inoradde.com/4/5473238/
200 OK 641 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f6f2065f1377712a3fa7888a39182a77
9a32d0e654d425a856b7fedf2fcb5f0ff88f618b
2aab963edc0203a48dee79c57b26f13fe9a2f23cc3c846bace66a38337e075c9
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /4/5473238/ HTTP/1.1
Host: inoradde.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 19:40:30 GMT
Content-Type: text/html; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 34bbdf0becf6a399698cf2783f420518
Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://record.ibetaffiliates.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 86400
Timing-Allow-Origin: *
Set-Cookie: OAID=4dd070aad82a4aa1a1b4930e08f4ac3e; expires=Sun, 04 Feb 2024 19:40:30 GMT; path=/
oaidts=1675539630; expires=Sun, 04 Feb 2024 19:40:30 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Pragma: no-cache, no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
Access-Control-Allow-Origin: *, *
Access-Control-Allow-Methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, Accept, Content-Type, Content-Length, Accept-Encoding
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3216
Expires: Sat, 04 Feb 2023 20:34:06 GMT
Date: Sat, 04 Feb 2023 19:40:30 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11268
Expires: Sat, 04 Feb 2023 22:48:18 GMT
Date: Sat, 04 Feb 2023 19:40:30 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 19:36:15 GMT
content-type: application/json
age: 255
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18903
Expires: Sun, 05 Feb 2023 00:55:33 GMT
Date: Sat, 04 Feb 2023 19:40:30 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: zb9PaJafMGcNP4X9Q7DO1eDk39lmg6Glepx1XsuEsyewyft1Widi96WUq0zLCUIEfFBJPvbq32I=
x-amz-request-id: YJQ97TQXWFD9KPX8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 18:52:56 GMT
age: 2854
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 19:40:30 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/DPv2Tv_7RGg
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/DPv2Tv_7RGg
IP
Hash a7439044f494f9f68983d1099d0c507d
26890007f6b7662639b383e342d40554d5407bfe
bb163105cb7d71b6a1c63076db09449f3062eb2040a2602727a0c58e1cc54b5d
POST /s/gts1p5/DPv2Tv_7RGg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:40:30 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bb0e1ff82ab6199f715e00974b7f6957
74edba6943c202d060b471c30a3c626542bfac84
d982aa0ae1b32ffba27f789ad265b594dfef0bc4c55a0d0489d38b0827e6a7e2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D982AA0AE1B32FFBA27F789AD265B594DFEF0BC4C55A0D0489D38B0827E6A7E2"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20205
Expires: Sun, 05 Feb 2023 01:17:15 GMT
Date: Sat, 04 Feb 2023 19:40:30 GMT
Connection: keep-alive
inoradde.com/favicon.ico
204 No Content 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: inoradde.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: OAID=4dd070aad82a4aa1a1b4930e08f4ac3e; oaidts=1675539630
HTTP/1.1 204 No Content
Server: nginx
Date: Sat, 04 Feb 2023 19:40:31 GMT
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Pragma: public
Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate
my.rtmark.net/img.gif?f=merge&userId=4dd070aad82a4aa1a1b4930e08f4ac3e
200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=merge&userId=4dd070aad82a4aa1a1b4930e08f4ac3e
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=merge&userId=4dd070aad82a4aa1a1b4930e08f4ac3e HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 19:40:31 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=4dd070aad82a4aa1a1b4930e08f4ac3e; expires=Sun, 04 Feb 2024 19:40:31 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 18:49:07 GMT
age: 3084
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8275
Expires: Sat, 04 Feb 2023 21:58:26 GMT
Date: Sat, 04 Feb 2023 19:40:31 GMT
Connection: keep-alive
www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
200 OK 8.5 kB URL HTTP/2 www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8453), with no line terminators
Hash f73bb467f2de77c3c8b80c7dc7f106cc
4b26ea34270d4dbf47bcd63fcad4e6dc0e09ed32
2d26e90a7ef6d0647b4fd4ed977b5d4092565ef15b80aafb8e521551d72de56e
GET /no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 8453
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:32 GMT
etag: "f73bb467f2de77c3c8b80c7dc7f106cc"
x-cache: Error from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gJUBV86Soi6mloENQLjX-Nd9H04qdmk_UIrTsk5D6WTJ5FO4RYzqww==
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-Regular.ttf
200 OK 97 kB URL HTTP/2 www.ibet.com/fonts/OpenSans-Regular.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Hash 3ed9575dcc488c3e3a5bd66620bdf5a4
babe8dce93a3e48b6c3c79720a0c048e88dd1fe7
037236ed4bf58a85f67074c165d308260fd6be01c86d7df4e79ea16eb273f8c5
GET /fonts/OpenSans-Regular.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/font-sfnt
content-length: 96932
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:32 GMT
etag: "3ed9575dcc488c3e3a5bd66620bdf5a4"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: z73Cr2nRBlHT6hBHV3nXYSqfOzXJwIMqRGmi2B1NG1k2_mrpgxzbSg==
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-SemiBold.ttf
200 OK 101 kB URL HTTP/2 www.ibet.com/fonts/OpenSans-SemiBold.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Digitized data copyright \251 2011, Google Corporation.Open Sans SemiBoldRegular1.10;1ASC;OpenSa\012- data
Size 101 kB (100820 bytes)
Hash ba5cde21eeea0d57ab7efefc99596cce
e256f8391718ef61f253dfb4e95bbeb3c5857afc
5e8d9e1a89083cd1b0849993fe2f3acc9aa33b7f439f7e8616872f6897f30684
GET /fonts/OpenSans-SemiBold.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/font-sfnt
content-length: 100820
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:32 GMT
etag: "ba5cde21eeea0d57ab7efefc99596cce"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: P65BDAnO9G-0Po9VrrJP2beJ7bNqxW6rl45qMZeSmfpJagdOZJPuqw==
X-Firefox-Spdy: h2
www.ibet.com/static/css/main.17c66d77.chunk.css
200 OK 36 kB URL HTTP/2 www.ibet.com/static/css/main.17c66d77.chunk.css
IP
File type ASCII text, with very long lines (24239)
Hash 9f7fa2e99942f15807e2e6f5cd62aca5
cdf6ed1947e285ae3be5f68949f6d0e5cf057a23
ec55dea9a5ac90bd72bc727eebe8545b58b19470d28c5892894bc3754d97da60
GET /static/css/main.17c66d77.chunk.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 35641
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:32 GMT
etag: "9f7fa2e99942f15807e2e6f5cd62aca5"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KaEPCh_iMNEyprnojCoyxrTShs6a8oo6iQAxpUaku7lvaDOx9z70jQ==
X-Firefox-Spdy: h2
www.ibet.com/static/js/56.2ed00168.chunk.js
200 OK 1.2 MB URL HTTP/2 www.ibet.com/static/js/56.2ed00168.chunk.js
IP
File type ASCII text, with very long lines (65461)
Size 1.2 MB (1238789 bytes)
Hash 5b98e1b5c0306fbb6a00599a1f71ec11
3fe04bd9c37bee0468e73447ba3a48e919767914
12df518fc3b1e454fcc10f93ebdf7594e981eee90abe3079890cd17547f38883
GET /static/js/56.2ed00168.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1238789
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:32 GMT
etag: "5b98e1b5c0306fbb6a00599a1f71ec11"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3GGrQ5xrZCB5EFg1cC_Xc96LkZDL3upRc_KPFSWZEknWSbOxrdbVwg==
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NMqxSksFR67jjq4rb4kToQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZVDC44arTrBHNAv/CSo+uVH1SZo=
www.ibet.com/static/css/56.07bf056b.chunk.css
200 OK 2.0 kB URL HTTP/2 www.ibet.com/static/css/56.07bf056b.chunk.css
IP
File type ASCII text, with very long lines (2049), with no line terminators
Hash 36b2f8ea1e16e9f607c1701f688c13da
bbcf0e61433d91d8ccf793fddaf638b0326f254d
2ce59990e026b2074cb274798dd1ee8b536bf4e628d481003e015ece685c00da
GET /static/css/56.07bf056b.chunk.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 2049
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:32 GMT
etag: "36b2f8ea1e16e9f607c1701f688c13da"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rhopuuIvt1vsfWCh-3jowT-nHe95GgV6-4X7C25bBaMqYoDTsmvPKQ==
X-Firefox-Spdy: h2
www.ibet.com/static/js/main.1ea8a9f9.chunk.js
200 OK 1.7 MB URL HTTP/2 www.ibet.com/static/js/main.1ea8a9f9.chunk.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.7 MB (1728511 bytes)
Hash d5fee69f9f3840934ed0ec43d231353f
b431b619540acfb2cd950abbc9f9b01b367129f9
ab8ec9c6f8ee993ce28b5b6d77e47158f8938ab7d970eb8a3f9b02501da134fc
GET /static/js/main.1ea8a9f9.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1728511
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:32 GMT
etag: "d5fee69f9f3840934ed0ec43d231353f"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Q-p0NQFOtbDEEkqDqVM3QZzbdHa-6ZcuMeLkcjoTC-zUhn38iHuRzg==
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-Bold.ttf
200 OK 104 kB URL HTTP/2 www.ibet.com/fonts/OpenSans-Bold.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansBold1.10;1ASC;OpenSans-Bold\012- data
Size 104 kB (104120 bytes)
Hash 1025a6e0fb0fa86f17f57cc82a6b9756
1e3704ee48b5ff7e582488ead87b05249f14dc1c
f7916a37377e38527d4306303cfe89b653b49b0a6b0b05c6b7593f7ab0248da8
GET /fonts/OpenSans-Bold.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/font-sfnt
content-length: 104120
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:33 GMT
etag: "1025a6e0fb0fa86f17f57cc82a6b9756"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eRtr7CnpKUa5_vTmQp37o71DlHFprZGCzSKRaYrANKKoXdVeUjKbcw==
X-Firefox-Spdy: h2
d1w3v8ahdm9uzk.cloudfront.net/prod/api/v1/player/access/context
200 OK 370 B URL HTTP/2 d1w3v8ahdm9uzk.cloudfront.net/prod/api/v1/player/access/context
IP
File type JSON data\012- , ASCII text
Hash a9058bcafaa20f452059d17d71366809
36aafe52e527968827415e32b53af7d537ac2ff9
181dd6c8374efe4830ed13c69dc30510b272911f318ab3ca6e0f1d80f421ca15
GET /prod/api/v1/player/access/context HTTP/1.1
Host: d1w3v8ahdm9uzk.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 370
date: Sat, 04 Feb 2023 19:40:32 GMT
x-amzn-requestid: a674b495-8061-42c0-b224-b095fd27c680
access-control-allow-origin: *
x-amz-apigw-id: f1ErmGwgDoEF_YA=
x-amzn-trace-id: Root=1-63deb4b0-7b568590553457916f54a762
x-cache: Miss from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ip6v8GWF75T012RIHZJzCh66qu9_amLrL1rLE7V7-ttSHEzMSfZbFg==
X-Firefox-Spdy: h2
www.ibet.com/favicon.ico
200 OK 104 kB IP
File type MS Windows icon resource - 6 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size 104 kB (103505 bytes)
Hash c4ec29ec7a9b51ab3672ad4235022800
3b38d99e09a5935441eeb46a7ff6325ff253a243
852384ec427a20845c6be9329635438d03e9ce66712989c2b03a653b8c0169a3
GET /favicon.ico HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 103505
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:33 GMT
etag: "c4ec29ec7a9b51ab3672ad4235022800"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c2D378R7aOiBvJWcsBG_KfRIJz3lfKXvWWpCQ89jVNXOX6z7kMd2uA==
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2389
Expires: Sat, 04 Feb 2023 20:20:21 GMT
Date: Sat, 04 Feb 2023 19:40:32 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2389
Expires: Sat, 04 Feb 2023 20:20:21 GMT
Date: Sat, 04 Feb 2023 19:40:32 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2389
Expires: Sat, 04 Feb 2023 20:20:21 GMT
Date: Sat, 04 Feb 2023 19:40:32 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2389
Expires: Sat, 04 Feb 2023 20:20:21 GMT
Date: Sat, 04 Feb 2023 19:40:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 06:20:04 GMT
age: 48028
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:44 GMT
age: 77688
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
record.ibetaffiliates.com/_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5473238&rdk=rk1
301 Moved Permanently 9.1 kB URL HTTP/2 record.ibetaffiliates.com/_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5473238&rdk=rk1
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55
GET /_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5473238&rdk=rk1 HTTP/1.1
Host: record.ibetaffiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 19:40:31 GMT
content-type: text/html; charset=utf-8
location: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
cache-control: private, no-cache, must-revalidate, Cache-Control: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
set-cookie: VID1=Jy4zOFUtUzxQLUBgYApgCg%3D%3D; expires=Sun, 04-Feb-2024 19:40:31 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=None
ZBan=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk; expires=Sun, 04-Feb-2024 19:40:31 GMT; Max-Age=31536000; path=/; domain=.ibetaffiliates.com; secure; HttpOnly; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7945e0e5bbc0b51d-OSL
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:00:26 GMT
age: 78006
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jBxNmhfAeUgxg8w4XpQHZ1QoN9GatdUV7V7r2tHd7YePJYPHpesd2Q==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:21 GMT
age: 77711
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 114e345e134986d7451148fcea31b29d
541e878afee68c8802bb52b0cbbe5a5a0a185392
5030244d4babd1023166f39c935029d789a91ba90aa3a44c6f4c88ddc947b678
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8211
x-amzn-requestid: 2df5779a-a808-46ec-9246-1a9b9bddd9e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmKLVHwroAMF72Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bd7b-3cfe97e07d17958836425784;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:04:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _VFg0FMYa1Dg55fLpJTwdX2uZXkYjZSFdbdAKqGQu7GF2dPiawKh1g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 07:29:26 GMT
age: 43866
etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash a87d8a919b10bfacffe702c368b58e61
88182f1643f50c8ee613607ae7283d1cfdd78e5f
69c77a2be0351707b1eb6cc5a6fbf0bd4ecfb5c814c9b1cf8243daa36b36238e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 16:56:15 GMT
Expires: Thu, 09 Feb 2023 16:56:14 GMT
Etag: "88182f1643f50c8ee613607ae7283d1cfdd78e5f"
Cache-Control: max-age=421541,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e0ef2a7ab4f7-OSL
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D
200 OK 28 kB URL HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65221), with no line terminators
Hash 899f111f4714e20c63f99b8ab73eab29
bdcef3fa7fd8ea186379cae4baa82ed3c90ef9d4
c5e628011748e134b36a8b22318d41d22e67ac74772400d6026e7805bfc93791
GET /v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sat, 04 Feb 2023 19:13:11 GMT
server-timing: api;dur=460
x-sanity-shard: gcp-eu-w1-01-prod-1013
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
content-encoding: br
x-sanity-age: 1641
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 28130
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/static/js/ToastNotification.cf6c1eb6.chunk.js
200 OK 2.7 kB URL HTTP/2 www.ibet.com/static/js/ToastNotification.cf6c1eb6.chunk.js
IP
File type ASCII text, with very long lines (2714), with no line terminators
Hash ba1d06cb70d2b2c64cac8094c3d8f2d3
776fe2616d23ec011ac634180d09d853f0811103
68f0be364f0b4b6305a59a2f5f16225773cd59a4457ec318fe364b2cb44707c3
GET /static/js/ToastNotification.cf6c1eb6.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 2714
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "ba1d06cb70d2b2c64cac8094c3d8f2d3"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YHIa7YZweFYglCIfkw8IOy0TvSf0FYSlAS77UOrnf9Y44X6KOyV9xw==
X-Firefox-Spdy: h2
www.ibet.com/static/js/AffiliateId.c0b02e79.chunk.js
200 OK 382 B URL HTTP/2 www.ibet.com/static/js/AffiliateId.c0b02e79.chunk.js
IP
File type ASCII text, with very long lines (382), with no line terminators
Hash 8f61d14714cab76e1f57265976a2d0d4
fc0ccb9f3daa1a095f97e392cc4eab43f2d0f3e6
ee321134757f62b7fe82ceb10413d3e10edfce8ee05aabcf353271a9e261d448
GET /static/js/AffiliateId.c0b02e79.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 382
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "8f61d14714cab76e1f57265976a2d0d4"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CFwUp3zZEGRmuug5eob2ZDHRioI4C61X77dfny9gdhPhrttzauu3tg==
X-Firefox-Spdy: h2
www.ibet.com/static/js/FEReload.588ab5c8.chunk.js
200 OK 1.5 kB URL HTTP/2 www.ibet.com/static/js/FEReload.588ab5c8.chunk.js
IP
File type ASCII text, with very long lines (1469), with no line terminators
Hash d1e7e43f0c2e7eae5e38b92128c06205
35773de13762b35d1c9d56bc2b4bbbce020d31c9
aeac9660e902c52d04829718c580fb5098799f5d61e311c4d0db726477cbd283
GET /static/js/FEReload.588ab5c8.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1469
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "d1e7e43f0c2e7eae5e38b92128c06205"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Qo5Ak9j72rh3sN5HFJgSk5ffproix-Cjf6mPdDbXATCgFkS9aj_ecw==
X-Firefox-Spdy: h2
www.ibet.com/static/js/GoogleTagManager.be9a14e5.chunk.js
200 OK 5.8 kB URL HTTP/2 www.ibet.com/static/js/GoogleTagManager.be9a14e5.chunk.js
IP
File type ASCII text, with very long lines (5790), with no line terminators
Hash 205c5f208d88e6b99d785b986bf9b9b5
bbcaabff0472d6093e1d8865675d09ef152d1883
9b5a20b5c436c34dbca9108cb771204fb028d9abc59ec48639e0e7c6fb98dc59
GET /static/js/GoogleTagManager.be9a14e5.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 5790
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "205c5f208d88e6b99d785b986bf9b9b5"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -65Xw-6YLiDcUt16Z9eTkZvKToTbK7Cg-uinO2-PdfnRSr_mmLwYug==
X-Firefox-Spdy: h2
www.ibet.com/static/js/SiteHeader.c48a74c4.chunk.js
200 OK 126 kB URL HTTP/2 www.ibet.com/static/js/SiteHeader.c48a74c4.chunk.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 126 kB (126322 bytes)
Hash ce51f792d443e430e0d602dfeac29434
72e6509f532a0bdfc8bf3c1a4752793393dd331f
43a05242bcc5b27217cb04a6fa78e03f4afcac4a938c61d53981c531bad54676
GET /static/js/SiteHeader.c48a74c4.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 126322
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "ce51f792d443e430e0d602dfeac29434"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N2i-OYR4JftdfcZ_gLW1QHI2FEokKuD_ANuLYdFUkVfY7JSmQLHQuA==
X-Firefox-Spdy: h2
www.ibet.com/static/js/MaxAttemptsModal.7e3eba41.chunk.js
1.5 kB URL www.ibet.com/static/js/MaxAttemptsModal.7e3eba41.chunk.js
IP
File type ASCII text, with very long lines (1454), with no line terminators
Hash 015bc9d0ac6756e7c694c12c14a0fada
7847d25c07d3a55f865c3601ce1721fac73739bd
bf8c832128595cb321b74ae7a26cb45e11003d5bfb09c9223f497e5c290b3674
GET /static/js/MaxAttemptsModal.7e3eba41.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
www.ibet.com/static/js/5.4dcf6ecd.chunk.js
200 OK 9.2 kB URL HTTP/2 www.ibet.com/static/js/5.4dcf6ecd.chunk.js
IP
File type ASCII text, with very long lines (9240), with no line terminators
Hash 82f5caf259cf6a1c1bbfceabd6b50013
3e711f24aed1b4cb3657b86ac2d79391e53f0ed0
8aa44f40ea43d09a4575ac9099eaefa9b497c88b3bf912cc6d89a21b61591c86
GET /static/js/5.4dcf6ecd.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 9240
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "82f5caf259cf6a1c1bbfceabd6b50013"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9-u8qb7yXlMl2Jhj1F6Tl2ishE8HXEA-FoaR_8Ytrl9GVGJAyECDIw==
X-Firefox-Spdy: h2
www.ibet.com/static/js/ScrollToTopOnRouteChange.f0af955f.chunk.js
200 OK 279 B URL HTTP/2 www.ibet.com/static/js/ScrollToTopOnRouteChange.f0af955f.chunk.js
IP
File type ASCII text, with no line terminators
Hash 057be0c51a8d595af5f093393d82b68b
9101c6bbc32f67e1a611e63d32366307ce5d98fb
a3fe499aab0e0ecb2d142ef4487e67d78b9fd8b4d3ee516946250ebf6cb5f231
GET /static/js/ScrollToTopOnRouteChange.f0af955f.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 279
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "057be0c51a8d595af5f093393d82b68b"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vwQUVfLXkocFtn2vv3MNrt29IikUI4E1bN8pRDps9LoJbgeCIFv2yQ==
X-Firefox-Spdy: h2
www.ibet.com/static/js/SiteFooter.c577284c.chunk.js
200 OK 61 kB URL HTTP/2 www.ibet.com/static/js/SiteFooter.c577284c.chunk.js
IP
File type ASCII text, with very long lines (60710), with no line terminators
Hash 7950bcbb5fb522eb1b565b149c5a2a5c
91ef126927a316da5385265373e723ba78c62cb2
f2bdbbe5c2bd6a5f39f52476b077ee0f4130eb6915ff2572245d031920f4d2cb
GET /static/js/SiteFooter.c577284c.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 60710
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "7950bcbb5fb522eb1b565b149c5a2a5c"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Qtw91hUOWerwkcFIg2u8Q6XJgQd10WyL9SnOPgON5YGv7WBrxDeNVg==
X-Firefox-Spdy: h2
www.ibet.com/static/js/AppRoutes.50c58bf0.chunk.js
200 OK 12 kB URL HTTP/2 www.ibet.com/static/js/AppRoutes.50c58bf0.chunk.js
IP
File type ASCII text, with very long lines (11849), with no line terminators
Hash ef56513927c442d468ffcc1ceee2cc9a
e5611447dceea9a54b03279caefadb44e83244d3
17f238d5c1ef5955f5ed2b22fe639016018110d530e002d0e09ab0947debb335
GET /static/js/AppRoutes.50c58bf0.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 11849
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "ef56513927c442d468ffcc1ceee2cc9a"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YyHYJqlJgOv92anXHb2SnIMmtuvrOhB80gI50p_zGPPQEPegeshOmQ==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash a87d8a919b10bfacffe702c368b58e61
88182f1643f50c8ee613607ae7283d1cfdd78e5f
69c77a2be0351707b1eb6cc5a6fbf0bd4ecfb5c814c9b1cf8243daa36b36238e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 16:56:15 GMT
Expires: Thu, 09 Feb 2023 16:56:14 GMT
Etag: "88182f1643f50c8ee613607ae7283d1cfdd78e5f"
Cache-Control: max-age=421540,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e0f2f862b4f7-OSL
www.ibet.com/static/js/60.5575fe00.chunk.js
200 OK 68 kB URL HTTP/2 www.ibet.com/static/js/60.5575fe00.chunk.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 84ce6a1c5443e84e5145682a532c0853
79a2956259110219696e8fa3bda49053421bf333
b395d31a8ee1907d8ea891b22c73d8a584c19fdd42191900cf6b1ed09fbd07db
GET /static/js/60.5575fe00.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 67663
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "84ce6a1c5443e84e5145682a532c0853"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HyTWHEnwVNuRwmQt-Y4tigfrgi82cg5W68VXweqFl-MFrPI-7Lw31A==
X-Firefox-Spdy: h2
www.ibet.com/js/iovation/loader.js
200 OK 3.7 kB URL HTTP/2 www.ibet.com/js/iovation/loader.js
IP
File type ASCII text, with very long lines (566)
Hash 345143e355b88a10dd5e7e47b83f2348
d53b59af90bba7818c705ad9cc3ef813a44bf9b0
834949bd4e4b0149dc8655578cfab9ef4e66af0989de0ded9d9e4cd0da97fd06
GET /js/iovation/loader.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3655
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "345143e355b88a10dd5e7e47b83f2348"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uwxuloXxEM287RRkTDGVYXauXpY-fiUx9mOfVw3CI25swx6ova5AIw==
X-Firefox-Spdy: h2
www.ibet.com/static/js/CookiesNotification.51f829fe.chunk.js
200 OK 9.5 kB URL HTTP/2 www.ibet.com/static/js/CookiesNotification.51f829fe.chunk.js
IP
File type ASCII text, with very long lines (9504), with no line terminators
Hash 5de9be99e1cca1b971dbea5d976a4216
0bd64b20947927561d9fa2cf5b8894386641403c
170f5cbedbb06b653978d94a4791ad3ebbbb9bdc4ed80f3a897c8d91f06d1b7e
GET /static/js/CookiesNotification.51f829fe.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 9504
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "5de9be99e1cca1b971dbea5d976a4216"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9yHsQjmM3UMCeFk_UlGSEgvpd_zyratgGBI7FWeWFAf6TqVnxYqy8A==
X-Firefox-Spdy: h2
www.ibet.com/asset-manifest.json?rand=15874
200 OK 14 kB URL HTTP/2 www.ibet.com/asset-manifest.json?rand=15874
IP
File type JSON data\012- , ASCII text
Hash c183387f74c3bf921d0470bc8128b64f
8c8db45022aa9cfcf02311a2fe7473291b23fd82
82e95849c862d5f880c371dd360bf9539a1ee1a71fdadd4cd243e46b0158ad37
GET /asset-manifest.json?rand=15874 HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 13926
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "c183387f74c3bf921d0470bc8128b64f"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xrEbszrNnw4d2-Y0_OflVlR5dDz6gMa9A1ixq6H1CDSQe95ylEaIqw==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:40:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 472 B IP
Hash e0002087c53128a0ec00e18ccf327aa7
2dee3f4ae93e5956d2f7e8fba4c501fb183ab01e
5085057ebf15232eeadd9a39cd828eacf1ad20333f346f045fecc6a208dad3b6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 18:36:58 GMT
Expires: Fri, 10 Feb 2023 18:36:57 GMT
Etag: "2dee3f4ae93e5956d2f7e8fba4c501fb183ab01e"
Cache-Control: max-age=513983,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e0f3b811b506-OSL
www.googletagmanager.com/gtm.js?id=GTM-PCVT5ZK
200 OK 74 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PCVT5ZK
IP
File type Unicode text, UTF-8 text, with very long lines (27763)
Hash 6f4f6b167e539ffd4d2bfd95bc55caa9
a39e6349fcbce03047ca12373d24235e3866ccd3
912f0a30b4d65f9a7ec2d61940f19fb76e3670d920d812eade5d58411bd7c790
GET /gtm.js?id=GTM-PCVT5ZK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 19:40:33 GMT
expires: Sat, 04 Feb 2023 19:40:33 GMT
cache-control: private, max-age=900
last-modified: Sat, 04 Feb 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73852
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:40:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
salesiq.zoho.eu/widget
200 35 kB IP
ASN #205111 ZOHO Corporation B.V
File type ASCII text, with very long lines (65536), with no line terminators
Hash d6cb12ff1db84e3523b349971061219f
5ba3e28a6dfca16b92a20c27072650e7008f39f1
6624036f26858c56846bbcf4c5cc5c8b52f08106e3ae5fab8b2cc5e95acc20f1
GET /widget HTTP/1.1
Host: salesiq.zoho.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: ZGS
Date: Sat, 04 Feb 2023 19:40:33 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: b3e783bb62=f12e0a71780f1e8684e68d76a060037b; Path=/
Access-Control-Allow-Origin: *
Cache-Control: must-revalidate
Pragma:
Expires: Sat, 04 Feb 2023 19:45:33 GMT
ETag: W/40dec934df8e25d85c9fc774974ff1a84072f929315c3b2c78f1b2ede3629833
vary: accept-encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20
200 OK 662 B URL HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20
IP
File type JSON data\012- , ASCII text, with very long lines (1673), with no line terminators
Hash 53a824c360a32940bc8ff83153345104
6bb10e12ec6aa9c8fb9be90e5004e49591897ef7
213d652fdf88f91f84d1a8234fb6b575042bbf59ae1b4eab302aebf8900a42fa
GET /v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20 HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sat, 04 Feb 2023 19:12:54 GMT
server-timing: api;dur=28
x-sanity-shard: gcp-eu-w1-01-prod-1013
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
content-encoding: br
x-sanity-age: 1658
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 662
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D
200 OK 1.3 kB URL HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D
IP
File type JSON data\012- , ASCII text, with very long lines (5109), with no line terminators
Hash 795d072fb6b636744431783f50f37046
b8b9d381bfb39f0db5940b4f0ae146932b7d2191
1ecad248bd174f96656c7e644fae0fa170fc968e1960ba677ebe566e57da0430
GET /v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sat, 04 Feb 2023 19:07:55 GMT
server-timing: api;dur=17
x-sanity-shard: gcp-eu-w1-01-prod-1013
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
content-encoding: br
x-sanity-age: 1958
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 1286
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/static/media/ibet-logo-red.6daec8ec.svg
200 OK 3.4 kB URL HTTP/2 www.ibet.com/static/media/ibet-logo-red.6daec8ec.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2861)
Hash 6daec8ec3cf491542936b5840240e511
7570d251da8522b314c1adffe9ce8be30120738c
9436edb0bd4d0b11e27997468fed995d01fd87d7b1e89d93f930064c4a21a901
GET /static/media/ibet-logo-red.6daec8ec.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 3445
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "6daec8ec3cf491542936b5840240e511"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -4GK-nypJy4Yr_3RP3fttZvGq8jvlGdDcwd8eIS_0BUzsjoYhozwgQ==
X-Firefox-Spdy: h2
www.ibet.com/static/js/58.5a328239.chunk.js
200 OK 64 kB URL HTTP/2 www.ibet.com/static/js/58.5a328239.chunk.js
IP
File type ASCII text, with very long lines (64231), with no line terminators
Hash e6f104c1fb10b3cbd61573a1131ffec5
20f0624cdfa9d527e81a02028b69c03c76f49a46
352d7cc76556ff8d3f1a5552ec21919a1b8a70b62d5990b37b4f56f1c98bf5bc
GET /static/js/58.5a328239.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 64231
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "e6f104c1fb10b3cbd61573a1131ffec5"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Cg7tlwemRD4u7rkp_h43IpoDkS-GQuNoX3ifktu2tQopkP21dgwWXQ==
X-Firefox-Spdy: h2
www.ibet.com/static/js/Home.f02190a4.chunk.js
200 OK 53 kB URL HTTP/2 www.ibet.com/static/js/Home.f02190a4.chunk.js
IP
File type ASCII text, with very long lines (53163), with no line terminators
Hash 8d750721404b54f712ebdc10ac50abb0
d2b55b6de69d83f7f8ff1ed6e38cefc88bb805e4
3271d7f2e6168cf2e9ed9e60e3b24dc775f8b300c3b4a8f37df1b007acb4f7d6
GET /static/js/Home.f02190a4.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 53163
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "8d750721404b54f712ebdc10ac50abb0"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0IGKajT6LeUtBARMxCZKBoGmPoCY1L8CojIvwLNBTTiZx3jshmjjAg==
X-Firefox-Spdy: h2
www.ibet.com/static/js/FooterImageContainer.0bd48991.chunk.js
200 OK 673 B URL HTTP/2 www.ibet.com/static/js/FooterImageContainer.0bd48991.chunk.js
IP
File type ASCII text, with very long lines (673), with no line terminators
Hash 007a27a39ed59ad8c742a6290d085cae
90cf703ba626fb71329f0d8a21dc0147c955906f
56d2505682228db27598098f9aa19526f3291d1121df94e765922b750fbcbd41
GET /static/js/FooterImageContainer.0bd48991.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 673
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "007a27a39ed59ad8c742a6290d085cae"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ye1ORe_pk-qFRZW8S58xq12xDumGIbv-8xgYwAz62y4qTbJB5OY6wA==
X-Firefox-Spdy: h2
www.ibet.com/static/js/MenuIcon.d2e33758.chunk.js
200 OK 81 kB URL HTTP/2 www.ibet.com/static/js/MenuIcon.d2e33758.chunk.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash e38a7661715a8dc6e232107d769c4b40
2556cb8f1d7405782b1707bcbc531e26ac60e63d
dee2dac553c443e4dced293ed749200a8f4c7e28750d48360b4a9f5e30c08c71
GET /static/js/MenuIcon.d2e33758.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 81074
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "e38a7661715a8dc6e232107d769c4b40"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: r-dKbui8hy0fm_tpwLIvqUK4h6RCd4DI5nEt1l1EmgSLN3sGxlT_nw==
X-Firefox-Spdy: h2
www.ibet.com/static/css/Home.c7d5bb57.chunk.css
200 OK 63 B URL HTTP/2 www.ibet.com/static/css/Home.c7d5bb57.chunk.css
IP
File type ASCII text, with no line terminators
Hash 813b17a6690bbfb32d877fbda442ef4c
c7f56f22b32af8454a849639dea6745008535859
7e4269e3372452b4d9a3ab8c989d084c3fa9fd43c963f558637a1ffdf7d25f88
GET /static/css/Home.c7d5bb57.chunk.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 63
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:34 GMT
etag: "813b17a6690bbfb32d877fbda442ef4c"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XhFJn5AhO2Z8YTR9WBsBoDafrvIguNHWr8go8j8Z8JcidQuPLcw1qA==
X-Firefox-Spdy: h2
salesiq.zoho.eu/visitor/v2/channels/website?widgetcode=429c68585fd2941a35c4c0726de2afe5f3c8164b72b4840747ca2e980e0011f9&internal_channel_req=true&language_api=true&browser_language=en¤t_domain=https%3A%2F%2Fibet.com&pagetitle=iBet.com&include_fields=avuid
200 8.9 kB URL HTTP/1.1 salesiq.zoho.eu/visitor/v2/channels/website?widgetcode=429c68585fd2941a35c4c0726de2afe5f3c8164b72b4840747ca2e980e0011f9&internal_channel_req=true&language_api=true&browser_language=en¤t_domain=https%3A%2F%2Fibet.com&pagetitle=iBet.com&include_fields=avuid
IP
ASN #205111 ZOHO Corporation B.V
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (22620), with no line terminators
Hash c4e5084bbb692d5f670a14d84a16f4b5
d6e429e2ec784eafa74289887d4697b3b8eafee6
3937202847c41ea42a396b90c00154c6b7c3acea0f2425fc040102871b517799
GET /visitor/v2/channels/website?widgetcode=429c68585fd2941a35c4c0726de2afe5f3c8164b72b4840747ca2e980e0011f9&internal_channel_req=true&language_api=true&browser_language=en¤t_domain=https%3A%2F%2Fibet.com&pagetitle=iBet.com&include_fields=avuid HTTP/1.1
Host: salesiq.zoho.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: ZGS
Date: Sat, 04 Feb 2023 19:40:33 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Encoding: UTF-8
X-XSS-Protection: 1
Set-Cookie: b3e783bb62=3b25613755bedb7ecf913eeaa36b4a8c; Path=/
LS_CSRF_TOKEN=a62b8246-9242-4f1e-bd92-85117066e546;path=/;SameSite=None;Secure;priority=high
_zcsr_tmp=a62b8246-9242-4f1e-bd92-85117066e546;path=/;SameSite=Strict;Secure;priority=high
uesign=d7d0e81a091a62cd698ea72838e6cf50b3266bd2e72e31dc2dc5e9a6550baaf5d56b40cdd222d26b7f674425e11c5b75;Max-Age=2592000;Path=/;Secure;SameSite=None;priority=high
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Headers: Content-Type,x-siq-internal-channel
Access-Control-Allow-Origin: https://www.ibet.com
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Content-Language: en-US
Strict-Transport-Security: max-age=63072000
Content-Encoding: gzip
www.ibet.com/iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
200 OK 1.4 kB URL HTTP/2 www.ibet.com/iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP
File type ASCII text, with very long lines (985)
Hash a8334227e6be5bb52e447674d031b6cb
b0e4c8e7198c6866b19d39854a4cef06ee81f7db
56778d8f8c6197eefe622575413757a8c2eaa94bf3b3670fffa90cea4d32c4a0
GET /iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 1398
date: 2023-Feb-04 19:40:33
cache-control: no-cache, private
pragma: no-cache
expires: 0
p3p: CP="NON DSP COR CURa"
accept-ch: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pZoni3RkAcBSM_BgtnS5dWmgTxCb7kQDCu_XIJ0rlotfsSwHpY5-yA==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash b53b22fb999e186eebe72073aa62af32
310130edaa8d9e272cd3077e046330041f6af65f
8aba19386e013e82e03bde36039cb8b8f6aa97edee3fcdd41b4d21d152762518
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 13:59:51 GMT
Expires: Sat, 11 Feb 2023 13:59:50 GMT
Etag: "310130edaa8d9e272cd3077e046330041f6af65f"
Cache-Control: max-age=583756,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e0f77b3db4fa-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash b53b22fb999e186eebe72073aa62af32
310130edaa8d9e272cd3077e046330041f6af65f
8aba19386e013e82e03bde36039cb8b8f6aa97edee3fcdd41b4d21d152762518
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 13:59:51 GMT
Expires: Sat, 11 Feb 2023 13:59:50 GMT
Etag: "310130edaa8d9e272cd3077e046330041f6af65f"
Cache-Control: max-age=583756,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e0f78b590b41-OSL
js.adsrvr.org/up_loader.1.1.0.js
200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP
File type ASCII text, with very long lines (4593), with no line terminators
Hash bb21b4ac5c8f198136244beb5c8e0804
0eab22f7b9ca0610c0e416296b93087de5e37a63
37d542a03db1e2e120cb42dc3d6cbd94e15005cdfd605cbe070eb27e986f6095
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Sat, 04 Feb 2023 09:30:24 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mdLBqoTx_60cR3MCkWYFedDTwJk7m3-IWLfO-lB8OQmZcRvzHdr8kg==
Age: 36610
cdn.sanity.io/images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg
200 OK 1.5 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2523)
Hash 2ad526f14821d156aa6ce0121aa08ce7
8593c593a45edaaee6f643cfb1721ad99e9ab3d8
c8b2ebb7f2ac2a8d902463ff865937d7136396cb72d0693d5505cffd15b7ac64
GET /images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding, origin, accept-encoding
x-b3-traceid: 7c02707013b6a74d12e0ac558c7a63f6
x-b3-parentspanid: 6dac6917b568e37d
x-b3-spanid: 399c54fbb746121b
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
content-encoding: br
x-varnish-age: 36154
accept-ranges: bytes
content-length: 1454
via: 1.1 google
date: Mon, 30 Jan 2023 14:49:31 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 20 Jul 2022 10:00:20 GMT
content-type: image/svg+xml
age: 449462
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/bc900fced5d5b640bf862dee4f6f672c336eb059-395x97.png
200 OK 3.1 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/bc900fced5d5b640bf862dee4f6f672c336eb059-395x97.png
IP
File type PNG image data, 395 x 97, 8-bit colormap, non-interlaced\012- data
Hash bae88acf6501b95d744ac42753fd154e
bc900fced5d5b640bf862dee4f6f672c336eb059
a9b8a511c5a65723741f141c52a491e45a6d1d47d4cdc57c8b29f39e2ca0fe41
GET /images/w9lc5y04/production/bc900fced5d5b640bf862dee4f6f672c336eb059-395x97.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3072
x-b3-traceid: b147e828b1c351e4acc42fca131c08b0
x-b3-parentspanid: 8c08bd49005e7310
x-b3-spanid: fab7073899b8658e
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 4020
accept-ranges: bytes
via: 1.1 google
date: Sun, 29 Jan 2023 11:42:50 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:38:03 GMT
content-type: image/png
age: 547063
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/9baabec764476ca445f88710f67677b633a54b95-430x100.png
200 OK 3.6 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/9baabec764476ca445f88710f67677b633a54b95-430x100.png
IP
File type PNG image data, 430 x 100, 8-bit colormap, non-interlaced\012- data
Hash b3af83174bcd7c3365106aec05ceabc1
9baabec764476ca445f88710f67677b633a54b95
42fae6932054cb4d37203480d9e5c6cf8787934f3b5ac09176da4f1867a992de
GET /images/w9lc5y04/production/9baabec764476ca445f88710f67677b633a54b95-430x100.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3612
x-b3-traceid: e2f617095e6df9261ebf1cd5a444d3ad
x-b3-parentspanid: 041a632520f96ba9
x-b3-spanid: 6482dccd13148bd3
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-4
x-varnish-age: 17296
accept-ranges: bytes
via: 1.1 google
date: Sat, 04 Feb 2023 02:02:07 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 63506
last-modified: Wed, 14 Jul 2021 11:37:46 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png
200 OK 1.8 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png
IP
File type PNG image data, 270 x 93, 8-bit colormap, non-interlaced\012- data
Hash e4b9e11554e481b113004a5fa1bcd3ca
55d86f60b146584dbf41fcd8444f32cad91ce0ae
5bff602b52530e6bf9e7328c551a062ffb4153b63b1a22a3e2701270b24cf694
GET /images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 1819
x-b3-traceid: 77bd0f0100d20d8e9e43eaf09eb22cf5
x-b3-parentspanid: 2a2abaa3af3a232b
x-b3-spanid: ae1bea431359881e
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 19 Jan 2023 06:43:22 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:39:31 GMT
content-type: image/png
age: 1429031
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png
200 OK 3.3 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png
IP
File type PNG image data, 560 x 107, 8-bit colormap, non-interlaced\012- data
Hash e83e505077311e5f9cd28570d22b274c
d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f
f0571891d0bb64899275389561c72cf12622f87bc6921910c0fea86108c13fae
GET /images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3304
x-b3-traceid: 7461f171b153f3c8368a63661c7ddd43
x-b3-parentspanid: 7a7456c7997eeb09
x-b3-spanid: a0ccdbcc7ed7f1ed
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Mon, 16 Jan 2023 16:07:49 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:37:21 GMT
content-type: image/png
age: 1654364
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3-256x90.png
200 OK 2.3 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3-256x90.png
IP
File type PNG image data, 256 x 90, 8-bit colormap, non-interlaced\012- data
Hash 3cc63e63d23d84e22251a97cae156b43
261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3
a24220152c92cc21497f600a6ec7abe14875485a719e1ef2841919188681d803
GET /images/w9lc5y04/production/261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3-256x90.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 2272
x-b3-traceid: 89b50c2590c4bc1062f18c100fe9e32a
x-b3-parentspanid: 55ecef5e374ef206
x-b3-spanid: 6bbcce4e2a098d91
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Wed, 18 Jan 2023 03:39:40 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:35:44 GMT
content-type: image/png
age: 1526453
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/98a1fe10a380461fda22a3baccc6031744fef4fb-991x225.png
200 OK 23 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/98a1fe10a380461fda22a3baccc6031744fef4fb-991x225.png
IP
File type PNG image data, 991 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash ded03dbc96554750e94cb0f5b1b780ff
98a1fe10a380461fda22a3baccc6031744fef4fb
e001ab0ed5f5808d34f62add059289fc8fa6ccb6a347a610b7e0a668d810cf0b
GET /images/w9lc5y04/production/98a1fe10a380461fda22a3baccc6031744fef4fb-991x225.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 22817
x-b3-traceid: fc2f9c4996453cb553936b565bb017a2
x-b3-parentspanid: f3e17e8daf1d516c
x-b3-spanid: 1b092ac8942b265b
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-6
x-varnish-age: 3224
accept-ranges: bytes
via: 1.1 google
date: Thu, 12 Jan 2023 13:41:56 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 28 Apr 2022 12:46:16 GMT
content-type: image/png
age: 2008717
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash dd8d2719dc8ced42240b67133f75685b
dfb76e67cd13fcd39ca651532fc481fb5aa458a9
1406547c8313e7b35aaeface3386a582316e2009dab841097e162d12cb1c313a
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Wed, 08 Feb 2023 17:39:13 GMT
ETag: "dfb76e67cd13fcd39ca651532fc481fb5aa458a9"
Last-Modified: Sat, 04 Feb 2023 17:39:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1002
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7945e0f7dde31c0a-OSL
www.ibet.com/iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
200 OK 52 kB URL HTTP/2 www.ibet.com/iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP
Hash 4bfdb02600b31cd9ac65bc659ebc1196
68b0a936f9c60449e2821d702c5a62378b025180
924ba78bd25b2f58f6c305e26319d2cb12c999e2e85146982921321c4483497a
GET /iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Sat, 04 Feb 2023 19:40:33 GMT
last-modified: Tue, 06 May 2014 00:01:40 GMT
expires: Mon, 06 Mar 2023 19:40:33 GMT
cache-control: private
p3p: CP="NON DSP COR CURa"
accept-ch: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: athOyjUDh4aRa8tXzdxROVNWm6FKUM-G7ZA5zMDix9vDtWLzGHuy7w==
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash dd8d2719dc8ced42240b67133f75685b
dfb76e67cd13fcd39ca651532fc481fb5aa458a9
1406547c8313e7b35aaeface3386a582316e2009dab841097e162d12cb1c313a
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Wed, 08 Feb 2023 17:39:13 GMT
ETag: "dfb76e67cd13fcd39ca651532fc481fb5aa458a9"
Last-Modified: Sat, 04 Feb 2023 17:39:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1002
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7945e0f7dd141c12-OSL
tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAUT
200 OK 37 kB URL HTTP/2 tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAUT
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (61814)
Hash 7a4c7084a1cc66299069cae286e77ae9
69e0d50e779ea14bf86e8da3791c0ac246317499
08a9e9ea264c09e8bbed7876e604711eaa12870ead3a524324bc429b415032a0
GET /dist/tag-manager.js?id=STM-AAAAUT HTTP/1.1
Host: tm.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
apigw-requestid: f1BT1hdDjoEEJRg=
vary: Accept-Encoding
content-encoding: gzip
content-length: 37374
date: Sat, 04 Feb 2023 19:40:33 GMT
cache-control: max-age=900, public
x-n: S
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 7fe4302c46784dfe0e2cb02c8588b958
19abd2ff6da8e54cc60c1a6c8f4c9fca6358f748
41f3070b37e5088175147d4aa26ca803b23f0d7a2fa4132e4882101b37016f93
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5108
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:40:33 GMT
Last-Modified: Sat, 04 Feb 2023 18:15:25 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
imagesrv.adition.com/js/aut.js
200 OK 3.6 kB URL HTTP/2 imagesrv.adition.com/js/aut.js
IP
ASN #24961 myLoc managed IT AG
File type C source, ASCII text, with very long lines (575)
Hash 20bcb89e1593d0791dc1e75cddc1651d
d696cd7a407d3d95f197c44cf1d8e47312242e1b
453f86a616db4a42e5dd92fc00a580d769a6275c0adb56700b134290c8302971
GET /js/aut.js HTTP/1.1
Host: imagesrv.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
etag: "2397954584-br"
last-modified: Wed, 11 Jan 2023 08:47:11 GMT
content-length: 3634
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: br
date: Sat, 04 Feb 2023 19:40:33 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 0fcb963dea5f0f6da0d8bbb8fe74526a
360bc6c8fed339664ffdc00baf7f1adbce69c816
b05a6e87438d6446ca0ec2e3fe149535bcfaf2f0f2caa9bd76aa6708bd040123
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3982
Cache-Control: max-age=156030
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:40:33 GMT
Etag: "63de63a1-1d7"
Expires: Mon, 06 Feb 2023 15:01:03 GMT
Last-Modified: Sat, 04 Feb 2023 13:54:41 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
200 OK 472 B IP
Hash b53b22fb999e186eebe72073aa62af32
310130edaa8d9e272cd3077e046330041f6af65f
8aba19386e013e82e03bde36039cb8b8f6aa97edee3fcdd41b4d21d152762518
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 13:59:51 GMT
Expires: Sat, 11 Feb 2023 13:59:50 GMT
Etag: "310130edaa8d9e272cd3077e046330041f6af65f"
Cache-Control: max-age=583756,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e0f74f65b4f7-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash b53b22fb999e186eebe72073aa62af32
310130edaa8d9e272cd3077e046330041f6af65f
8aba19386e013e82e03bde36039cb8b8f6aa97edee3fcdd41b4d21d152762518
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 13:59:51 GMT
Expires: Sat, 11 Feb 2023 13:59:50 GMT
Etag: "310130edaa8d9e272cd3077e046330041f6af65f"
Cache-Control: max-age=583756,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e0f7592db4f1-OSL
cdn.sanity.io/images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png
200 OK 5.2 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png
IP
File type PNG image data, 318 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash 54f08de44053ac484ef92bd1b2490323
fbfd97517c2b1e30611014c9938e5ac6f75e3315
68d588a5d493dc1ad73240aa42bbf23a7b522f8ab1c42b8718ce05a027293ac7
GET /images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 5240
x-b3-traceid: e3f6a940816f43e4c5ebb09c86ef203a
x-b3-parentspanid: 26f337bd597bbebf
x-b3-spanid: ec69cc0855f1b9bc
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-4
x-varnish-age: 3224
accept-ranges: bytes
via: 1.1 google
date: Thu, 12 Jan 2023 13:41:56 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Fri, 25 Nov 2022 13:38:56 GMT
content-type: image/png
age: 2008718
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
200 OK 505 B URL HTTP/2 www.ibet.com/iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
IP
File type ASCII text, with very long lines (377)
Hash 3a7562808f05f073ae2e38a7f6caf9ce
1da7aad44a49c880ab88c366580ba3edfc93abea
b6b722c4593afe743777269613772027d7da871d391a40bd046db576ec3c5f30
GET /iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Cookie: isiframeenabled=true; _gcl_au=1.1.1495947527.1675539671; _ga_QMJ93CW4C3=GS1.1.1675539670.1.0.1675539670.0.0.0; _ga=GA1.1.217289558.1675539671
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 505
date: Sat, 04 Feb 2023 19:40:33 GMT
last-modified: Tue, 06 May 2014 00:01:40 GMT
expires: Sun, 04 Feb 2024 19:40:33 GMT
cache-control: private
p3p: CP="NON DSP COR CURa"
accept-ch: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pXCsSiy9crIbFdpRFt5et8bV--tILuU6uPswddHV2CH3lz046MGq5A==
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/417d814c6c80a9400e9b057707dbb54c08cfefd4-897x497.png
200 OK 19 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/417d814c6c80a9400e9b057707dbb54c08cfefd4-897x497.png
IP
File type PNG image data, 897 x 497, 8-bit/color RGBA, non-interlaced\012- data
Hash 7f9d14d17f40f7e7ee9a226a905b08bd
417d814c6c80a9400e9b057707dbb54c08cfefd4
ed8b6c84dbbf53d89846770b7765d9c33ca294cb5c7cddd73a8e7cb3fc102d48
GET /images/w9lc5y04/production/417d814c6c80a9400e9b057707dbb54c08cfefd4-897x497.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 18989
x-b3-traceid: 50b224e44cae4bf167acc35a09767d15
x-b3-parentspanid: bd2d34f4c74b4ab7
x-b3-spanid: dc6a29255a57b8c7
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 17507
accept-ranges: bytes
via: 1.1 google
date: Wed, 01 Feb 2023 08:02:10 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 301104
last-modified: Thu, 29 Sep 2022 08:53:29 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mpsnare.iesnare.com/star
101 Switching Protocols 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lr3aoeQ2z9N+FAfUN/N5/g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sat, 04 Feb 2023 19:40:34 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: IjhAZcFjETVhGAsy5Fx9tfXGOwQ=
Upgrade: WebSocket
ocsp.sectigo.com/
200 OK 471 B IP
Hash 750eea13270d515ca3d0e42b5db8885c
17d65469a0c73fe5ae4d5f51a25051d54010dd4a
6cd245cb7388b0b1bf584ca48cdd293d835bbe95e33c533befb1e85f23d417ee
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 03:09:29 GMT
Expires: Fri, 10 Feb 2023 03:09:28 GMT
Etag: "17d65469a0c73fe5ae4d5f51a25051d54010dd4a"
Cache-Control: max-age=458333,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e0f8a993b4f7-OSL
css.zohocdn.com/salesiq/styles/floatbutton1_bd045c29766df2806787522c13149e23_.css
200 OK 5.1 kB URL HTTP/2 css.zohocdn.com/salesiq/styles/floatbutton1_bd045c29766df2806787522c13149e23_.css
IP
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (22576), with no line terminators
Hash 9674bdea22120177e94ec071e3dfbe6c
206b3ab605f3409b8f33e7e4b1b464c02d6831b0
63f3b43a7dfed48774b53a6432331e78e98bd86549e2916cfc0e9eb8fc530c12
GET /salesiq/styles/floatbutton1_bd045c29766df2806787522c13149e23_.css HTTP/1.1
Host: css.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Sat, 04 Feb 2023 19:40:34 GMT
content-type: text/css;charset=UTF-8
content-length: 5141
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "9674bdea22120177e94ec071e3dfbe6c"
content-language: en-US
last-modified: Mon, 09 Jan 2023 12:41:16 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 2f0220723226819c618a757c28fba94c
z-origin-id: ex1-2f7dc721d34449d58349e76a361aeb74
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash b53b22fb999e186eebe72073aa62af32
310130edaa8d9e272cd3077e046330041f6af65f
8aba19386e013e82e03bde36039cb8b8f6aa97edee3fcdd41b4d21d152762518
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 13:59:51 GMT
Expires: Sat, 11 Feb 2023 13:59:50 GMT
Etag: "310130edaa8d9e272cd3077e046330041f6af65f"
Cache-Control: max-age=583755,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e0f81c28b4fa-OSL
ocsp.digicert.com/
200 OK 278 B IP
Hash 7fe4302c46784dfe0e2cb02c8588b958
19abd2ff6da8e54cc60c1a6c8f4c9fca6358f748
41f3070b37e5088175147d4aa26ca803b23f0d7a2fa4132e4882101b37016f93
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5109
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:40:34 GMT
Last-Modified: Sat, 04 Feb 2023 18:15:25 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
ocsp.sectigo.com/
200 OK 471 B IP
Hash 750eea13270d515ca3d0e42b5db8885c
17d65469a0c73fe5ae4d5f51a25051d54010dd4a
6cd245cb7388b0b1bf584ca48cdd293d835bbe95e33c533befb1e85f23d417ee
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 03:09:29 GMT
Expires: Fri, 10 Feb 2023 03:09:28 GMT
Etag: "17d65469a0c73fe5ae4d5f51a25051d54010dd4a"
Cache-Control: max-age=458333,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e0f8ac4c0b41-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash b53b22fb999e186eebe72073aa62af32
310130edaa8d9e272cd3077e046330041f6af65f
8aba19386e013e82e03bde36039cb8b8f6aa97edee3fcdd41b4d21d152762518
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 13:59:51 GMT
Expires: Sat, 11 Feb 2023 13:59:50 GMT
Etag: "310130edaa8d9e272cd3077e046330041f6af65f"
Cache-Control: max-age=583756,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e0f6ac25b506-OSL
js.zohocdn.com/salesiq/js/floatbutton1_aaa7d7b4872c11015e75ee4b6a789bc6_.js
200 OK 13 kB URL HTTP/2 js.zohocdn.com/salesiq/js/floatbutton1_aaa7d7b4872c11015e75ee4b6a789bc6_.js
IP
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (36889), with no line terminators
Hash 442bffdefe2ad3df847c10003dfaa48e
8e99d0948737ae632d6e3e71a4e6224c60330abf
74712da9d15ad35a1cd198fb88274206dc23cf453b0e34a77c29a63dddae9e0f
GET /salesiq/js/floatbutton1_aaa7d7b4872c11015e75ee4b6a789bc6_.js HTTP/1.1
Host: js.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Sat, 04 Feb 2023 19:40:34 GMT
content-type: application/javascript;charset=UTF-8
content-length: 12566
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "442bffdefe2ad3df847c10003dfaa48e"
content-language: en-US
last-modified: Wed, 01 Feb 2023 13:08:55 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: d8256435eb9fb17415fbea1b8e15e865
z-origin-id: ex1-9de30ebb55644ef0ad9d37b88d5878cc
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
amplify.outbrain.com/cp/obtp.js
200 OK 5.9 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP
File type ASCII text, with very long lines (17769), with no line terminators
Hash 939f95ffc91ae8a9eacb6998ec5a635f
e122fe07195821f6abf871cc65f315c6b9e27f4a
49462b3c223095ac3fc223f11a29e4bceed96feba62e167d444e9a082626fc17
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "b07048fb19f7c325242e254218118e14:1675339769.124179"
Last-Modified: Thu, 02 Feb 2023 09:48:30 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Sat, 04 Feb 2023 20:00:34 GMT
Date: Sat, 04 Feb 2023 19:40:34 GMT
Content-Length: 5911
Connection: keep-alive
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 04 Feb 2023 17:45:20 GMT
expires: Sat, 04 Feb 2023 19:45:20 GMT
cache-control: public, max-age=7200
age: 6914
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
origin.acuityplatform.com/event/v2/pixel.js
200 OK 2.4 kB URL HTTP/1.1 origin.acuityplatform.com/event/v2/pixel.js
IP
File type HTML document, ASCII text, with very long lines (2423)
Hash c1e398d8cc65cd9241cc3f1840add2cb
316b1005d23d838c83e8bc65d3c2679b8c098df6
89cf66cb9de8da20fc15e9953845dd4d1de2c0fb465c827a09d818449222c533
GET /event/v2/pixel.js HTTP/1.1
Host: origin.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.0
Content-Type: application/javascript
Content-Length: 2424
Last-Modified: Wed, 04 Jan 2023 18:57:40 GMT
ETag: "63b5cc24-978"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 19:40:34 GMT
Connection: keep-alive
static.hotjar.com/c/hotjar-3070584.js?sv=7
200 OK 4.1 kB URL HTTP/2 static.hotjar.com/c/hotjar-3070584.js?sv=7
IP
File type ASCII text, with very long lines (7460)
Hash 3d5bf0c842379b2da1c00c16a5dbca1e
4ae87712e357de93de9df75fec3230080ebdb49b
7f18133c75946e3ec5bde8d8a027a06bf5ec31b88afd0c7269c563059b1d193b
GET /c/hotjar-3070584.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sat, 04 Feb 2023 19:40:34 GMT
cache-control: max-age=60
etag: W/6326728b8694e21cddeebcd3e146f65e
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J_MFLAlP5lfCNBm5REC2UvBfPkwDUWVBlMaOGf2aufYQINfRizmTiA==
age: 2
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash e979cb943a245cc0be69046eacd6b3cd
dc40d8c60992c3b51288fdfddd00aeba83051359
c0d3aff5a18068419c3cdbff5a86b5c4a2131bee7f10d09b319f32f5c746de03
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5971
Cache-Control: max-age=86752
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:40:34 GMT
Etag: "63dd4d3f-1d7"
Expires: Sun, 05 Feb 2023 19:46:26 GMT
Last-Modified: Fri, 03 Feb 2023 18:06:55 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
cdn.taboola.com/libtrc/unip/1504263/tfa.js
200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1504263/tfa.js
IP
File type ASCII text, with very long lines (59651)
Hash d3d3c2ccdb0c9462aa3df83204450180
c5d2619a338d654b4bd7560cb8b22ee6dcc7d923
d5927aac58d5e54f6a4d091839aef3cee77987851e959bc3542a7bb5ac08e41a
GET /libtrc/unip/1504263/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2X1x3wK2FEt1ZzEwmBfwjTbto/p4nywWy2JHLv3MSSZ0jYQw42vy73L4dk3UPFxVGrvSZ9yqOYA=
x-amz-request-id: 84FXRMQX47GRPNQM
x-amz-replication-status: COMPLETED
last-modified: Sun, 29 Jan 2023 11:04:41 GMT
etag: "355badab51035947f02e74c5bac7c8e1"
x-amz-version-id: fg4cOI2HUqb4qA2yxP21QxLPFzsmUQ7l
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 19:40:34 GMT
via: 1.1 varnish
age: 12
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675539634.329475,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 99
content-length: 18341
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash d69d0f1694f3a37cbf474f98d0562f06
a04fc0bf59bf751d9195fd24fdc6ef2347af88c4
14b7fada3a2ccb0b0b32f3b589fb92ab2b373dfd52a5eee1d776559e0adae595
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Wed, 08 Feb 2023 16:21:33 GMT
ETag: "a04fc0bf59bf751d9195fd24fdc6ef2347af88c4"
Last-Modified: Sat, 04 Feb 2023 16:21:34 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2627
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7945e0faa86b1c0a-OSL
mpsnare.iesnare.com/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
200 OK 19 kB URL HTTP/1.1 mpsnare.iesnare.com/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP
File type ASCII text, with very long lines (1056)
Hash c566060002731d8b1849400cd37e980b
b3bc9959a5f695e22af034f36e1f51fb9b0147c5
4094d1e1365289c02760fdba2281d0a0262dcd3d46f54905c6d2514590c5c07b
GET /general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 19:40:34 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: io_token_7c6a6574-f011-4c9a-abdd-9894a102ccef=OsmJrs+G7E+a8TWijW7QGRqQ61pokw0hak2xJnwSkg4=;Path=/;Expires=Sun, 04-Feb-2024 19:40:34 GMT;Max-Age=31536000;Secure;HttpOnly;SameSite=None
Cache-Control: no-cache, private
Pragma: no-cache
Expires: 0
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
api.fouanalytics.com/api/init-2315cm3nkx3pemx84qeo.js
200 OK 856 B URL HTTP/2 api.fouanalytics.com/api/init-2315cm3nkx3pemx84qeo.js
IP
File type ASCII text, with very long lines (474)
Hash b9aacd53daf21fac0a121202d3eae5f7
9f49dd243e1075f95e438c43d5f2364db18a6d29
34c173b9b5043089b61f8e8733c53db691a5835e3ca16b61465f61e16615f839
GET /api/init-2315cm3nkx3pemx84qeo.js HTTP/1.1
Host: api.fouanalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:40:34 GMT
content-type: text/javascript
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
expires: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BfhRbkO6%2FWh66BiEQRvNN8HF24zjCgcKmWCLpvn1RcfsVHygc7nP8Iwq7n6xztAELS%2BQs351q4p%2B4Q9VGUsRWIXVrb%2F21A9dJt7gjMFj1QsxF7kiKyqacv5fwWRuS8YO9g38qlBQ%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7945e0f84c3d8e27-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
adfarm1.adition.com/i?raw=1&ts=1384984531
200 OK 19 B URL HTTP/2 adfarm1.adition.com/i?raw=1&ts=1384984531
IP
ASN #24961 myLoc managed IT AG
File type ASCII text, with no line terminators
Hash 6e0b2b772941ad2818e4d4983359c8ec
68295dff9815c8b162559178daa35b3b2345732f
75678dc7b860ccf462857a639a68d80a5c526fb7ba49cbad8a756082ab04e8f4
GET /i?raw=1&ts=1384984531 HTTP/1.1
Host: adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
content-length: 19
server: ADITIONSERVER v1.0
date: Sat, 04 Feb 2023 20:40:34 +0100
access-control-allow-credentials: true
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: set-cookie
cache-control: max-age=31536000,private
p3p: policyref="https://imagesrv.adition.com/w3c/p3p-ssl.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
set-cookie: UserID1=7196387931188431625; expires=Fri, 05-May-2023 20:40:34 GMT; path=/; domain=.adfarm1.adition.com; SameSite=None; Secure
X-Firefox-Spdy: h2
imagesrv.adition.com/1x1.gif
200 OK 68 B URL HTTP/2 imagesrv.adition.com/1x1.gif
IP
ASN #24961 myLoc managed IT AG
File type GIF image data, version 89a, 1 x 1\012- data
Hash 93e65182fe45341563c2f18f13987dc9
2dfd85967b0ac77f85697b05de2c1aca1b31e934
5fb3bdb7f966c852579fb6b0574517445d5b2d171c804d66227ee67b1bffca9c
GET /1x1.gif HTTP/1.1
Host: imagesrv.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
accept-ranges: bytes
etag: "3122740758"
last-modified: Fri, 24 Jul 2009 13:46:10 GMT
content-length: 68
access-control-allow-origin: *
date: Sat, 04 Feb 2023 19:40:34 GMT
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist/tracker.js
200 OK 12 kB URL HTTP/2 tracker.ads.sportradar.com/dist/tracker.js
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (34755)
Hash b34b13d85152f71b7fd15289c78c0583
0bb20191b022bbd0e75f2bbce7f6332886079c2c
7a3fc57394ecc6745eb6e18745aa1e5e5d05cb2237c4d0d754ab43d33863a84c
GET /dist/tracker.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "5ff82a1c468a89919e9437d33e0402cb"
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: xxy24jTmXvVX0pZDc4mQqOEbDdBZu0yd_clnp0StuyGWfF7ogQHfyg==
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 04 Feb 2023 19:40:34 GMT
content-length: 11553
cache-control: max-age=900, public
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-QMJ93CW4C3>m=45je3210&_p=831595406&cid=217289558.1675539671&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675539670&sct=1&seg=0&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&dt=iBet.com&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-QMJ93CW4C3>m=45je3210&_p=831595406&cid=217289558.1675539671&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675539670&sct=1&seg=0&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&dt=iBet.com&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-QMJ93CW4C3>m=45je3210&_p=831595406&cid=217289558.1675539671&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675539670&sct=1&seg=0&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&dt=iBet.com&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.ibet.com
date: Sat, 04 Feb 2023 19:40:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/media/home/features/features-desktop.jpg
200 OK 136 kB URL HTTP/2 www.ibet.com/media/home/features/features-desktop.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1440x824, components 3\012- data
Size 136 kB (135662 bytes)
Hash fffc21166194075701552a7d2218a9fc
c84cc4212579053740c58bf3245759c2371436f3
02ab2a6abaaa6981603402a187337d197b57578609f7ebf09b9b49dba94ca276
GET /media/home/features/features-desktop.jpg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=dqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
Cookie: isiframeenabled=true; _gcl_au=1.1.1495947527.1675539671; _ga_QMJ93CW4C3=GS1.1.1675539670.1.0.1675539670.0.0.0; _ga=GA1.1.217289558.1675539671; _autuserid2=7196387931188431625
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 135662
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 04 Feb 2023 19:40:35 GMT
etag: "fffc21166194075701552a7d2218a9fc"
x-cache: RefreshHit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ar--oQhzUWK70lpbV-eaHCRwdAVHLe5oCka-mx9XcSu2Dv93CHEE5w==
X-Firefox-Spdy: h2
ad1.adfarm1.adition.com/track?tid=26000&sid=55435&type=image&orderid=&itemno=&descr=&quantity=&price=0.00&total=0.00&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&parm1=&parm2=&parm3=&parm4=
302 Found 18 kB URL HTTP/2 ad1.adfarm1.adition.com/track?tid=26000&sid=55435&type=image&orderid=&itemno=&descr=&quantity=&price=0.00&total=0.00&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&parm1=&parm2=&parm3=&parm4=
IP
ASN #24961 myLoc managed IT AG
File type Web Open Font Format (Version 2), TrueType, length 18484, version 1.6553\012- data
Hash 2bead14105eb2526e9547d6dd69ed86c
23601938b7bbb0631b6a33f7f6c7e73700241dea
07839fe34039d0bf261f3cb68b299f96f43705a4c8a0bce5063d6376a311c4d6
GET /track?tid=26000&sid=55435&type=image&orderid=&itemno=&descr=&quantity=&price=0.00&total=0.00&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&parm1=&parm2=&parm3=&parm4= HTTP/1.1
Host: ad1.adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/plain
location: https://imagesrv.adition.com/1x1.gif
server: ADITIONSERVER v1.0
date: Sat, 04 Feb 2023 20:40:34 +0100
access-control-allow-origin: *
cache-control: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
p3p: policyref="https://imagesrv.adition.com/w3c/p3p-ssl.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
pragma: no-cache
set-cookie: UserID1=7196387931239089361; expires=Fri, 05-May-2023 20:40:33 GMT; path=/; domain=.adfarm1.adition.com; SameSite=None; Secure
X-Firefox-Spdy: h2
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash 7dfc033b72537a53c99210c2eb309efd
961b3216216445efd8ecb6ffa5a64e7d18ded079
14dcca4daf96749b87976baba27b25e50ef36d20ee5e538cf53071d0ffa4f3c9
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "14DCCA4DAF96749B87976BABA27B25E50EF36D20EE5E538CF53071D0FFA4F3C9"
Last-Modified: Sat, 04 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1764
Expires: Sat, 04 Feb 2023 20:09:58 GMT
Date: Sat, 04 Feb 2023 19:40:34 GMT
Connection: keep-alive
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash 7dfc033b72537a53c99210c2eb309efd
961b3216216445efd8ecb6ffa5a64e7d18ded079
14dcca4daf96749b87976baba27b25e50ef36d20ee5e538cf53071d0ffa4f3c9
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "14DCCA4DAF96749B87976BABA27B25E50EF36D20EE5E538CF53071D0FFA4F3C9"
Last-Modified: Sat, 04 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1784
Expires: Sat, 04 Feb 2023 20:10:18 GMT
Date: Sat, 04 Feb 2023 19:40:34 GMT
Connection: keep-alive
s2.adform.net/banners/scripts/st/trackpoint-async.js
200 OK 31 kB URL HTTP/2 s2.adform.net/banners/scripts/st/trackpoint-async.js
IP
File type ASCII text, with very long lines (992)
Hash 54302fc5484a25aa5d6179e475edcc21
a1c1005e40a4c0375f9194c18b31c86e030ca781
729785e66ca8947ed909ec68bdd67c74bf90351809fe49f1b86255dc2ab19399
GET /banners/scripts/st/trackpoint-async.js HTTP/1.1
Host: s2.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 19:40:34 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 29 Nov 2022 10:23:25 GMT
x-rgw-object-type: Normal
etag: W/"83eb5fafaa212c785f7393188ff817aa"
x-amz-request-id: tx00000ea5be29143837370-006385e0d3-32941e2b-default
access-control-allow-origin: *
cache-control: public, max-age=604800
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sat, 04 Feb 2023 19:40:34 GMT
Location: https://a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
Set-Cookie: zuuid=4505c623-5fc1-44e2-9537-d95858b98919; path=/; expires=Sun, 04-Feb-2024 19:40:34 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675539634; path=/; expires=Sun, 04-Feb-2024 19:40:34 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675539634; path=/; expires=Sun, 04-Feb-2024 19:40:34 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
tracker.ads.sportradar.com/dist//sp-2.14.0.js
200 OK 30 kB URL HTTP/2 tracker.ads.sportradar.com/dist//sp-2.14.0.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (64903)
Hash 44f237857b8d03f32b53fe551e83c95a
91536fe6c60d947d29dfcb5f04d09b752b5ccf03
a5e10dc2f3c729300afe8fe24aa430f57d91fdefa8112c0b35dd424ba612caa7
GET /dist//sp-2.14.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "8dba669b94e3865c9205ef8fd15ee4d1"
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: dvubTwXiRCjiJB7wCHMomvWFLhrbYyzD7rIO_O4yfnHhyBM3lf2JMA==
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 04 Feb 2023 19:40:34 GMT
content-length: 30370
cache-control: max-age=900, public
X-Firefox-Spdy: h2
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BBHIQVPk-Bx477VlLLI0ObmxeDASwsLfGTKFGEhAX2CdSuupWKCNDw==
age: 109828
X-Firefox-Spdy: h2
mpsnare.iesnare.com/star
101 Switching Protocols 6.6 kB IP
Hash aef57cce3dbc7da44e40d32ca2d4449f
d11b5f6244b0131a6ec0cd43db68c2018221a17b
b5f518d35887f3ef7959879caac458bf92ec0a5db6d115145e45e517b3297ca1
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DFkufW6eASZ3Bg4+AaP0Vg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sat, 04 Feb 2023 19:40:34 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: cped66wGb/tDJyuDtQRZeO00LVM=
Upgrade: WebSocket
a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Cookie: zuuid=4505c623-5fc1-44e2-9537-d95858b98919; c=1675539634; zuuid_lu=1675539634
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sat, 04 Feb 2023 19:40:35 GMT
Location: https://x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=4505c623-5fc1-44e2-9537-d95858b98919&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D4505c623-5fc1-44e2-9537-d95858b98919
Set-Cookie: zuuid=4505c623-5fc1-44e2-9537-d95858b98919; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
200 OK 1.5 kB URL HTTP/1.1 a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
IP
File type ASCII text, with very long lines (1527), with no line terminators
Hash 9408f570a0068b082f5fc3e5df0b61f9
6bf566daedf5b25c8027efcae90d3d8e1851f3c9
2c89e1f651d4ee1c5a12faa6adf4fdf343a38fb6711f7b5352fc48d3112606de
GET /ul_cb/pixel?type=js&aid=1622&id=7046 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Cookie: zuuid=4505c623-5fc1-44e2-9537-d95858b98919; c=1675539634; zuuid_lu=1675539634
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Sat, 04 Feb 2023 19:40:35 GMT
Set-Cookie: zuuid=4505c623-5fc1-44e2-9537-d95858b98919; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,444796835; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=sportradarserving.com; samesite=none; secure
cm4=!bidswitch,444868835; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 1527
Connection: keep-alive
script.hotjar.com/modules.bca0d1c28285412bb689.js
200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js
IP
File type Unicode text, UTF-8 text, with very long lines (49086)
Hash e923aa360dc485b9df86355bd040c998
03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec
9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676
GET /modules.bca0d1c28285412bb689.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67924
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e923aa360dc485b9df86355bd040c998"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aonQ2oKWJg1RTcDfTzbsbVCtcCXG8xQg3-kDZ244brCBYTrywCX83Q==
age: 109829
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-SJDus0aEB8nDE.js
200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-SJDus0aEB8nDE.js
IP
Hash 2c7ec77dcb085abc40e3ff98738bfef5
2be6000c8124f67c59a84558ba19702b4fc3efd5
b29a1754d555695ef6044793dc63e4614cdbaf4dc19aa1e1dec711f42ff9d916
GET /rules-p-SJDus0aEB8nDE.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Fri, 14 Oct 2022 00:21:05 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Sat, 04 Feb 2023 18:57:23 GMT
cache-control: max-age=3600
etag: "2c7ec77dcb085abc40e3ff98738bfef5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: klAoto27QBJQcIupaNIao0pm3birJa-YxGCRJ14pJcifXd7EfPDViQ==
age: 2593
X-Firefox-Spdy: h2
mpsnare.iesnare.com/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
200 OK 421 B URL HTTP/1.1 mpsnare.iesnare.com/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
IP
File type ASCII text, with very long lines (377)
Hash 7090955b488fad757956a3df4cc5a85a
2600fe4f945269cd768746684617573788067619
30c5d7610c386dc8085b59294a31ce2edde7cec02f24b5f8d9d4299f6a3e22b0
GET /5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 19:40:35 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 May 2014 00:01:40 GMT
Expires: Sun, 04 Feb 2024 19:40:35 GMT
Cache-Control: private
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
mpsnare.iesnare.com/time.mp3?nocache=0.3716485075973135
206 Partial Content 504 B URL HTTP/1.1 mpsnare.iesnare.com/time.mp3?nocache=0.3716485075973135
IP
File type MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Hash cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.3716485075973135 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Server: nginx
Date: Sat, 04 Feb 2023 19:40:35 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
track.adform.net/Serving/TrackPoint/?CC=1&pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=279445715887&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
200 OK 184 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?CC=1&pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=279445715887&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP
File type ASCII text, with CRLF line terminators
Hash c13136d2b1fe8b16bb3ddf519b6baa78
875cca302b518f903d8eecfd54cd7e20fd3fc161
cd3d2e6d539436e57ae48ccbba84b880e602a77617190b03151ceae877dba860
GET /Serving/TrackPoint/?CC=1&pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=279445715887&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 19:40:35 GMT
content-type: text/javascript; charset=utf-8
content-length: 184
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=1991592185;source=gtm;rf=0;a=p-SJDus0aEB8nDE;url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk;uh=82244417f956ac7c599f191593f7e441a4fafa20a4158fd52e154f1dc4c8ed92;uht=2;fpan=1;fpa=P0-523238362-1675539671757;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=ibet.com;dst=0;et=1675539672044;tzo=0;ogl=type.website%2Ctitle.iBet%252Ecom%20online%20tipping%252C%20casino%252C%20spill%20-%20F%C3%A5%20din%20250%20Euro%20Velkomstbonus%20n%C3%A5!%2Curl.https%3A%2F%2Fwww%252Eibet%252Ecom%2Cdescription.Velkommen%20til%20iBet%252Ecom%20-%20Online%20spill%20p%C3%A5%20sport%20med%20topp%20odds%252C%20spennende%20casino%252C%20;ses=00dfb9bf-1856-4719-a62d-f8177a866b18
200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=1991592185;source=gtm;rf=0;a=p-SJDus0aEB8nDE;url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk;uh=82244417f956ac7c599f191593f7e441a4fafa20a4158fd52e154f1dc4c8ed92;uht=2;fpan=1;fpa=P0-523238362-1675539671757;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=ibet.com;dst=0;et=1675539672044;tzo=0;ogl=type.website%2Ctitle.iBet%252Ecom%20online%20tipping%252C%20casino%252C%20spill%20-%20F%C3%A5%20din%20250%20Euro%20Velkomstbonus%20n%C3%A5!%2Curl.https%3A%2F%2Fwww%252Eibet%252Ecom%2Cdescription.Velkommen%20til%20iBet%252Ecom%20-%20Online%20spill%20p%C3%A5%20sport%20med%20topp%20odds%252C%20spennende%20casino%252C%20;ses=00dfb9bf-1856-4719-a62d-f8177a866b18
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=1991592185;source=gtm;rf=0;a=p-SJDus0aEB8nDE;url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk;uh=82244417f956ac7c599f191593f7e441a4fafa20a4158fd52e154f1dc4c8ed92;uht=2;fpan=1;fpa=P0-523238362-1675539671757;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=ibet.com;dst=0;et=1675539672044;tzo=0;ogl=type.website%2Ctitle.iBet%252Ecom%20online%20tipping%252C%20casino%252C%20spill%20-%20F%C3%A5%20din%20250%20Euro%20Velkomstbonus%20n%C3%A5!%2Curl.https%3A%2F%2Fwww%252Eibet%252Ecom%2Cdescription.Velkommen%20til%20iBet%252Ecom%20-%20Online%20spill%20p%C3%A5%20sport%20med%20topp%20odds%252C%20spennende%20casino%252C%20;ses=00dfb9bf-1856-4719-a62d-f8177a866b18 HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:40:35 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=63deb4b3-2c782-758d1-09003; expires=Wed, 06-Mar-2024 19:40:35 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=540372,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e1001b6c0b41-OSL
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 9146f2b2b84e9c4a78894936b04b4ef4
86f98ae723a9ff7c140516680cc485a77bbbba75
1cda6b6472c8dccd09cba30d48574b2b2b572cad6d5ee26f57dd8285db65ece0
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 04 Feb 2023 19:40:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 03 Feb 2023 22:12:06 GMT
Expires: Sat, 04 Feb 2023 22:12:06 GMT
ETag: "86f98ae723a9ff7c140516680cc485a77bbbba75"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:40:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=52de540e-c90c-4071-b872-bcc973a1c95e
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=52de540e-c90c-4071-b872-bcc973a1c95e
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=52de540e-c90c-4071-b872-bcc973a1c95e HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 19:40:35 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=52de540e-c90c-4071-b872-bcc973a1c95e
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=64249817-9e83-4ca8-8d8a-e7d834d65a1e; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=956319c8-093e-404e-823b-e9ebb476b80a
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=956319c8-093e-404e-823b-e9ebb476b80a
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=956319c8-093e-404e-823b-e9ebb476b80a HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 19:40:35 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=956319c8-093e-404e-823b-e9ebb476b80a
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=e9ef8078-2469-4e79-b99f-974bdf777570; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160917518-1&cid=217289558.1675539671&jid=2108506650&gjid=720326989&_gid=277023265.1675539672&_u=YADAAEAAAAAAACAAI~&z=514721871
200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160917518-1&cid=217289558.1675539671&jid=2108506650&gjid=720326989&_gid=277023265.1675539672&_u=YADAAEAAAAAAACAAI~&z=514721871
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160917518-1&cid=217289558.1675539671&jid=2108506650&gjid=720326989&_gid=277023265.1675539672&_u=YADAAEAAAAAAACAAI~&z=514721871 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.ibet.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 04 Feb 2023 19:40:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
e.acuityplatform.com/pj?pk=1371925522788786818&pu=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&pixelKey=1371925522788786818
200 OK 1.3 kB URL HTTP/1.1 e.acuityplatform.com/pj?pk=1371925522788786818&pu=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&pixelKey=1371925522788786818
IP
File type ASCII text, with very long lines (1314), with no line terminators
Hash 2af3d1fc2c9b7cc5e8ec5a1de3a733aa
13a2a083f3494358c2e803d57b982a3fdd9d6472
f26af8451e20f9445a83c3a99c669130ad922a9bd93674d8311914f995657ca5
GET /pj?pk=1371925522788786818&pu=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&pixelKey=1371925522788786818 HTTP/1.1
Host: e.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 1314
Set-Cookie: aum="OikKAfqbdXNlck1hdGNoQnlVc2VyTWF0Y2hpbmdJZE1hcPqBNjT6jXVzZXJNYXRjaGluZ0lkJAKAkWxhc3REcm9wVGltZU1pbGxpcyUBQwc+HWOKmGxhc3RTdWNjZXNzZnVsTWF0Y2hNaWxsaXMhj3RoaXJkUGFydHlVc2VySWQh+4IxMjj6QiQEgEMlAUMHPh1jikQhRSH7gTQ5+kIkAaJDJQFDBz4dY4pEIUUh+4IxMTP6QiQDokMlAUMHPh1jikQhRSH7gTE3+kIkokMlAUMHPh1jikQhRSH7gjEwMfpCJAOKQyUBQwc+HWOKRCFFIfuBMjL6QiSsQyUBQwc+HWOKRCFFIfuCMTM1+kIkBI5DJQFDBz4dY4pEIUUh+4ExMPpC1EMlAUMHPh1jikQhRSH7gjEwOfpCJAOaQyUBQwc+HWOKRCFFIfv7hnZlcnNpb27C+w=="; Version=1; Domain=.acuityplatform.com; Max-Age=31536000; Expires=Sun, 04-Feb-2024 19:40:35 GMT; Path=/; SameSite=None; Secure
auid=739513640781; Domain=acuityplatform.com; Expires=Sun, 04-Feb-2024 19:40:35 GMT; Path=/; SameSite=None; Secure
Access-Control-Allow-Origin: *
ocsp.sectigo.com/
200 OK 471 B IP
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=540372,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e0ffcd7cb4f1-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5ac5aaa2dd1a2ab697244f3c0fe3b5b5
bb8a9aeb28cc645435760f3a9a57d85e295de419
d42327bb295e41a2b04efa1c2ad6094a3480d0010de10bb32600f4d17fe9f0d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:40:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=4505c623-5fc1-44e2-9537-d95858b98919&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D4505c623-5fc1-44e2-9537-d95858b98919
302 Found 0 B URL HTTP/2 x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=4505c623-5fc1-44e2-9537-d95858b98919&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D4505c623-5fc1-44e2-9537-d95858b98919
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /syncd?dsp_id=409&user_group=1&user_id=4505c623-5fc1-44e2-9537-d95858b98919&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D4505c623-5fc1-44e2-9537-d95858b98919 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 19:40:35 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=4505c623-5fc1-44e2-9537-d95858b98919&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D4505c623-5fc1-44e2-9537-d95858b98919
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=c2a56bac-05e7-4d70-aaeb-50c2f021677b; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=540372,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e0fff86db4fa-OSL
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 085a2ec5437d0f0e37cf3aae2678ed4a
945bd96f97be79468e9c0e3d3c0e0eff518dcdad
ea076434ef6f13c4c16a06257925b0d49425271019b7e8a9e7b3eb6d154b5ab0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=163666
Date: Sat, 04 Feb 2023 19:40:35 GMT
Etag: "63de78de-1d7"
Expires: Mon, 06 Feb 2023 17:08:21 GMT
Last-Modified: Sat, 04 Feb 2023 15:25:18 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 a8de383ae0e22ed372880220fd20b198.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: d8B_5BYYdXG9J52rAV6IAN5271KdaXAPyszpOKUwNdirwlP1aVxYBw==
Age: 6183
trc.taboola.com/1504263/log/3/unip?en=all_pages&tim=1675539671794&vi=1675539671775&ri=35d098f2e95fdaf5805d93a88fe4331c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&tos=453&ssd=1&scd=0
204 No Content 0 B URL HTTP/2 trc.taboola.com/1504263/log/3/unip?en=all_pages&tim=1675539671794&vi=1675539671775&ri=35d098f2e95fdaf5805d93a88fe4331c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&tos=453&ssd=1&scd=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1504263/log/3/unip?en=all_pages&tim=1675539671794&vi=1675539671775&ri=35d098f2e95fdaf5805d93a88fe4331c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&tos=453&ssd=1&scd=0 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.ibet.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Sat, 04 Feb 2023 19:40:35 GMT
via: 1.1 varnish
x-served-by: cache-bma1669-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675539635.309234,VS0,VE92
x-vcl-time-ms: 92
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=777a0d8e-a119-47a1-854a-dd1589a029d9
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=777a0d8e-a119-47a1-854a-dd1589a029d9
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=777a0d8e-a119-47a1-854a-dd1589a029d9 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 19:40:35 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=4505c623-5fc1-44e2-9537-d95858b98919&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
tr.outbrain.com/cachedClickId?marketerId=undefined
200 OK 35 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=undefined
IP
File type ASCII text, with no line terminators
Hash 75c843c7b717e7b722777907475c67a3
983d1c9a05b315288039b9d4694ce3b402259240
1d348f9f803c95305f63def9d75fd50e79e54a375e1a4a888edbbea366845580
GET /cachedClickId?marketerId=undefined HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:35 GMT
Content-Type: application/javascript
Content-Length: 35
X-TraceId: bb1a326329d4281b46fab8f5ba8b9e24
tr.outbrain.com/unifiedPixel?marketerId=0015ef2fd363de31fda729e1cf9b43cc1b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&g=1&optOut=false&bust=037060345263423544&referrer=
200 OK 53 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=0015ef2fd363de31fda729e1cf9b43cc1b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&g=1&optOut=false&bust=037060345263423544&referrer=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 414bd2a5161db03fdd910327b42c6daa
65d4cf50496813c5f1a34eddd5c50dc67d44ff47
b51f3497b0a65f1e1e87e75f5e7e823d871c23bcf76a5ee4101783c8f939e553
GET /unifiedPixel?marketerId=0015ef2fd363de31fda729e1cf9b43cc1b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&g=1&optOut=false&bust=037060345263423544&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:35 GMT
Content-Type: image/gif;
Content-Length: 53
Cache-Control: no-cache
X-TraceId: 674426af363e5e6c389d077a68d43e44
in.hotjar.com/api/v2/client/sites/3070584/visit-data?sv=7
200 OK 28 kB URL HTTP/2 in.hotjar.com/api/v2/client/sites/3070584/visit-data?sv=7
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 4fee8f827093d2ca8c21176561f2dd84
052e9feed4c5935c99ee49922e1883e64e6a72b1
89249d8c59fa11fc63b9aeecdc8e656d73cd147fac130209f752c53798a8d4f0
POST /api/v2/client/sites/3070584/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 130
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:40:35 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
ad1.adfarm1.adition.com/tagging?type=image&network=834&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&tag[iBet_Retargeting.iBet_Ret_Site_Visit]&userid=7196387931188431625
302 Found 29 kB URL HTTP/2 ad1.adfarm1.adition.com/tagging?type=image&network=834&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&tag[iBet_Retargeting.iBet_Ret_Site_Visit]&userid=7196387931188431625
IP
ASN #24961 myLoc managed IT AG
File type gzip compressed data, from Unix\012- data
Hash dc6c08425cfb449e17ac1b243b971721
11e5d7a76a538a59d83005bd632730492b646c13
1eff248d2ee8c863a4fa8bcbfd866bd668f889bc334bab30a80c977200267c39
GET /tagging?type=image&network=834&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&tag[iBet_Retargeting.iBet_Ret_Site_Visit]&userid=7196387931188431625 HTTP/1.1
Host: ad1.adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/plain
location: https://imagesrv.adition.com/1x1.gif
server: ADITIONSERVER v1.0
date: Sat, 04 Feb 2023 20:40:34 +0100
access-control-allow-origin: *
p3p: policyref="https://imagesrv.adition.com/w3c/p3p-ssl.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
set-cookie: UserID1=7196387931188431625; expires=Fri, 05-May-2023 20:40:34 GMT; path=/; domain=.adfarm1.adition.com; SameSite=None; Secure
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=236&user_id=739513640781&expires=30&user_group=1
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=236&user_id=739513640781&expires=30&user_group=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=236&user_id=739513640781&expires=30&user_group=1 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 04 Feb 2023 19:40:35 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=236&user_id=739513640781&expires=30&user_group=1
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=cc458750-d393-4477-99ed-2ecb74b96eb7; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675539635; path=/; expires=Sun, 04-Feb-2024 19:40:35 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 8c1b36d8a05cb6576b75952399224a1c
cb7c4f893d6693e89e0ffda4ddf07969b8c85141
74774be8f4182a194d07e6834d118c4ba409d1cfa12c7fc8a3a4c1283353d0f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5415
Cache-Control: max-age=122173
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:40:35 GMT
Etag: "63ddd9c9-1d7"
Expires: Mon, 06 Feb 2023 05:36:48 GMT
Last-Modified: Sat, 04 Feb 2023 04:06:33 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=52de540e-c90c-4071-b872-bcc973a1c95e
302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=52de540e-c90c-4071-b872-bcc973a1c95e
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=52de540e-c90c-4071-b872-bcc973a1c95e HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 04 Feb 2023 19:40:35 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=4505c623-5fc1-44e2-9537-d95858b98919&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=956319c8-093e-404e-823b-e9ebb476b80a
302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=956319c8-093e-404e-823b-e9ebb476b80a
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=4505c623-5fc1-44e2-9537-d95858b98919&cb=956319c8-093e-404e-823b-e9ebb476b80a HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 04 Feb 2023 19:40:35 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=4505c623-5fc1-44e2-9537-d95858b98919&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
status.geotrust.com/
200 OK 471 B IP
Hash 33b4dcac47176829c3f733cf485b00d8
2f0ca8dfa8106b51602e1c9cd6a5b1e31254c924
d258d8a0ec6ed7cf9fb2ee6de730c0380adde3a3c656e10f046a56f140307f2c
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2014
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:40:35 GMT
Last-Modified: Sat, 04 Feb 2023 19:07:01 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
pixel.tapad.com/idsync/ex/receive?partner_id=3150&partner_device_id=739513640781&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739513640781%26uid%3D%24%7BTA_DEVICE_ID%7D
302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive?partner_id=3150&partner_device_id=739513640781&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739513640781%26uid%3D%24%7BTA_DEVICE_ID%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive?partner_id=3150&partner_device_id=739513640781&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739513640781%26uid%3D%24%7BTA_DEVICE_ID%7D HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 19:40:35 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1675539635541;Expires=Wed, 05 Apr 2023 19:40:35 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=04182dac-cf4e-4720-a07b-8dc2d25b9c23;Expires=Wed, 05 Apr 2023 19:40:35 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=3150&partner_device_id=739513640781&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739513640781%26uid%3D%24%7BTA_DEVICE_ID%7D
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
secure.adnxs.com/getuid?https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D10%26auid%3D739513640781%26uid%3D%24UID
307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuid?https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D10%26auid%3D739513640781%26uid%3D%24UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D10%26auid%3D739513640781%26uid%3D%24UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 19:40:35 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D739513640781%2526uid%253D%2524UID
AN-X-Request-Uuid: bf4d7841-b935-4ff8-b2f7-39b4e2706d5b
Set-Cookie: uuid2=9174411749944482672; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 05-May-2023 19:40:35 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 953.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
200 OK 471 B IP
Hash 392150821fa2297ac03c44478a2dce26
d95771a08af29868b2cf80c0cb7e27b4de9a38e5
30fbbe75e0ec1a15edac9f7b0271ee25bb924822be648cf04c5148eec820af77
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2530
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:40:35 GMT
Last-Modified: Sat, 04 Feb 2023 18:58:25 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
us-u.openx.net/w/1.0/cm?id=ce2efbde-bc0e-4748-9713-6161d24dfb50&r=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D22%26auid%3D739513640781%26uid%3D
200 OK 56 B URL HTTP/2 us-u.openx.net/w/1.0/cm?id=ce2efbde-bc0e-4748-9713-6161d24dfb50&r=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D22%26auid%3D739513640781%26uid%3D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 15669dda86db3cbff7835fa202dc0b16
ce788cab9c1aa7e458a3971a59702c410b37e64d
5cc3f958039a8885c4e9526e22d454da47d579b9a02861e7a60b41fa0ba910df
GET /w/1.0/cm?id=ce2efbde-bc0e-4748-9713-6161d24dfb50&r=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D22%26auid%3D739513640781%26uid%3D HTTP/1.1
Host: us-u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Sat, 04 Feb 2023 19:40:35 GMT
content-type: text/html
content-length: 56
content-encoding: gzip
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 8c1b36d8a05cb6576b75952399224a1c
cb7c4f893d6693e89e0ffda4ddf07969b8c85141
74774be8f4182a194d07e6834d118c4ba409d1cfa12c7fc8a3a4c1283353d0f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5415
Cache-Control: max-age=122173
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:40:35 GMT
Etag: "63ddd9c9-1d7"
Expires: Mon, 06 Feb 2023 05:36:48 GMT
Last-Modified: Sat, 04 Feb 2023 04:06:33 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
pixel.advertising.com/ups/55950/sync?uid=739513640781&_origin=1
301 Moved Permanently 355 B URL HTTP/2 pixel.advertising.com/ups/55950/sync?uid=739513640781&_origin=1
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 3179c46e9ae707c3e8ed6d9dca1963f8
d4f26a0c6f6413fcb69a42134df472e7c526fa99
169e964cc8d62d4d51e2a5b6870afb92270b311ebfc466426499ef42cc4a6c22
GET /ups/55950/sync?uid=739513640781&_origin=1 HTTP/1.1
Host: pixel.advertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 04 Feb 2023 19:40:35 GMT
server: ATS/9.1.10.25
cache-control: no-store
location: https://ups.analytics.yahoo.com/ups/55950/sync?uid=739513640781&_origin=1
content-type: text/html
content-language: en
set-cookie: A3=d=AQABBLO03mMCEO9_EWQAkS4zGuMzXU56ITgFEgEBAQEG4GPoYwAAAAAA_eMAAA&S=AQAAAnhcetJ0cmwENYWbif_95y0; Expires=Mon, 5 Feb 2024 01:40:35 GMT; Max-Age=31557600; Domain=.advertising.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 355
X-Firefox-Spdy: h2
status.geotrust.com/
200 OK 471 B IP
Hash 33b4dcac47176829c3f733cf485b00d8
2f0ca8dfa8106b51602e1c9cd6a5b1e31254c924
d258d8a0ec6ed7cf9fb2ee6de730c0380adde3a3c656e10f046a56f140307f2c
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1690
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 19:40:35 GMT
Last-Modified: Sat, 04 Feb 2023 19:12:25 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
200 OK 471 B IP
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 19:40:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=540372,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945e0ffebadb4f7-OSL
tags.bluekai.com/site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D739513640781%26uid%3D%24_BK_UUID
302 Found 0 B URL HTTP/2 tags.bluekai.com/site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D739513640781%26uid%3D%24_BK_UUID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D739513640781%26uid%3D%24_BK_UUID HTTP/1.1
Host: tags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://ums.acuityplatform.com/sum?umid=49&auid=739513640781&uid=$_BK_UUID
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Sat, 04 Feb 2023 19:40:35 GMT
set-cookie: bku=tJ/99nm6lZwGeJT+; Path=/; Domain=.bluekai.com; Expires=Fri, 04 Aug 2023 19:40:35 GMT; Secure; SameSite=None
bkpa=KJyA0n6vQp9x9mY7mD5dfZvLx0Q+Wii57uDRuyXXkmx02m6nf4qhBjkNStMGHfh05OtubVtNLfYb+Aoq8mEK3ZzsrQabxaXANtW+gJ2pedGbA+Eg/R9Iayc0HEQYEVRW+vcXwBeR5tHBmNybxw+wxnwz7XLXwbqF9vSoJf1=; Path=/; Domain=.bluekai.com; Expires=Fri, 04 Aug 2023 19:40:35 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
x.bidswitch.net/syncd?dsp_id=409&user_id=4505c623-5fc1-44e2-9537-d95858b98919&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
200 OK 43 B URL HTTP/2 x.bidswitch.net/syncd?dsp_id=409&user_id=4505c623-5fc1-44e2-9537-d95858b98919&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /syncd?dsp_id=409&user_id=4505c623-5fc1-44e2-9537-d95858b98919&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:40:35 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=4505c623-5fc1-44e2-9537-d95858b98919&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D4505c623-5fc1-44e2-9537-d95858b98919
200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=4505c623-5fc1-44e2-9537-d95858b98919&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D4505c623-5fc1-44e2-9537-d95858b98919
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/syncd?dsp_id=409&user_group=1&user_id=4505c623-5fc1-44e2-9537-d95858b98919&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D4505c623-5fc1-44e2-9537-d95858b98919 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:40:35 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D739513640781%2526uid%253D%2524UID
302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D739513640781%2526uid%253D%2524UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D739513640781%2526uid%253D%2524UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sat, 04 Feb 2023 19:40:35 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ums.acuityplatform.com/sum?umid=10&auid=739513640781&uid=0
AN-X-Request-Uuid: 4f221b19-f3c8-444e-bd20-0afe51d129dd
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 953.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
x.bidswitch.net/ul_cb/sync?dsp_id=236&user_id=739513640781&expires=30&user_group=1
302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=236&user_id=739513640781&expires=30&user_group=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=236&user_id=739513640781&expires=30&user_group=1 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 04 Feb 2023 19:40:35 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=739513640781&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/55950/sync?uid=739513640781&_origin=1
302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/55950/sync?uid=739513640781&_origin=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/55950/sync?uid=739513640781&_origin=1 HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 04 Feb 2023 19:40:35 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/55950/sync?uid=739513640781&_origin=1&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBLO03mMCEK4g36EGoVs6-Lpw0XeLO20FEgEBAQEG4GPoYwAAAAAA_eMAAA&S=AQAAAvNkZc4sJjkYwFzD1qfxdFs; Expires=Mon, 5 Feb 2024 01:40:35 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ums.acuityplatform.com/sum?umid=49&auid=739513640781&uid=$_BK_UUID
204 No Content 0 B URL HTTP/1.1 ums.acuityplatform.com/sum?umid=49&auid=739513640781&uid=$_BK_UUID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sum?umid=49&auid=739513640781&uid=$_BK_UUID HTTP/1.1
Host: ums.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
ums.acuityplatform.com/sum?umid=10&auid=739513640781&uid=0
204 No Content 0 B URL HTTP/1.1 ums.acuityplatform.com/sum?umid=10&auid=739513640781&uid=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sum?umid=10&auid=739513640781&uid=0 HTTP/1.1
Host: ums.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
ums.acuityplatform.com/sum?umid=64&auid=739513640781&uid=a22fae93-c981-491e-9d5c-8551faa35ee1
204 No Content 0 B URL HTTP/1.1 ums.acuityplatform.com/sum?umid=64&auid=739513640781&uid=a22fae93-c981-491e-9d5c-8551faa35ee1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sum?umid=64&auid=739513640781&uid=a22fae93-c981-491e-9d5c-8551faa35ee1 HTTP/1.1
Host: ums.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
access-control-allow-origin: *
set-cookie: auid=739531724466; Domain=.acuityplatform.com; Expires=Sun, 04-Feb-2024 19:40:35 GMT; Path=/; SameSite=None; Secure
aum="OikKAfqbdXNlck1hdGNoQnlVc2VyTWF0Y2hpbmdJZE1hcPqBNjT6jXVzZXJNYXRjaGluZ0lkJAKAkWxhc3REcm9wVGltZU1pbGxpcyUBQwc+HXeMmGxhc3RTdWNjZXNzZnVsTWF0Y2hNaWxsaXMlAUMHPh13jI90aGlyZFBhcnR5VXNlcklkY2EyMmZhZTkzLWM5ODEtNDkxZS05ZDVjLTg1NTFmYWEzNWVlMfv7hnZlcnNpb27C+w=="; Version=1; Domain=.acuityplatform.com; Max-Age=31536000; Expires=Sun, 04-Feb-2024 19:40:35 GMT; Path=/; SameSite=None; Secure
x-acuity-userid: 739531724466
access-control-expose-headers: X-Acuity-UserID
ups.analytics.yahoo.com/ups/55950/sync?uid=739513640781&_origin=1&verify=true
204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/55950/sync?uid=739513640781&_origin=1&verify=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/55950/sync?uid=739513640781&_origin=1&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 19:40:35 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBLO03mMCEGFUH5OnKmA80zv6lW5xucIFEgEBAQEG4GPoYwAAAAAA_eMAAA&S=AQAAAhCC7yZepv4VPfpxf_VhHp4; Expires=Mon, 5 Feb 2024 01:40:35 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash ebce6de82aa929525d1c1e6d8ca17c8a
6e79c213ccf757da0bcbc0e762e9fa8701e51ff0
75baa30790c1aaeaf38d4f92aaf4ca77575f65c977fe5dbf4ea7e895494e5065
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121671
Date: Sat, 04 Feb 2023 19:40:36 GMT
Etag: "63dde67c-1d7"
Expires: Mon, 06 Feb 2023 05:28:27 GMT
Last-Modified: Sat, 04 Feb 2023 05:00:44 GMT
Server: ECS (bsa/EB15)
X-Cache: Miss from cloudfront
Via: 1.1 a8de383ae0e22ed372880220fd20b198.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: 57a5TkQMnR_Jk-8frhoigrvK35VQsMB9-SibcxCrIScJsNcEpOR9xw==
Age: 1663
track.adform.net/Serving/TrackPoint/?pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=279445715887&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
302 Found 863 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=279445715887&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP
Hash 97f8ab7bed61c81f3337485a002d5abb
785cf4364ffc98aa474a41337edcc118699c2e13
13b15272526d2d8ae2daedd627354e99fb33a64813ad6cf4387b78b8a26928d1
GET /Serving/TrackPoint/?pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=279445715887&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 19:40:35 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=279445715887&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Sat, 04-Mar-2023 19:40:35 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash ebce6de82aa929525d1c1e6d8ca17c8a
6e79c213ccf757da0bcbc0e762e9fa8701e51ff0
75baa30790c1aaeaf38d4f92aaf4ca77575f65c977fe5dbf4ea7e895494e5065
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 19:40:36 GMT
Last-Modified: Sat, 04 Feb 2023 19:11:48 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 4838101f07e2dfcd1db4abc88031f082.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: vYXhGBUWu1X5YkTRYwdrM_neLhclQw-bm6bYl81FJbKaFIdGmSKM2w==
Age: 1728
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=4505c623-5fc1-44e2-9537-d95858b98919&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=4505c623-5fc1-44e2-9537-d95858b98919&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=4505c623-5fc1-44e2-9537-d95858b98919&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 19:40:36 GMT
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=739513640781&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=739513640781&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=739513640781&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 19:40:36 GMT
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=4505c623-5fc1-44e2-9537-d95858b98919&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=4505c623-5fc1-44e2-9537-d95858b98919&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=4505c623-5fc1-44e2-9537-d95858b98919&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 19:40:36 GMT
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=4505c623-5fc1-44e2-9537-d95858b98919&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=4505c623-5fc1-44e2-9537-d95858b98919&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=4505c623-5fc1-44e2-9537-d95858b98919&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 19:40:36 GMT
X-Firefox-Spdy: h2
trc-events.taboola.com/1504263/log/3/unip?en=pre_d_eng_tb&tos=1557&scd=0&ssd=1&est=1675539671776&ver=36&isls=true&src=i&invt=1500&msa=2618&rv=1&tim=1675539673333&vi=1675539671775&ri=35d098f2e95fdaf5805d93a88fe4331c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1504263/log/3/unip?en=pre_d_eng_tb&tos=1557&scd=0&ssd=1&est=1675539671776&ver=36&isls=true&src=i&invt=1500&msa=2618&rv=1&tim=1675539673333&vi=1675539671775&ri=35d098f2e95fdaf5805d93a88fe4331c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1504263/log/3/unip?en=pre_d_eng_tb&tos=1557&scd=0&ssd=1&est=1675539671776&ver=36&isls=true&src=i&invt=1500&msa=2618&rv=1&tim=1675539673333&vi=1675539671775&ri=35d098f2e95fdaf5805d93a88fe4331c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sat, 04 Feb 2023 19:40:36 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.ibet.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc-events.taboola.com/1504263/log/3/unip?en=pre_d_eng_tb&tos=4559&scd=0&ssd=1&est=1675539671776&ver=36&isls=true&src=i&invt=3000&msa=2618&rv=1&tim=1675539676335&vi=1675539671775&ri=35d098f2e95fdaf5805d93a88fe4331c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1504263/log/3/unip?en=pre_d_eng_tb&tos=4559&scd=0&ssd=1&est=1675539671776&ver=36&isls=true&src=i&invt=3000&msa=2618&rv=1&tim=1675539676335&vi=1675539671775&ri=35d098f2e95fdaf5805d93a88fe4331c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1504263/log/3/unip?en=pre_d_eng_tb&tos=4559&scd=0&ssd=1&est=1675539671776&ver=36&isls=true&src=i&invt=3000&msa=2618&rv=1&tim=1675539676335&vi=1675539671775&ri=35d098f2e95fdaf5805d93a88fe4331c&ref=null&cv=20230129-6-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 04 Feb 2023 19:40:39 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.ibet.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
302 Found 0 B URL HTTP/2 insight.adsrvr.org/track/up?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
IP
GET /track/up?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 19:40:35 GMT
content-type: text/html; charset=utf-8
location: https://match.adsrvr.org/track/upb/?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
set-cookie: TDID=e87b328d-8311-4021-bc27-62bd8d5c9e6d; domain=.adsrvr.org; expires=Sun, 04-Feb-2024 19:40:35 GMT; path=/; secure; SameSite=None
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
200 OK 0 B URL HTTP/2 secure.quantserve.com/quant.js
IP
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:40:34 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "u+riIbpeWSVolXo4r+dT2g=="
expires: Sat, 11 Feb 2023 19:40:34 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
match.adsrvr.org/track/upb/?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
200 OK 0 B URL HTTP/2 match.adsrvr.org/track/upb/?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
IP
GET /track/upb/?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DdqXjKIStrp1Iw8S-4zVL3WNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 19:40:35 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
139.45.197.238
104.18.193.136
3.121.253.189
154.59.122.94
185.20.209.147
37.157.3.20
54.228.71.178
104.110.10.32
23.32.99.71
141.226.228.48