab8167f
62f7dd89988e9689c360b1540970dcb4c6824687
82479cb2f5b565ced8efce8906a10bb0c7d74cbde0250001d76babddc74ba373
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
Content-Type: application/json
Content-Length: 499
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:41 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: https://rewardario.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
stootsou.net/pfe/current/universal.min.js?v=3.1.471
200 OK 33 kB URL GET HTTP/2 stootsou.net/pfe/current/universal.min.js?v=3.1.471
IP
Certificate IssuerLet's Encrypt
Subjectstootsou.net
Fingerprint7B:74:99:B5:70:60:13:AA:4D:53:BA:14:89:45:5F:F7:58:7C:C9:1C
ValidityTue, 21 Nov 2023 05:14:26 GMT - Mon, 19 Feb 2024 05:14:25 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash d46d2997ab218d1dba1ab614422ed53f
3f1f6b9847c8ad209835db366c62fcb209b83a67
09e8ce2dfeac0ad09cd24788931b38ea7e7592f2c28eecc324b2dd1cd69d1b42
GET /pfe/current/universal.min.js?v=3.1.471 HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 13:38:02 GMT
etag: W/"65649bba-1572c"
access-control-allow-origin: https://rewardario.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
offerimage.com/www/images/9e9e762a8aeda4556eb0010f07639539.jpg
200 OK 15 kB URL GET HTTP/2 offerimage.com/www/images/9e9e762a8aeda4556eb0010f07639539.jpg
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 9e9e762a8aeda4556eb0010f07639539
0bcb67a031d30b5513b5e574b4ef7de2ca2db096
32dce39ac731f9cec2f539d042bcfcd5ad867b4a4cc25ffc7d36feb6611264e4
GET /www/images/9e9e762a8aeda4556eb0010f07639539.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:41 GMT
content-type: image/jpeg
content-length: 14857
cache-control: max-age=86400
cf-bgj: h2pri
etag: "655a0954-3a09"
expires: Mon, 04 Dec 2023 00:36:12 GMT
last-modified: Sun, 19 Nov 2023 13:10:44 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 44309
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82fbf5ac9c470a3d-ARN
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Poppins:ital,wght@0,400;0,500;0,600;0,700;0,800;1,900&display=swap
200 OK 1.1 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Poppins:ital,wght@0,400;0,500;0,600;0,700;0,800;1,900&display=swap
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type gzip compressed data, max compression\012- data
Hash 62ea4c2ae6c65763bd65e3e3facf9cf4
8a4809d08f062d16d5dcae55dad01e27763aad46
61dab4057ceed7b0a5e4e6a47bbc7bf2c17dc2e68917bde78f0332e260332ed1
GET /css2?family=Poppins:ital,wght@0,400;0,500;0,600;0,700;0,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 03 Dec 2023 12:54:41 GMT
date: Sun, 03 Dec 2023 12:54:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27regulationLogo%27%5D%20%7C%20order(_createdAt%20asc)%7BlogoName%2C%22image%22%3Alogo.asset-%3Eurl%2C%22url%22%3Aurl.current%7D%20%0A%20%20
200 OK 550 B URL GET HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27regulationLogo%27%5D%20%7C%20order(_createdAt%20asc)%7BlogoName%2C%22image%22%3Alogo.asset-%3Eurl%2C%22url%22%3Aurl.current%7D%20%0A%20%20
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (1177), with no line terminators
Hash 41da1b64177f1fc090d74b2c5bdc19c2
662d4f054cf34c1b3a847702305a00b81d40ddf3
06958f6bf03a29ccd43ea60da44f9df48fc0ea95acec28b8941a651a56c6caf6
GET /v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27regulationLogo%27%5D%20%7C%20order(_createdAt%20asc)%7BlogoName%2C%22image%22%3Alogo.asset-%3Eurl%2C%22url%22%3Aurl.current%7D%20%0A%20%20 HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sun, 03 Dec 2023 12:18:20 GMT
server-timing: api;dur=22
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 2182
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 550
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27market%27%20%26%26%20id%20%3D%3D%20%27NO%27%5D%5B0%5D%7Blicenses%5B%5D%7BlogoName%2C%22image%22%3Alogo.asset-%3Eurl%2C%22url%22%3Aurl.current%7D%7D%20%0A%20%20
200 OK 130 B URL GET HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27market%27%20%26%26%20id%20%3D%3D%20%27NO%27%5D%5B0%5D%7Blicenses%5B%5D%7BlogoName%2C%22image%22%3Alogo.asset-%3Eurl%2C%22url%22%3Aurl.current%7D%7D%20%0A%20%20
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 8a923067dff08d2c3605024e47f046f2
4d2e8d2cb8ea144175446b910948d3632bd190b3
17238d96bbc6c46a6d51a855a24a5aa9576311f11ba9cc800b0e518b9e64cbc2
GET /v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27market%27%20%26%26%20id%20%3D%3D%20%27NO%27%5D%5B0%5D%7Blicenses%5B%5D%7BlogoName%2C%22image%22%3Alogo.asset-%3Eurl%2C%22url%22%3Aurl.current%7D%7D%20%0A%20%20 HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sun, 03 Dec 2023 11:55:50 GMT
server-timing: api;dur=17
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 3532
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 130
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-Regular.ttf
200 OK 100 kB URL GET HTTP/2 www.ibet.com/fonts/OpenSans-Regular.ttf
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Size 100 kB (100022 bytes)
Hash 3ed9575dcc488c3e3a5bd66620bdf5a4
babe8dce93a3e48b6c3c79720a0c048e88dd1fe7
037236ed4bf58a85f67074c165d308260fd6be01c86d7df4e79ea16eb273f8c5
GET /fonts/OpenSans-Regular.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: font/ttf
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:42:09 GMT
etag: W/"3ed9575dcc488c3e3a5bd66620bdf5a4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LiVwUyEBm7v4RxbrdOXhOLgKuI9rJT3BXjtudzW8sWODSfttP3Z-nA==
age: 22407
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27staticPage%27%20%26%26%20pageCategory%20match%20%22information%22%20%26%26%20!(%22NO%22%20in%20excludedMarkets%5B%5D-%3Eid)%5D%20%7C%20order(_createdAt%20asc)%7B...%2C%22onlyShowMarkets%22%3A%20onlyShowMarkets%5B%5D%20-%3E%20id%7D%20%0A%20%20
200 OK 3.3 kB URL GET HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27staticPage%27%20%26%26%20pageCategory%20match%20%22information%22%20%26%26%20!(%22NO%22%20in%20excludedMarkets%5B%5D-%3Eid)%5D%20%7C%20order(_createdAt%20asc)%7B...%2C%22onlyShowMarkets%22%3A%20onlyShowMarkets%5B%5D%20-%3E%20id%7D%20%0A%20%20
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (13538), with no line terminators
Hash 8d6c20f24692d5902d4ded5fa2813073
e5debe4f371603d63d1a10a8eb17b2cee7e15ba0
fef67582b89a566a4fa52ec86afa4c672f5535d8a77ec64240d621889526df1d
GET /v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27staticPage%27%20%26%26%20pageCategory%20match%20%22information%22%20%26%26%20!(%22NO%22%20in%20excludedMarkets%5B%5D-%3Eid)%5D%20%7C%20order(_createdAt%20asc)%7B...%2C%22onlyShowMarkets%22%3A%20onlyShowMarkets%5B%5D%20-%3E%20id%7D%20%0A%20%20 HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sun, 03 Dec 2023 12:24:33 GMT
server-timing: api;dur=33
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 1808
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 3266
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
200 OK 191 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=u0uykwno2jdj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 03 Dec 2023 11:52:30 GMT
expires: Mon, 02 Dec 2024 11:52:30 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 3732
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27staticPage%27%20%26%26%20pageCategory%20match%20%22contact-us%22%20%26%26%20!(%22NO%22%20in%20excludedMarkets%5B%5D-%3Eid)%5D%20%7C%20order(_createdAt%20asc)%7B...%2C%22onlyShowMarkets%22%3A%20onlyShowMarkets%5B%5D%20-%3E%20id%7D%20%0A%20%20
200 OK 160 B URL GET HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27staticPage%27%20%26%26%20pageCategory%20match%20%22contact-us%22%20%26%26%20!(%22NO%22%20in%20excludedMarkets%5B%5D-%3Eid)%5D%20%7C%20order(_createdAt%20asc)%7B...%2C%22onlyShowMarkets%22%3A%20onlyShowMarkets%5B%5D%20-%3E%20id%7D%20%0A%20%20
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 3c98e8dacc1b3fa6b778744646d92944
be2652863c8b7a820a4287c48c5984136931d68c
21406763dba6eb7c50a525aedabde028ebd565e93dd30e7ae5cba0b7df1f50d9
GET /v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27staticPage%27%20%26%26%20pageCategory%20match%20%22contact-us%22%20%26%26%20!(%22NO%22%20in%20excludedMarkets%5B%5D-%3Eid)%5D%20%7C%20order(_createdAt%20asc)%7B...%2C%22onlyShowMarkets%22%3A%20onlyShowMarkets%5B%5D%20-%3E%20id%7D%20%0A%20%20 HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sun, 03 Dec 2023 12:45:59 GMT
server-timing: api;dur=10
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 522
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 160
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
d1w3v8ahdm9uzk.cloudfront.net/prod/api/v1/player/access/context
200 OK 370 B URL GET HTTP/2 d1w3v8ahdm9uzk.cloudfront.net/prod/api/v1/player/access/context
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type JSON data\012- , ASCII text
Hash a9058bcafaa20f452059d17d71366809
36aafe52e527968827415e32b53af7d537ac2ff9
181dd6c8374efe4830ed13c69dc30510b272911f318ab3ca6e0f1d80f421ca15
GET /prod/api/v1/player/access/context HTTP/1.1
Host: d1w3v8ahdm9uzk.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-length: 370
date: Sun, 03 Dec 2023 12:54:42 GMT
x-amzn-requestid: 6fcff50b-f8fe-4df6-8adf-6697dc6b9d1f
access-control-allow-origin: *
x-amz-apigw-id: PXgW9E4KjoEEKdg=
x-amzn-trace-id: Root=1-656c7a92-45e766096cf1026e377c9649
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront), 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-cache: Miss from cloudfront
x-amz-cf-pop: OSL50-P1, OSL50-C1
x-amz-cf-id: nYq05LkFpaBjBmxUHkBJN08Lwm8oH9MfJeGoXrpFur_9vcXOHKmwLQ==
X-Firefox-Spdy: h2
niwooghu.com/impression/lndKZyjDqpUOlO_LLt458UVcRZgfgmrnmkSkV0QO7_Cut-0BgTIBfc3XbV9v_8ZZ7w-1vTA7JKCRyNRTvZEJ1z9G4uy9pV-KZnGMykdg_QVxNv73Og6F6S5HrrhzuRNytkY2DSk7iA3hh6RZORDZ4O_d7GyDQO1-tJV8nNiVvVAfURSnbF2m3uy4R8wA6zjt8wj31M2PDGgltVxTQ-5-4nwYYtX4Q2s6GJg9EUFtFKlQOteDQJ1cpmgcsl3vDTyZSlpLtcTb_vzPIHy1cL0gvICjJVgRc2F1haxcsVL2LywPYu_an7sJDmnWarFNuLciH8wHb4u3zfRJnik0GyBKrokV6fGyb_5c7KcLqy9TAqMltvzfjLGdb1DjteBMZcaKLuRp4PDqynO3nukuhx3IpD45a4cNf8WyxReb5Z_L-_SAFpjk4hdDWKNcGAuBhFRatYg2PMPapjDDalN7lLPvRNZ2V1kNyes6gmBm2e0a1bicwDEEGqH0pHBkxyf1govUmMvVB_mnYK1lNx6-_aWzO_rJIhY1zFilNgwUX-N5uI9J0XiUHcAI0Hta32Y6DMqm6Zm0NLPqhLG4Lc5SpGfCPw==?_z=5776801&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 43 B URL GET HTTP/2 niwooghu.com/impression/lndKZyjDqpUOlO_LLt458UVcRZgfgmrnmkSkV0QO7_Cut-0BgTIBfc3XbV9v_8ZZ7w-1vTA7JKCRyNRTvZEJ1z9G4uy9pV-KZnGMykdg_QVxNv73Og6F6S5HrrhzuRNytkY2DSk7iA3hh6RZORDZ4O_d7GyDQO1-tJV8nNiVvVAfURSnbF2m3uy4R8wA6zjt8wj31M2PDGgltVxTQ-5-4nwYYtX4Q2s6GJg9EUFtFKlQOteDQJ1cpmgcsl3vDTyZSlpLtcTb_vzPIHy1cL0gvICjJVgRc2F1haxcsVL2LywPYu_an7sJDmnWarFNuLciH8wHb4u3zfRJnik0GyBKrokV6fGyb_5c7KcLqy9TAqMltvzfjLGdb1DjteBMZcaKLuRp4PDqynO3nukuhx3IpD45a4cNf8WyxReb5Z_L-_SAFpjk4hdDWKNcGAuBhFRatYg2PMPapjDDalN7lLPvRNZ2V1kNyes6gmBm2e0a1bicwDEEGqH0pHBkxyf1govUmMvVB_mnYK1lNx6-_aWzO_rJIhY1zFilNgwUX-N5uI9J0XiUHcAI0Hta32Y6DMqm6Zm0NLPqhLG4Lc5SpGfCPw==?_z=5776801&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Certificate IssuerLet's Encrypt
Subjectniwooghu.com
Fingerprint3D:54:BD:F6:52:70:24:C2:E6:6B:18:3F:1F:1D:6E:34:28:B2:6C:9F
ValidityFri, 13 Oct 2023 05:12:56 GMT - Thu, 11 Jan 2024 05:12:55 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impression/lndKZyjDqpUOlO_LLt458UVcRZgfgmrnmkSkV0QO7_Cut-0BgTIBfc3XbV9v_8ZZ7w-1vTA7JKCRyNRTvZEJ1z9G4uy9pV-KZnGMykdg_QVxNv73Og6F6S5HrrhzuRNytkY2DSk7iA3hh6RZORDZ4O_d7GyDQO1-tJV8nNiVvVAfURSnbF2m3uy4R8wA6zjt8wj31M2PDGgltVxTQ-5-4nwYYtX4Q2s6GJg9EUFtFKlQOteDQJ1cpmgcsl3vDTyZSlpLtcTb_vzPIHy1cL0gvICjJVgRc2F1haxcsVL2LywPYu_an7sJDmnWarFNuLciH8wHb4u3zfRJnik0GyBKrokV6fGyb_5c7KcLqy9TAqMltvzfjLGdb1DjteBMZcaKLuRp4PDqynO3nukuhx3IpD45a4cNf8WyxReb5Z_L-_SAFpjk4hdDWKNcGAuBhFRatYg2PMPapjDDalN7lLPvRNZ2V1kNyes6gmBm2e0a1bicwDEEGqH0pHBkxyf1govUmMvVB_mnYK1lNx6-_aWzO_rJIhY1zFilNgwUX-N5uI9J0XiUHcAI0Hta32Y6DMqm6Zm0NLPqhLG4Lc5SpGfCPw==?_z=5776801&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
DNT: 1
Connection: keep-alive
Cookie: OAID=c5d479bb3c974219b47393ae553cfb97
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:42 GMT
content-type: image/gif
content-length: 43
x-trace-id: 57b0469f270f737c364a836626f4722c
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/messenger/latest/web-widget-519-0345ad6.js
200 OK 76 kB URL GET HTTP/2 static.zdassets.com/web_widget/messenger/latest/web-widget-519-0345ad6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
File type ASCII text, with very long lines (24781), with no line terminators
Hash 1c9884a2069c7bec6b20dac62004eb1b
78f9c5c20271d0ad2a0af29db9f5846b19b72334
5d0142e7dd8eee7b1776ce44b79a5aa7b292d3a509bae832fb438afb2534bbc7
GET /web_widget/messenger/latest/web-widget-519-0345ad6.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:42 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: mC3uT5/Z1iAhz1MMTAy0IJBQsxXK58iGUVnKv7VlEnkyF+kQ2raW3C2ZomglAxwhapt8ufM3o5Q=
x-amz-request-id: 4V5QR90J58FF44P6
x-amz-replication-status: COMPLETED
last-modified: Mon, 06 Nov 2023 00:52:49 GMT
etag: W/"1c9884a2069c7bec6b20dac62004eb1b"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 05 Nov 2024 00:52:48 GMT
x-amz-version-id: c3fTu.1VTXTnJfTpV257t3CmA_E19Whc
cf-cache-status: HIT
age: 465047
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WQCT2vNkrzKncYUmsNGmQwlKaGUkIHvkb29WEWqn60pNa4rLS9BRx%2F9kSnSXLokOQKbOfQHLVT1jnfufVP78zZY9jea8z5E%2BS%2Bi%2FKHHDZquzMlN%2BKV9rXE%2B9uE2DLmjzv%2BPcJVg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82fbf5b3f8ab9927-ARN
content-encoding: br
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=u0uykwno2jdj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (56398), with no line terminators
Hash eb4bc511f79f7a1573b45f5775b3a99b
d910fb51ad7316aa54f055079374574698e74b35
7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 03 Dec 2023 08:03:16 GMT
expires: Mon, 02 Dec 2024 08:03:16 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/css
vary: Accept-Encoding
age: 17486
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
200 OK 191 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=u0uykwno2jdj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 03 Dec 2023 11:52:30 GMT
expires: Mon, 02 Dec 2024 11:52:30 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 3732
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/index-5b3acf19.js
200 OK 206 B URL GET HTTP/2 www.ibet.com/assets/index-5b3acf19.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash 3ebca8f8aa753858a99343b5ddb5be95
bc34bae7b890d9badfd42f1f40eec33c25139d03
a52c60192a96c38871cd9d0c3ed9e3e5edc3275dbfc155eba72280faae4a3d70
GET /assets/index-5b3acf19.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 206
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: "3ebca8f8aa753858a99343b5ddb5be95"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q1bia-My_gS61LLkDIRV-XuEEAzVgwyAdCrIG45k-7Bzz5iLIsf7Tw==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/AffiliateId-c3403b19.js
200 OK 213 B URL GET HTTP/2 www.ibet.com/assets/AffiliateId-c3403b19.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash 0575a74ef921837b7cbd8a45bb00f579
31eb43089e6d420274d4018c63a3a4f0422579f0
17a9c1c162a3ba1b865de2e00b72922afa9dcc880634ec2c02c89137151200b8
GET /assets/AffiliateId-c3403b19.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 213
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: "0575a74ef921837b7cbd8a45bb00f579"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qAFo-9fFx1Re6vdh3hG5B7JrBRfwFIGYaiYRg2mCf4-oZQE-J8yyfw==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/ScrollToTopOnRouteChange-b7b9872e.js
200 OK 154 B URL GET HTTP/2 www.ibet.com/assets/ScrollToTopOnRouteChange-b7b9872e.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash cb2a3a1b32fe146170d6a5b87b0f7f7f
0d2aeb9d573b0880079266a623bc09cd043f6718
ec8723b358dafee702ecc688b28bf8ec6eb775e17fc5fda87896b0b225677332
GET /assets/ScrollToTopOnRouteChange-b7b9872e.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 154
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 11:01:02 GMT
etag: "cb2a3a1b32fe146170d6a5b87b0f7f7f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1ymkVC0uGYBzHaH9b2r6Ut3-7ESjhHIO9-LXIHpvNMz38EyAPc9hFw==
age: 6822
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
200 OK 9.1 kB IP
Certificate IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint52:B8:ED:73:BB:55:6F:9C:F8:97:7C:04:34:2B:AD:DB:55:0A:C9:6A
ValidityThu, 05 Oct 2023 17:59:18 GMT - Wed, 03 Jan 2024 17:59:17 GMT
File type ASCII text, with very long lines (18369)
Hash 89e89aea544ea2785d49cc4cd9cf26f6
7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b
86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:40 GMT
content-type: application/javascript
last-modified: Thu, 07 Sep 2023 08:19:52 GMT
etag: W/"64f987a8-4a4b"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 5533
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5D%2FsX7mc7DyslCJ46PPk0PyrqQC%2BN9LglETVvhl8%2BtOPINVS3W6TKcwmEK7Q7A6SUEqqgAMR0V6NvNflGjNynbMvSJvnjdeo%2B09fm0rxHIIOMjL%2BVrzpHDsru9xxSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82fbf5a96d98d937-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.ibet.com/assets/styles-f8a3902f.js
200 OK 332 B URL GET HTTP/2 www.ibet.com/assets/styles-f8a3902f.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (331)
Hash 334dcc6ed1956f27a3a2b6268d69ea68
67c64ba08ccc30a3b0570d193df8ce59f9b4c768
b00ee5d93c1fe3c66e8074688373526445bbead72dae0ff920e34ab7c6607804
GET /assets/styles-f8a3902f.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 332
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 11:01:01 GMT
etag: "334dcc6ed1956f27a3a2b6268d69ea68"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J1kq8jLo_mUMUGP-SeHfYCCxNRw1KfYzr49iAENIOZifcNeDJdteaQ==
age: 6822
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
200 OK 11 kB URL User Request GET HTTP/2 IP
Certificate IssuerLet's Encrypt
Subjectrewardario.com
Fingerprint86:0E:AD:C2:50:F5:5B:83:45:9C:61:C7:43:C6:30:E6:BE:C8:06:7A
ValidityWed, 11 Oct 2023 11:24:17 GMT - Tue, 09 Jan 2024 11:24:16 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2309)
Hash a66fe87d9a0e124e96c54797562c89b1
58239ed5359148333a1aa9eaff340dd41db477d9
2fa2fbe1f6bbfb606fb517206dfd61f87a9cc128abc97a214f3d67adfa8cde4b
GET / HTTP/1.1
Host: rewardario.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:39 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Et6gSzM2MGEVvIqWS3lLWel4zaHITJTT961yGQRk5ZFNf1lkAo8wEGf9uz9nGDke%2FQ1NmWbQhrazNnEbPYMmYEhthJBiHcLrVetCUUnbj50MfPsde2jD%2BTu7NnX0NjmpFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 82fbf5a31b23348b-WAW
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.ibet.com/assets/useLiveChat.hooks-f83ca73c.js
200 OK 100 B URL GET HTTP/2 www.ibet.com/assets/useLiveChat.hooks-f83ca73c.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash e77021857d3bbd13fee524a93ce91151
7056644d3cd5bbe173dac97df69289f5acedb546
ca74e8fd116839f1290ca08b66f3bd64197d38190322439a2734dcf5549c8747
GET /assets/useLiveChat.hooks-f83ca73c.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 100
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: "e77021857d3bbd13fee524a93ce91151"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kMxQHtuACfUkwlyTD62FwuQSWOD7vE6Y7hqI3E0hN2I61nLTpVyjBQ==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/ButtonAuth-b5d864f6.js
200 OK 506 B URL GET HTTP/2 www.ibet.com/assets/ButtonAuth-b5d864f6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (505)
Hash 7f4b32411376323ef4e3f24630d1f916
579bb21c66986d2684ba158ee651d681a4f98084
a59474e327aaf4ed81365e8995f557868cb52e038d2ffd59cea03ab3aa09f84a
GET /assets/ButtonAuth-b5d864f6.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 506
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: "7f4b32411376323ef4e3f24630d1f916"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HK6eSLPlpJvU68MaRoonrFneYMCa5J45whh2JTzeCgNOZ2oElpDI9A==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/ExternalLink-a6f0c675.js
200 OK 225 B URL GET HTTP/2 www.ibet.com/assets/ExternalLink-a6f0c675.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash 00d93f8e5ee6bab0a74a73217a9a40d8
254d8018bea89e95c92fb1fe065a122a347cc933
1bec3afa784cd84bffe195103734e328b1ac9bab4556e195889c7e1dc924584c
GET /assets/ExternalLink-a6f0c675.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 225
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: "00d93f8e5ee6bab0a74a73217a9a40d8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: W5ZDI3McXlxIyrnZkMq9XjwFxB9ysPgBGZZyaca4HsYc3bqGru5HeQ==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/messenger/latest/web-widget-9535-0345ad6.js
200 OK 6.4 kB URL GET HTTP/2 static.zdassets.com/web_widget/messenger/latest/web-widget-9535-0345ad6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
File type ASCII text, with very long lines (15489), with no line terminators
Hash d46547a6c79c8800ac99ed5408528a12
f38c90e20285af9249a5f89179c5c315a3665774
0349bc9b3c076b695b88acbf7ef9f770cc1975608d83c51fde327c5e9df3e391
GET /web_widget/messenger/latest/web-widget-9535-0345ad6.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:42 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 3gzpbjxrp0zMh5xDP5QRBSoLDVT/GHeUR7zZVpwqYZ9YIoJrJSGezD8waZfZRjlY5tT04SRbXds=
x-amz-request-id: Z0TNH7WR3WDJNY83
x-amz-replication-status: COMPLETED
last-modified: Mon, 06 Nov 2023 00:52:49 GMT
etag: W/"d46547a6c79c8800ac99ed5408528a12"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 05 Nov 2024 00:52:48 GMT
x-amz-version-id: Htn9g_potgdCgt0Ro1y4Ux_z.nUmgxGP
cf-cache-status: HIT
age: 466272
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TJpK96G%2FWgzHf8Aj2PiNA6FVdkDBHkpjl1Op9x0%2F4Z5S%2B1oDgpZbIz1MlYOEEzTtO%2B%2F%2BXUQJw1q4SJLMxBboDtczZBOpykBtsqHXWSnD3NX8cnwZKrb%2BMGcEggX7gPQupIQfgKg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82fbf5b3f8b59927-ARN
content-encoding: br
X-Firefox-Spdy: h2
niwooghu.com/500/5776801?excludes=19633272&oaid=c5d479bb3c974219b47393ae553cfb97&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 0 B URL GET HTTP/2 niwooghu.com/500/5776801?excludes=19633272&oaid=c5d479bb3c974219b47393ae553cfb97&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Certificate IssuerLet's Encrypt
Subjectniwooghu.com
Fingerprint3D:54:BD:F6:52:70:24:C2:E6:6B:18:3F:1F:1D:6E:34:28:B2:6C:9F
ValidityFri, 13 Oct 2023 05:12:56 GMT - Thu, 11 Jan 2024 05:12:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /500/5776801?excludes=19633272&oaid=c5d479bb3c974219b47393ae553cfb97&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://rewardario.com/
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:43 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://rewardario.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
www.ibet.com/assets/styles-f8a3902f.js
200 OK 332 B URL GET HTTP/2 www.ibet.com/assets/styles-f8a3902f.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (331)
Hash 334dcc6ed1956f27a3a2b6268d69ea68
67c64ba08ccc30a3b0570d193df8ce59f9b4c768
b00ee5d93c1fe3c66e8074688373526445bbead72dae0ff920e34ab7c6607804
GET /assets/styles-f8a3902f.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/MaxAttemptsModal-dd620200.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 332
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 11:01:01 GMT
etag: "334dcc6ed1956f27a3a2b6268d69ea68"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uNvOm2cm2F8CjWMQLVv0WypeE9ytxqYLfC1OIYaYv4uzLjiZWZh6pw==
age: 6822
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/constants-ce1ae330.js
200 OK 353 B URL GET HTTP/2 www.ibet.com/assets/constants-ce1ae330.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (352)
Hash 2297fefb1bb194fe4ea1a41702e9d025
89423abe6c45d14e2aa323cc32c05a6e1a6f0926
29a4bfacf6dc172499fd03a76caca200b712415cc029c59bb0429992912b09e8
GET /assets/constants-ce1ae330.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/AppRoutes-8f87b6d0.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 353
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: "2297fefb1bb194fe4ea1a41702e9d025"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BqvyIqzshMMHs9zMW5UVHlI1HUqvE9MWiL7uoqfcKnSMa-TE29Q3xA==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/ExternalLink-a6f0c675.js
200 OK 225 B URL GET HTTP/2 www.ibet.com/assets/ExternalLink-a6f0c675.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash 00d93f8e5ee6bab0a74a73217a9a40d8
254d8018bea89e95c92fb1fe065a122a347cc933
1bec3afa784cd84bffe195103734e328b1ac9bab4556e195889c7e1dc924584c
GET /assets/ExternalLink-a6f0c675.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/CookiesNotification-d32d680f.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 225
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: "00d93f8e5ee6bab0a74a73217a9a40d8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: g0xh55hIT2k-zHe5vEwIu_6OcVnlTF7L0gzlG8667TqS0R8MSHVRRA==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/useLiveChat.hooks-f83ca73c.js
200 OK 100 B URL GET HTTP/2 www.ibet.com/assets/useLiveChat.hooks-f83ca73c.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash e77021857d3bbd13fee524a93ce91151
7056644d3cd5bbe173dac97df69289f5acedb546
ca74e8fd116839f1290ca08b66f3bd64197d38190322439a2734dcf5549c8747
GET /assets/useLiveChat.hooks-f83ca73c.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-bf854176.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 100
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: "e77021857d3bbd13fee524a93ce91151"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ji9zlEo8QtIj8czo2E5qjlE-ocL_tMipPA4KkZ_tM6ZT2dZv_h2yjg==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/CookiesNotification-d32d680f.js
200 OK 2.4 kB URL GET HTTP/2 www.ibet.com/assets/CookiesNotification-d32d680f.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (5512)
Hash 682f8094d05ef8356869e279435c7891
84d7cd5de14df38e0ba05a469ec0f34f5b60c9d9
af92d311ea9bd199b06a2b85586d787708ec295b18937b574047410603c45218
GET /assets/CookiesNotification-d32d680f.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: W/"682f8094d05ef8356869e279435c7891"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CA7FDxy6KCV0W_gyghgv4LbTkrZqxkeOxLqhR7ZGSZvQvkQxTWu0ZQ==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=u0uykwno2jdj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 10:04:07 GMT
expires: Fri, 29 Nov 2024 10:04:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 269436
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=u0uykwno2jdj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 11:28:20 GMT
expires: Fri, 29 Nov 2024 11:28:20 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 264383
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
offerimage.com/www/images/9e9e762a8aeda4556eb0010f07639539.jpg
200 OK 15 kB URL GET HTTP/2 offerimage.com/www/images/9e9e762a8aeda4556eb0010f07639539.jpg
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 9e9e762a8aeda4556eb0010f07639539
0bcb67a031d30b5513b5e574b4ef7de2ca2db096
32dce39ac731f9cec2f539d042bcfcd5ad867b4a4cc25ffc7d36feb6611264e4
GET /www/images/9e9e762a8aeda4556eb0010f07639539.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:43 GMT
content-type: image/jpeg
content-length: 14857
cache-control: max-age=86400
cf-bgj: h2pri
etag: "655a0954-3a09"
expires: Mon, 04 Dec 2023 00:36:12 GMT
last-modified: Sun, 19 Nov 2023 13:10:44 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 44311
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82fbf5b91eec0a3d-ARN
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/api2/logo_48.png
200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=u0uykwno2jdj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:37:43 GMT
expires: Wed, 06 Dec 2023 21:37:43 GMT
cache-control: public, max-age=604800
age: 314220
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
200 OK 191 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=u0uykwno2jdj
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 03 Dec 2023 11:52:30 GMT
expires: Mon, 02 Dec 2024 11:52:30 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 3733
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
niwooghu.com/500/5776801?excludes=19633272&oaid=c5d479bb3c974219b47393ae553cfb97&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 71 kB URL GET HTTP/2 niwooghu.com/500/5776801?excludes=19633272&oaid=c5d479bb3c974219b47393ae553cfb97&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Certificate IssuerLet's Encrypt
Subjectniwooghu.com
Fingerprint3D:54:BD:F6:52:70:24:C2:E6:6B:18:3F:1F:1D:6E:34:28:B2:6C:9F
ValidityFri, 13 Oct 2023 05:12:56 GMT - Thu, 11 Jan 2024 05:12:55 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 86b3ef56c502b749962022f6369b06a2
aab6b6beaeb0783d1ace3c317b1b55a62653ba86
63bded9cedd5f0d4bf5003554fa5840aa4e2871ec3aba2b37b4cc342a0e373c7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /500/5776801?excludes=19633272&oaid=c5d479bb3c974219b47393ae553cfb97&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
Content-Type: application/json
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Cookie: OAID=c5d479bb3c974219b47393ae553cfb97
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:43 GMT
content-type: application/javascript
x-trace-id: 63ca20bf474563bdacc1c4e9d26b8042
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://rewardario.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=c5d479bb3c974219b47393ae553cfb97; expires=Mon, 02 Dec 2024 12:54:43 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-PCVT5ZK
200 OK 85 kB URL GET HTTP/3 www.googletagmanager.com/gtm.js?id=GTM-PCVT5ZK
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type Unicode text, UTF-8 text, with very long lines (28803)
Hash 77a9d0485f0db4aafe750bbec84a352d
8d2fd3537f06b39214df6c5977d51aeb6785a438
5c388f6ccabd51750999cf586eead8c2346cc0f60dbae05bb11497b15f8777cf
GET /gtm.js?id=GTM-PCVT5ZK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 12:54:43 GMT
expires: Sun, 03 Dec 2023 12:54:43 GMT
cache-control: private, max-age=900
last-modified: Sun, 03 Dec 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84899
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/index-e5fc44ce.css
200 OK 64 B URL GET HTTP/2 www.ibet.com/assets/index-e5fc44ce.css
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash 778d509cc7840959ba2e8cda2296b305
012226239a50c7c16ecd6c743a40763b59a0e22c
e5fc44ce35d212a668da83a33e02b3f100ccba3b1833eb0568db195f28454f8f
GET /assets/index-e5fc44ce.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 64
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:44:56 GMT
etag: "778d509cc7840959ba2e8cda2296b305"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MY_yPUmS8GZ1a6OCZRu_0jvCmsqgiWWPXCWg1x6h6fSI4XK1R8S2Ag==
age: 22213
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/useWindowDimensions-232dcae8.js
200 OK 312 B URL GET HTTP/2 www.ibet.com/assets/useWindowDimensions-232dcae8.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (311)
Hash d4f90a100519dc543f547d6fb019c821
2cb5aeefb3be3c4246280ab7080de61f81a53d02
f93ab82733dc761dfe916bc396b543d59e9cd47810d05c327e3566a8396bfca0
GET /assets/useWindowDimensions-232dcae8.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 312
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:42:19 GMT
etag: "d4f90a100519dc543f547d6fb019c821"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cs9QeJLa6hMIB8-OZrwjl1uZKexKmWvmkHowlFs64EgRiwWvbOvoiA==
age: 22374
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/FooterPartnersView-80850708.js
200 OK 605 B URL GET HTTP/2 www.ibet.com/assets/FooterPartnersView-80850708.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (604)
Hash be887513c52adc20ce776d44c0e562b8
9db0f75412fc7756feb3e96051da8dba30bbeb48
c53e02497d1f18c286ebd2388190ed2e78c811f813bef200dc2d88c4bd4e0f2b
GET /assets/FooterPartnersView-80850708.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 605
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: "be887513c52adc20ce776d44c0e562b8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 389J-lMGmoeGKWOmnu1w1Ez_N8jt6r6uqbDaLbbkZVTVYuT9QIUk0w==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/index-bf854176.js
200 OK 27 kB URL GET HTTP/2 www.ibet.com/assets/index-bf854176.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash dbf7e4f6ebebd8ed12aeba26ab81ec6e
16c1de9a2cf7a06d32e23a5d2ffbe858792efb0d
9f63a812861c29ffe48498ff85930531295b2fbb20196a66278e055fd841cc24
GET /assets/index-bf854176.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:05 GMT
etag: W/"dbf7e4f6ebebd8ed12aeba26ab81ec6e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0jbEK4lvrGO2VO_vFhWO_i0kCr_sH3xM2SWtW8szkBCk3WN1apoRjw==
age: 22423
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/messenger/latest/web-widget-4852-0345ad6.js
200 OK 48 kB URL GET HTTP/2 static.zdassets.com/web_widget/messenger/latest/web-widget-4852-0345ad6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
File type ASCII text, with very long lines (65307)
Hash ea51d3eb674c1f286144bbe26ba05c86
290e1d8b1c4d22825f2a275999b8552cf3361529
3e53f18a73c934fe1c7f3c4aa74c209a907f0ac4bd954d1747a4e82207591917
GET /web_widget/messenger/latest/web-widget-4852-0345ad6.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:42 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: LQZNTgqY1L0ACAf+WD7vnBZnk9RvSC7cBtg1A7zmkMrUHUPZMneUa1EGMUwWSOlCU5eK5oKKD6Q=
x-amz-request-id: 5NGB01KW3BRT43XZ
x-amz-replication-status: COMPLETED
last-modified: Mon, 06 Nov 2023 00:52:49 GMT
etag: W/"ea51d3eb674c1f286144bbe26ba05c86"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 05 Nov 2024 00:52:48 GMT
x-amz-version-id: LLGa90fsv7bQUGdN2N0k5kLPN0aE.36G
cf-cache-status: HIT
age: 2121227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oF1LuwM9k8cRTS45obamDv61fDw57dOLyR4kMcRK7KxJ3RWRB3tZcxNMaICaZNlGKF4rPcb5FpAdN5Ci3Ph7jpOSCSn6WO%2FvIKxM%2FpmWJGfsAvPz6aovpuy7Ei%2B566vZUesKSBE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82fbf5b3e89c9927-ARN
content-encoding: br
X-Firefox-Spdy: h2
www.ibet.com/iojs/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
200 OK 1.5 kB URL GET HTTP/2 www.ibet.com/iojs/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (1029)
Hash 060c69f78a9ab0e7c30c1a02828abd0c
6fc85101fadab670eba48213eba22aab4a12e409
c716dbe123f533adb8689ed01934626859d3dfddfa40b06b0d643b837a7e45fb
GET /iojs/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 1488
date: 2023-Dec-03 12:54:43
cache-control: no-cache, private
pragma: no-cache
expires: 0
p3p: CP="NON DSP COR CURa"
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Arch, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-WoW64, ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ydhMbn_LDtYI1cw2OyUEv1yWfntKNQA7TQeyzqtF86Crp9jijy7kbg==
X-Firefox-Spdy: h2
www.ibet.com/assets/MenuIcon-4d8a330c.js
200 OK 36 kB URL GET HTTP/2 www.ibet.com/assets/MenuIcon-4d8a330c.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (47990)
Hash 7f5d09f8be0d4a9e01e7f0e66713936d
e3071c9c43e74aa102e8695cc33c8710efc4bee3
2b92c8c76ec66879f8922940ae74213317e948aa18f27d2e1ea65b78662ee033
GET /assets/MenuIcon-4d8a330c.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-fbfbf194.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 08:34:28 GMT
etag: W/"7f5d09f8be0d4a9e01e7f0e66713936d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: K4-d8-CStndmqoGuY1d_R0BZfYkIEfKQ_f7HbjJ4DABNRr627WgYew==
age: 16068
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/HorizontalMenuScrollable-a86439a6.js
200 OK 1.5 kB URL GET HTTP/2 www.ibet.com/assets/HorizontalMenuScrollable-a86439a6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (1261)
Hash af4d72cd148b69f003cce28c74c09ed2
cf9148b76982dccd5fc3d9a36eb4c42425aa35d8
f81f1f2b77ec69ec3b61d3640a7621ec0f1495d2b45da0c1e7f41f36dae31121
GET /assets/HorizontalMenuScrollable-a86439a6.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-fbfbf194.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: W/"af4d72cd148b69f003cce28c74c09ed2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: u8SylXXw4VhwV7a3X4VgDBQevfxawXU08IlhVw3jx6VOBlHAx3uzlw==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D
200 OK 4.6 kB URL GET HTTP/3 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (23460), with no line terminators
Hash c9335ea4621cfd844c611eb2ca0207fa
e688f4b1748768640851278d2228ed70665916ec
49032a3bed2ee452d9ed37fd549126b6a68debca8aff56dc81c94b2e16707b24
GET /v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=utf-8
date: Sun, 03 Dec 2023 12:29:01 GMT
server-timing: api;dur=39
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 1542
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 4555
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/index-30e5ec17.js
200 OK 957 kB URL GET HTTP/2 www.ibet.com/assets/index-30e5ec17.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (37695)
Size 957 kB (956748 bytes)
Hash 97abb87b50a813947774d558cd9ba8d9
c82d4ece94fab5fa845667e94ce1b5b9eec2a853
8ebd21345a0979d5780665d8e5a695ac0714b96426b53a507648d5b25da6bbd6
GET /assets/index-30e5ec17.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:03 GMT
etag: W/"97abb87b50a813947774d558cd9ba8d9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8wVUwP7ls4gBvmeaHwP1z-GrcDZkwYE5yjoCBiZf1g6iG_vljtLGSg==
age: 22426
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/ToastNotificationContainer-e01f1417.js
200 OK 1.7 kB URL GET HTTP/2 www.ibet.com/assets/ToastNotificationContainer-e01f1417.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (2182)
Hash 1022721d038e17660867c8a7bbd31f37
04b6d7e82248207e3af74ee7b4bbdc3d77791d7c
80b1bd7b36524305c2364547592b160050c015c0a9c9aff825b8d9f5f35e9629
GET /assets/ToastNotificationContainer-e01f1417.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:04:37 GMT
etag: W/"1022721d038e17660867c8a7bbd31f37"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G8uuKuKKrfiNJTm8IVoGvkeUDbhgGcNX5q5FCMuvAzh5xE3XQqmmxw==
age: 24607
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
200 OK 2.9 kB URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=u0uykwno2jdj
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type gzip compressed data\012- data
Hash 5172fbe8c063ac5886ad48ada8510636
02aca5ff5770e497d9ddce2c4ba17d77d4fc91f2
bd5dee9573adddfbb62bea8f79e879efb027580862c9107649ecd21c49f71bbc
GET /recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=u0uykwno2jdj
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sun, 03 Dec 2023 12:54:43 GMT
date: Sun, 03 Dec 2023 12:54:43 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
static.zdassets.com/ekr/snippet.js?key=a6120dcf-e9e8-4bb6-a19e-078213479153
200 OK 152 kB URL GET HTTP/2 static.zdassets.com/ekr/snippet.js?key=a6120dcf-e9e8-4bb6-a19e-078213479153
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
File type ASCII text, with very long lines (10187), with no line terminators
Size 152 kB (152513 bytes)
Hash 42d94c325a0b012e41f9c3907853625a
567dbe8e0b61115deb7c33947f706d4e51c3ab49
9f22f6e9d4852f8be0706b62fbd0eba20f6cb56171def5e387b2d95fcd07df01
GET /ekr/snippet.js?key=a6120dcf-e9e8-4bb6-a19e-078213479153 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:42 GMT
content-type: application/javascript
x-amz-id-2: ZaA0/pNyb81iWefpjGS4Q1RaRzQbA+fGKlK3Mf/p7f/BJNjQ5D4umJJ3DA6PSAUaVAklKLutfM8=
x-amz-request-id: VJNSTS6NH24VGZXW
x-amz-replication-status: COMPLETED
last-modified: Wed, 09 Aug 2023 01:01:02 GMT
etag: W/"42d94c325a0b012e41f9c3907853625a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: hKEbdq289Xo7bHrM.yPFOdJ37r5nFwfe
cf-cache-status: HIT
age: 59
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NI7TWEaQsL0hLhinh5Qr8HOGGBW%2FTW0MS7XXkwXDJIbpecVZHwdPz9PpRmbaZYtRbnAlegvMVkG5oAba7SV6Jmmth4uO52zcNVIjpsjFygxYsM7dukZpcV4IySLUmaTg9Qflhwo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82fbf5b17ca69927-ARN
content-encoding: br
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/9f33e182639c1e9af62e0aeb241e5e974caf6ec9-363x362.svg
200 OK 1.4 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/9f33e182639c1e9af62e0aeb241e5e974caf6ec9-363x362.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1037)
Hash 4d1b911ce531e7cceb79677e8ccb322e
fbf0b3495f1d2a96324886a55db37fc989924cd3
22c928957dec51cdba02b096b7aa0a7f52bb6e0538169531ca7d581522099f16
GET /images/w9lc5y04/production/9f33e182639c1e9af62e0aeb241e5e974caf6ec9-363x362.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-b3-traceid: 97031becfc56b026bbf59af764d7fd60
x-b3-parentspanid: f11d79e9a1d32644
x-b3-spanid: a318f1c01c473d55
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
content-encoding: br
x-varnish-age: 577
accept-ranges: bytes
content-length: 1353
via: 1.1 google
date: Mon, 13 Nov 2023 23:31:04 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1689820
last-modified: Fri, 21 Apr 2023 11:17:00 GMT
content-type: image/svg+xml
vary: origin, accept-encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-E0JKRGC2KE&l=dataLayer&cx=c
200 OK 90 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-E0JKRGC2KE&l=dataLayer&cx=c
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (4179)
Hash 0db3118bf8a8a5437ddaa1807a6035a4
fa949a0325d715fe884b343fdd5747321b373a76
c93c19e5ebab01a3f3e8b39af425cd7d9fd6d3bb09efd99eff08cf70425fa3af
GET /gtag/js?id=G-E0JKRGC2KE&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 12:54:44 GMT
expires: Sun, 03 Dec 2023 12:54:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89901
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/2a06561c7fda0de5e12139a31a92d03b36f53ca0-69x31.svg
200 OK 4.2 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/2a06561c7fda0de5e12139a31a92d03b36f53ca0-69x31.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (11605), with no line terminators
Hash c8d80689fe6dffdfde4a61fa5cf19888
691dbb0a87fd5161f36e3a535e725763646babd3
4dfe0ebf0e61cb69776fa54e74c27df9e6ad6a56e51fbe201988abbf43619d0c
GET /images/w9lc5y04/production/2a06561c7fda0de5e12139a31a92d03b36f53ca0-69x31.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-b3-traceid: c2e7dc12fe83e57fcbc02ab0187fbf88
x-b3-parentspanid: 13cb6a41556c49a9
x-b3-spanid: 5f30fc8a00cca0e7
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
content-encoding: br
x-varnish-age: 22186
accept-ranges: bytes
content-length: 4237
via: 1.1 google
date: Wed, 15 Nov 2023 15:44:41 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Fri, 21 Apr 2023 11:17:44 GMT
content-type: image/svg+xml
vary: origin, accept-encoding
age: 1545003
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/assets/react-router-dom-c8c3742c.js
200 OK 1.6 kB URL GET HTTP/2 www.ibet.com/assets/react-router-dom-c8c3742c.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (2204)
Hash bbecc5cde5aa37e9a7d9d57707913c8d
8a49d9de8e3c26100e7c7f1669a6e77505b96846
2aa336a7d90b79495d2e04e09eb932415719c49e024c6653eba62b8b78ea2b53
GET /assets/react-router-dom-c8c3742c.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-fbfbf194.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 03:51:34 GMT
etag: W/"bbecc5cde5aa37e9a7d9d57707913c8d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: u4rsiTf158Y8CuTjksJuQ0irktXwVpo5K6CyxS0joAY3TLZF9fmJ5Q==
age: 32675
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/useWindowDimensions-232dcae8.js
200 OK 312 B URL GET HTTP/2 www.ibet.com/assets/useWindowDimensions-232dcae8.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (311)
Hash d4f90a100519dc543f547d6fb019c821
2cb5aeefb3be3c4246280ab7080de61f81a53d02
f93ab82733dc761dfe916bc396b543d59e9cd47810d05c327e3566a8396bfca0
GET /assets/useWindowDimensions-232dcae8.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-2629c06f.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 312
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:42:19 GMT
etag: "d4f90a100519dc543f547d6fb019c821"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EE1v6R8nYLicmqlmWuKj4IYGUbHoFKHAGZVPh6kkhC0Jv81fwKMzow==
age: 22375
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAUT
200 OK 36 kB URL GET HTTP/2 tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAUT
IP
ASN #20940 Akamai International B.V.
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjecttracker.ads.sportradar.com
Fingerprint2F:44:31:30:BF:6C:CE:CE:AD:55:13:9C:95:C2:98:BB:35:19:22:5B
ValidityThu, 05 Oct 2023 12:16:46 GMT - Wed, 03 Jan 2024 12:16:45 GMT
File type ASCII text, with very long lines (62152)
Hash 1df7453898c8118279fbcc6a199d5236
908c49d36c5857beb9346071c97aa4e214325619
065a85979a620e87d0f598fe8e88dcc630308209a307cf975b9dd3a16a388188
GET /dist/tag-manager.js?id=STM-AAAAUT HTTP/1.1
Host: tm.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
apigw-requestid: PXawni32joEEMBg=
vary: Accept-Encoding
content-encoding: gzip
content-length: 36118
date: Sun, 03 Dec 2023 12:54:44 GMT
cache-control: max-age=900, public
x-n: S
X-Firefox-Spdy: h2
www.ibet.com/iojs/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
200 OK 505 B URL GET HTTP/2 www.ibet.com/iojs/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (377)
Hash 0572ac7a60c45350b19604f623bcc710
132a2b3a52fa2118632b8bea4fbded8762512197
09f7388adf1fc1a7944606a87519dad822ec0ba12c4a2378950bce99173f6e89
GET /iojs/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 505
date: Sun, 03 Dec 2023 12:54:44 GMT
last-modified: Tue, 06 May 2014 00:01:40 GMT
expires: Mon, 02 Dec 2024 12:54:44 GMT
cache-control: private
p3p: CP="NON DSP COR CURa"
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Arch, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-WoW64, ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JVICiyKz0EDlYSwH-76ZoIAjVkS3KXNnUq67SRn7Lpk6o5ZnBI_eAA==
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png
200 OK 1.0 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash c54b1baea0fee1c28f161b98caca9b6f
73b98cda447fa00944f7922509f1c40435f9a2c3
84ae01ad9032bb57c873dac068aaad998c5b813259b1a0b200cede6061d9044f
GET /images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 1009
x-b3-traceid: a9ed66991155d5fc97503b7b320ac16e
x-b3-parentspanid: a6385024575c39bd
x-b3-spanid: f51deff32771d130
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 4243
accept-ranges: bytes
via: 1.1 google
strict-transport-security: max-age=63072000; includeSubDomains; preload
vha6-origin: image-varnish-ssd-7
date: Thu, 30 Nov 2023 04:36:15 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 289109
last-modified: Mon, 28 Feb 2022 12:12:47 GMT
content-type: image/png
vary: origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png
200 OK 5.2 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 318 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash 54f08de44053ac484ef92bd1b2490323
fbfd97517c2b1e30611014c9938e5ac6f75e3315
68d588a5d493dc1ad73240aa42bbf23a7b522f8ab1c42b8718ce05a027293ac7
GET /images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 5240
x-b3-traceid: 486a7f65046a51d1029bb5184c228bd5
x-b3-parentspanid: ce14120feb8e5175
x-b3-spanid: dcdecfc750bdcbf0
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 3568
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 21:07:08 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1439256
last-modified: Fri, 25 Nov 2022 13:38:56 GMT
content-type: image/png
vary: origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/e905e2573a77a48c99e5e58886cd31e222f31ebf-474x106.png
200 OK 6.3 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/e905e2573a77a48c99e5e58886cd31e222f31ebf-474x106.png
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 474 x 106, 8-bit/color RGBA, non-interlaced\012- data
Hash 3bef3b68c1c547a1cb7ec6b2dfef9b3d
392d3b682d7ce2286e508f6f6d2b1d6740607420
bcb5b82ace1eb6134ee26d47dbac9a236c8289aac737841144709c639d128c8a
GET /images/w9lc5y04/production/e905e2573a77a48c99e5e58886cd31e222f31ebf-474x106.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 6338
x-b3-traceid: c367c717487fe5813875e79f94a9c121
x-b3-parentspanid: a3d4fd4db0ad638e
x-b3-spanid: a365ae8615b4ddcf
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-7
x-varnish-age: 744
accept-ranges: bytes
via: 1.1 google
date: Sun, 12 Nov 2023 06:35:02 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 09 Feb 2023 13:16:17 GMT
content-type: image/png
vary: origin
age: 1837182
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg
200 OK 1.5 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2523)
Hash b454c14cd7724ba5c786d844b8045411
7457cdbdb0879c41b75d54ba0894ed9469151f66
f3b59c99ebd081d8c37f746fe2137aaafe99c8aeaff9156dadf904bfe8703083
GET /images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-b3-traceid: 4dbe6715b21ed1bfea1345ab5d466aab
x-b3-parentspanid: 1b23564088027db0
x-b3-spanid: e6dd22297d9d1505
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
content-encoding: br
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
content-length: 1454
date: Thu, 16 Nov 2023 22:22:41 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1434723
last-modified: Wed, 20 Jul 2022 10:00:20 GMT
content-type: image/svg+xml
vary: origin, accept-encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/204f43696505a927f0d8f8d1e89381b2544d018c-292x113.png
200 OK 2.0 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/204f43696505a927f0d8f8d1e89381b2544d018c-292x113.png
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 292 x 113, 8-bit/color RGBA, non-interlaced\012- data
Hash 521e051f55b449a1735091a2b252d770
ca5f26cebe1843935b67a78c111d013006967b08
bdc51c1ea61698aa15ef423a8438cb2dd9e22f133b10e2c1a71369cf5aef8f7f
GET /images/w9lc5y04/production/204f43696505a927f0d8f8d1e89381b2544d018c-292x113.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 1983
x-b3-traceid: 709c206be03cb530c21ebe7a8dd0e1db
x-b3-parentspanid: 071b0772146c8262
x-b3-spanid: 28285119f8fe2897
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 23:11:25 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1431799
last-modified: Thu, 09 Feb 2023 10:31:23 GMT
content-type: image/png
vary: origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png
200 OK 1.8 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 270 x 93, 8-bit colormap, non-interlaced\012- data
Hash e4b9e11554e481b113004a5fa1bcd3ca
55d86f60b146584dbf41fcd8444f32cad91ce0ae
5bff602b52530e6bf9e7328c551a062ffb4153b63b1a22a3e2701270b24cf694
GET /images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 1819
x-b3-traceid: e56197fb6f706fff0cbf8ffd87841714
x-b3-parentspanid: 692aab706f874626
x-b3-spanid: 84f1dace6b0911b3
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-2
x-varnish-age: 34181
accept-ranges: bytes
via: 1.1 google
date: Wed, 08 Nov 2023 10:59:32 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 2166912
last-modified: Wed, 14 Jul 2021 11:39:31 GMT
content-type: image/png
vary: origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/f67978d0d803de85c8b792095ff232bdf21a26b5-939x123.png
200 OK 9.2 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/f67978d0d803de85c8b792095ff232bdf21a26b5-939x123.png
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 939 x 123, 8-bit/color RGBA, non-interlaced\012- data
Hash 754253bc2896000f397250c87f47b56b
c3e41cf210831a78faa0b7916b7951d546b6c874
9eaee53ffcde0da1cd985fcf81add1ed1c500936a492a1f5f216c1901e76422a
GET /images/w9lc5y04/production/f67978d0d803de85c8b792095ff232bdf21a26b5-939x123.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 9162
x-b3-traceid: f08d54402337bc243770a255f5c9d436
x-b3-parentspanid: 9ba2f75b7f0ed48d
x-b3-spanid: fd8ee08fcb6dc067
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 890
accept-ranges: bytes
via: 1.1 google
date: Sun, 12 Nov 2023 06:30:30 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1837454
last-modified: Thu, 09 Feb 2023 09:50:35 GMT
content-type: image/png
vary: origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png
200 OK 3.3 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 560 x 107, 8-bit colormap, non-interlaced\012- data
Hash e83e505077311e5f9cd28570d22b274c
d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f
f0571891d0bb64899275389561c72cf12622f87bc6921910c0fea86108c13fae
GET /images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 3304
x-b3-traceid: 7482084effc7e868480ab230d203a9ce
x-b3-parentspanid: 125ace5426288c9d
x-b3-spanid: ad7a8709f15e8620
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-6
x-varnish-age: 1414
accept-ranges: bytes
via: 1.1 google
date: Sun, 12 Nov 2023 06:22:42 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:37:21 GMT
content-type: image/png
vary: origin
age: 1837922
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/88e4d86bc5cb6dec2d8f3ddd49a6dcf20aa80bb9-134x30.png
200 OK 1.8 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/88e4d86bc5cb6dec2d8f3ddd49a6dcf20aa80bb9-134x30.png
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 134 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash bfe0f5f1695f21c5a835ec8e38369f61
c2eed378138e81b9be9f01bda31ece67f43518ea
e8bcf31b58f300e6735d0278632d2a884680db805a9e5f8c53fc865eb82745d4
GET /images/w9lc5y04/production/88e4d86bc5cb6dec2d8f3ddd49a6dcf20aa80bb9-134x30.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 1813
x-b3-traceid: e3b9d2ce81a8407531ddc8985216ac5f
x-b3-parentspanid: 081d4f21f3d7d429
x-b3-spanid: 95e403055c38225c
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 23:22:06 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1431158
last-modified: Thu, 09 Feb 2023 10:06:03 GMT
content-type: image/png
vary: origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/4f666106b0eefc833c9a500656be9f1365890511-256x90.png
200 OK 2.9 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/4f666106b0eefc833c9a500656be9f1365890511-256x90.png
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 256 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 9823573a804e67abba05de26d2f9078c
3e7748db9a99b4adc19b89bce656e25cac1e27ae
d3c47f8b3616b4817dca9d7df45fb627a43a70cc0230b40c31c7a5a82efe5ddb
GET /images/w9lc5y04/production/4f666106b0eefc833c9a500656be9f1365890511-256x90.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 2948
x-b3-traceid: 71738cd437ba734770962f9f853baf20
x-b3-parentspanid: c42dc16d323653d5
x-b3-spanid: e0a1eb119ffcea7c
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-6
x-varnish-age: 4466
accept-ranges: bytes
via: 1.1 google
date: Thu, 09 Nov 2023 20:16:37 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 09 Feb 2023 10:09:12 GMT
content-type: image/png
vary: origin
age: 2047087
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/6eaf3f7de1d528ed78b8688cefbec35445c8ff36-1645x431.png
200 OK 36 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/6eaf3f7de1d528ed78b8688cefbec35445c8ff36-1645x431.png
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 1645 x 431, 8-bit/color RGBA, non-interlaced\012- data
Hash a57ec28bccc522d198b3598e4eb13e59
1d65ef967d8721e57f3b00dac541abea1f0b1abe
100cd0aece050389896c5c55e1e935e31769844a6041c58d8c172a3f29458ca1
GET /images/w9lc5y04/production/6eaf3f7de1d528ed78b8688cefbec35445c8ff36-1645x431.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 35674
x-b3-traceid: 8933976a7d5cd694b52b3023345761d9
x-b3-parentspanid: 8d266ba9970645c8
x-b3-spanid: ca89942e9a8bffb2
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 14244
accept-ranges: bytes
via: 1.1 google
date: Thu, 09 Nov 2023 16:23:45 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 2061059
last-modified: Fri, 15 Jul 2022 13:13:15 GMT
content-type: image/png
vary: origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22homePage%22%20%26%26%20%27NO%27%20in%20market%5B%5D-%3Eid%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%5B0%5D%7B%0A%20%20%20%20%20%22banner%22%3A%7B%0A%20%20%20%20%20%20%20%20%22list%22%3Abanners%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%20_id%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22description%22%3Adescription.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22greeting%22%3Agreeting.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22button%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22type%22%3Abutton.type%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22label%22%3Abutton.label.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22param%22%3Abutton.param%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22urlAction%22%3A%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%22slug%22%3A%20urlAction.anonymousSlug%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22absoluteUrl%22%3A%20urlAction.anonymousAbsoluteUrl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22openNewTab%22%3A%20urlAction.anonymousOpenNewTab%0A%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22img%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3Aimg.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3Aimg.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3Aimg.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%20%20%20%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%20%20%20%20%20%20%22imgPortrait%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3AimgPortrait.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3AimgPortrait.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3AimgPortrait.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20startDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20endDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20authorized%2C%0A%20%20%20%20%20%20%20%20%20%20%20isClickable%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%22options%22%3A%7B%22duration%22%3AbannersDuration%7D%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%22verticals%22%3Averticals%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%20type%2C%20authorized%2C%20%22subtitle%22%3Asubtitle.no%2C%20%22description%22%3Adescription.no%2C%20%0A%20%20%20%20%20%20%20%20%20%20items%5B%5D-%3E%7B%20%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20id%2C%20%22label%22%3Acoalesce(title.no%2Cname)%2C%20image%7B%22img1x%22%3Aimg1x.asset-%3Eurl%2C%22img2x%22%3Aimg2x.asset-%3Eurl%2C%22img3x%22%3Aimg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20lobbyGridSizes%7B%22verticalImg1x%22%3AverticalImg1x.asset-%3Eurl%2C%22verticalImg2x%22%3AverticalImg2x.asset-%3Eurl%2C%22verticalImg3x%22%3AverticalImg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22provider%22%3Acoalesce(provider-%3Eprovider.id%2Cprovider)%0A%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%7D
200 OK 12 kB URL GET HTTP/3 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22homePage%22%20%26%26%20%27NO%27%20in%20market%5B%5D-%3Eid%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%5B0%5D%7B%0A%20%20%20%20%20%22banner%22%3A%7B%0A%20%20%20%20%20%20%20%20%22list%22%3Abanners%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%20_id%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22description%22%3Adescription.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22greeting%22%3Agreeting.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22button%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22type%22%3Abutton.type%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22label%22%3Abutton.label.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22param%22%3Abutton.param%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22urlAction%22%3A%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%22slug%22%3A%20urlAction.anonymousSlug%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22absoluteUrl%22%3A%20urlAction.anonymousAbsoluteUrl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22openNewTab%22%3A%20urlAction.anonymousOpenNewTab%0A%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22img%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3Aimg.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3Aimg.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3Aimg.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%20%20%20%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%20%20%20%20%20%20%22imgPortrait%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3AimgPortrait.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3AimgPortrait.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3AimgPortrait.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20startDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20endDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20authorized%2C%0A%20%20%20%20%20%20%20%20%20%20%20isClickable%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%22options%22%3A%7B%22duration%22%3AbannersDuration%7D%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%22verticals%22%3Averticals%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%20type%2C%20authorized%2C%20%22subtitle%22%3Asubtitle.no%2C%20%22description%22%3Adescription.no%2C%20%0A%20%20%20%20%20%20%20%20%20%20items%5B%5D-%3E%7B%20%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20id%2C%20%22label%22%3Acoalesce(title.no%2Cname)%2C%20image%7B%22img1x%22%3Aimg1x.asset-%3Eurl%2C%22img2x%22%3Aimg2x.asset-%3Eurl%2C%22img3x%22%3Aimg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20lobbyGridSizes%7B%22verticalImg1x%22%3AverticalImg1x.asset-%3Eurl%2C%22verticalImg2x%22%3AverticalImg2x.asset-%3Eurl%2C%22verticalImg3x%22%3AverticalImg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22provider%22%3Acoalesce(provider-%3Eprovider.id%2Cprovider)%0A%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%7D
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (57209), with no line terminators
Hash dc405de09aec5f42ef2f38faf0111414
0a7deeb9f9965fc021d2c2c513f0d4d7b90c1d5b
fb09e09db49d6bfc62d8e949f5b686c32dd15e06226c47ec6be9235f201b5028
GET /v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22homePage%22%20%26%26%20%27NO%27%20in%20market%5B%5D-%3Eid%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%5B0%5D%7B%0A%20%20%20%20%20%22banner%22%3A%7B%0A%20%20%20%20%20%20%20%20%22list%22%3Abanners%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%20_id%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22description%22%3Adescription.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22greeting%22%3Agreeting.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22button%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22type%22%3Abutton.type%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22label%22%3Abutton.label.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22param%22%3Abutton.param%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22urlAction%22%3A%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%22slug%22%3A%20urlAction.anonymousSlug%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22absoluteUrl%22%3A%20urlAction.anonymousAbsoluteUrl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22openNewTab%22%3A%20urlAction.anonymousOpenNewTab%0A%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22img%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3Aimg.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3Aimg.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3Aimg.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%20%20%20%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%20%20%20%20%20%20%22imgPortrait%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3AimgPortrait.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3AimgPortrait.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3AimgPortrait.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20startDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20endDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20authorized%2C%0A%20%20%20%20%20%20%20%20%20%20%20isClickable%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%22options%22%3A%7B%22duration%22%3AbannersDuration%7D%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%22verticals%22%3Averticals%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%20type%2C%20authorized%2C%20%22subtitle%22%3Asubtitle.no%2C%20%22description%22%3Adescription.no%2C%20%0A%20%20%20%20%20%20%20%20%20%20items%5B%5D-%3E%7B%20%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20id%2C%20%22label%22%3Acoalesce(title.no%2Cname)%2C%20image%7B%22img1x%22%3Aimg1x.asset-%3Eurl%2C%22img2x%22%3Aimg2x.asset-%3Eurl%2C%22img3x%22%3Aimg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20lobbyGridSizes%7B%22verticalImg1x%22%3AverticalImg1x.asset-%3Eurl%2C%22verticalImg2x%22%3AverticalImg2x.asset-%3Eurl%2C%22verticalImg3x%22%3AverticalImg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22provider%22%3Acoalesce(provider-%3Eprovider.id%2Cprovider)%0A%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=utf-8
date: Sun, 03 Dec 2023 12:04:44 GMT
server-timing: api;dur=354
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 2999
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 11677
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/fonts/OpenSans-Regular.ttf
200 OK 56 kB URL GET HTTP/2 www.ibet.com/fonts/OpenSans-Regular.ttf
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Hash 3ed9575dcc488c3e3a5bd66620bdf5a4
babe8dce93a3e48b6c3c79720a0c048e88dd1fe7
037236ed4bf58a85f67074c165d308260fd6be01c86d7df4e79ea16eb273f8c5
GET /fonts/OpenSans-Regular.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: font/ttf
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:42:09 GMT
etag: W/"3ed9575dcc488c3e3a5bd66620bdf5a4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HqAgs975Gt38nvA5hlSt1uiXGOENyCiKOhArF0vJAGYB9Q9vswL8eQ==
age: 22409
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist/tracker.js
200 OK 6.4 kB URL GET HTTP/2 tracker.ads.sportradar.com/dist/tracker.js
IP
ASN #20940 Akamai International B.V.
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjecttracker.ads.sportradar.com
Fingerprint2F:44:31:30:BF:6C:CE:CE:AD:55:13:9C:95:C2:98:BB:35:19:22:5B
ValidityThu, 05 Oct 2023 12:16:46 GMT - Wed, 03 Jan 2024 12:16:45 GMT
File type ASCII text, with very long lines (25690)
Hash 235331a0761142ae4fd345cdf7c7f9ed
f71a2cb5824a7049b2c86f5658f48e17ff7f588c
063237f5f52863c3f711ef56625653397a5650eca2da3fa375dc181985a1badb
GET /dist/tracker.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 12 Sep 2023 08:33:19 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
etag: "235331a0761142ae4fd345cdf7c7f9ed"
x-amz-cf-pop: AMS58-P6
x-amz-cf-id: VXIh_gCUtucyYHhCg81QlrVxUxdnyy6WQm1or6vbPe3ihHH54ZiQEQ==
vary: Accept-Encoding
content-encoding: gzip
content-length: 6405
date: Sun, 03 Dec 2023 12:54:44 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/339b04379fecd02a83642bf31b3256bbd645aee3-1050x525.jpg?q=75&auto=format
200 OK 48 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/339b04379fecd02a83642bf31b3256bbd645aee3-1050x525.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1050x525, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1aa56952b33e25b6476c7924608c9c8f
70a2dc7079fdc25c7179a634cf4d46b0d04bd257
b0ad5379dc2281cb4a8991f56a7a4a7c87e0637b63c35dd18d303379b1eb466f
GET /images/w9lc5y04/production/339b04379fecd02a83642bf31b3256bbd645aee3-1050x525.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 47806
x-b3-traceid: 8f8f67e0f0be3a8a5436ad835b1f956f
x-b3-parentspanid: 6ceaf8e2951fa1cd
x-b3-spanid: 7a09ce0feb32b9e4
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 14:52:52 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Fri, 06 Jan 2023 16:47:22 GMT
content-type: image/webp
vary: origin, accept
age: 856912
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/331cd7dc70a89a7ba3e3cecc25dd78867a1a7861-1000x500.jpg?q=75&auto=format
200 OK 40 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/331cd7dc70a89a7ba3e3cecc25dd78867a1a7861-1000x500.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1000x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 534b4166231142a3f3f7cc526dc0d899
fd4d94e2c9c956215a36de7e63a3e57912c97e65
a29af7ab7a2e25b3e79d00a10518b67ba26d66862f8bd1071d7d15ab0ed54e00
GET /images/w9lc5y04/production/331cd7dc70a89a7ba3e3cecc25dd78867a1a7861-1000x500.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 40146
x-b3-traceid: 04a7265da0adb81d972256b697e6bf36
x-b3-parentspanid: 07cece83a332cff2
x-b3-spanid: e3d98969c6b6e7ab
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 5371
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 10:15:57 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 06 Feb 2023 11:44:12 GMT
content-type: image/webp
vary: origin, accept
age: 527927
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/ae4c61489686c9a6dfee3e56408f5e0c975c1808-750x708.jpg?q=75&auto=format
200 OK 64 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/ae4c61489686c9a6dfee3e56408f5e0c975c1808-750x708.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 750x708, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a456c13732f2e73cace1b3f563f0ad91
1e8877cc2ea7ac8d09d2a920558bc12db9e2afee
0c6bcec0f8c19ef4bf3ff20c12b7519b74ef22e4fbf1c7a0250462a9b247d928
GET /images/w9lc5y04/production/ae4c61489686c9a6dfee3e56408f5e0c975c1808-750x708.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 64200
x-b3-traceid: 97bd1d4683c69a14380614f9cc97fcbf
x-b3-parentspanid: 92adacdba40010d4
x-b3-spanid: c45cc0f61ff95feb
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 737
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 15:43:10 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 30 Nov 2023 15:41:30 GMT
content-type: image/webp
vary: origin, accept
age: 249094
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/9764c26b4b3f850db750782a1da7df9f421f0707-750x708.jpg?q=75&auto=format
200 OK 57 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/9764c26b4b3f850db750782a1da7df9f421f0707-750x708.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 750x708, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ccf172f9009825c95bece8357e5373c6
298ed9696e6d747992b55d5f0149124af1a0a52c
0555631352fac627177f7a37ce05909117ee146ea2df623373db7463bf894610
GET /images/w9lc5y04/production/9764c26b4b3f850db750782a1da7df9f421f0707-750x708.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 57330
x-b3-traceid: 16093e8c4a05a89f00b4add7a1baa204
x-b3-parentspanid: 142a0d73f60d5d37
x-b3-spanid: a897b8867a9bb03d
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 21
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 14:07:42 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 254822
last-modified: Thu, 30 Nov 2023 14:06:35 GMT
content-type: image/webp
vary: origin, accept
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/adc1de14adff5ba822aed68b93c941ca1f5ae201-1708x884.jpg?q=75&auto=format
200 OK 148 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/adc1de14adff5ba822aed68b93c941ca1f5ae201-1708x884.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1708x884, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 148 kB (147602 bytes)
Hash 219794110cb8bd45c726ae39af1fe20d
b22d66aad042bc71a2cf30b128ad7e2056b73960
17f68a7e7da7c6910368fb9d66bb11a502db58a687222eb264225e64a9b3b830
GET /images/w9lc5y04/production/adc1de14adff5ba822aed68b93c941ca1f5ae201-1708x884.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 147602
x-b3-traceid: faf5233d6edb98ffd011f79ea579ee94
x-b3-parentspanid: 0b60cc3c54a6c9c9
x-b3-spanid: 4a1bf4b19de692eb
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-0
x-varnish-age: 1470
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 15:42:20 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 30 Nov 2023 15:41:15 GMT
content-type: image/webp
vary: origin, accept
age: 249144
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/b743b34d1958522ba4b21db889dff8309b780081-1708x884.jpg?q=75&auto=format
200 OK 152 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/b743b34d1958522ba4b21db889dff8309b780081-1708x884.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1708x884, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 152 kB (152040 bytes)
Hash 5c86d7ea35b5e6f5a55f7180d2190d9f
f6c767a5d59c5b9df172ec128c6754a2970cf971
6acdffcf12e8a2a3ce8945d74f16ff2e2c343f4fa9e3877de51ed3a1812fde38
GET /images/w9lc5y04/production/b743b34d1958522ba4b21db889dff8309b780081-1708x884.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 152040
x-b3-traceid: 5d18b21c3d8046a2ed50bc5eec518643
x-b3-parentspanid: d7337f04c53a6078
x-b3-spanid: 8c89b8fefdb634ee
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 108
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 14:07:30 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 30 Nov 2023 14:06:16 GMT
content-type: image/webp
vary: origin, accept
age: 254834
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/d74c7dd39d54d5e0a09eeed03af125cbcf0b0af0-750x708.jpg?q=75&auto=format
200 OK 83 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/d74c7dd39d54d5e0a09eeed03af125cbcf0b0af0-750x708.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 750x708, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9044214d79b4809d79e43acb3f158065
af9b3b5dea2822790b1923140598bfd869938d41
bcce1ce87d3d54b2809dcaf901ecce48f6d25dae89ce6826e44cd0d653ddef97
GET /images/w9lc5y04/production/d74c7dd39d54d5e0a09eeed03af125cbcf0b0af0-750x708.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 83428
x-b3-traceid: ccc9b7cdef956fd631db3add3c130c0a
x-b3-parentspanid: a820aae25d59cdf9
x-b3-spanid: 22ad8d2fa4869f5a
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 78
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 15:33:51 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 30 Nov 2023 15:33:14 GMT
content-type: image/webp
vary: origin, accept
age: 249653
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/d93aa39b80bc931a8aa2668467e2e6b734b7245a-750x708.jpg?q=75&auto=format
200 OK 74 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/d93aa39b80bc931a8aa2668467e2e6b734b7245a-750x708.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 750x708, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e3dccd50681b42485dacae509af0ebdb
698990551f13d9cc7fb34321e9a5a40c51cab47e
4337e926cd72b68e94298b5dc00f04cf7e3870698d55cae48d72ad61ef2f6c8e
GET /images/w9lc5y04/production/d93aa39b80bc931a8aa2668467e2e6b734b7245a-750x708.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 74236
x-b3-traceid: 77060631af0e7ab62ba53b75c9ab922c
x-b3-parentspanid: e576b54e6c6cd81f
x-b3-spanid: 5cc9c6b9d2a5be97
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 15:33:00 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 30 Nov 2023 15:32:05 GMT
content-type: image/webp
vary: origin, accept
age: 249704
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/a528f6b846099a98652feb6a665fd0683432d289-1708x884.jpg?q=75&auto=format
200 OK 172 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/a528f6b846099a98652feb6a665fd0683432d289-1708x884.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1708x884, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 172 kB (172048 bytes)
Hash 2ae621f9cf8a8b5d4a627798fe95dd0f
cf0176377852d472fa883a551841a6026c013d40
d86c9f93bac9790469971e5f92ec072a8fa8321e97d9b01900757b38dc5a7cb9
GET /images/w9lc5y04/production/a528f6b846099a98652feb6a665fd0683432d289-1708x884.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 172048
x-b3-traceid: b48f0420749b9690dc1b941956a95042
x-b3-parentspanid: fbbcc667fb84ddad
x-b3-spanid: b35560e85293f8c5
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-6
x-varnish-age: 123
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 15:33:00 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 249704
last-modified: Thu, 30 Nov 2023 15:31:48 GMT
content-type: image/webp
vary: origin, accept
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/1b6486db2b76134b2881d14b8bec4b629eb7b5b9-1708x884.jpg?q=75&auto=format
200 OK 185 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/1b6486db2b76134b2881d14b8bec4b629eb7b5b9-1708x884.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1708x884, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 185 kB (184910 bytes)
Hash 246696a01603de298a6c8f4325b17858
14e988776ad26f2a6799283a6d9e530b3decfca7
5fe300eb60b17054f23334d750ffeb0e57fa344d66cf0d89279f473af46accef
GET /images/w9lc5y04/production/1b6486db2b76134b2881d14b8bec4b629eb7b5b9-1708x884.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 184910
x-b3-traceid: c0fde551d597b2a85aab658f0449b0b0
x-b3-parentspanid: 71374548a09b239e
x-b3-spanid: 48595fe3f58d1ee
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 37
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 15:33:51 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 249653
last-modified: Thu, 30 Nov 2023 15:33:03 GMT
content-type: image/webp
vary: origin, accept
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/6626ea1783ba621920eb6dededa8c7fe4ee7dfca-1000x500.jpg?q=75&auto=format
200 OK 42 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/6626ea1783ba621920eb6dededa8c7fe4ee7dfca-1000x500.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1000x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 552b6be5ff8e452f59f7578fee02bbb6
587680dd11ec6973b433f70cfbf7c83ab197b72d
986c681592b53c84d445d4ae161b29aa12c04baa97703b899909eb86360e2885
GET /images/w9lc5y04/production/6626ea1783ba621920eb6dededa8c7fe4ee7dfca-1000x500.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 41708
x-b3-traceid: 4d2b5817d314167510dad48408d428b1
x-b3-parentspanid: f8106aa4958f4b42
x-b3-spanid: 98c9c3f0cfb1cb30
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 14:52:52 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 06 Feb 2023 11:48:35 GMT
content-type: image/webp
vary: origin, accept
age: 856912
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/b9a5a10aa430e31f6f8247fbe82455e88cc72b1c-1708x884.jpg?q=75&auto=format
200 OK 188 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/b9a5a10aa430e31f6f8247fbe82455e88cc72b1c-1708x884.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1708x884, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 188 kB (188354 bytes)
Hash bbdf0cb2809780bde4e252c1c4993c74
571b5c7d21932fa259b2f8cb58f1bd0cd6885984
5af85fb7f8bc9e53a008e747eef2bb9eff07e2f0dddc0f059d8b602f120a7b2a
GET /images/w9lc5y04/production/b9a5a10aa430e31f6f8247fbe82455e88cc72b1c-1708x884.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 188354
x-b3-traceid: 87c5c23e584a08065f375e56ac724e10
x-b3-parentspanid: f93e639a055cc7c3
x-b3-spanid: aac6150237dbe3e4
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 45
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 14:02:53 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 255111
last-modified: Thu, 30 Nov 2023 14:01:13 GMT
content-type: image/webp
vary: origin, accept
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/29f5cc9b0f3be4684ecbe0c28e68adf4a37b1425-750x708.jpg?q=75&auto=format
200 OK 76 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/29f5cc9b0f3be4684ecbe0c28e68adf4a37b1425-750x708.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 750x708, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 38344a576ce70a33b9996fe7ff4c1da8
bfc48ba9af33d84513dd9142dcf97e645bb54ed1
f6bbe6a21b67b3f21835888f328bafce973ca57cd5a01d895787f1e9321b7c83
GET /images/w9lc5y04/production/29f5cc9b0f3be4684ecbe0c28e68adf4a37b1425-750x708.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 76098
x-b3-traceid: dc9565bc5c92865a31bc72c1522c8510
x-b3-parentspanid: 32d24c2e6c1fe5e9
x-b3-spanid: 44b551cbd8e83ca4
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-7
x-varnish-age: 26
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 14:02:53 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 30 Nov 2023 14:01:55 GMT
content-type: image/webp
vary: origin, accept
age: 255111
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
mpsnare.iesnare.com/star
0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EEaZAa6MJDK+MgG1zZKpKA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sun, 03 Dec 2023 12:54:44 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: IcMgHjNJjA97Dl9IJnmGYi0fndo=
Upgrade: WebSocket
www.ibet.com/assets/red-arrow-icon-12f65a39.svg
200 OK 211 B URL GET HTTP/2 www.ibet.com/assets/red-arrow-icon-12f65a39.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 6e6ced8ea34274f7493b4b58b951f9e1
bd975570f829526ab8fb770af5932504166abaea
12f65a396e79c4a782411e4c89709d983607e157ba7e0198f50a9b1d2fa4699d
GET /assets/red-arrow-icon-12f65a39.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 211
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 11:01:06 GMT
etag: "6e6ced8ea34274f7493b4b58b951f9e1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NcfTNVMIzXceVUJlxEkcIz6bxcoopE4uahJEyDVlv_rnZp0UEeJZaw==
age: 6819
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/desk-mobile-255eeaee.png
200 OK 501 kB URL GET HTTP/2 www.ibet.com/assets/desk-mobile-255eeaee.png
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type PNG image data, 920 x 868, 8-bit/color RGBA, non-interlaced\012- data
Size 501 kB (500572 bytes)
Hash fd96eee35b390dfd08f545b75d939ac6
6921b711e1a4eb122f1c7805a6e1a51a96402330
255eeaeea7d72c03eb622eb824940135801f903f45f1dce5a206ead783ec2dd8
GET /assets/desk-mobile-255eeaee.png HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 500572
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 11:01:07 GMT
etag: "fd96eee35b390dfd08f545b75d939ac6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Tj-e1LFRpDNBmSOF86kCnIWKF_B2GpxNrLl11GoFb8UZL3IkrH6ynw==
age: 6819
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/red-bg-mob-11275b36.png
200 OK 335 kB URL GET HTTP/2 www.ibet.com/assets/red-bg-mob-11275b36.png
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 1060x1186, components 3\012- data
Size 335 kB (335236 bytes)
Hash b4fab880fcb4f77672ea9137447fb844
2253421b22961954592a9b8502ce811e5b66d0f2
11275b361a1372299e54affce15080d5ae42e29982638bc0028e7424a2e13b74
GET /assets/red-bg-mob-11275b36.png HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 335236
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:47:27 GMT
etag: "b4fab880fcb4f77672ea9137447fb844"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fS7fEBqvqJ8NAGbKHGr_yeZRGvR-Yzq1GGRxyYqdzIesRcnCrZkb_Q==
age: 22038
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/arrow-icon-98999300.svg
200 OK 224 B URL GET HTTP/2 www.ibet.com/assets/arrow-icon-98999300.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 6fc363a8879cd29635e49f9c88e4b688
9909fc3d18310518614d6443a323306a73d55688
98999300be9d6fdd47c0db074e8e7e966c6ded407184cc6d8369d156ef00ae3a
GET /assets/arrow-icon-98999300.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 224
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 11:01:06 GMT
etag: "6fc363a8879cd29635e49f9c88e4b688"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: POzOeFgx7ph3CfOQmeZntN51mgAqYJDQpy6iOVpQVgSkaRXAchr61g==
age: 6819
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/5689655205501f01021396c790a3c8250ead70ad-232x417.jpg?q=75&auto=format
200 OK 14 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/5689655205501f01021396c790a3c8250ead70ad-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c0cccaeddf376fc0b7e090a5666e3bef
3fbeaee41329a0d6ea91036abacd83769308d540
2443ac2b2bdb18ce1992b25af8528beaff362f49236db74f59e4e269a1c60a2f
GET /images/w9lc5y04/production/5689655205501f01021396c790a3c8250ead70ad-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 13938
x-b3-traceid: 7dc89c1cdb4fab50a638862ff025b28e
x-b3-parentspanid: 57d15c61d3e46c09
x-b3-spanid: bf2b913c93dc6aac
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 52964
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 08:27:32 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:00:22 GMT
content-type: image/webp
vary: origin, accept
age: 793632
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/48143d56f72bfb3b239af1e9cb1cbaeaebd8e116-232x417.jpg?q=75&auto=format
200 OK 7.8 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/48143d56f72bfb3b239af1e9cb1cbaeaebd8e116-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 96ea069bedc202148bb6472a0fd51c31
d58b25d90fe2cc4f78be3b8b8c9b04f2a4030b14
121b8ec220ae222f0c69fac7114a308d40d381dc92f1631dfd4e12605b6b3345
GET /images/w9lc5y04/production/48143d56f72bfb3b239af1e9cb1cbaeaebd8e116-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 7758
x-b3-traceid: 2bcc362df6735503aa11fe6082d19a0e
x-b3-parentspanid: 10b960f7855ab381
x-b3-spanid: b9988362b72f17e
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 24882
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 07:58:09 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:04:39 GMT
content-type: image/webp
vary: origin, accept
age: 881795
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/20e75c6219b2b793a5fb10c7cca9ab3d1f8b9f82-232x417.jpg?q=75&auto=format
200 OK 7.9 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/20e75c6219b2b793a5fb10c7cca9ab3d1f8b9f82-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f579cf3502f2e9497c4da2e1eb6bd7ac
9aaaf07bf8af7159dd984b74e74644eea315c3cf
74269b46cef36011f6f90c6da460ade0ac22692a96e15ac1ed047bbd2a5c4d2e
GET /images/w9lc5y04/production/20e75c6219b2b793a5fb10c7cca9ab3d1f8b9f82-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 7886
x-b3-traceid: a7d929d67982f190afeb52275b112bfb
x-b3-parentspanid: f107ffc47c5f0ed9
x-b3-spanid: 37ed2e3562505115
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 50974
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 09:07:13 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:03:54 GMT
content-type: image/webp
vary: origin, accept
age: 791251
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/95a1e6d5e0967886358d18b94d0fe2a06bfc266c-232x417.jpg?q=75&auto=format
200 OK 9.3 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/95a1e6d5e0967886358d18b94d0fe2a06bfc266c-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b924ecd30b52e1e60987d510fd3cb905
c5f9378e4ee9b08de8e6da81108b40ad094cecd6
4ee2a839fcfc5d60735abad4c69768c3c07491731c39163a880e590ebe8dbc7a
GET /images/w9lc5y04/production/95a1e6d5e0967886358d18b94d0fe2a06bfc266c-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 9276
x-b3-traceid: accebcf532124a761b5fb8a19c0d3f85
x-b3-parentspanid: 27560f2a207f1cd7
x-b3-spanid: c756ee5ca74d6fc0
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 46885
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 10:09:47 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:02:39 GMT
content-type: image/webp
vary: origin, accept
age: 787497
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/5b0415ee9746420c1df848a64335c58f3bbf480d-232x417.jpg?q=75&auto=format
200 OK 9.7 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/5b0415ee9746420c1df848a64335c58f3bbf480d-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 87f321c3a7e516a15aaeea9fc2164bf3
771a11437015be1a00bf2488860f1a5cc83a2d0c
4852c0344a7dac1442bc2892c1b7a84cf8d0ab6c65a1e8213b4699cbe7c3160f
GET /images/w9lc5y04/production/5b0415ee9746420c1df848a64335c58f3bbf480d-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 9710
x-b3-traceid: 637fe754d3403de9b26d97c554fe3ec9
x-b3-parentspanid: d02bfd14775bfdf1
x-b3-spanid: 15fe2e00fddded0c
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 13067
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:53 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:02:20 GMT
content-type: image/webp
vary: origin, accept
age: 1492191
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/e808a44221aa7cded37fc471bb9f73507dda287b-232x417.jpg?q=75&auto=format
200 OK 9.1 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/e808a44221aa7cded37fc471bb9f73507dda287b-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e7926010e3c629ec15afb7119c4d60b2
e36e00f1191eb8ea8517547a6257a958ec14a633
1bd08aca1a412128c241fa74b469690e1bf512ae638a346cc126ca9273b49947
GET /images/w9lc5y04/production/e808a44221aa7cded37fc471bb9f73507dda287b-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 9050
x-b3-traceid: 2aad0fe99a1d152f71432cb66a36149c
x-b3-parentspanid: 1c25cab785509888
x-b3-spanid: b81cece4d8375f8
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-3
x-varnish-age: 13067
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:54 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:01:28 GMT
content-type: image/webp
vary: origin, accept
age: 1492190
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/961e1842d2f96a0be1b54eb8fd1bb051f15127b2-232x417.jpg?q=75&auto=format
200 OK 7.7 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/961e1842d2f96a0be1b54eb8fd1bb051f15127b2-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 445152a01d772acb20c24e9d394aa652
aae611c23ae05185d440dee1df394d8b88c72c8d
07f9f8268b8c7e88c10280201f6ef14f7f0847cdf8c332a88834e4a3358c2f76
GET /images/w9lc5y04/production/961e1842d2f96a0be1b54eb8fd1bb051f15127b2-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 7720
x-b3-traceid: 60d360baea7d07989e59113ac9c7c151
x-b3-parentspanid: d2751048f9e15c3f
x-b3-spanid: bdb337cf38c31c55
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 3332
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 22:31:31 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:01:45 GMT
content-type: image/webp
vary: origin, accept
age: 1434193
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/38e7b4ba6f9d8d8e5a68e30c46cc29e69e2d7c68-232x417.jpg?q=75&auto=format
200 OK 12 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/38e7b4ba6f9d8d8e5a68e30c46cc29e69e2d7c68-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6f35734e0cb37f959f512f6d79035ce0
d7abdcd2aa5e06742646781184a5d3212667dc21
e4c71b868c1fcde4b0c2e7d868f41c07b3fe1a7582c23dc078de0a404a7b095b
GET /images/w9lc5y04/production/38e7b4ba6f9d8d8e5a68e30c46cc29e69e2d7c68-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 11756
x-b3-traceid: e333134d954ab1d82e5bf0ae2c3f9779
x-b3-parentspanid: 79efa7f1e8754477
x-b3-spanid: fa6916d6fb447d8a
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-7
x-varnish-age: 13109
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:12 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:04:15 GMT
content-type: image/webp
vary: origin, accept
age: 1492232
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/4f612c5ca330cd1e053e14e97f673f57d71585ee-232x417.jpg?q=75&auto=format
200 OK 7.6 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/4f612c5ca330cd1e053e14e97f673f57d71585ee-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c9f26795549bf8af72875fe471fa8fe9
b4ad8101ecb43324eab838a8ee57d83c2893f6fc
74d8793a6b00ac9cf362442f519d523b1e4fd68ce833ae729fef42266ecffb00
GET /images/w9lc5y04/production/4f612c5ca330cd1e053e14e97f673f57d71585ee-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 7620
x-b3-traceid: 6140c5bd27fb43c5cafdb0b3439b9d95
x-b3-parentspanid: c1f2dc2be20a00c0
x-b3-spanid: 25fe72f27912cbd9
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 1330
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 11:09:48 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:02:11 GMT
content-type: image/webp
vary: origin, accept
age: 524697
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.entrust.net/
1.6 kB IP
Hash 02d7fc0284840f1014a44ba9e709756f
481a23d051b28c9ce042d46d35fc2211c14f853b
1e93a2e0bffce1851c7b4ab85d63a645f83b94ca7df3d11fb9fe891597f3ad27
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "1E93A2E0BFFCE1851C7B4AB85D63A645F83B94CA7DF3D11FB9FE891597F3AD27"
Last-Modified: Sun, 03 Dec 2023 07:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3286
Expires: Sun, 03 Dec 2023 13:49:31 GMT
Date: Sun, 03 Dec 2023 12:54:45 GMT
Connection: keep-alive
cdn.sanity.io/images/w9lc5y04/production/56fc51fe90f1d0e1120791d5eaf144146eb9af98-360x648.jpg?q=75&auto=format
200 OK 36 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/56fc51fe90f1d0e1120791d5eaf144146eb9af98-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4e8480d48be3a64031d33c991056cfb0
0bfa6564fff1ad5529844333b5597b6e5e6a38d3
ce42a6c92d7e856cf105bee0130afc1df493d3575430695f6c2b4e59725ce0b5
GET /images/w9lc5y04/production/56fc51fe90f1d0e1120791d5eaf144146eb9af98-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 35988
x-b3-traceid: c03f4c7ed6568405fd095ff7b4809067
x-b3-parentspanid: a71af318bfa2a7de
x-b3-spanid: a2173f14a2966e5f
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 53730
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 08:12:06 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 12 Jul 2023 08:47:36 GMT
content-type: image/webp
vary: origin, accept
age: 794559
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/5f95a9fe7f37f38815cbff4133bc421a499cd27e-232x417.jpg?q=75&auto=format
200 OK 10 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/5f95a9fe7f37f38815cbff4133bc421a499cd27e-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0b0504e7dc961ba3c047522ce89db0ee
b8a910ff1679ef74c95ecd43b60a50cad831a1eb
211758f9c89c600be13c1338e2221f1badaff3db796e787864dfe8a3d9338bdd
GET /images/w9lc5y04/production/5f95a9fe7f37f38815cbff4133bc421a499cd27e-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 10208
x-b3-traceid: 043ac436692e6a1b4731cad3e222603b
x-b3-parentspanid: d8f955c35809710d
x-b3-spanid: b5248a7f732ef4c2
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 15792
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:55 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1492190
last-modified: Wed, 01 Feb 2023 15:03:36 GMT
content-type: image/webp
vary: origin, accept
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/3c926e83a048b38a1da82304ec5bda80e997c5e3-360x648.jpg?q=75&auto=format
200 OK 35 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/3c926e83a048b38a1da82304ec5bda80e997c5e3-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5724b42c238f7f6279324c72829f6b39
841ffcf33eb25358b7a3cd94736b7b83d9707a3a
6f201c988cb6d30db0808ca682f710a36af1b64f9be3dae43bee6b3efdd2903e
GET /images/w9lc5y04/production/3c926e83a048b38a1da82304ec5bda80e997c5e3-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 34984
x-b3-traceid: 5b9861b2e4f56bd635c419a7758a69c4
x-b3-parentspanid: 3ac8dfc9bdfb24c9
x-b3-spanid: af0f149d2febca0c
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 4525
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 10:13:58 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 29 Sep 2021 09:34:02 GMT
content-type: image/webp
vary: origin, accept
age: 528047
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/81f04e031060924be40583da47dcfa14a0053926-360x648.jpg?q=75&auto=format
200 OK 41 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/81f04e031060924be40583da47dcfa14a0053926-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce772c526344a9c2377c71f572f694ae
2411fa3cf5cd2c82212c1a6eee6fa387887dae96
ff6263633a379fc5f036f2c5ff5a218ae667996532b031728a81388d27207dbb
GET /images/w9lc5y04/production/81f04e031060924be40583da47dcfa14a0053926-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 41420
x-b3-traceid: 8876bb6746aa2c6fc4570730f6af2ca7
x-b3-parentspanid: fd168e7fa222762d
x-b3-spanid: ab2e8c5327360446
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 61229
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:12 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 15 Jul 2021 14:58:45 GMT
content-type: image/webp
vary: origin, accept
age: 1492233
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/034a8c005e2a008a1f3e9a1678fd492f72c97698-360x648.jpg?q=75&auto=format
200 OK 40 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/034a8c005e2a008a1f3e9a1678fd492f72c97698-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2e982b0dc3e31810a074eddcff080f39
8d45dff76d9208b71f4b5b3c2886164bd4c90ae4
ebf469fc70659a64c913d5db3210f07f5c3733412c54497676a7b84b258f8db4
GET /images/w9lc5y04/production/034a8c005e2a008a1f3e9a1678fd492f72c97698-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 40146
x-b3-traceid: b6114618196e66c5903530590534419b
x-b3-parentspanid: 1df37faa122f8552
x-b3-spanid: 6f5fea07cb729700
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-4
x-varnish-age: 7545
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 09:01:12 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 09 Jun 2021 11:49:59 GMT
content-type: image/webp
vary: origin, accept
age: 532413
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/e6d559f4a3575ca37527ee83e5f69b20c5d93cc9-360x648.jpg?q=75&auto=format
200 OK 21 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/e6d559f4a3575ca37527ee83e5f69b20c5d93cc9-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4b5eb8c93e4ce5a10e8d58c57ffce5d8
499bd6cecd2f76f39b4daacc990b902dcd027dfb
c76bf6fc1d8b3e0c3e26ac4e52a70c025cfd02c86a60ce2152ac0dcfd694fa9d
GET /images/w9lc5y04/production/e6d559f4a3575ca37527ee83e5f69b20c5d93cc9-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 21014
x-b3-traceid: 7019e3418f7e41c50dd0e6166c60edb8
x-b3-parentspanid: e87d619dfee3951f
x-b3-spanid: f6cbb1aa19e5c921
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-3
x-varnish-age: 909
accept-ranges: bytes
via: 1.1 google
date: Mon, 20 Nov 2023 11:23:21 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 20 Nov 2023 11:22:05 GMT
content-type: image/webp
vary: origin, accept
age: 1128684
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/f37c6aed020b1db8be527bf4d7ec67aef5031c7f-360x648.jpg?q=75&auto=format
200 OK 35 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/f37c6aed020b1db8be527bf4d7ec67aef5031c7f-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0a46c00c22d6cbdb794751e1c6963f01
a1db56a2ddd6eae1d9f8480814f5bb0d937e5bd7
f166c4b6b69b6dce5cd83c3fff52764e00939ca5504a7320919faa7edd45fce3
GET /images/w9lc5y04/production/f37c6aed020b1db8be527bf4d7ec67aef5031c7f-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 35274
x-b3-traceid: 41978cf5ffddb89e89b7ceb7f5f6dabc
x-b3-parentspanid: ef80cdd95aa54412
x-b3-spanid: 51782820028dbe36
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 11667
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:55 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 19 Apr 2021 11:28:30 GMT
content-type: image/webp
vary: origin, accept
age: 1492190
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/70b612b84199e3a1a2d8f79bc9ea6d437819878a-360x648.jpg?q=75&auto=format
200 OK 19 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/70b612b84199e3a1a2d8f79bc9ea6d437819878a-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a86d01dfa52919cf06dce7ea800f780b
6a7c96d0a2a2e51f917dfea824f3e6eabc8a8f36
2cc14e7d6ea6180f360f24ddc7643f5d72dbf788a23d1b50e1b8ad6977a1c397
GET /images/w9lc5y04/production/70b612b84199e3a1a2d8f79bc9ea6d437819878a-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 18774
x-b3-traceid: e96f2bda63cb4c715b5a76c1d3813001
x-b3-parentspanid: e962fce860aee74a
x-b3-spanid: 56d2a89ab4c47771
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-7
x-varnish-age: 38467
accept-ranges: bytes
via: 1.1 google
date: Fri, 01 Dec 2023 09:48:09 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 19 Apr 2021 11:35:37 GMT
content-type: image/webp
vary: origin, accept
age: 183996
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/93033245e862a653520485605dff027b70dab4c6-360x648.jpg?q=75&auto=format
200 OK 45 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/93033245e862a653520485605dff027b70dab4c6-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6fb1456774321ac97b87cad03089481d
e31a1a25f8258f7efa9f31ffdb602cc0476263ab
5ecf9d88ce69765ed780413784e00e1bf5f08dc4809891443035b55d68f062d8
GET /images/w9lc5y04/production/93033245e862a653520485605dff027b70dab4c6-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 44770
x-b3-traceid: 1aa3072ddf5c658c173c6514dba6b88a
x-b3-parentspanid: e1c1e3b5ab07aa1a
x-b3-spanid: e242c6e1a64e63fc
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 16:41:18 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 19 Apr 2021 11:40:21 GMT
content-type: image/webp
vary: origin, accept
age: 764007
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/f3900eec9c0d90796d9f16c8428ab29cef457771-360x648.jpg?q=75&auto=format
200 OK 14 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/f3900eec9c0d90796d9f16c8428ab29cef457771-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2c25ecb823cb69b57cb9ccd179a20a21
fd0d855db12496a1d46e6c276e013553ed2b8132
da1c542375ad9ff20664cd94f719f5bcc83996e7ba2c42ea8662ce8fd227ad92
GET /images/w9lc5y04/production/f3900eec9c0d90796d9f16c8428ab29cef457771-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 13866
x-b3-traceid: 3b173ffeeda5a722693283a0408a259e
x-b3-parentspanid: 3a131bd5fdfea729
x-b3-spanid: c1a61b37f2243d81
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 19229
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 16:47:23 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Tue, 01 Feb 2022 14:59:41 GMT
content-type: image/webp
vary: origin, accept
age: 763642
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/417b180088f04bc3acd39c40fa1100ba8467f909-360x648.jpg?q=75&auto=format
200 OK 48 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/417b180088f04bc3acd39c40fa1100ba8467f909-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7b369d662f0618ca4d3432b46e160745
fbe842e033b47937110b9d95e5bcab0ead18ea41
72f57c1fb82d557baff742f44fa1b7badf5705eb040d595f6666c18feb86178f
GET /images/w9lc5y04/production/417b180088f04bc3acd39c40fa1100ba8467f909-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 48466
x-b3-traceid: bc87ea57d76405469ebba8c09ba72e7c
x-b3-parentspanid: 1bbee7f42f952ba2
x-b3-spanid: f235dd6cdcec95f
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 20:00:16 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 19 Apr 2021 08:21:27 GMT
content-type: image/webp
vary: origin, accept
age: 752069
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/deb746cfa80896c61d0fdcfbb43d41f49c0ab7a7-360x648.jpg?q=75&auto=format
200 OK 25 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/deb746cfa80896c61d0fdcfbb43d41f49c0ab7a7-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b0774e382ff23133be83f0f684278a3e
4c97f4831042065e7a0e3f8a23a8ee646a60c1b4
301af9da4b537c5e4b3e28dc415de4bce0d344f937c404b380afa78f769fdfe9
GET /images/w9lc5y04/production/deb746cfa80896c61d0fdcfbb43d41f49c0ab7a7-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 24990
x-b3-traceid: c864bd657f40ff57a01fb6b04263d16c
x-b3-parentspanid: 25d7e2054140752c
x-b3-spanid: 3d5183344f3f3d1f
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 11666
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:55 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Tue, 08 Aug 2023 07:31:12 GMT
content-type: image/webp
vary: origin, accept
age: 1492190
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/red-bg-desktop-da827fb1.png
200 OK 1.9 MB URL GET HTTP/2 www.ibet.com/assets/red-bg-desktop-da827fb1.png
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type PNG image data, 2880 x 1100, 8-bit/color RGBA, non-interlaced\012- data
Size 1.9 MB (1865669 bytes)
Hash 87239eec12f918ba6c8b112e743f7c1b
89e69d386e949092caef144f7d864bc7e73c341a
da827fb13a7defb7ae8677cdfebdb92a2cdfd5735dc5ace7cff18e29c1735ff5
GET /assets/red-bg-desktop-da827fb1.png HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1865669
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 11:01:06 GMT
etag: "87239eec12f918ba6c8b112e743f7c1b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CbifoGrA6phnA0FK6q6sReOOosx73pGoFWBWXrGFBgd_BndLf7ueQQ==
age: 6819
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/b54794353124d8847145e5ceea576accbd87117c-360x648.jpg?q=75&auto=format
200 OK 42 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/b54794353124d8847145e5ceea576accbd87117c-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1478d448cd918c58bb8a6ad00860012f
cb37e5133719db7b9c0bcdcec416ece2dfdab545
f72fd2e7f57510ad3c3cf32e950939274ac3e9ed98780deb72b2841a0c3ada62
GET /images/w9lc5y04/production/b54794353124d8847145e5ceea576accbd87117c-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 41746
x-b3-traceid: 9ad4ecfb1b8c3dd0e121017caf76dfd7
x-b3-parentspanid: 0848e2da67f0c9fc
x-b3-spanid: 24dc4f7789ccabf7
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 8201
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 21:07:10 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 07 Jul 2021 08:12:33 GMT
content-type: image/webp
vary: origin, accept
age: 1439255
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/cf24591bcd8b0810f6800ba186ca015f946fc224-360x648.jpg?q=75&auto=format
200 OK 31 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/cf24591bcd8b0810f6800ba186ca015f946fc224-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3d4cbc7607728358635b4be946973aaf
013b2d398aa197544e78a029aabab154b4c19f60
769e01aa371a538203fd76912c2624d4d1dd5fa2cddb825054e240007cc2088f
GET /images/w9lc5y04/production/cf24591bcd8b0810f6800ba186ca015f946fc224-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 31014
x-b3-traceid: 382f81edff7f4250bc9120c17b6ef616
x-b3-parentspanid: 2e633a14e683dc21
x-b3-spanid: 6256d5577c45e3b7
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 26075
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 16:09:18 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 10 Jun 2021 07:48:44 GMT
content-type: image/webp
vary: origin, accept
age: 1457127
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/83f3b229f25211e3b8870eb979a8ff86b3360710-360x648.jpg?q=75&auto=format
200 OK 35 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/83f3b229f25211e3b8870eb979a8ff86b3360710-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 55f9ba7eb970c11a3da67532d24db207
2f73f456a1d6b6a62a14c28dbfc34251b4165579
61ba3c7774fa855075f4dbc0e34c8839f97e4e8d6e85220e76ce44fe1a6c5bd2
GET /images/w9lc5y04/production/83f3b229f25211e3b8870eb979a8ff86b3360710-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 34932
x-b3-traceid: 981f3aa6d9b3293ae08b66cd6046b4f6
x-b3-parentspanid: bfdfced2b140098e
x-b3-spanid: 6fdec714b3a7da88
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-2
x-varnish-age: 1296
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 09:17:46 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 19 Apr 2021 09:53:21 GMT
content-type: image/webp
vary: origin, accept
age: 1481819
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tracker.ads.sportradar.com/dist//sp-3.8.0.js
200 OK 24 kB URL GET HTTP/2 tracker.ads.sportradar.com/dist//sp-3.8.0.js
IP
ASN #20940 Akamai International B.V.
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjecttracker.ads.sportradar.com
Fingerprint2F:44:31:30:BF:6C:CE:CE:AD:55:13:9C:95:C2:98:BB:35:19:22:5B
ValidityThu, 05 Oct 2023 12:16:46 GMT - Wed, 03 Jan 2024 12:16:45 GMT
File type ASCII text, with very long lines (65378)
Hash 143272dddc33395008a84a86ac9c2e96
8a90a07a66c30b4fa28300001cf97db7baba420e
6361e3a49a38d1fdc74ec96bd29ee1ecd7c30045ccb0e5f361413d65cbf5ef87
GET /dist//sp-3.8.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 12 Sep 2023 08:33:18 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
etag: "143272dddc33395008a84a86ac9c2e96"
x-amz-cf-pop: AMS58-P6
x-amz-cf-id: nikS6Wo-aKJF4RdU9KTw9mjPc9Hvzu9Ss9lL9CrciBkjeaCsNT24rw==
vary: Accept-Encoding
content-encoding: gzip
date: Sun, 03 Dec 2023 12:54:45 GMT
content-length: 24162
cache-control: max-age=900, public
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/5788d8b65c59a60485f465171508e4277e2726bc-360x648.jpg?q=75&auto=format
200 OK 19 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/5788d8b65c59a60485f465171508e4277e2726bc-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cc3451f906cf5513f7bda77c8b319f6a
ce644ccbdb9fdb598361f8021ae1adb2f5471e96
52dc9655a65e7e3efea056acd3023b97c6b442d20f9c55e7d05b86c491fb17b8
GET /images/w9lc5y04/production/5788d8b65c59a60485f465171508e4277e2726bc-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 19368
x-b3-traceid: 91fdd664ceda411c7d32db18edaa1670
x-b3-parentspanid: 96e66af165e1f3e7
x-b3-spanid: 86442b164994ae53
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 801
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 18:32:37 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Fri, 05 Nov 2021 09:33:00 GMT
content-type: image/webp
vary: origin, accept
age: 843728
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/helpers-349aca53.js
200 OK 31 kB URL GET HTTP/2 www.ibet.com/assets/helpers-349aca53.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (2548)
Hash d727097942f6e92259894070d27be5da
a8a44d3c596c3b3fdeb7a2c0b4cca06016460180
4bb5cbe366b48b59f4bc30ccedc677c4393e4c53108264116c0b03c36587127b
GET /assets/helpers-349aca53.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: W/"d727097942f6e92259894070d27be5da"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3kKkq6PQz04k0YvG5bsPhxkkkTOFCDscxEeu5fDb6OD_kACiW7Tpxw==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/47d514b59e21a38a0bae130bcf69c305cb142825-360x648.jpg?q=75&auto=format
200 OK 28 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/47d514b59e21a38a0bae130bcf69c305cb142825-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b84cef3c76cecd8a7d5d8ed806677ac0
d3f019f5f36d1d1101809564043b56941365fd3d
8d1a782a02e8b7b7607a81a25ad98ba994c6baa3282a337cd27329dc319cceed
GET /images/w9lc5y04/production/47d514b59e21a38a0bae130bcf69c305cb142825-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 27676
x-b3-traceid: 68226312efc1525aeb1b49808ddbe33e
x-b3-parentspanid: f3dba54b979c81f3
x-b3-spanid: 7ebe2fe7b34ee0f2
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-4
x-varnish-age: 20025
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 17:50:07 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 29 Sep 2022 07:09:23 GMT
content-type: image/webp
vary: origin, accept
age: 1451078
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/e7d1b15d27b739aefe44028efb04ecf0e8d9a1f3-360x648.jpg?q=75&auto=format
200 OK 27 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/e7d1b15d27b739aefe44028efb04ecf0e8d9a1f3-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash eced7c713e8bd6af44bfd3974b10100d
c67b8a528c77553c1a00510e5cfc1aed873dbf95
e7e4ca34669728e6cde5add793eb38b291ce2bfdaf9c7f6fcefa0f7d04087182
GET /images/w9lc5y04/production/e7d1b15d27b739aefe44028efb04ecf0e8d9a1f3-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 27274
x-b3-traceid: d48a9640a228939be1283d078cc34d9e
x-b3-parentspanid: 0754eae4a07bc198
x-b3-spanid: 9fc04b8333218c25
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 715
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 11:20:56 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 08 Sep 2021 16:14:18 GMT
content-type: image/webp
vary: origin, accept
age: 524029
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/43cc5e2455bc35783713bcb8dd3c3d25b737d2c4-360x648.jpg?q=75&auto=format
200 OK 29 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/43cc5e2455bc35783713bcb8dd3c3d25b737d2c4-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c06b9ef722b22b8458c0e3e6ee0d86be
fdd336c34ad62742f887db817181fc41f37aac1b
7fe7db270de009d7391871b077efc6b503c09c8dd355c5198b96c0808857983a
GET /images/w9lc5y04/production/43cc5e2455bc35783713bcb8dd3c3d25b737d2c4-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 29126
x-b3-traceid: fd0435a89bfe450ddf32cdc1874e6d0b
x-b3-parentspanid: 100283824a7e819f
x-b3-spanid: e27f8372f12fc772
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 178
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 23:21:43 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 14 Jun 2021 08:33:51 GMT
content-type: image/webp
vary: origin, accept
age: 1431182
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/134920aa6de2b7750bfc3178f3d43fa4cbee1381-360x648.jpg?q=75&auto=format
200 OK 55 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/134920aa6de2b7750bfc3178f3d43fa4cbee1381-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d28d7dcab196078ca3f30147d0632f3b
fde5b42507e6ccf04f2b7dd0b270545ffff5ee3d
4676aaca854dad389eebad5b0426778226d43cf42b6047b6b8e029f287a1b652
GET /images/w9lc5y04/production/134920aa6de2b7750bfc3178f3d43fa4cbee1381-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 55418
x-b3-traceid: 61df3f8d4760c31e9fdec3efb87015f7
x-b3-parentspanid: 1b073d422d190f48
x-b3-spanid: 275c30ae46826252
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 787
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 09:26:15 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 26 Apr 2021 08:30:10 GMT
content-type: image/webp
vary: origin, accept
age: 1481310
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/35f84c422b8d397097307afe22e85925cc54d6c1-360x648.jpg?q=75&auto=format
200 OK 26 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/35f84c422b8d397097307afe22e85925cc54d6c1-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f459119df9c6e430b352c953e93120b4
b250d735984d2cf42a7877f6b93ecb69255518fc
9dda6be1a40d1049b4e93b2996342dc30469094a50e88335f2d4adeac8e11ed5
GET /images/w9lc5y04/production/35f84c422b8d397097307afe22e85925cc54d6c1-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 25608
x-b3-traceid: db3c88aaf2b68d8b428b9a56d37137ec
x-b3-parentspanid: 2254ec98024b109e
x-b3-spanid: 76d0dad82fc7443f
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 1698
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 09:29:39 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 530706
last-modified: Mon, 14 Jun 2021 08:49:45 GMT
content-type: image/webp
vary: origin, accept
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/4ec1906b9d63a3d8533d7538b67ab1c290609c8f-360x648.jpg?q=75&auto=format
200 OK 21 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/4ec1906b9d63a3d8533d7538b67ab1c290609c8f-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e0fe1d04655c4a293ebd9f01bac7775a
e36f372c82d4b462bc3d371cec29e96d67fa800a
cd56deac03bdec82d88933e4403d6c16168b807445237b060381905525ee96b4
GET /images/w9lc5y04/production/4ec1906b9d63a3d8533d7538b67ab1c290609c8f-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 20578
x-b3-traceid: e946be23a8ea1e26dda51402546ea325
x-b3-parentspanid: 3e0b0c08730c3c53
x-b3-spanid: 25e91c54d40d05d0
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 10704
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 20:25:27 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 26 Apr 2021 08:27:33 GMT
content-type: image/webp
vary: origin, accept
age: 1441758
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/d19a7dc9350607f7243dc4d2f9a68ae9500459da-360x648.jpg?q=75&auto=format
200 OK 16 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/d19a7dc9350607f7243dc4d2f9a68ae9500459da-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f868db2d91641d1143fed18e52abd99c
6131d1e5fa8cd69454cfed34c94ef93bfcd7b38b
a32367b64281d83e0d6b530893cccbc6db03b01b8b8010bfb486d6dce14cff9b
GET /images/w9lc5y04/production/d19a7dc9350607f7243dc4d2f9a68ae9500459da-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 15844
x-b3-traceid: 6e84faa248aa0a6d63d205654bbbb08b
x-b3-parentspanid: 385b91d41b9227ad
x-b3-spanid: fa5431a1cab13961
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 11193
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:56:07 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 14 Jun 2021 08:12:50 GMT
content-type: image/webp
vary: origin, accept
age: 1490318
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/ade8e11475aa365473dfbf94e32769bcdb6966c0-360x648.jpg?q=75&auto=format
200 OK 24 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/ade8e11475aa365473dfbf94e32769bcdb6966c0-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 42d57afaa446d360a5c6675b202aa677
ea933834b7c6a2e6910cea710510d7e7ceeb61d4
73d0352bf00519a333e8e64b92d1833c377592e4250e685318152a40027f01d5
GET /images/w9lc5y04/production/ade8e11475aa365473dfbf94e32769bcdb6966c0-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 24276
x-b3-traceid: 5a7bcfa3e2879364697b22e15ff478cf
x-b3-parentspanid: c8877b5dbae5d5e6
x-b3-spanid: 5bdd8aa529e4ab53
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-2
x-varnish-age: 11666
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:56 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 28 Apr 2021 09:15:48 GMT
content-type: image/webp
vary: origin, accept
age: 1492189
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/11ae3106175377ee3ac804225b052c2087e4d809-360x648.jpg?q=75&auto=format
200 OK 26 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/11ae3106175377ee3ac804225b052c2087e4d809-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2b4c380622762498eebd7d19115a7f38
152433bf425dd4be0d5faf1518afd56e67e622a6
664b1e524aaba89618c2804d1dc7e3bdd20a1b41e36da9e9875c6079e39694fa
GET /images/w9lc5y04/production/11ae3106175377ee3ac804225b052c2087e4d809-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 25936
x-b3-traceid: f770f3ce158927d6760858acac87f4ec
x-b3-parentspanid: 675903275bf48913
x-b3-spanid: 252f357be5d87572
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 09:39:22 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 14 Jun 2021 08:15:50 GMT
content-type: image/webp
vary: origin, accept
age: 1480523
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/56491bd99ad297402b1a9dedcb246ca1657a7b9b-360x648.jpg?q=75&auto=format
200 OK 26 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/56491bd99ad297402b1a9dedcb246ca1657a7b9b-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a1e9ea14bf8189b123531504b8bcb68e
f3d2119af6ef34640cc5b3f610e27554038d0e5b
66e17e2ce873884bc335ec6aba999dde16749bae9931366aa8f211d72105a5ba
GET /images/w9lc5y04/production/56491bd99ad297402b1a9dedcb246ca1657a7b9b-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 26544
x-b3-traceid: cf93f3c53b698f55e29037b308bcdcab
x-b3-parentspanid: da96c27193fbae3b
x-b3-spanid: ba19d901d85ed432
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 50449
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 09:27:24 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 11 May 2022 09:29:20 GMT
content-type: image/webp
vary: origin, accept
age: 1481241
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
api.fouanalytics.com/api/init-2315cm3nkx3pemx84qeo.js
200 OK 222 B URL GET HTTP/2 api.fouanalytics.com/api/init-2315cm3nkx3pemx84qeo.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectfouanalytics.com
Fingerprint6A:6F:F4:F8:96:F5:AF:BD:04:DA:3B:26:07:70:F4:17:1F:A7:43:82
ValidityTue, 07 Nov 2023 01:56:38 GMT - Mon, 05 Feb 2024 01:56:37 GMT
File type ASCII text, with very long lines (317)
Hash 5c38cff190736ce54a869acf9d05476a
57d94266809f5f498abdaa7a38fc782af5f82c34
52f795a80feb919b3626bb922619e655d7136df5d93d615f900b0318e74c8d1c
GET /api/init-2315cm3nkx3pemx84qeo.js HTTP/1.1
Host: api.fouanalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:44 GMT
content-type: text/javascript
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
expires: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gqe1z8P8lNgjNnmKjWtcznMHluuQ6iqozHDoev1VxpAiS6gGG3gOHw7irq8WQtrDCrOWY2%2B3YSMSwoqOjk9QONCUeoLTh6U1youSz56HAtdYKukLexIzs6VTiBlj7mP5KzpofCJKdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82fbf5be8c19368f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/52b16929c1e2b0310000d7270b4d4f92eece9b53-360x648.jpg?q=75&auto=format
200 OK 36 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/52b16929c1e2b0310000d7270b4d4f92eece9b53-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4f52de00c87e38aebddf7a7eb48c6a9c
8026ebf08a393c1ce6a09a4ee557553d8b8aacab
c69b2436fe66143fbf6cbaa8627e9ed49cf7a6aae6b9f07722f6bfcd747aba76
GET /images/w9lc5y04/production/52b16929c1e2b0310000d7270b4d4f92eece9b53-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 35814
x-b3-traceid: 926e92f1a201cedf25298d2a1166e41b
x-b3-parentspanid: 3260273f88f11d29
x-b3-spanid: 73427b039d9a30bc
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 61179
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:12 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 26 Apr 2021 08:22:23 GMT
content-type: image/webp
vary: origin, accept
age: 1492233
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/a60ca338d2b33729da676562791d017572cbaca9-360x648.jpg?q=75&auto=format
200 OK 34 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/a60ca338d2b33729da676562791d017572cbaca9-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 66d8d444089f63e5e22fa8736e5379b0
dac0b46c6e65a8552dc7e5cbdd7ed3b584f3eb14
6b673f228aeb538513bd46d3cabcc519fc4d37f58057b847d4505704821075a6
GET /images/w9lc5y04/production/a60ca338d2b33729da676562791d017572cbaca9-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 34024
x-b3-traceid: be670065534ee385c4546f0708cef785
x-b3-parentspanid: 41a88a09c5995874
x-b3-spanid: 8b7c816061085c3c
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 3932
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 22:22:41 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 28 Apr 2021 09:13:05 GMT
content-type: image/webp
vary: origin, accept
age: 1434724
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/fb47a2fc7412f2be656e701ee800e0a63146af49-360x648.jpg?q=75&auto=format
200 OK 32 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/fb47a2fc7412f2be656e701ee800e0a63146af49-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4c8e51f63a8c1c8ca32d8efb0f2a0618
efa20f787a9ded5c059cdaa144ff3b959a98f3a8
957e37f1e7aedd74596bd94e70aaeab025a0d573c3dc79ec56b9bc4290497cd8
GET /images/w9lc5y04/production/fb47a2fc7412f2be656e701ee800e0a63146af49-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 31740
x-b3-traceid: e62efd7bfae404b3d5adcb0ca590ee34
x-b3-parentspanid: aa3cc7e8c6bc0b4f
x-b3-spanid: 33a7087f66b5ecc8
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 23:24:42 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 06 Sep 2021 19:39:52 GMT
content-type: image/webp
vary: origin, accept
age: 1431003
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/05f3be9b8b821eca62bb5341bf8c8b762dd843f0-360x648.jpg?q=75&auto=format
200 OK 41 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/05f3be9b8b821eca62bb5341bf8c8b762dd843f0-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash de501ba222aa04546eca2f3c021f65f7
8167cd475969cf95d5d6621c52d462054924441f
45ca3e04f79c73df61e92f0ead8528a5c8911b4762bbaf73f0c3a1c140f67228
GET /images/w9lc5y04/production/05f3be9b8b821eca62bb5341bf8c8b762dd843f0-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 40940
x-b3-traceid: 29e19bae5b7dee90b589d974ffa029b8
x-b3-parentspanid: 3a194f2d2332a23b
x-b3-spanid: 28475ca0501876ff
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 8270
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 20:48:39 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 28 Apr 2021 09:47:38 GMT
content-type: image/webp
vary: origin, accept
age: 835566
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/f84ed70b5ff46c4c11a9c15a8ce70864f4632908-360x648.jpg?q=75&auto=format
200 OK 33 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/f84ed70b5ff46c4c11a9c15a8ce70864f4632908-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5ac7adf6482838fa01a90d8e25eb3f25
fd1bcc440f7ceb61be7096506d2a2f7fed0c6223
845541a798fe7e1b14363826e3e967739c72f0be0e03ce83e6bad47a255246af
GET /images/w9lc5y04/production/f84ed70b5ff46c4c11a9c15a8ce70864f4632908-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 33142
x-b3-traceid: 150d1d185a53ab52164f2eb92a619af1
x-b3-parentspanid: a04fe5d7888795a3
x-b3-spanid: 605a580850a618e8
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 3187
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 22:21:54 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 28 Apr 2021 09:35:12 GMT
content-type: image/webp
vary: origin, accept
age: 743571
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/1aed95d6db6096682e3ddbc64e2754d78c4a1b53-360x648.jpg?q=75&auto=format
200 OK 40 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/1aed95d6db6096682e3ddbc64e2754d78c4a1b53-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f5a19555df1f54e9ad39a2deb6374b96
d58d4864127a082b55a1d9ba87cd649ebe2edff8
5e6c98805486abf5947a7a8a9d542eaf603754da92ac03353c77f8a0a3ef3fdb
GET /images/w9lc5y04/production/1aed95d6db6096682e3ddbc64e2754d78c4a1b53-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 40088
x-b3-traceid: b66d29b630ab7519620a797c597674d7
x-b3-parentspanid: cf1cde751e367ecc
x-b3-spanid: 79d4bf187ebf348e
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-7
x-varnish-age: 55790
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 09:39:48 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 26 Apr 2021 08:12:57 GMT
content-type: image/webp
vary: origin, accept
age: 875697
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/5c96237a6d59d0a8493a82e7bc50e433f3512f28-360x648.jpg?q=75&auto=format
200 OK 26 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/5c96237a6d59d0a8493a82e7bc50e433f3512f28-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e0286147024a9d907818a6d86e579de8
44a5be459039db3c9b381402f6c18ebcb81997b0
f8c497068bca751605d9e1df8c311a34a6d123307d1c31c3ff8439ef2d93defa
GET /images/w9lc5y04/production/5c96237a6d59d0a8493a82e7bc50e433f3512f28-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 25922
x-b3-traceid: 41c8ebf7bc8566e45e4ba4b26316b784
x-b3-parentspanid: 358eedf74396d12c
x-b3-spanid: 230bb8cf68f6ca8c
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 16728
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 18:38:00 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 757005
last-modified: Mon, 26 Apr 2021 08:11:04 GMT
content-type: image/webp
vary: origin, accept
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/f05767589069324ae9d7a955076f130747a3ea62-360x648.jpg?q=75&auto=format
200 OK 33 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/f05767589069324ae9d7a955076f130747a3ea62-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 86025b46bf0b9e8216fa4bc6486133cf
b6c3822e6363e50f5491ee29df4655b2662b9924
cacb905d6eb4800b11f162eb357cb09ff2232477237b21a897085b4919430b6f
GET /images/w9lc5y04/production/f05767589069324ae9d7a955076f130747a3ea62-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 32994
x-b3-traceid: b1c874787dbd3cc1223fe19a8f97f2f0
x-b3-parentspanid: 609ad32e809a7a7b
x-b3-spanid: 5e2ff3de13807a42
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 9383
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 20:53:35 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 28 Apr 2021 09:37:59 GMT
content-type: image/webp
vary: origin, accept
age: 1440070
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/8413cb70c8b56008511a52973f3da6d25fed6790-360x648.jpg?q=75&auto=format
200 OK 34 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/8413cb70c8b56008511a52973f3da6d25fed6790-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b0bce308f26b15d537a6186acf2653d8
f0eebf35cb4da8b7b4839d9869351973b472886e
c2693e6baa84311b529c31542c10940323b9fbfab6e7d9cf8c8ee4bdd453ab7b
GET /images/w9lc5y04/production/8413cb70c8b56008511a52973f3da6d25fed6790-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 33624
x-b3-traceid: bd6b8a99bf4d083338090790e6256f36
x-b3-parentspanid: 5b7a104bcbc515cd
x-b3-spanid: 12c494c9edfa0cee
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-8
x-varnish-age: 17966
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 18:28:48 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Tue, 17 Jan 2023 11:50:22 GMT
content-type: image/webp
vary: origin, accept
age: 1448757
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/1b5d3434fe1ba559ffdee3df2e3f37fb95efb893-360x648.jpg?q=75&auto=format
200 OK 43 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/1b5d3434fe1ba559ffdee3df2e3f37fb95efb893-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 89f27066714aefa6aad3fca608d75d88
f8df65593f7d832ef68ab99417df9f0985073dbc
7f38688414b0e8959c956491942530a82af03a7c0510733af255c926caccc8f5
GET /images/w9lc5y04/production/1b5d3434fe1ba559ffdee3df2e3f37fb95efb893-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 43186
x-b3-traceid: 4e4f90f78824cb6d942ffa591df6a6a3
x-b3-parentspanid: fc1f39d642bae7b6
x-b3-spanid: 78860676d6a2f995
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-8
x-varnish-age: 9795
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:56:07 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 28 Apr 2021 09:41:23 GMT
content-type: image/webp
vary: origin, accept
age: 1490318
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
mpsnare.iesnare.com/time.mp3?nocache=0.1954700881469602
206 Partial Content 504 B URL GET HTTP/1.1 mpsnare.iesnare.com/time.mp3?nocache=0.1954700881469602
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerDigiCert Inc
Subjectmpsnare.iesnare.com
Fingerprint76:12:1D:E6:DA:A3:5F:1E:E7:FC:3D:15:6F:B5:5D:0A:2E:F1:A2:D5
ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
File type MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Hash cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.1954700881469602 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Server: nginx
Date: Sun, 03 Dec 2023 12:54:45 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
200 OK 1.5 kB URL GET HTTP/1.1 a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerEntrust, Inc.
Subject*.sportradarserving.com
FingerprintD0:C1:99:26:D2:AD:C7:6B:F2:AD:C4:44:44:70:7C:4F:D2:49:9B:C4
ValidityWed, 20 Sep 2023 07:44:29 GMT - Mon, 14 Oct 2024 07:44:28 GMT
File type ASCII text, with very long lines (1527), with no line terminators
Hash e44a914782056e049a4ffffd2e4daa66
88b6d3b5e09ce33468e1d16a4a8a2086c8396600
c70efdac153c8c0e10eb09d36ae3c34b814a6f6acf5d6b40dca23650578e5017
GET /ul_cb/pixel?type=js&aid=1622&id=7046 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
DNT: 1
Connection: keep-alive
Cookie: zuuid=7f4e898e-2e4b-4836-bf7f-318ccc0f1f43; c=1701608085; zuuid_lu=1701608085
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Sun, 03 Dec 2023 12:54:45 GMT
Set-Cookie: zuuid=7f4e898e-2e4b-4836-bf7f-318ccc0f1f43; path=/; expires=Mon, 02-Dec-2024 12:54:45 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1701608085; path=/; expires=Mon, 02-Dec-2024 12:54:45 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Mon, 02-Dec-2024 12:54:45 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1701608085; path=/; expires=Mon, 02-Dec-2024 12:54:45 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,470865285; path=/; expires=Mon, 02-Dec-2024 12:54:45 GMT; domain=sportradarserving.com; samesite=none; secure
cm2=!bidswitch,470937285; path=/; expires=Mon, 02-Dec-2024 12:54:45 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 1527
Connection: keep-alive
mpsnare.iesnare.com/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
200 OK 420 B URL GET HTTP/1.1 mpsnare.iesnare.com/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerDigiCert Inc
Subjectmpsnare.iesnare.com
Fingerprint76:12:1D:E6:DA:A3:5F:1E:E7:FC:3D:15:6F:B5:5D:0A:2E:F1:A2:D5
ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (377)
Hash b728c70a61317b9d3775cfa71dcc60e4
3e1a270656bc67a5bec03a55521f92d640c74927
2e850740d49d530994fb23d70f12374af6d0099e19f331608c13fff7fc8d3168
GET /5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 03 Dec 2023 12:54:45 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 May 2014 00:01:40 GMT
Expires: Mon, 02 Dec 2024 12:54:45 GMT
Cache-Control: private
p3p: CP="NON DSP COR CURa"
Accept-CH: Sec-CH-UA-Full-Version, Sec-CH-UA-Arch, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-WoW64, ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
mpsnare.iesnare.com/time.mp3?nocache=0.05372192533273079
206 Partial Content 504 B URL GET HTTP/1.1 mpsnare.iesnare.com/time.mp3?nocache=0.05372192533273079
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerDigiCert Inc
Subjectmpsnare.iesnare.com
Fingerprint76:12:1D:E6:DA:A3:5F:1E:E7:FC:3D:15:6F:B5:5D:0A:2E:F1:A2:D5
ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
File type MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Hash cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.05372192533273079 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Server: nginx
Date: Sun, 03 Dec 2023 12:54:45 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
niwooghu.com/impression/cNwZJWGrVkDG7VJnaR0MOHMt2SAruaFjqkLzA50_WZh7IiejvUh7XmKQcPKfize5-eCu27LbB3vA1PNayA1j71qi1NcocmcfMsA8S9Gd5mWdKHd9yV0NvGHgo_X5iPgjnM41V-d6xoNSe5Pl6t0SBX_DrHCh8rV0snG7IJCKTzhZErNwtxZnSv1D57-QyJOHH-UN0isoBpNYbKTN_2WMCHh_Ukh1fienAIdFJpJ0hGgKFs0lvH1KVwYIIijdHw_vHNAk-t9sA8RPj0f6EV513R9H_yGZYpQplbLUkAw4KKXmYTQsU9T75x84QBXMCT2nDZP9gRl3zrhZqDIO7P3cz7wNiz_pdCQyMIBnAKPq7g0763SKJ3z2f2NavoeWvwfxdJDo46XcG-t3u6ZW9wN2AmAQeus9i5LNKODL7rWQGxm6-Zfyi0o4S2E63DWHpIDuucb60gDfM6_ss08jvI5BiWIDBYZOh9iE4fG8HELqJ2bIrT9Rl_c29dmwvDqMBXZPw32si73QavQOZm2t1PKelCAt_6R1camSls4ZNYusHEbZNx5H2F35Q9zFHavb0sQWTnlaTDzCEqCauuKK9aXzvVTTDLQsK9NMzV_I47ZRftcdNKmhc8z5c_vfbGM7SyKZ7rJC0ozN8XgyQWyF9_VYiPy-8n6rKQwdOils82HXpwz4FVnxi3CCR_cTaVwQ19neCyRAmifkRT_sr8Yj8kLPPaYaML0OuglB5_dOD8Om1_iVuOEsbJRPUlv96clj8PJsPuzon_FNF_21r-KAJWHGrsziiWnhdfMCAbvCmD5bP7HcDGJTCI3dpAsds6a2Oggt?_z=5776801&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 43 B URL GET HTTP/2 niwooghu.com/impression/cNwZJWGrVkDG7VJnaR0MOHMt2SAruaFjqkLzA50_WZh7IiejvUh7XmKQcPKfize5-eCu27LbB3vA1PNayA1j71qi1NcocmcfMsA8S9Gd5mWdKHd9yV0NvGHgo_X5iPgjnM41V-d6xoNSe5Pl6t0SBX_DrHCh8rV0snG7IJCKTzhZErNwtxZnSv1D57-QyJOHH-UN0isoBpNYbKTN_2WMCHh_Ukh1fienAIdFJpJ0hGgKFs0lvH1KVwYIIijdHw_vHNAk-t9sA8RPj0f6EV513R9H_yGZYpQplbLUkAw4KKXmYTQsU9T75x84QBXMCT2nDZP9gRl3zrhZqDIO7P3cz7wNiz_pdCQyMIBnAKPq7g0763SKJ3z2f2NavoeWvwfxdJDo46XcG-t3u6ZW9wN2AmAQeus9i5LNKODL7rWQGxm6-Zfyi0o4S2E63DWHpIDuucb60gDfM6_ss08jvI5BiWIDBYZOh9iE4fG8HELqJ2bIrT9Rl_c29dmwvDqMBXZPw32si73QavQOZm2t1PKelCAt_6R1camSls4ZNYusHEbZNx5H2F35Q9zFHavb0sQWTnlaTDzCEqCauuKK9aXzvVTTDLQsK9NMzV_I47ZRftcdNKmhc8z5c_vfbGM7SyKZ7rJC0ozN8XgyQWyF9_VYiPy-8n6rKQwdOils82HXpwz4FVnxi3CCR_cTaVwQ19neCyRAmifkRT_sr8Yj8kLPPaYaML0OuglB5_dOD8Om1_iVuOEsbJRPUlv96clj8PJsPuzon_FNF_21r-KAJWHGrsziiWnhdfMCAbvCmD5bP7HcDGJTCI3dpAsds6a2Oggt?_z=5776801&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Certificate IssuerLet's Encrypt
Subjectniwooghu.com
Fingerprint3D:54:BD:F6:52:70:24:C2:E6:6B:18:3F:1F:1D:6E:34:28:B2:6C:9F
ValidityFri, 13 Oct 2023 05:12:56 GMT - Thu, 11 Jan 2024 05:12:55 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impression/cNwZJWGrVkDG7VJnaR0MOHMt2SAruaFjqkLzA50_WZh7IiejvUh7XmKQcPKfize5-eCu27LbB3vA1PNayA1j71qi1NcocmcfMsA8S9Gd5mWdKHd9yV0NvGHgo_X5iPgjnM41V-d6xoNSe5Pl6t0SBX_DrHCh8rV0snG7IJCKTzhZErNwtxZnSv1D57-QyJOHH-UN0isoBpNYbKTN_2WMCHh_Ukh1fienAIdFJpJ0hGgKFs0lvH1KVwYIIijdHw_vHNAk-t9sA8RPj0f6EV513R9H_yGZYpQplbLUkAw4KKXmYTQsU9T75x84QBXMCT2nDZP9gRl3zrhZqDIO7P3cz7wNiz_pdCQyMIBnAKPq7g0763SKJ3z2f2NavoeWvwfxdJDo46XcG-t3u6ZW9wN2AmAQeus9i5LNKODL7rWQGxm6-Zfyi0o4S2E63DWHpIDuucb60gDfM6_ss08jvI5BiWIDBYZOh9iE4fG8HELqJ2bIrT9Rl_c29dmwvDqMBXZPw32si73QavQOZm2t1PKelCAt_6R1camSls4ZNYusHEbZNx5H2F35Q9zFHavb0sQWTnlaTDzCEqCauuKK9aXzvVTTDLQsK9NMzV_I47ZRftcdNKmhc8z5c_vfbGM7SyKZ7rJC0ozN8XgyQWyF9_VYiPy-8n6rKQwdOils82HXpwz4FVnxi3CCR_cTaVwQ19neCyRAmifkRT_sr8Yj8kLPPaYaML0OuglB5_dOD8Om1_iVuOEsbJRPUlv96clj8PJsPuzon_FNF_21r-KAJWHGrsziiWnhdfMCAbvCmD5bP7HcDGJTCI3dpAsds6a2Oggt?_z=5776801&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
DNT: 1
Connection: keep-alive
Cookie: OAID=c5d479bb3c974219b47393ae553cfb97
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:45 GMT
content-type: image/gif
content-length: 43
x-trace-id: c61d2e1d200468d746324429ed34f198
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
offerimage.com/www/images/1254ddfd42baa84cea2221d2e82fa511.png
200 OK 70 kB URL GET HTTP/2 offerimage.com/www/images/1254ddfd42baa84cea2221d2e82fa511.png
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 1254ddfd42baa84cea2221d2e82fa511
84b26dfb937aa8b9746a20e52f9d1330a9a29eab
eba572a9f6836dc915e75251fed8c1e6129c7013cb380af95899e9824a82fd92
GET /www/images/1254ddfd42baa84cea2221d2e82fa511.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:46 GMT
content-type: image/png
content-length: 69506
last-modified: Mon, 28 Aug 2023 16:35:16 GMT
etag: "64ecccc4-10f82"
expires: Mon, 04 Dec 2023 08:19:32 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 16514
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82fbf5cb2ff60a3d-ARN
X-Firefox-Spdy: h2
aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
5.8 kB URL aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
IP
File type gzip compressed data, max speed, from Unix\012- data
Hash 26f74a51f3a41ab81bb1600c4dff77f8
94f623e1202d4fe4243e01b574201944e21ac815
68c20496e6e0670329c0a07f07d26fa6c870903c3c5f0f5082d8f6a09373be62
GET /update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:59 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
cache-control: public, max-age=90
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-01-19-16-42-22.chain; p384ecdsa=Z604PnwGT4mDx3rWfvYc2ncHlwnQ06A0NRbuI7lICc_Skrt1Lo5kS-hhIjbmpQLhdJOHM8EcgEVCCXHsvcKDLy6ZyDPSV4jgIm1AwKzW60g5A8ITuPAT_AjXQGGj8GcV
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
512 kB URL ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
IP
File type Zip archive data, at least v2.0 to extract, compression method=deflate\012- data
Size 512 kB (511815 bytes)
Hash 152eda253e242e18443ef3282495bc7c
ff0fa85565f21ec4931baad4573b4c0bd08c4019
8e03090fee16f6e0ee2e436af8e51d0c3deed6d9f0db80dec048e668fc009a48
GET /openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip HTTP/1.1
Host: ciscobinary.openh264.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Last-Modified: Thu, 16 Nov 2023 07:38:15 GMT
ETag: 152eda253e242e18443ef3282495bc7c
Content-Length: 511815
Accept-Ranges: bytes
X-Timestamp: 1700120294.87662
Content-Type: application/zip
X-Trans-Id: tx8c0ef9e37b1a4ab29193d-0065580fd1dfw1
Cache-Control: public, max-age=62297
Expires: Mon, 04 Dec 2023 06:13:16 GMT
Date: Sun, 03 Dec 2023 12:54:59 GMT
Connection: keep-alive
www.ibet.com/assets/money-comes-f69b01fb.svg
200 OK 2.9 kB URL GET HTTP/2 www.ibet.com/assets/money-comes-f69b01fb.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (847)
Hash 789ceb0c85dafd8d24f2b66daf6057ba
11a33e5d71f1b277fc7d8bc4ee49f961ff140a17
f69b01fbec5d4b2679b1a6b5c3f7d297ccb045bb87d40bf581a606a97d110346
GET /assets/money-comes-f69b01fb.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:47:26 GMT
etag: W/"789ceb0c85dafd8d24f2b66daf6057ba"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fGOyvZh5-WMwiUlZzSr-0CMDAd0PB18c2lVXHhWF1XSXPAPIiagdKQ==
age: 22374
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/document-search-4855df34.svg
200 OK 3.4 kB URL GET HTTP/2 www.ibet.com/assets/document-search-4855df34.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (624)
Hash 339ba49cc8f0f5837ce0363adfd0df6f
ced950cfaac412ca382bc9782db62094301ca3fb
4855df34f763be51bba0b39b0c0800f38fea4f4f166a95dac6b2184acae53496
GET /assets/document-search-4855df34.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:42:20 GMT
etag: W/"339ba49cc8f0f5837ce0363adfd0df6f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oHCQyMAPeOQmZiOLolafvnd2zp0f7rDeAD8c8KwTI7uRbonMeLR-Fw==
age: 22374
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
api.fouanalytics.com/api/x
200 OK 1.2 kB URL POST HTTP/3 api.fouanalytics.com/api/x
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectfouanalytics.com
Fingerprint6A:6F:F4:F8:96:F5:AF:BD:04:DA:3B:26:07:70:F4:17:1F:A7:43:82
ValidityTue, 07 Nov 2023 01:56:38 GMT - Mon, 05 Feb 2024 01:56:37 GMT
File type PEM certificate\012- , ASCII text
Hash 40901a8e1ff0c7c7af525d249aaf14ca
536b9b8172e27b3c0c2b957d28d98aae9f5d7013
865dd39def93692e37eef786ad2c8cc23e7d0c975e5371aadd94657e67cbbcb9
POST /api/x HTTP/1.1
Host: api.fouanalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2817
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 12:54:45 GMT
access-control-allow-origin: *
access-control-allow-methods: *
cf-cache-status: DYNAMIC
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XQBjZ8XWleedM8Z%2BS4UP53lYzsq1qUcNaq4aQP7h1nRtJ84FcQBcXsfuHIr96XeXCF8H78SrgUPhQeDA1%2F86qcsKPgAEYiugzLeetw9IHXFohUEArZH%2F6VvSTCH%2BXXNgceutahhUgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82fbf5c80b9b6361-LHR
alt-svc: h3=":443"; ma=86400
mpsnare.iesnare.com/star
101 Switching Protocols 0 B IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerDigiCert Inc
Subjectmpsnare.iesnare.com
Fingerprint76:12:1D:E6:DA:A3:5F:1E:E7:FC:3D:15:6F:B5:5D:0A:2E:F1:A2:D5
ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: B2fmL+aB3946muilScEAag==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sun, 03 Dec 2023 12:54:44 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: UgFU/BIXy2zrSdsSIyII41o6QwM=
Upgrade: WebSocket
cdn.sanity.io/images/w9lc5y04/production/69e4953b38e30c77873eef38e343a1fd67fcde66-360x648.jpg?q=75&auto=format
200 OK 28 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/69e4953b38e30c77873eef38e343a1fd67fcde66-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash babb90025db38ec53193d9743dbe9699
abe3415e61a64daca984c36d1ba5f49c9b2f38dd
05bc35e0a34cf0060e94b7c4233379003a5e349989f18170ee29f00567559514
GET /images/w9lc5y04/production/69e4953b38e30c77873eef38e343a1fd67fcde66-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 27690
x-b3-traceid: d82aa9ec97e467a1920723cd0a26bb21
x-b3-parentspanid: 497d89f958806a34
x-b3-spanid: a3389552ea07714a
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 690
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 11:10:05 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 14 Jun 2021 08:46:43 GMT
content-type: image/webp
vary: origin, accept
age: 524680
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
record.ibetaffiliates.com/_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5776779
301 Moved Permanently 2.5 kB URL GET HTTP/2 record.ibetaffiliates.com/_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5776779
IP
Certificate IssuerGoogle Trust Services LLC
Subjectrecord.ibetaffiliates.com
Fingerprint20:9C:01:BD:F3:33:41:C8:18:62:F8:9E:85:26:D1:98:D9:33:FB:4A
ValiditySat, 21 Oct 2023 17:41:44 GMT - Fri, 19 Jan 2024 17:41:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5776779 HTTP/1.1
Host: record.ibetaffiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sun, 03 Dec 2023 12:54:41 GMT
content-type: text/html; charset=utf-8
location: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
cache-control: private, no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
set-cookie: VID1=KCxTPFctUzhTLCMwYApgCg%3D%3D; expires=Tue, 03-Dec-2024 12:54:41 GMT; Max-Age=31622400; path=/; secure; HttpOnly; SameSite=None
ZBan=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk; expires=Tue, 03-Dec-2024 12:54:41 GMT; Max-Age=31622400; path=/; domain=.ibetaffiliates.com; secure; HttpOnly; SameSite=None
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
vary: Accept-Encoding
server: cloudflare
cf-ray: 82fbf5aa1dab95ee-ARN
X-Firefox-Spdy: h2
www.ibet.com/assets/selectors-76504d5e.js
200 OK 2.3 kB URL GET HTTP/2 www.ibet.com/assets/selectors-76504d5e.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (2362), with no line terminators
Hash 68d1e8b1e3679d00e311786ef4300dec
e96cec5891c6db720e8e599112d21837e22afeeb
421d139a354f9f4d5309e80efd3fb5d4c48ad03985a5ec24f44deb92df60b254
GET /assets/selectors-76504d5e.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/AppRoutes-8f87b6d0.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: W/"df16151a49591129f61ebdd1666da64f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N_DKoFEPE0Fmjw5jsknvsmjMN-_dNeDLj5W28gU5r-8kT0UqQi2Qhw==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
niwooghu.com/400/5776801?ymid=&var=&var3=
200 OK 82 kB URL GET HTTP/2 niwooghu.com/400/5776801?ymid=&var=&var3=
IP
Certificate IssuerLet's Encrypt
Subjectniwooghu.com
Fingerprint3D:54:BD:F6:52:70:24:C2:E6:6B:18:3F:1F:1D:6E:34:28:B2:6C:9F
ValidityFri, 13 Oct 2023 05:12:56 GMT - Thu, 11 Jan 2024 05:12:55 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2be40d29bde497ddd57fcd937064981a
363efa06e31e8e4c2a28a0a7b14ea7ab9c5f23d1
6375ec81f7edf4b2307ad6345280d8c93041ca6335c28cb886688e2572849909
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /400/5776801?ymid=&var=&var3= HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:40 GMT
content-type: application/javascript
x-trace-id: f91d2c8b00b9c70e219270fa879c407d
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=0b09f4791acd44e5b3bb6b703218b6d2; expires=Mon, 02 Dec 2024 12:54:40 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
www.ibet.com/js/iovation/loader.js
200 OK 3.7 kB URL GET HTTP/2 www.ibet.com/js/iovation/loader.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (3819), with no line terminators
Hash 04514fc2c68a7c58c8007c0909a45851
bdc61593daa292400e6b83f537469fe1eb2e0fcd
7b8caf2888a8ac42a762bf9089b6389fb4ab8bcea17c91d3023644c8cee8b8f1
GET /js/iovation/loader.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: W/"345143e355b88a10dd5e7e47b83f2348"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VifWNLvEepm_qIgplHLcBmvNKg9oQ7qT4TRCXj1qL_8LqbMA5k_zMA==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/bd32d68779623aaecf1cb9a8583495a600a1e068-2171x685.svg
200 OK 1.2 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/bd32d68779623aaecf1cb9a8583495a600a1e068-2171x685.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1181), with no line terminators
Hash 1f568dd747fc5500f68471cc0b439519
b1ba0bd99f125de1b6b33cb9bf7fe1ccdcda971b
7f7de9fcfac5511fe90c5ca04e430a594bfce50460dd7a9b785059f3b2eb1362
GET /images/w9lc5y04/production/bd32d68779623aaecf1cb9a8583495a600a1e068-2171x685.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-b3-traceid: 610494bf95bab4978910036397ec4846
x-b3-parentspanid: 1a69fa2377be64f9
x-b3-spanid: 268ad48a181d1472
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
content-encoding: br
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
content-length: 616
date: Tue, 14 Nov 2023 20:58:30 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1612573
last-modified: Fri, 21 Apr 2023 11:18:09 GMT
content-type: image/svg+xml
vary: origin, accept-encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.fouanalytics.com/s/pp.js
200 OK 15 kB URL GET HTTP/3 api.fouanalytics.com/s/pp.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectfouanalytics.com
Fingerprint6A:6F:F4:F8:96:F5:AF:BD:04:DA:3B:26:07:70:F4:17:1F:A7:43:82
ValidityTue, 07 Nov 2023 01:56:38 GMT - Mon, 05 Feb 2024 01:56:37 GMT
File type ASCII text, with very long lines (15322)
Hash 2d891a51ede7a7e3d19465c6554de567
f6f7071c856fe8288ba205f73b930ce06cdda9d2
1d20c481e50170ca79ba8d1e25956a4dd11088bdd7ccd13cdd0b45f96b20c535
GET /s/pp.js HTTP/1.1
Host: api.fouanalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 03 Dec 2023 12:54:44 GMT
content-type: text/javascript
etag: W/"6564c871-3bdb"
cache-control: max-age=86400
cf-cache-status: HIT
age: 70600
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Q%2FnhVIxKzhqVVfZb9tO2cfH2plPqKc8zujjOCmmQGUqqxpdsbE%2BBsY3U5lLFJw1%2Fer1fdGQF83bX9PTCdLi9KYPJcgL4Q0IGyz53ldkeY6f2eI7PbiCiTZwAaYy9qo32iYjEF4V1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82fbf5c20a616361-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.ibet.com/assets/MaxAttemptsModal-dd620200.js
200 OK 842 B URL GET HTTP/2 www.ibet.com/assets/MaxAttemptsModal-dd620200.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (859), with no line terminators
Hash 1341e5ed859206ad9e086ed8f0c8c7b6
d95dcfa2abb3355bd30e8fa961f638e087d7c2c0
5291e87c5a7de02b3b47390167ab97e3a80ce3602cb69373a7af70bd187610fd
GET /assets/MaxAttemptsModal-dd620200.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 842
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: "dc8a4b0a4f97e6de8408e2e9bc3fc5ae"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LEFqjT1qGHUw6X9psA9IH7qubP4vLZAQNDRvrA0BiHddM-drYNq0pQ==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/index-fbfbf194.js
200 OK 101 kB URL GET HTTP/2 www.ibet.com/assets/index-fbfbf194.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (51100)
Size 101 kB (101299 bytes)
Hash 53ad023220ef0ac6b81cfdd6b3666243
b422a98c27635ccc402c28fb54702f9860722406
c8fc75f2b360aa79b79333a4351c13303c8beef55348bd26d040cd8725edbd7d
GET /assets/index-fbfbf194.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:05 GMT
etag: W/"53ad023220ef0ac6b81cfdd6b3666243"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0lnT7wYqjCcIQn7idCzd-Yhnjk9P9IPjeV1NSkx5KjglgnOmxsPdKA==
age: 22423
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/online-casino-84d39742.svg
200 OK 3.7 kB URL GET HTTP/2 www.ibet.com/assets/online-casino-84d39742.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3723), with no line terminators
Hash 008bf65a1825b1b92307da16ee233784
8aa2c175387b376f3fa745688510c864b506983e
e959b599dbe453a27579c46e4847c6d3aabd6b5af123f0d500787b227a6dc8e9
GET /assets/online-casino-84d39742.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:42:20 GMT
etag: W/"09f50f31ee12cbbf106822919d865a1a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ptQolwgfS5Y3zdRRphEzYuZNFF1z3YG0dBg1kWWilx_l37fCs6n0gw==
age: 22374
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/AppRoutes-8f87b6d0.js
200 OK 15 kB URL GET HTTP/2 www.ibet.com/assets/AppRoutes-8f87b6d0.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (15074)
Hash e9efe364c26a34d796ccff1ab357c9fd
30a09f20c8eb8cccb02b59b53589c3f01399abc6
fb64869aa59685d29d36b075c2988d9b54fc9634cb9b6793e69bd6ebac72bf9e
GET /assets/AppRoutes-8f87b6d0.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: W/"e9efe364c26a34d796ccff1ab357c9fd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GIPYHjZlNgnFK_RhBxekDpjt8PfF3Q2u9dbPGNp5WmGEydordH24Eg==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/BlockContent-93a6cf91.js
200 OK 9.2 kB URL GET HTTP/2 www.ibet.com/assets/BlockContent-93a6cf91.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (9387), with no line terminators
Hash ce739f1762697d520438de701cca7930
f784423a043cfff58f84ef57d8e075b12f67d29a
fe33e2e49980defae488eb90def9d1d04f990cfb38686373fecf754bedb8a1b0
GET /assets/BlockContent-93a6cf91.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/AppRoutes-8f87b6d0.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: W/"1db4c2f5aa861d0026a7bbbdc169c010"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5QwST7Sd-PbHuEdlpPsIWvi2ItTWJq7--Q7V3D0QQ7Z1cLfgq6RVog==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=u0uykwno2jdj
200 OK 60 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=u0uykwno2jdj
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52013)
Hash 476fdef9fde4c84a7dd248fa66d71197
6bc443c8a37beebe61769c6c4c21556bb13a35d7
15c14612253d5f5d4dcf5323950cdd90568a51b10d542caa3b24c4bd860b4506
GET /recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=u0uykwno2jdj HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 03 Dec 2023 12:54:42 GMT
content-security-policy: script-src 'nonce-Wu0CuNX9ivgRZJ3LoPzwvw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/MaxAttemptsModal-dd620200.js
200 OK 842 B URL GET HTTP/2 www.ibet.com/assets/MaxAttemptsModal-dd620200.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (859), with no line terminators
Hash 1341e5ed859206ad9e086ed8f0c8c7b6
d95dcfa2abb3355bd30e8fa961f638e087d7c2c0
5291e87c5a7de02b3b47390167ab97e3a80ce3602cb69373a7af70bd187610fd
GET /assets/MaxAttemptsModal-dd620200.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 842
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: "dc8a4b0a4f97e6de8408e2e9bc3fc5ae"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DWZBhKAv3U9KqsOpSoezWgAVQfRvdYpP8LKKJnLS_2c9eSlhYRtPhg==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/StaticPageFromCMS-efd42385.js
200 OK 80 kB URL GET HTTP/2 www.ibet.com/assets/StaticPageFromCMS-efd42385.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (24026)
Hash f2e6f01a0356297e3e8706ba00d26677
31b46d1752c7fcff34c2ecd1ded8d580e7f59a47
bfb7e45f885cb040e1089462dcc946edd6e7ab973bb5f3a7cffe1af4393aada9
GET /assets/StaticPageFromCMS-efd42385.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/AppRoutes-8f87b6d0.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:05 GMT
etag: W/"f2e6f01a0356297e3e8706ba00d26677"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: h4B4rH4Q_iDGbKjhWIzr8MrD2rX8AnSQ4_c1_kUtpLEG582WSUOnvQ==
age: 22423
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/index-fbfbf194.js
200 OK 101 kB URL GET HTTP/2 www.ibet.com/assets/index-fbfbf194.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (51100)
Size 101 kB (101299 bytes)
Hash 53ad023220ef0ac6b81cfdd6b3666243
b422a98c27635ccc402c28fb54702f9860722406
c8fc75f2b360aa79b79333a4351c13303c8beef55348bd26d040cd8725edbd7d
GET /assets/index-fbfbf194.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:05 GMT
etag: W/"53ad023220ef0ac6b81cfdd6b3666243"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: m4A4m2KDbsFvDkdnruTg_n8-uhNdxuFx-mzbAw-MkO3rKlShxg3x6g==
age: 22423
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/47d2361c6114c0eaf9df6c55357e7311cf1a7c75-121x32.svg
200 OK 21 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/47d2361c6114c0eaf9df6c55357e7311cf1a7c75-121x32.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (20675), with no line terminators
Hash c2bad36208b2af176c248788eb1d2a52
1877750f2f0300bbd159ed584323eef0d4bee619
2972808786c4e9bb39fa2676fe3e3dfcdc64b38a29c6775bb08a22c7559cbbc7
GET /images/w9lc5y04/production/47d2361c6114c0eaf9df6c55357e7311cf1a7c75-121x32.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-b3-traceid: e02077f16ec546224770a18cf4d2d01c
x-b3-parentspanid: ab109354503ed3a8
x-b3-spanid: a424464bc909fea3
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
content-encoding: br
vha6-origin: image-varnish-ssd-7
x-varnish-age: 18077
accept-ranges: bytes
content-length: 7477
via: 1.1 google
date: Wed, 15 Nov 2023 16:47:57 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Fri, 21 Apr 2023 11:22:25 GMT
content-type: image/svg+xml
vary: origin, accept-encoding
age: 1541206
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20
200 OK 1.7 kB URL GET HTTP/3 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1810), with no line terminators
Hash 20a1b6f6c9fb2f2d009b27e32bff3dd6
4abee0f14c8441f5c8bc3c0d68eff4022d5d48c4
cbf4e0c8fc5edfd08b14a4198d990ee4749f72825344d04a4eea864291027830
GET /v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20 HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=utf-8
date: Sun, 03 Dec 2023 12:19:00 GMT
server-timing: api;dur=73
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 2143
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 673
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/selectors-76504d5e.js
200 OK 2.3 kB URL GET HTTP/2 www.ibet.com/assets/selectors-76504d5e.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (2362), with no line terminators
Hash 68d1e8b1e3679d00e311786ef4300dec
e96cec5891c6db720e8e599112d21837e22afeeb
421d139a354f9f4d5309e80efd3fb5d4c48ad03985a5ec24f44deb92df60b254
GET /assets/selectors-76504d5e.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: W/"df16151a49591129f61ebdd1666da64f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zo3bE1O_oJCC9q_VH_EIpgTx4qU3pF7EZWW4ZXruVabLAAgal7QRFg==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
200 OK 41 kB URL GET HTTP/2 www.ibet.com/iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (761)
Hash 8960f94ea2082983640a8e5597fcc56a
23530ac15b77e791aac405224137fa728eb28561
7bdfd46cdac7d6e9a54b7e63d8c43cce2a82269cc72c3a2cb471eab955240a5b
GET /iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Sun, 03 Dec 2023 12:54:43 GMT
last-modified: Tue, 06 May 2014 00:01:40 GMT
expires: Tue, 02 Jan 2024 12:54:43 GMT
cache-control: private
p3p: CP="NON DSP COR CURa"
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Arch, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-WoW64, ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Re6MQNfcW8tKrRrR351isunPp7nGFkaLtDg9HboyV9GOWUVNMysUOA==
X-Firefox-Spdy: h2
www.ibet.com/assets/backlistedIP-9ed3b537.js
200 OK 162 kB URL GET HTTP/2 www.ibet.com/assets/backlistedIP-9ed3b537.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 162 kB (161586 bytes)
Hash 8b0c80725daa24516dbd0130f58d6eb1
251382f1ad7f8c5ca5f9760241a888a01dce9b97
83c0d9f657333651deeacfbcf1a749b3ee4d6fd5041a72de511a3ae5b7eb58c3
GET /assets/backlistedIP-9ed3b537.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:04 GMT
etag: W/"8b0c80725daa24516dbd0130f58d6eb1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fRUugkPmIJVc0PUh-Oz4s3D-JCxgJ18P3W_jgpDe-cTb0DnYSzLYWA==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
a.sportradarserving.com/pixel?type=js&aid=1622&id=7046
302 Moved Temporarily 1.5 kB URL GET HTTP/1.1 a.sportradarserving.com/pixel?type=js&aid=1622&id=7046
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerEntrust, Inc.
Subject*.sportradarserving.com
FingerprintD0:C1:99:26:D2:AD:C7:6B:F2:AD:C4:44:44:70:7C:4F:D2:49:9B:C4
ValidityWed, 20 Sep 2023 07:44:29 GMT - Mon, 14 Oct 2024 07:44:28 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?type=js&aid=1622&id=7046 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 03 Dec 2023 12:54:45 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
Set-Cookie: zuuid=7f4e898e-2e4b-4836-bf7f-318ccc0f1f43; path=/; expires=Mon, 02-Dec-2024 12:54:45 GMT; domain=sportradarserving.com; samesite=none; secure
c=1701608085; path=/; expires=Mon, 02-Dec-2024 12:54:45 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1701608085; path=/; expires=Mon, 02-Dec-2024 12:54:45 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D
200 OK 164 kB URL GET HTTP/3 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
Size 164 kB (164111 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=utf-8
date: Sun, 03 Dec 2023 12:36:28 GMT
server-timing: api;dur=1071
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 1094
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 33506
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
static.zdassets.com/web_widget/messenger/latest/web-widget-5178-0345ad6.js
200 OK 24 kB URL GET HTTP/2 static.zdassets.com/web_widget/messenger/latest/web-widget-5178-0345ad6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
File type ASCII text, with very long lines (24491), with no line terminators
Hash 11034f049f5eef05b26ed292ac59e1fc
c8e5c3d8aabcd34b7660fedebeb1ece66c5f6850
f5936ea748776aa9d35f5e748d18c78366ef81a770699ca8765457ba8717fd92
GET /web_widget/messenger/latest/web-widget-5178-0345ad6.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:42 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: vmw5Tp1Zys6gKmZtb1zNFm4HAHBu4hWC5ULUjC6tqMzDzZqQ+l01wxL+LCg8f39Cr/jQFKB78AcFp0P6VfdlJA==
x-amz-request-id: 5JAKRW7C5HE81KAE
x-amz-replication-status: COMPLETED
last-modified: Mon, 06 Nov 2023 00:52:49 GMT
etag: W/"11034f049f5eef05b26ed292ac59e1fc"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 05 Nov 2024 00:52:48 GMT
x-amz-version-id: WUnw5FU0oRqazTz0z66hJW9BpnBWa3hS
cf-cache-status: HIT
age: 387777
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gk30jcKcoUrtdVZpc9lkhK4oefYINU4EnwmlNSMGrlq3PzN%2BCupa24CYY5ZQJeJIAzfLlHoTtes4cvbIzk7m5%2FhrlhVdzeBTLwXq7enFUri2Sq74OlVJAR7t8bj1BukSRVtjNQQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82fbf5b3f8b19927-ARN
content-encoding: br
X-Firefox-Spdy: h2
rewardario.com/sw.js
200 OK 5.2 kB IP
Certificate IssuerLet's Encrypt
Subjectrewardario.com
Fingerprint86:0E:AD:C2:50:F5:5B:83:45:9C:61:C7:43:C6:30:E6:BE:C8:06:7A
ValidityWed, 11 Oct 2023 11:24:17 GMT - Tue, 09 Jan 2024 11:24:16 GMT
File type ASCII text, with very long lines (5239), with no line terminators
Hash 4cbb0ff246a63d7532a1e8cfe1182922
e9c6e9f6f657916674c3f7dcc71f43fed10e06a6
c07e590b3007278d3bbe305da9f8604ee29c65b2f7997a722f491c4900761854
GET /sw.js HTTP/1.1
Host: rewardario.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_F0JFDXF7TQ=GS1.1.1701608085.1.0.1701608086.0.0.0; _ga=GA1.1.2076105328.1701608086
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 03 Dec 2023 12:54:41 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"ca2bad6cb20023661b53ea682a457ede"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UcL0rIT9E6c3iz%2BU%2BQGnO5JUvBGifkteNx7Z%2FuTO4Y7B0pkh2viUn%2FSE7clovBpE8Z0uB53IwDcCVX4vFetriPSfXrlKsLE%2B8AqRG4903PXxhhXeULwUYMEs65GN8HUtjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 82fbf5aa783535b7-WAW
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.ibet.com/assets/AppRoutes-8f87b6d0.js
200 OK 15 kB URL GET HTTP/2 www.ibet.com/assets/AppRoutes-8f87b6d0.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (15074)
Hash e9efe364c26a34d796ccff1ab357c9fd
30a09f20c8eb8cccb02b59b53589c3f01399abc6
fb64869aa59685d29d36b075c2988d9b54fc9634cb9b6793e69bd6ebac72bf9e
GET /assets/AppRoutes-8f87b6d0.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: W/"e9efe364c26a34d796ccff1ab357c9fd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZLj1bnuVqJrznLDOKM52EiEowrK7QjyGVpUg1UGsXWIt5u1vuOvJ1w==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
mpsnare.iesnare.com/star
101 Switching Protocols 0 B IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerDigiCert Inc
Subjectmpsnare.iesnare.com
Fingerprint76:12:1D:E6:DA:A3:5F:1E:E7:FC:3D:15:6F:B5:5D:0A:2E:F1:A2:D5
ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EEaZAa6MJDK+MgG1zZKpKA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sun, 03 Dec 2023 12:54:44 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: IcMgHjNJjA97Dl9IJnmGYi0fndo=
Upgrade: WebSocket
rewardario.com/lightning.svg
200 OK 558 B URL GET HTTP/3 rewardario.com/lightning.svg
IP
Certificate IssuerLet's Encrypt
Subjectrewardario.com
Fingerprint86:0E:AD:C2:50:F5:5B:83:45:9C:61:C7:43:C6:30:E6:BE:C8:06:7A
ValidityWed, 11 Oct 2023 11:24:17 GMT - Tue, 09 Jan 2024 11:24:16 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (603), with no line terminators
Hash 9c0ef0f4019464092e924742904d75ea
33ed4dae960a9bfc33b63882d39e47ec431ec46d
2b810d0b2fb0339bca96276a4646b209804b992d8dbffb6e0d62651e48d97e83
GET /lightning.svg HTTP/1.1
Host: rewardario.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 03 Dec 2023 12:54:40 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"9cbec3ef22e57179a0901d90b7b6e2fd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ewy7DgEzOlpzEzwvI%2FuLqInvMIqjYalrCLE1bJbHK9gX65o%2Bx1gHF3aT6f0MB%2FoOxBmV7GF26CJd0cie4gsiZKw1c8gex8BzozIUb4KRlYYqJjUTvdURr0FXh6rdoFTm6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 82fbf5a57e3335b7-WAW
content-encoding: br
alt-svc: h3=":443"; ma=86400
static.zdassets.com/web_widget/messenger/latest/web-widget-locales/messenger/en-us-json-0345ad6.js
200 OK 16 kB URL GET HTTP/2 static.zdassets.com/web_widget/messenger/latest/web-widget-locales/messenger/en-us-json-0345ad6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web_widget/messenger/latest/web-widget-locales/messenger/en-us-json-0345ad6.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:42 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: qZFLuR4kjTOJ4X6pKBpHTui6s7i5iQiwp8gWBhmslcxwoAx9FWXKb9Sc0ZhAo/pqa9sJSapEysNsHH8DC8bD8g==
x-amz-request-id: 5NGF411GQRJVD72J
x-amz-replication-status: COMPLETED
last-modified: Mon, 06 Nov 2023 00:52:51 GMT
etag: W/"2d7a163ff937b4b9ea7ab13e6c8dfadf"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 05 Nov 2024 00:52:50 GMT
x-amz-version-id: SVieg7ebyluTA_U51KpD8k4UW9CnNoR3
cf-cache-status: HIT
age: 2121227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d%2BAjSYymM3Px5hWcawlEsZERCSq5cyzY%2FeqbHvhl%2FQ0vk99zUcZ3Km6kjrIeI3NRjGmdy6w9NGQS%2BPOtgqNDCTJlnXUiDBAj%2Bm8h%2BB%2F1of9sIVEY%2BXXTOqflA83RE9kzERH%2BTbc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82fbf5b3e8999927-ARN
content-encoding: br
X-Firefox-Spdy: h2
www.ibet.com/assets/transition-fc19594c.js
200 OK 19 kB URL GET HTTP/2 www.ibet.com/assets/transition-fc19594c.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (10338)
Hash 79a5c2211ad9dedb6be4c4e910d4eb90
73adc8d37acde0a1985b1e2e78c8ba3f6a19ffb9
60438a07bb95ca018a9fcb7a9c126ad640aa2353023646994a14927cb70e859f
GET /assets/transition-fc19594c.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:04:37 GMT
etag: W/"79a5c2211ad9dedb6be4c4e910d4eb90"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1YBL-dEsM-CE0-UlASXP3eU0zABToHIURju0IeaRLlZDDVxHBsYq-w==
age: 24607
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/index-2629c06f.js
200 OK 92 kB URL GET HTTP/2 www.ibet.com/assets/index-2629c06f.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (34758)
Hash dde10a5e845f279d8fc4f75e7a6c9065
02fcebc29c8596bcaeb6a67294d4aec2bd002429
72eb15d130bac628bf9a98120743929c5adaeebddb02f234a4781f0697a7b5cd
GET /assets/index-2629c06f.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:42:19 GMT
etag: W/"dde10a5e845f279d8fc4f75e7a6c9065"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pLBKQ3GNBrnwr6fezGX2SBjHx9CpsyKPFM7JD8dc2bRdVU2r8kzKYA==
age: 22374
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/messenger/latest/web-widget-main-0345ad6.js
200 OK 445 kB URL GET HTTP/2 static.zdassets.com/web_widget/messenger/latest/web-widget-main-0345ad6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
Size 445 kB (444989 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web_widget/messenger/latest/web-widget-main-0345ad6.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:42 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: vBelavEzM+F4Ko+4zGWcfhsix/dqnW0c5dM2hXHExsV321LPz971FRwckA88OeSALRfoF/dRz8w=
x-amz-request-id: 5NG07683BG19B9SP
x-amz-replication-status: COMPLETED
last-modified: Mon, 06 Nov 2023 00:52:49 GMT
etag: W/"9bf48d8c4bfd9e228c1cfc260b39519b"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 05 Nov 2024 00:52:48 GMT
x-amz-version-id: MAWFo55nmJzTCV22.OVVsjgzwIcuk5qx
cf-cache-status: HIT
age: 2121227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c1%2B%2FDWmrV5aHmqVIsQxCY3BDS7TSSVgL2%2B92gQhnaL4Vejqx2zkgTC%2B7huH5WKZXaVRjeztEKvFz2viaPloJFG2p1v4owq5yLfzy9AUh4jMVT5IHXAK9tVb7lfIFJvSUTMNNIr4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82fbf5b28ea09927-ARN
content-encoding: br
X-Firefox-Spdy: h2
www.ibet.com/assets/index-60a5f78a.css
200 OK 67 kB URL GET HTTP/2 www.ibet.com/assets/index-60a5f78a.css
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/index-60a5f78a.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:04 GMT
etag: W/"05deac096551787dca12f46f0e3a3414"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qEyLNI2GbY6fq79cZDxEj8mrtcBa-nmSsRq_tbkbs9Z8R6We0T36Gw==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
ekr.zdassets.com/compose/a6120dcf-e9e8-4bb6-a19e-078213479153
200 OK 1.1 kB URL GET HTTP/2 ekr.zdassets.com/compose/a6120dcf-e9e8-4bb6-a19e-078213479153
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1266), with no line terminators
Hash b11329e30801d382d90f49c97bfcd059
de589cfc28fe1d8ad362234ce963271650e9e82f
032813dd70cd8b9d34d69fc32c3ebb3c82b4a23fca48a32dbd6b151a9e6e5e15
GET /compose/a6120dcf-e9e8-4bb6-a19e-078213479153 HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:42 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
vary: Accept, Origin, Accept-Encoding
cache-control: max-age=300, public, stale-while-revalidate=300, stale-if-error=21600
etag: W/"991c34f960adf6799ca89393db08e399"
x-request-id: 825455910f7d33ef-SEA, 825455910f7d33ef-SEA
x-runtime: 0.010788
x-zendesk-zorg: yes
cf-cache-status: HIT
age: 39
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rR6n3ZSFkg3w16uiWoZKZ9QkubVqjJJvi177%2B4v%2BXhH2jZcWNuhcZSXKT%2Fg53HfDro4zubudtgGa3m%2F8P3KCWFyB40AkrrUckh2tKvKpNOZYP8F2J%2Fg%2FtpvVEumscwJiZEQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82fbf5b24a9a0a1c-ARN
content-encoding: br
X-Firefox-Spdy: h2
cdntechone.com/stattag.js
200 OK 19 kB URL GET HTTP/2 cdntechone.com/stattag.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint22:B1:48:87:A8:EF:B2:9B:65:EB:D6:C6:FD:8D:EF:A7:A7:DE:52:29
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (18335)
Hash 8ec0c661780569e42736cfc20e4c69d7
0d857c9b9813975179cf323a344c934bcae598c6
38831e62c2e99f2f64b0352f13ef7daaa7c97e31dac314bb52caa89a6a7f58f5
GET /stattag.js HTTP/1.1
Host: cdntechone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 12:54:40 GMT
content-type: application/javascript
last-modified: Thu, 07 Sep 2023 08:19:46 GMT
etag: W/"64f987a2-4a29"
link: <https://datatechone.com/>; rel=preconnect; crossorigin, <https://datatechonert.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 5132
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ePJ02xWXZlfbaRrQ%2FXysWAFU%2FKG6pPEf4oBiiQ%2FqeQy6%2FPwabUnMGGKdPeia4QR6b30tCElWRRC9JWTFDiAU50QTVIuhh52kWvAxnGnHTgvfROKntbpt6WE81Z5Ol9YJmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82fbf5a6bc33353a-WAW
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.ibet.com/assets/transition-fc19594c.js
200 OK 19 kB URL GET HTTP/2 www.ibet.com/assets/transition-fc19594c.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (10338)
Hash 79a5c2211ad9dedb6be4c4e910d4eb90
73adc8d37acde0a1985b1e2e78c8ba3f6a19ffb9
60438a07bb95ca018a9fcb7a9c126ad640aa2353023646994a14927cb70e859f
GET /assets/transition-fc19594c.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-bf854176.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:04:37 GMT
etag: W/"79a5c2211ad9dedb6be4c4e910d4eb90"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WS1y79qPNOdqJ4UEq3O0vJHyzPi8CPNfqhxO9Z6NT70rfbd5k89QEA==
age: 24607
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/trophy-e7de9f84.js
200 OK 6.1 kB URL GET HTTP/2 www.ibet.com/assets/trophy-e7de9f84.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (6215), with no line terminators
Hash ae99f9fa1df44b0449cb1ace090b47a0
8788cd0c85bcd5eff7ac155f34b6d65d358b0a03
77294e86673f5d3f192d1d22de336a2105dd547a66ffdccb5f93b147be85da2d
GET /assets/trophy-e7de9f84.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: W/"66e9ad54c318466c6eb0130b0867afd7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2fa-svqaOHfjDQSt_EUCS2DtD0WXXNrSVcuAmxMqqijXUDQaQcfuLg==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
rewardario.com/favicon.ico
200 OK 29 kB URL GET HTTP/3 rewardario.com/favicon.ico
IP
Certificate IssuerLet's Encrypt
Subjectrewardario.com
Fingerprint86:0E:AD:C2:50:F5:5B:83:45:9C:61:C7:43:C6:30:E6:BE:C8:06:7A
ValidityWed, 11 Oct 2023 11:24:17 GMT - Tue, 09 Jan 2024 11:24:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: rewardario.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_F0JFDXF7TQ=GS1.1.1701608085.1.0.1701608085.0.0.0; _ga=GA1.1.2076105328.1701608086
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 03 Dec 2023 12:54:40 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pmRgdy1HUnDb2ddkVkkdcTFmn6oKR6tBepkAS1fmtfwDiz4b%2B8KZoIZxhhXrccV5Wumh98OBAsevjncdjTqUW85ywdJiYjKNGZD9BzMX5np91tj6J28pw7D4Smfyjossnw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 82fbf5a81b8735b7-WAW
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.ibet.com/assets/ExpandMore-fd96bb78.js
200 OK 3.1 kB URL GET HTTP/2 www.ibet.com/assets/ExpandMore-fd96bb78.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (3193), with no line terminators
Hash 9462614328dbfa28057d4a93b3dec9b2
fb6aaa918df1e6c95c9bfbadb311420ab7553cd2
00a87c125a9bbdff8fb92a5c1d40c7b3afd32a2164a2a86dbd905cb0352ad804
GET /assets/ExpandMore-fd96bb78.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-fbfbf194.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 03:51:34 GMT
etag: W/"f02c011429b6e2c319a3b961c5f7a4cb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IoAVt07-gEXxfyMH1cf_AYQra44LCIh40C8Zum2gtCxuHMHBkMTRGQ==
age: 32675
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
200 OK 2.5 kB URL GET HTTP/2 www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
IP
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2665), with no line terminators
Hash fe7293d1c2a792ad3f94b7af7481f579
bb4f07cbea43216cd5dbe2e4d39c73a2a3e25e7c
6781e61b6251f4a50e980fad58cf50a42399ea496b79602247be3c7c94ab30c5
GET /no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 11:00:38 GMT
etag: W/"0ff7a150dc0f4230cbbced01a82724d7"
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PcroP8zJGRMeqs3ynawk7ouyh2sF2q_nXvBFuAACfXY8oMFDzqwXag==
age: 39930
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/index-2629c06f.js
200 OK 92 kB URL GET HTTP/2 www.ibet.com/assets/index-2629c06f.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (34758)
Hash dde10a5e845f279d8fc4f75e7a6c9065
02fcebc29c8596bcaeb6a67294d4aec2bd002429
72eb15d130bac628bf9a98120743929c5adaeebddb02f234a4781f0697a7b5cd
GET /assets/index-2629c06f.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/AppRoutes-8f87b6d0.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:42:19 GMT
etag: W/"dde10a5e845f279d8fc4f75e7a6c9065"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GcCEmU789cdliORBTEQa5MQGTaEBogBrC8SsDnpN_J2ZqodSWE62Xg==
age: 22374
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/trophy-e7de9f84.js
200 OK 6.1 kB URL GET HTTP/2 www.ibet.com/assets/trophy-e7de9f84.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (6215), with no line terminators
Hash ae99f9fa1df44b0449cb1ace090b47a0
8788cd0c85bcd5eff7ac155f34b6d65d358b0a03
77294e86673f5d3f192d1d22de336a2105dd547a66ffdccb5f93b147be85da2d
GET /assets/trophy-e7de9f84.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/MenuIcon-4d8a330c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: W/"66e9ad54c318466c6eb0130b0867afd7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hVhz4Ixf_h4yeeNLdtFyR3JbwawuCpP8sYEFI-AGpZVUXtC11pRd-w==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
niwooghu.com/500/5776801?excludes=&oaid=c5d479bb3c974219b47393ae553cfb97&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 0 B URL OPTIONS HTTP/2 niwooghu.com/500/5776801?excludes=&oaid=c5d479bb3c974219b47393ae553cfb97&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Certificate IssuerLet's Encrypt
Subjectniwooghu.com
Fingerprint3D:54:BD:F6:52:70:24:C2:E6:6B:18:3F:1F:1D:6E:34:28:B2:6C:9F
ValidityFri, 13 Oct 2023 05:12:56 GMT - Thu, 11 Jan 2024 05:12:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /500/5776801?excludes=&oaid=c5d479bb3c974219b47393ae553cfb97&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://rewardario.com/
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:41 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://rewardario.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20
200 OK 1.7 kB URL GET HTTP/3 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1810), with no line terminators
Hash 734355ad2bdfba9d7d60c70dc19f01a4
d7757dc33eac56a297811f02d2eac20934dbe649
e722d62d944a6978cc27279475315112e505a4e509dec91c7f34c9fef768a5ee
GET /v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20 HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=utf-8
date: Sun, 03 Dec 2023 12:31:19 GMT
server-timing: api;dur=67
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 1404
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 674
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/BlockContent-93a6cf91.js
200 OK 9.2 kB URL GET HTTP/2 www.ibet.com/assets/BlockContent-93a6cf91.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (9387), with no line terminators
Hash ce739f1762697d520438de701cca7930
f784423a043cfff58f84ef57d8e075b12f67d29a
fe33e2e49980defae488eb90def9d1d04f990cfb38686373fecf754bedb8a1b0
GET /assets/BlockContent-93a6cf91.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:06 GMT
etag: W/"1db4c2f5aa861d0026a7bbbdc169c010"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mXwme7sAqY7-DLSuFtbXJIablgS_dmRbq-saaO407koUFx_RLJmW5Q==
age: 22418
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2
200 OK 884 B URL GET HTTP/2 www.google.com/recaptcha/api.js?render=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT
File type ASCII text, with very long lines (884), with no line terminators
Hash 3b171b3bc6278c3c11672cd31d0d7086
c3a88827be5e02a36ebae8f1aef2a7c55bc19471
bbd2b3b0875f93c1d42e7ed6b7da4f77a186b66525ad92fd435d33a5ce9952b6
GET /recaptcha/api.js?render=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Sun, 03 Dec 2023 12:54:42 GMT
date: Sun, 03 Dec 2023 12:54:42 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
niwooghu.com/500/5776801?excludes=&oaid=c5d479bb3c974219b47393ae553cfb97&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 1.4 kB URL GET HTTP/2 niwooghu.com/500/5776801?excludes=&oaid=c5d479bb3c974219b47393ae553cfb97&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Certificate IssuerLet's Encrypt
Subjectniwooghu.com
Fingerprint3D:54:BD:F6:52:70:24:C2:E6:6B:18:3F:1F:1D:6E:34:28:B2:6C:9F
ValidityFri, 13 Oct 2023 05:12:56 GMT - Thu, 11 Jan 2024 05:12:55 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1388), with no line terminators
Hash cdb3d9389ebd8bb3771701221cf06b73
c71cfdc6d410ecf0a2549595fab1ee10bb47825a
01f4de050e31451fe5ca4c2a9fe8dd7a82d9844d6519c364b317f5d29c681354
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /500/5776801?excludes=&oaid=c5d479bb3c974219b47393ae553cfb97&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardario.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
Content-Type: application/json
Origin: https://rewardario.com
DNT: 1
Connection: keep-alive
Cookie: OAID=0b09f4791acd44e5b3bb6b703218b6d2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:41 GMT
content-type: application/javascript
x-trace-id: 365c3d424c66d1ff75114660ac815212
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://rewardario.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=c5d479bb3c974219b47393ae553cfb97; expires=Mon, 02 Dec 2024 12:54:41 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
www.ibet.com/assets/ExpandMore-fd96bb78.js
200 OK 3.1 kB URL GET HTTP/2 www.ibet.com/assets/ExpandMore-fd96bb78.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (3193), with no line terminators
Hash 9462614328dbfa28057d4a93b3dec9b2
fb6aaa918df1e6c95c9bfbadb311420ab7553cd2
00a87c125a9bbdff8fb92a5c1d40c7b3afd32a2164a2a86dbd905cb0352ad804
GET /assets/ExpandMore-fd96bb78.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 03:51:34 GMT
etag: W/"f02c011429b6e2c319a3b961c5f7a4cb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BIRUJRUnoyjucuJM-DlEwJO_FqoPxY5qtB7AqZC0sCEYdp5itH6xGg==
age: 32675
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
stootsou.net/pfe/current/tag.min.js?z=5776812&ymid=&var=&var3=
200 OK 13 kB URL GET HTTP/2 stootsou.net/pfe/current/tag.min.js?z=5776812&ymid=&var=&var3=
IP
Certificate IssuerLet's Encrypt
Subjectstootsou.net
Fingerprint7B:74:99:B5:70:60:13:AA:4D:53:BA:14:89:45:5F:F7:58:7C:C9:1C
ValidityTue, 21 Nov 2023 05:14:26 GMT - Mon, 19 Feb 2024 05:14:25 GMT
File type C source, ASCII text, with very long lines (13300), with no line terminators
Hash 258578af3c107ccb907f73c3a2f4c25f
7a192edea829968fb7f57f2a2fc4cb5b612598be
1f945c9c46c47a2b0e867b0d09c3e4559cd768a2d3747abf28d1d65667733b75
GET /pfe/current/tag.min.js?z=5776812&ymid=&var=&var3= HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardario.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 03 Dec 2023 12:54:40 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 13:38:02 GMT
etag: W/"65649bba-33f4"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
mpsnare.iesnare.com/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
200 OK 43 kB URL GET HTTP/1.1 mpsnare.iesnare.com/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerDigiCert Inc
Subjectmpsnare.iesnare.com
Fingerprint76:12:1D:E6:DA:A3:5F:1E:E7:FC:3D:15:6F:B5:5D:0A:2E:F1:A2:D5
ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (1100)
Hash 9976a1e8b89a212ffc5d9c685ebfcdeb
26eab3e0209074a070a2c541d10d7bc9dae5530b
99b043ddf740f95c2be20aa2434ac0afa59e82c1704f8e22a99730c68b80e98e
GET /general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 03 Dec 2023 12:54:43 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: io_token_7c6a6574-f011-4c9a-abdd-9894a102ccef=QSxAD1Wa5MumGdh3PUDzcd5N4RB1ZaR4lXp1Ikg3XOk=;Path=/;Expires=Mon, 02-Dec-2024 12:54:43 GMT;Max-Age=31536000;Secure;HttpOnly;SameSite=None
Cache-Control: no-cache, private
Pragma: no-cache
Expires: 0
p3p: CP="NON DSP COR CURa"
Accept-CH: Sec-CH-UA-Full-Version, Sec-CH-UA-Arch, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-WoW64, ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
cdn.sanity.io/images/w9lc5y04/production/f79a900918e75cc2561144d8be61f4ab5b53f6fc-70x60.svg
200 OK 1.2 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/f79a900918e75cc2561144d8be61f4ab5b53f6fc-70x60.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1196), with no line terminators
Hash 9a28f235777b8e41f39254b17f978d6b
9e1eed981557e004f6b5296d7f518017cbce4060
9e73019f0c81b377fec61f79a2edd15ce3709486297a0f8a3966e4945546d0f2
GET /images/w9lc5y04/production/f79a900918e75cc2561144d8be61f4ab5b53f6fc-70x60.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-b3-traceid: 3a19d56a085ce5b95213077d2795765d
x-b3-parentspanid: 39aee78829de02ac
x-b3-spanid: 827fffaa6b4bf3f4
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
content-encoding: br
x-varnish-age: 14255
accept-ranges: bytes
content-length: 628
via: 1.1 google
date: Fri, 10 Nov 2023 22:19:00 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Fri, 21 Apr 2023 11:23:00 GMT
content-type: image/svg+xml
vary: origin, accept-encoding
age: 1953344
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-SemiBold.ttf
200 OK 101 kB URL GET HTTP/2 www.ibet.com/fonts/OpenSans-SemiBold.ttf
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type TrueType Font data, 17 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Digitized data copyright \251 2011, Google Corporation.Open Sans SemiBoldRegular1.10;1ASC;OpenSa\012- data
Size 101 kB (100820 bytes)
Hash ba5cde21eeea0d57ab7efefc99596cce
e256f8391718ef61f253dfb4e95bbeb3c5857afc
5e8d9e1a89083cd1b0849993fe2f3acc9aa33b7f439f7e8616872f6897f30684
GET /fonts/OpenSans-SemiBold.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/ttf
date: Sun, 03 Dec 2023 02:05:18 GMT
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
etag: W/"ba5cde21eeea0d57ab7efefc99596cce"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: I4gZyIws2mIj-k2ypWlZxJKcUqn6nnoatu3SekpM8y-IKnNfGxVWaw==
age: 38964
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/StaticPageFromCMS-efd42385.js
200 OK 80 kB URL GET HTTP/2 www.ibet.com/assets/StaticPageFromCMS-efd42385.js
IP
Requested by https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (24026)
Hash f2e6f01a0356297e3e8706ba00d26677
31b46d1752c7fcff34c2ecd1ded8d580e7f59a47
bfb7e45f885cb040e1089462dcc946edd6e7ab973bb5f3a7cffe1af4393aada9
GET /assets/StaticPageFromCMS-efd42385.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=qR7wcFQYM5tcf1Pd46pRAGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sun, 03 Dec 2023 06:41:05 GMT
etag: W/"f2e6f01a0356297e3e8706ba00d26677"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: K3edI8z6kTovx5dfbXpgSw88jMoAxsAl_nue3I5BXF8FP7X04vIRkw==
age: 22423
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
104.21.3.230
184.51.88.46
23.36.79.8
2.18.121.79
142.250.74.168
139.45.197.250
37.48.68.71
54.195.39.4
188.114.97.1
3.122.4.58
0.0.0.0