www.mgotomag.com/go/e6e61aa0-bda2-47c9-a47e-665628d49e04
104.21.82.98200 OK 316 B URL HTTP/1.1 www.mgotomag.com/go/e6e61aa0-bda2-47c9-a47e-665628d49e04
IP 104.21.82.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (415), with no line terminators
Hash 0bb378df6c9e16ba677c4325bc50ef74
a288cc5f62dd70c325074288f021492552adb6cb
fbcb2439a8ffee64556b29b482c1424079f45e9945577699c752244baee63c43
GET /go/e6e61aa0-bda2-47c9-a47e-665628d49e04 HTTP/1.1
Host: www.mgotomag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:01 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
Access-Control-Allow-Origin: *
Set-Cookie: bemob-uniq-visit:e6e61aa0-bda2-47c9-a47e-665628d49e04=1; Domain=www.mgotomag.com; Path=/; Expires=Mon, 06 Feb 2023 20:03:01 GMT; HttpOnly
bemob-rotation:e6e61aa0-bda2-47c9-a47e-665628d49e04:random:b62dd9315bc84cdc194e70370cc1984f=0-0-0; Domain=www.mgotomag.com; Path=/; Expires=Mon, 06 Feb 2023 20:03:01 GMT; HttpOnly
bemob-click-id=3wQx7FE5feGrP81DToaPk7; Domain=www.mgotomag.com; Path=/; Expires=Mon, 06 Feb 2023 20:03:01 GMT; HttpOnly
X-Response-Time: 34.660ms
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J0Csgi4HcjfuUMQEbXpOqANrj9diulQguC9LeP6pFQHtC5bYB5Gh8LWkQG3Oflp8svodJ2UtECdn162hQjUQhopfmwF4rlA8%2F%2BgC%2F3rBANWhhVS5tA6v2DkajZ3GUzNGkCmD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 794e3f3bce66b4f9-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17493
Expires: Mon, 06 Feb 2023 00:54:34 GMT
Date: Sun, 05 Feb 2023 20:03:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20700
Expires: Mon, 06 Feb 2023 01:48:01 GMT
Date: Sun, 05 Feb 2023 20:03:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 19:33:56 GMT
content-type: application/json
age: 1745
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8918
Expires: Sun, 05 Feb 2023 22:31:39 GMT
Date: Sun, 05 Feb 2023 20:03:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 64h+kWy8+hizgMHTrCpDHJZIwiJe/FnTnCsSg2j0sJDBHF+MpuceFn38JQuNYeeL1DlLaw/8o9k=
x-amz-request-id: B6KJ697KY4NXEQYM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 19:53:25 GMT
age: 576
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 20:03:01 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 88a65bb2b57a59b7aa4d89bdda572b97
298626c8dd43fd5c2592cb28f7569d7c27562283
a1abb53332f645ea8667e47559f4a2d68124812a46325f9e3319af36ecf4ba76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=88796
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:01 GMT
Etag: "63dec351-117"
Expires: Mon, 06 Feb 2023 20:42:57 GMT
Last-Modified: Sat, 04 Feb 2023 20:42:57 GMT
Server: nginx
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 19:49:07 GMT
age: 834
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 88a65bb2b57a59b7aa4d89bdda572b97
298626c8dd43fd5c2592cb28f7569d7c27562283
a1abb53332f645ea8667e47559f4a2d68124812a46325f9e3319af36ecf4ba76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=88796
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:02 GMT
Etag: "63dec351-117"
Expires: Mon, 06 Feb 2023 20:42:58 GMT
Last-Modified: Sat, 04 Feb 2023 20:42:57 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11327
Expires: Sun, 05 Feb 2023 23:11:49 GMT
Date: Sun, 05 Feb 2023 20:03:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 07e0be6fc8a1d2d814b1e09155e7049c
8967591cceb2a562bce555e642921faa9123af14
0c142f441a2a37fc16701e58397499f003a2e585c9bbd31f1b7f53af51c883d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0C142F441A2A37FC16701E58397499F003A2E585C9BBD31F1B7F53AF51C883D2"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13876
Expires: Sun, 05 Feb 2023 23:54:18 GMT
Date: Sun, 05 Feb 2023 20:03:02 GMT
Connection: keep-alive
push.services.mozilla.com/
52.34.31.66101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.34.31.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EiOhrKo4XyYTRssfWHBcZQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uaOdbwd4nvpT3aCBPJeXvKzfwHo=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6f5ab3bdbb5ebcebf9a163e0c85ab467
43f1c3de55e528c5be75895eb08b64840a0c8b95
d7c6e6ba9986867972fbc47f35dc823e3c78db46acf5292b6933e0f5760e47be
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D7C6E6BA9986867972FBC47F35DC823E3C78DB46ACF5292B6933E0F5760E47BE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10102
Expires: Sun, 05 Feb 2023 22:51:24 GMT
Date: Sun, 05 Feb 2023 20:03:02 GMT
Connection: keep-alive
whampamp.com/favicon.ico
139.45.197.236204 No Content 0 B IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: whampamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: OAID=371720d5938a44ef94e476a4f47c7652; oaidts=1675627382
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sun, 05 Feb 2023 20:03:02 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/DPv2Tv_7RGg
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/DPv2Tv_7RGg
IP 216.58.211.3:0
Hash 12b8a195ed59d3cdb75d30edc722ee26
3a6e20b01cce7f0b374801677190f8195ba015e2
13fb803f1ddf3afe206d562738cfcaaa17882e7c8957be21ad7415b6eb90a686
POST /s/gts1p5/DPv2Tv_7RGg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:02 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
my.rtmark.net/img.gif?f=merge&userId=371720d5938a44ef94e476a4f47c7652
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=merge&userId=371720d5938a44ef94e476a4f47c7652
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=merge&userId=371720d5938a44ef94e476a4f47c7652 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 20:03:02 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=371720d5938a44ef94e476a4f47c7652; expires=Mon, 05 Feb 2024 20:03:02 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
whampamp.com/4/4840194?var=ek_m&ymid=3zmoytoTqPsTLen1Knnvc6
139.45.197.236200 OK 9.1 kB URL HTTP/2 whampamp.com/4/4840194?var=ek_m&ymid=3zmoytoTqPsTLen1Knnvc6
IP 139.45.197.236:0
Hash a0bfc1b0befc3dc76ef8859605dae7e9
4171db37112e218d56403fa38308d1363bb01a9b
770c58c3b6278684f107f5e799cc213a0a10834955f1e13333f01c632f2a0161
Analyzer Verdict Alert quad9 Sinkholed
GET /4/4840194?var=ek_m&ymid=3zmoytoTqPsTLen1Knnvc6 HTTP/1.1
Host: whampamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 20:03:02 GMT
content-type: text/html; charset=utf8
x-trace-id: 62517d7d2e356cce75cb7f88c5847bf3
link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://record.ibetaffiliates.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-credentials: true
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=371720d5938a44ef94e476a4f47c7652; expires=Mon, 05 Feb 2024 20:03:02 GMT; path=/; secure; SameSite=None
oaidts=1675627382; expires=Mon, 05 Feb 2024 20:03:02 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *, *
access-control-allow-methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Accept, Content-Type, Content-Length, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.ibet.com/static/css/main.17c66d77.chunk.css
54.230.111.16200 OK 36 kB URL HTTP/2 www.ibet.com/static/css/main.17c66d77.chunk.css
IP 54.230.111.16:0
File type ASCII text, with very long lines (24239)
Hash 9f7fa2e99942f15807e2e6f5cd62aca5
cdf6ed1947e285ae3be5f68949f6d0e5cf057a23
ec55dea9a5ac90bd72bc727eebe8545b58b19470d28c5892894bc3754d97da60
GET /static/css/main.17c66d77.chunk.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 35641
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:03 GMT
etag: "9f7fa2e99942f15807e2e6f5cd62aca5"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZOZmJTX8ltGJkYZpnnnmCP8h1ZqOrVHPHUzzDI4TVcmpDecl85EYVg==
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-SemiBold.ttf
54.230.111.16200 OK 101 kB URL HTTP/2 www.ibet.com/fonts/OpenSans-SemiBold.ttf
IP 54.230.111.16:0
File type TrueType Font data, 17 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Digitized data copyright \251 2011, Google Corporation.Open Sans SemiBoldRegular1.10;1ASC;OpenSa\012- data
Size 101 kB (100820 bytes)
Hash ba5cde21eeea0d57ab7efefc99596cce
e256f8391718ef61f253dfb4e95bbeb3c5857afc
5e8d9e1a89083cd1b0849993fe2f3acc9aa33b7f439f7e8616872f6897f30684
GET /fonts/OpenSans-SemiBold.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/font-sfnt
content-length: 100820
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:03 GMT
etag: "ba5cde21eeea0d57ab7efefc99596cce"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pnk2jBW3jxynyUFtZ5t3PYtUSNsy7CTQJNoFlfvm3WUB5RrJbQ0L7w==
X-Firefox-Spdy: h2
www.ibet.com/static/css/56.07bf056b.chunk.css
54.230.111.16200 OK 2.0 kB URL HTTP/2 www.ibet.com/static/css/56.07bf056b.chunk.css
IP 54.230.111.16:0
File type ASCII text, with very long lines (2049), with no line terminators
Hash 36b2f8ea1e16e9f607c1701f688c13da
bbcf0e61433d91d8ccf793fddaf638b0326f254d
2ce59990e026b2074cb274798dd1ee8b536bf4e628d481003e015ece685c00da
GET /static/css/56.07bf056b.chunk.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 2049
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:03 GMT
etag: "36b2f8ea1e16e9f607c1701f688c13da"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: l4hVeNcU1FzoyEt-sB1zAgArimgrkO_-EqoZnHp9xz6C3b0p3IQRdA==
X-Firefox-Spdy: h2
www.ibet.com/static/js/main.1ea8a9f9.chunk.js
54.230.111.16200 OK 1.7 MB URL HTTP/2 www.ibet.com/static/js/main.1ea8a9f9.chunk.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.7 MB (1728511 bytes)
Hash d5fee69f9f3840934ed0ec43d231353f
b431b619540acfb2cd950abbc9f9b01b367129f9
ab8ec9c6f8ee993ce28b5b6d77e47158f8938ab7d970eb8a3f9b02501da134fc
GET /static/js/main.1ea8a9f9.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1728511
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:03 GMT
etag: "d5fee69f9f3840934ed0ec43d231353f"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aRhbhPk9ahJSWAXrErzDlBcAYobQxQhquwt3nFFh2HDhQWSPFpkjyQ==
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-Regular.ttf
54.230.111.16200 OK 97 kB URL HTTP/2 www.ibet.com/fonts/OpenSans-Regular.ttf
IP 54.230.111.16:0
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Hash 3ed9575dcc488c3e3a5bd66620bdf5a4
babe8dce93a3e48b6c3c79720a0c048e88dd1fe7
037236ed4bf58a85f67074c165d308260fd6be01c86d7df4e79ea16eb273f8c5
GET /fonts/OpenSans-Regular.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/font-sfnt
content-length: 96932
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:04 GMT
etag: "3ed9575dcc488c3e3a5bd66620bdf5a4"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KhO9DCWOmgDEI8aXO6mLpLAStbiaZUn6z3p2oTWK4_fTytlnG0vZ8Q==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3398
Expires: Sun, 05 Feb 2023 20:59:41 GMT
Date: Sun, 05 Feb 2023 20:03:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3398
Expires: Sun, 05 Feb 2023 20:59:41 GMT
Date: Sun, 05 Feb 2023 20:03:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3398
Expires: Sun, 05 Feb 2023 20:59:41 GMT
Date: Sun, 05 Feb 2023 20:03:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3398
Expires: Sun, 05 Feb 2023 20:59:41 GMT
Date: Sun, 05 Feb 2023 20:03:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1092c4dd4d9ca4d09462ae46e1dd7c1
17444ff60be1afbc40d3653fa936f9eaf9478068
ea8362c7249080b34288ee675f70333607fc3be37e716fdcf63e4901849def9f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F030e2301-116b-4cdd-ae90-c5bbc86e9669.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7288
x-amzn-requestid: 1aa297f5-2f9a-45be-b823-1eb4d5887769
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WrwH-iIAMFyhQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded17e-2b630b4a302b8ae118883b71;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:43:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z2oKgp1keqEkvN6jjsUepMbrxD4JCXKAOHrMNJHcuXN0CpulUh5GLA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:43:26 GMT
etag: "17444ff60be1afbc40d3653fa936f9eaf9478068"
content-type: image/jpeg
age: 80377
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7a466d89c75ff3459b7328591db52cf
c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb
e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:51:26 GMT
age: 79897
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.zapdcamp.com/go/7001d720-e2d2-4cec-a951-3a1e4321e0c0?cost={cost}&visitor_id=${SUBID}&zoneid={zoneid}&campaignid={campaignid}&country=Norway&connection.type={connection.type}&carrier={carrier}&device={device}&browser=Firefox®ion=&isp=Blix%20Solutions&useragent={useragent}
172.67.197.121302 Found 11 kB URL HTTP/2 www.zapdcamp.com/go/7001d720-e2d2-4cec-a951-3a1e4321e0c0?cost={cost}&visitor_id=${SUBID}&zoneid={zoneid}&campaignid={campaignid}&country=Norway&connection.type={connection.type}&carrier={carrier}&device={device}&browser=Firefox®ion=&isp=Blix%20Solutions&useragent={useragent}
IP 172.67.197.121:0
Hash d41f724906dc43bf58dbaefc790c1848
45060b6871bceceba74ec4b78978ba435af3322b
f7f0661b9e78a968d991d82f7cf9dde4e0b60c5ad69a2ba5da3bf37acfafb2ea
GET /go/7001d720-e2d2-4cec-a951-3a1e4321e0c0?cost={cost}&visitor_id=${SUBID}&zoneid={zoneid}&campaignid={campaignid}&country=Norway&connection.type={connection.type}&carrier={carrier}&device={device}&browser=Firefox®ion=&isp=Blix%20Solutions&useragent={useragent} HTTP/1.1
Host: www.zapdcamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 20:03:01 GMT
content-type: text/html; charset=utf-8
location: https://whampamp.com/4/4840194?var=ek_m&ymid=3zmoytoTqPsTLen1Knnvc6
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
access-control-allow-origin: *
set-cookie: bemob-uniq-visit:7001d720-e2d2-4cec-a951-3a1e4321e0c0=1; Domain=www.zapdcamp.com; Path=/; Expires=Mon, 06 Feb 2023 20:03:01 GMT; HttpOnly
bemob-rotation:7001d720-e2d2-4cec-a951-3a1e4321e0c0:random:cb21e6add79c674fb17a26628d84a1aa=0-0-0; Domain=www.zapdcamp.com; Path=/; Expires=Mon, 06 Feb 2023 20:03:01 GMT; HttpOnly
bemob-click-id=3zmoytoTqPsTLen1Knnvc6; Domain=www.zapdcamp.com; Path=/; Expires=Mon, 06 Feb 2023 20:03:01 GMT; HttpOnly
vary: Accept
x-response-time: 18.408ms
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JnmMwHPSIZwXXya1GZMW9skxrjoWhYbuhYGPg32FzBTuDBqTg2buw0h8KD91MD2mQDfWwj8jQfEXGInFoOGkwJ5N7BFYTt%2BzgZ4AuPxESJlfWyIcOM%2FP%2FYPdUAi7hh6xd%2FgJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 794e3f40bfcb0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-Bold.ttf
54.230.111.16200 OK 104 kB URL HTTP/2 www.ibet.com/fonts/OpenSans-Bold.ttf
IP 54.230.111.16:0
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansBold1.10;1ASC;OpenSans-Bold\012- data
Size 104 kB (104120 bytes)
Hash 1025a6e0fb0fa86f17f57cc82a6b9756
1e3704ee48b5ff7e582488ead87b05249f14dc1c
f7916a37377e38527d4306303cfe89b653b49b0a6b0b05c6b7593f7ab0248da8
GET /fonts/OpenSans-Bold.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/font-sfnt
content-length: 104120
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:04 GMT
etag: "1025a6e0fb0fa86f17f57cc82a6b9756"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: H5mldRvHafDtft24BvRsvaFSTxLTailYo6pGu74olr1DYrYhIE23WQ==
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 013fa296-a431-410b-b3fb-7417b3e877eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpIQAFCMIAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ed99-2e1daa8b75977de07c48b8fc;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 04:42:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UzQGDCYe_8AuYYLaLSAWzHQhwJMpzpXWbjE5AwukevW6G6SLDxDjmA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:42:59 GMT
age: 58804
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:05:45 GMT
age: 79038
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:24:01 GMT
age: 31142
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
d1w3v8ahdm9uzk.cloudfront.net/prod/api/v1/player/access/context
143.204.42.60200 OK 370 B URL HTTP/2 d1w3v8ahdm9uzk.cloudfront.net/prod/api/v1/player/access/context
IP 143.204.42.60:0
File type JSON data\012- , ASCII text
Hash a9058bcafaa20f452059d17d71366809
36aafe52e527968827415e32b53af7d537ac2ff9
181dd6c8374efe4830ed13c69dc30510b272911f318ab3ca6e0f1d80f421ca15
GET /prod/api/v1/player/access/context HTTP/1.1
Host: d1w3v8ahdm9uzk.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 370
date: Sun, 05 Feb 2023 20:03:03 GMT
x-amzn-requestid: 84a8e8c2-fbe9-442c-8665-1e4fa477213a
access-control-allow-origin: *
x-amz-apigw-id: f4a6tHL8joEF5mw=
x-amzn-trace-id: Root=1-63e00b77-12e2ed784724d47b2d1780cf
x-cache: Miss from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: u3mjNaLcHzenyxlwyPaHmIaV37ewVon2I4vG1n_e5l_0zQzRvan6Gg==
X-Firefox-Spdy: h2
www.ibet.com/favicon.ico
54.230.111.16200 OK 104 kB IP 54.230.111.16:0
File type MS Windows icon resource - 6 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size 104 kB (103505 bytes)
Hash c4ec29ec7a9b51ab3672ad4235022800
3b38d99e09a5935441eeb46a7ff6325ff253a243
852384ec427a20845c6be9329635438d03e9ce66712989c2b03a653b8c0169a3
GET /favicon.ico HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 103505
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:04 GMT
etag: "c4ec29ec7a9b51ab3672ad4235022800"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZwmxeheVeaEykvY8SNXT_lXcClE-5iZD8DwX6gZ2Kobe0q2IR7RZ8A==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a87d8a919b10bfacffe702c368b58e61
88182f1643f50c8ee613607ae7283d1cfdd78e5f
69c77a2be0351707b1eb6cc5a6fbf0bd4ecfb5c814c9b1cf8243daa36b36238e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 16:56:15 GMT
Expires: Thu, 09 Feb 2023 16:56:14 GMT
Etag: "88182f1643f50c8ee613607ae7283d1cfdd78e5f"
Cache-Control: max-age=333790,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f4c4d40b506-OSL
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D
34.102.211.197200 OK 28 kB URL HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D
IP 34.102.211.197:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65221), with no line terminators
Hash 8ed33c71310d534808ad2f44c1a432e1
9367ee8f50f8c0b095228561b976d457c2864d54
5022633269e94e4fd5aa91b447fec74c61c63ea788046d5f86e2614682d5907b
GET /v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sun, 05 Feb 2023 19:12:04 GMT
server-timing: api;dur=422
x-sanity-shard: gcp-eu-w1-01-prod-1013
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
content-encoding: br
x-sanity-age: 3059
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 28132
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/static/js/GoogleTagManager.be9a14e5.chunk.js
54.230.111.16200 OK 5.8 kB URL HTTP/2 www.ibet.com/static/js/GoogleTagManager.be9a14e5.chunk.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (5790), with no line terminators
Hash 205c5f208d88e6b99d785b986bf9b9b5
bbcaabff0472d6093e1d8865675d09ef152d1883
9b5a20b5c436c34dbca9108cb771204fb028d9abc59ec48639e0e7c6fb98dc59
GET /static/js/GoogleTagManager.be9a14e5.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 5790
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "205c5f208d88e6b99d785b986bf9b9b5"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RFXXHFUBonsXnrkwpK3RiimSHlY-k_rBnN5fJ59FMGELRs-5LdxSBQ==
X-Firefox-Spdy: h2
www.ibet.com/static/js/AffiliateId.c0b02e79.chunk.js
54.230.111.16200 OK 382 B URL HTTP/2 www.ibet.com/static/js/AffiliateId.c0b02e79.chunk.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (382), with no line terminators
Hash 8f61d14714cab76e1f57265976a2d0d4
fc0ccb9f3daa1a095f97e392cc4eab43f2d0f3e6
ee321134757f62b7fe82ceb10413d3e10edfce8ee05aabcf353271a9e261d448
GET /static/js/AffiliateId.c0b02e79.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 382
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "8f61d14714cab76e1f57265976a2d0d4"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: T_gqUs_C1PXeCSif6ZRsfAtCeAqHIsY706cLa3pT_v2hTgISnEV_mg==
X-Firefox-Spdy: h2
www.ibet.com/static/js/ScrollToTopOnRouteChange.f0af955f.chunk.js
54.230.111.16200 OK 279 B URL HTTP/2 www.ibet.com/static/js/ScrollToTopOnRouteChange.f0af955f.chunk.js
IP 54.230.111.16:0
File type ASCII text, with no line terminators
Hash 057be0c51a8d595af5f093393d82b68b
9101c6bbc32f67e1a611e63d32366307ce5d98fb
a3fe499aab0e0ecb2d142ef4487e67d78b9fd8b4d3ee516946250ebf6cb5f231
GET /static/js/ScrollToTopOnRouteChange.f0af955f.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 279
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "057be0c51a8d595af5f093393d82b68b"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: E_XY1f_Gj-H5PlrU1aFeasCudqXe-yYjPGmVH2MGtdLOWyJ7b7qj4Q==
X-Firefox-Spdy: h2
www.ibet.com/static/js/5.4dcf6ecd.chunk.js
54.230.111.16200 OK 9.2 kB URL HTTP/2 www.ibet.com/static/js/5.4dcf6ecd.chunk.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (9240), with no line terminators
Hash 82f5caf259cf6a1c1bbfceabd6b50013
3e711f24aed1b4cb3657b86ac2d79391e53f0ed0
8aa44f40ea43d09a4575ac9099eaefa9b497c88b3bf912cc6d89a21b61591c86
GET /static/js/5.4dcf6ecd.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 9240
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "82f5caf259cf6a1c1bbfceabd6b50013"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WqAkNHEluuAF_QH6F2KSzO-qc3kkDPqopBQt3YQnOm80m8uyYB9s6A==
X-Firefox-Spdy: h2
www.ibet.com/static/js/SiteFooter.c577284c.chunk.js
54.230.111.16200 OK 61 kB URL HTTP/2 www.ibet.com/static/js/SiteFooter.c577284c.chunk.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (60710), with no line terminators
Hash 7950bcbb5fb522eb1b565b149c5a2a5c
91ef126927a316da5385265373e723ba78c62cb2
f2bdbbe5c2bd6a5f39f52476b077ee0f4130eb6915ff2572245d031920f4d2cb
GET /static/js/SiteFooter.c577284c.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 60710
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "7950bcbb5fb522eb1b565b149c5a2a5c"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _gt3lytAcoesgp60uIgg1MFZVXeyll7Q8Mgoq1h9T2Mcj5-M0AkAgw==
X-Firefox-Spdy: h2
www.ibet.com/js/iovation/loader.js
54.230.111.16200 OK 3.7 kB URL HTTP/2 www.ibet.com/js/iovation/loader.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (566)
Hash 345143e355b88a10dd5e7e47b83f2348
d53b59af90bba7818c705ad9cc3ef813a44bf9b0
834949bd4e4b0149dc8655578cfab9ef4e66af0989de0ded9d9e4cd0da97fd06
GET /js/iovation/loader.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3655
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "345143e355b88a10dd5e7e47b83f2348"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qmNZKrt1Ud8unecFgDsLS515q2Xdx5UUtNRpIuHpW-Z5oi6E2hWTCg==
X-Firefox-Spdy: h2
www.ibet.com/static/js/MaxAttemptsModal.7e3eba41.chunk.js
54.230.111.16200 OK 1.5 kB URL HTTP/2 www.ibet.com/static/js/MaxAttemptsModal.7e3eba41.chunk.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (1454), with no line terminators
Hash 015bc9d0ac6756e7c694c12c14a0fada
7847d25c07d3a55f865c3601ce1721fac73739bd
bf8c832128595cb321b74ae7a26cb45e11003d5bfb09c9223f497e5c290b3674
GET /static/js/MaxAttemptsModal.7e3eba41.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1454
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "015bc9d0ac6756e7c694c12c14a0fada"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ljuANDiHT7lViEPtQWi_efuv1tNoPqVOsrylj_-_kGTjhycq8bvJDw==
X-Firefox-Spdy: h2
www.ibet.com/static/js/ToastNotification.cf6c1eb6.chunk.js
54.230.111.16200 OK 2.7 kB URL HTTP/2 www.ibet.com/static/js/ToastNotification.cf6c1eb6.chunk.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (2714), with no line terminators
Hash ba1d06cb70d2b2c64cac8094c3d8f2d3
776fe2616d23ec011ac634180d09d853f0811103
68f0be364f0b4b6305a59a2f5f16225773cd59a4457ec318fe364b2cb44707c3
GET /static/js/ToastNotification.cf6c1eb6.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 2714
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "ba1d06cb70d2b2c64cac8094c3d8f2d3"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: h2OYzGDEE4oQCIzvf6N5iiTcHz7yJS57Nb-jRJirlCllwfdUMC8ZjA==
X-Firefox-Spdy: h2
www.ibet.com/static/js/FEReload.588ab5c8.chunk.js
54.230.111.16200 OK 1.5 kB URL HTTP/2 www.ibet.com/static/js/FEReload.588ab5c8.chunk.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (1469), with no line terminators
Hash d1e7e43f0c2e7eae5e38b92128c06205
35773de13762b35d1c9d56bc2b4bbbce020d31c9
aeac9660e902c52d04829718c580fb5098799f5d61e311c4d0db726477cbd283
GET /static/js/FEReload.588ab5c8.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1469
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "d1e7e43f0c2e7eae5e38b92128c06205"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Acf0BibrqyPXm1GafOQlCjxXQK7iDLDAzdPpGGoEuPJzNdpCK8AjYA==
X-Firefox-Spdy: h2
www.ibet.com/static/js/60.5575fe00.chunk.js
54.230.111.16200 OK 68 kB URL HTTP/2 www.ibet.com/static/js/60.5575fe00.chunk.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 84ce6a1c5443e84e5145682a532c0853
79a2956259110219696e8fa3bda49053421bf333
b395d31a8ee1907d8ea891b22c73d8a584c19fdd42191900cf6b1ed09fbd07db
GET /static/js/60.5575fe00.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 67663
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "84ce6a1c5443e84e5145682a532c0853"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gU7io2fU4849xGS9Z1yQ_Qp2ZNN_PA3qYMjn3Og2hrdYMMqPR8OWnw==
X-Firefox-Spdy: h2
www.ibet.com/static/js/CookiesNotification.51f829fe.chunk.js
54.230.111.16200 OK 9.5 kB URL HTTP/2 www.ibet.com/static/js/CookiesNotification.51f829fe.chunk.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (9504), with no line terminators
Hash 5de9be99e1cca1b971dbea5d976a4216
0bd64b20947927561d9fa2cf5b8894386641403c
170f5cbedbb06b653978d94a4791ad3ebbbb9bdc4ed80f3a897c8d91f06d1b7e
GET /static/js/CookiesNotification.51f829fe.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 9504
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "5de9be99e1cca1b971dbea5d976a4216"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 25qNGxHQlWv3P_vePgd9WeQ728-lh4iC9SoBaeZPbS4THZXLz2kgcA==
X-Firefox-Spdy: h2
www.ibet.com/static/js/AppRoutes.50c58bf0.chunk.js
54.230.111.16200 OK 12 kB URL HTTP/2 www.ibet.com/static/js/AppRoutes.50c58bf0.chunk.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (11849), with no line terminators
Hash ef56513927c442d468ffcc1ceee2cc9a
e5611447dceea9a54b03279caefadb44e83244d3
17f238d5c1ef5955f5ed2b22fe639016018110d530e002d0e09ab0947debb335
GET /static/js/AppRoutes.50c58bf0.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 11849
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "ef56513927c442d468ffcc1ceee2cc9a"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Zz2owNRZpQ9amL72Jf7Y80AWM_9nOp13lcDGs25jz5G-YWPdQYyPCQ==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ibet.com/static/js/SiteHeader.c48a74c4.chunk.js
54.230.111.16200 OK 1.3 kB URL HTTP/2 www.ibet.com/static/js/SiteHeader.c48a74c4.chunk.js
IP 54.230.111.16:0
Hash 732f62d7e7186a455ec96a0dfc069692
3a5e374b250121558c395f5fa76c1ff5aade758a
61832b8c8bde156509f9125f9a2f81a1839178e516c503f5c68bce0e5644d0be
GET /static/js/SiteHeader.c48a74c4.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 126322
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "ce51f792d443e430e0d602dfeac29434"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qtWXQ9fDyP5cLaZMQimwefFTva174HpewMmYNily3hjEMA0TeZgY5g==
X-Firefox-Spdy: h2
www.ibet.com/iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
54.230.111.16200 OK 17 kB URL HTTP/2 www.ibet.com/iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP 54.230.111.16:0
Hash 49319c64bfed3311785ea8c9505d618b
07643af60ccae3115287034703b264803299a90d
b88ffd189b2dc7196e0157b9a00d576fa6889df38bace5c16fcc3c018ee04dba
GET /iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Sun, 05 Feb 2023 20:03:04 GMT
last-modified: Tue, 06 May 2014 00:01:40 GMT
expires: Tue, 07 Mar 2023 20:03:04 GMT
cache-control: private
p3p: CP="NON DSP COR CURa"
accept-ch: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VErMTqZdoWjW_LaOTxX1BsL1J7sFOAnOc0SQhRZaAiRLMr42AmY36Q==
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-PCVT5ZK
172.217.21.168200 OK 74 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PCVT5ZK
IP 172.217.21.168:0
File type Unicode text, UTF-8 text, with very long lines (27763)
Hash 052a0331c9b30f0f809af20bd88384e5
7de7e261b0006b57d7896a987a89ca9072c1e379
0bb35ff1d2fe062ad143851d4ece5772efea6f914d63456664367a82d8b914d9
GET /gtm.js?id=GTM-PCVT5ZK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 20:03:04 GMT
expires: Sun, 05 Feb 2023 20:03:04 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 Feb 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73909
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a87d8a919b10bfacffe702c368b58e61
88182f1643f50c8ee613607ae7283d1cfdd78e5f
69c77a2be0351707b1eb6cc5a6fbf0bd4ecfb5c814c9b1cf8243daa36b36238e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 16:56:15 GMT
Expires: Thu, 09 Feb 2023 16:56:14 GMT
Etag: "88182f1643f50c8ee613607ae7283d1cfdd78e5f"
Cache-Control: max-age=333789,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f4dff92b506-OSL
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ibet.com/static/media/ibet-logo-red.6daec8ec.svg
54.230.111.16200 OK 3.4 kB URL HTTP/2 www.ibet.com/static/media/ibet-logo-red.6daec8ec.svg
IP 54.230.111.16:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2861)
Hash 6daec8ec3cf491542936b5840240e511
7570d251da8522b314c1adffe9ce8be30120738c
9436edb0bd4d0b11e27997468fed995d01fd87d7b1e89d93f930064c4a21a901
GET /static/media/ibet-logo-red.6daec8ec.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 3445
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "6daec8ec3cf491542936b5840240e511"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vkze5S2LsUK5K-UIwVPmkwH6Klo-XtLX-rADortlwCUPuDINU1O_XQ==
X-Firefox-Spdy: h2
www.ibet.com/asset-manifest.json?rand=99743
54.230.111.16200 OK 14 kB URL HTTP/2 www.ibet.com/asset-manifest.json?rand=99743
IP 54.230.111.16:0
File type JSON data\012- , ASCII text
Hash c183387f74c3bf921d0470bc8128b64f
8c8db45022aa9cfcf02311a2fe7473291b23fd82
82e95849c862d5f880c371dd360bf9539a1ee1a71fdadd4cd243e46b0158ad37
GET /asset-manifest.json?rand=99743 HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 13926
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "c183387f74c3bf921d0470bc8128b64f"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jzwU5ICHFKY9tHexcNVS1aPDzEyG70PLNiBeRo9-qXgrNRgIAhZs4Q==
X-Firefox-Spdy: h2
www.ibet.com/static/js/FooterImageContainer.0bd48991.chunk.js
54.230.111.16200 OK 673 B URL HTTP/2 www.ibet.com/static/js/FooterImageContainer.0bd48991.chunk.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (673), with no line terminators
Hash 007a27a39ed59ad8c742a6290d085cae
90cf703ba626fb71329f0d8a21dc0147c955906f
56d2505682228db27598098f9aa19526f3291d1121df94e765922b750fbcbd41
GET /static/js/FooterImageContainer.0bd48991.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 673
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "007a27a39ed59ad8c742a6290d085cae"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oM4AVEQBtNGnUXD8-VsSYOP4fC2rDvUE8a2ML_K_5-rOaRYcilLHkg==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash e0002087c53128a0ec00e18ccf327aa7
2dee3f4ae93e5956d2f7e8fba4c501fb183ab01e
5085057ebf15232eeadd9a39cd828eacf1ad20333f346f045fecc6a208dad3b6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:04 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 18:36:58 GMT
Expires: Fri, 10 Feb 2023 18:36:57 GMT
Etag: "2dee3f4ae93e5956d2f7e8fba4c501fb183ab01e"
Cache-Control: max-age=426232,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f4edab11c16-OSL
salesiq.zoho.eu/widget
185.230.212.28200 35 kB IP 185.230.212.28:0
ASN #205111 ZOHO Corporation B.V
File type ASCII text, with very long lines (65536), with no line terminators
Hash d6cb12ff1db84e3523b349971061219f
5ba3e28a6dfca16b92a20c27072650e7008f39f1
6624036f26858c56846bbcf4c5cc5c8b52f08106e3ae5fab8b2cc5e95acc20f1
GET /widget HTTP/1.1
Host: salesiq.zoho.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: ZGS
Date: Sun, 05 Feb 2023 20:03:04 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: b3e783bb62=f12e0a71780f1e8684e68d76a060037b; Path=/
Access-Control-Allow-Origin: *
Cache-Control: must-revalidate
Pragma:
Expires: Sun, 05 Feb 2023 20:08:04 GMT
ETag: W/40dec934df8e25d85c9fc774974ff1a84072f929315c3b2c78f1b2ede3629833
vary: accept-encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
www.ibet.com/static/js/MenuIcon.d2e33758.chunk.js
54.230.111.16200 OK 81 kB URL HTTP/2 www.ibet.com/static/js/MenuIcon.d2e33758.chunk.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e38a7661715a8dc6e232107d769c4b40
2556cb8f1d7405782b1707bcbc531e26ac60e63d
dee2dac553c443e4dced293ed749200a8f4c7e28750d48360b4a9f5e30c08c71
GET /static/js/MenuIcon.d2e33758.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 81074
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "e38a7661715a8dc6e232107d769c4b40"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xqHx_Pu5U-GfYOpDlARZC1zl7VnbnAcd7bIPX7TydMZcyiTF0IQ0xQ==
X-Firefox-Spdy: h2
www.ibet.com/static/css/Home.c7d5bb57.chunk.css
54.230.111.16200 OK 63 B URL HTTP/2 www.ibet.com/static/css/Home.c7d5bb57.chunk.css
IP 54.230.111.16:0
File type ASCII text, with no line terminators
Hash 813b17a6690bbfb32d877fbda442ef4c
c7f56f22b32af8454a849639dea6745008535859
7e4269e3372452b4d9a3ab8c989d084c3fa9fd43c963f558637a1ffdf7d25f88
GET /static/css/Home.c7d5bb57.chunk.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 63
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "813b17a6690bbfb32d877fbda442ef4c"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fTRRNHUUgHB162VSdH9L3xJ3zJ0LfWuLaJVt_AW5bsmBfmmZDRoRLQ==
X-Firefox-Spdy: h2
www.ibet.com/static/js/58.5a328239.chunk.js
54.230.111.16200 OK 64 kB URL HTTP/2 www.ibet.com/static/js/58.5a328239.chunk.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (64231), with no line terminators
Hash e6f104c1fb10b3cbd61573a1131ffec5
20f0624cdfa9d527e81a02028b69c03c76f49a46
352d7cc76556ff8d3f1a5552ec21919a1b8a70b62d5990b37b4f56f1c98bf5bc
GET /static/js/58.5a328239.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 64231
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "e6f104c1fb10b3cbd61573a1131ffec5"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: w53jYKvvI-4nUjRm3WQASEkW5-ZgHi49wGgWTuBrNfxWoSIfdwiKnA==
X-Firefox-Spdy: h2
www.ibet.com/iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
54.230.111.16200 OK 1.4 kB URL HTTP/2 www.ibet.com/iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP 54.230.111.16:0
File type ASCII text, with very long lines (985)
Hash fc3031e01ae6bdb040a591e5e6577e15
0d9fe849d888456779293549464e36ddf63d3b5c
71f1a2b7e33713e88aba97c9cc7a100a72f3b1fbdcc05c7c46539d3a0213682a
GET /iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 1396
date: 2023-Feb-05 20:03:04
cache-control: no-cache, private
pragma: no-cache
expires: 0
p3p: CP="NON DSP COR CURa"
accept-ch: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q-azt8YwsMcHvi0RwK_Qt6oEL-ovLMS03n6xtu2eUc7WzMOV_PPuiw==
X-Firefox-Spdy: h2
salesiq.zoho.eu/visitor/v2/channels/website?widgetcode=429c68585fd2941a35c4c0726de2afe5f3c8164b72b4840747ca2e980e0011f9&internal_channel_req=true&language_api=true&browser_language=en¤t_domain=https%3A%2F%2Fibet.com&pagetitle=iBet.com&include_fields=avuid
185.230.212.28200 8.9 kB URL HTTP/1.1 salesiq.zoho.eu/visitor/v2/channels/website?widgetcode=429c68585fd2941a35c4c0726de2afe5f3c8164b72b4840747ca2e980e0011f9&internal_channel_req=true&language_api=true&browser_language=en¤t_domain=https%3A%2F%2Fibet.com&pagetitle=iBet.com&include_fields=avuid
IP 185.230.212.28:0
ASN #205111 ZOHO Corporation B.V
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (22614), with no line terminators
Hash dd29e2a037bcd7f40374fb1436620704
0b4743034159bc59fcc7e08cd82cdfb48a3924c2
936b3c963150214f737220faae39bd7837675648abcd920d510a75266671a6f9
GET /visitor/v2/channels/website?widgetcode=429c68585fd2941a35c4c0726de2afe5f3c8164b72b4840747ca2e980e0011f9&internal_channel_req=true&language_api=true&browser_language=en¤t_domain=https%3A%2F%2Fibet.com&pagetitle=iBet.com&include_fields=avuid HTTP/1.1
Host: salesiq.zoho.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: ZGS
Date: Sun, 05 Feb 2023 20:03:04 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Encoding: UTF-8
X-XSS-Protection: 1
Set-Cookie: b3e783bb62=8cbb5519cdbffc0e2282ba8c8b4d43a5; Path=/
LS_CSRF_TOKEN=5d6aebd5-874e-462d-92c1-88f91cd8ca77;path=/;SameSite=None;Secure;priority=high
_zcsr_tmp=5d6aebd5-874e-462d-92c1-88f91cd8ca77;path=/;SameSite=Strict;Secure;priority=high
uesign=dc3b17065b4d66463ce4b2c58f71bf6825a9f679fe2963a261d363e9f465f9f0321a110b2225d2d4bf353739c3f4a9ad;Max-Age=2592000;Path=/;Secure;SameSite=None;priority=high
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Headers: Content-Type,x-siq-internal-channel
Access-Control-Allow-Origin: https://www.ibet.com
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Content-Language: en-US
Strict-Transport-Security: max-age=63072000
Content-Encoding: gzip
www.ibet.com/iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
54.230.111.16200 OK 505 B URL HTTP/2 www.ibet.com/iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
IP 54.230.111.16:0
File type ASCII text, with very long lines (377)
Hash f9ee567ca735a5b622a81b2586e6d11e
5b86ef1c59b5ec5cbe359f7a57d841b910419efe
f339076f8c7ab91212ab9f3e0ccfb59173d8629d853d39c0e81eb48b0f870166
GET /iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Cookie: isiframeenabled=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 505
date: Sun, 05 Feb 2023 20:03:04 GMT
last-modified: Tue, 06 May 2014 00:01:40 GMT
expires: Mon, 05 Feb 2024 20:03:04 GMT
cache-control: private
p3p: CP="NON DSP COR CURa"
accept-ch: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LXSIwXZVIea8Jp58nx7LdrVUgRD4EnSPDiESujTF9tHhxYfEpqH1fg==
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22homePage%22%20%26%26%20%27NO%27%20in%20market%5B%5D-%3Eid%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%5B0%5D%7B%0A%20%20%20%20%20%22banner%22%3A%7B%0A%20%20%20%20%20%20%20%20%22list%22%3Abanners%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%20_id%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22description%22%3Adescription.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22greeting%22%3Agreeting.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22button%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22type%22%3Abutton.type%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22label%22%3Abutton.label.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22param%22%3Abutton.param%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22urlAction%22%3A%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%22slug%22%3A%20urlAction.anonymousSlug%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22absoluteUrl%22%3A%20urlAction.anonymousAbsoluteUrl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22openNewTab%22%3A%20urlAction.anonymousOpenNewTab%0A%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22img%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3Aimg.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3Aimg.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3Aimg.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%20%20%20%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%20%20%20%20%20%20%22imgPortrait%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3AimgPortrait.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3AimgPortrait.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3AimgPortrait.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20startDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20endDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20authorized%2C%0A%20%20%20%20%20%20%20%20%20%20%20isClickable%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%22options%22%3A%7B%22duration%22%3AbannersDuration%7D%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%22verticals%22%3Averticals%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%20type%2C%20authorized%2C%20%22subtitle%22%3Asubtitle.no%2C%20%22description%22%3Adescription.no%2C%20%0A%20%20%20%20%20%20%20%20%20%20items%5B%5D-%3E%7B%20%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20id%2C%20%22label%22%3Acoalesce(title.no%2Cname)%2C%20image%7B%22img1x%22%3Aimg1x.asset-%3Eurl%2C%22img2x%22%3Aimg2x.asset-%3Eurl%2C%22img3x%22%3Aimg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22provider%22%3Acoalesce(provider-%3Eprovider.id%2Cprovider)%0A%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%7D%0A%20%20%7D
34.102.211.197200 OK 6.4 kB URL HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22homePage%22%20%26%26%20%27NO%27%20in%20market%5B%5D-%3Eid%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%5B0%5D%7B%0A%20%20%20%20%20%22banner%22%3A%7B%0A%20%20%20%20%20%20%20%20%22list%22%3Abanners%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%20_id%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22description%22%3Adescription.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22greeting%22%3Agreeting.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22button%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22type%22%3Abutton.type%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22label%22%3Abutton.label.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22param%22%3Abutton.param%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22urlAction%22%3A%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%22slug%22%3A%20urlAction.anonymousSlug%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22absoluteUrl%22%3A%20urlAction.anonymousAbsoluteUrl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22openNewTab%22%3A%20urlAction.anonymousOpenNewTab%0A%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22img%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3Aimg.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3Aimg.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3Aimg.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%20%20%20%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%20%20%20%20%20%20%22imgPortrait%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3AimgPortrait.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3AimgPortrait.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3AimgPortrait.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20startDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20endDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20authorized%2C%0A%20%20%20%20%20%20%20%20%20%20%20isClickable%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%22options%22%3A%7B%22duration%22%3AbannersDuration%7D%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%22verticals%22%3Averticals%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%20type%2C%20authorized%2C%20%22subtitle%22%3Asubtitle.no%2C%20%22description%22%3Adescription.no%2C%20%0A%20%20%20%20%20%20%20%20%20%20items%5B%5D-%3E%7B%20%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20id%2C%20%22label%22%3Acoalesce(title.no%2Cname)%2C%20image%7B%22img1x%22%3Aimg1x.asset-%3Eurl%2C%22img2x%22%3Aimg2x.asset-%3Eurl%2C%22img3x%22%3Aimg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22provider%22%3Acoalesce(provider-%3Eprovider.id%2Cprovider)%0A%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%7D%0A%20%20%7D
IP 34.102.211.197:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (28272), with no line terminators
Hash 2d7ae6948d23eb04a4acb45bafe69f7f
bb411ee6640a117a6421b12deee67e303a22bc84
a5d5c264dc8ccf7f24c3c14d69a78313a1a8c47f2b1d242e10170cbca54dfa35
GET /v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22homePage%22%20%26%26%20%27NO%27%20in%20market%5B%5D-%3Eid%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%5B0%5D%7B%0A%20%20%20%20%20%22banner%22%3A%7B%0A%20%20%20%20%20%20%20%20%22list%22%3Abanners%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%20_id%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22description%22%3Adescription.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22greeting%22%3Agreeting.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22button%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22type%22%3Abutton.type%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22label%22%3Abutton.label.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22param%22%3Abutton.param%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22urlAction%22%3A%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%22slug%22%3A%20urlAction.anonymousSlug%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22absoluteUrl%22%3A%20urlAction.anonymousAbsoluteUrl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22openNewTab%22%3A%20urlAction.anonymousOpenNewTab%0A%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22img%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3Aimg.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3Aimg.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3Aimg.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%20%20%20%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%20%20%20%20%20%20%22imgPortrait%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3AimgPortrait.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3AimgPortrait.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3AimgPortrait.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20startDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20endDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20authorized%2C%0A%20%20%20%20%20%20%20%20%20%20%20isClickable%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%22options%22%3A%7B%22duration%22%3AbannersDuration%7D%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%22verticals%22%3Averticals%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%20type%2C%20authorized%2C%20%22subtitle%22%3Asubtitle.no%2C%20%22description%22%3Adescription.no%2C%20%0A%20%20%20%20%20%20%20%20%20%20items%5B%5D-%3E%7B%20%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20id%2C%20%22label%22%3Acoalesce(title.no%2Cname)%2C%20image%7B%22img1x%22%3Aimg1x.asset-%3Eurl%2C%22img2x%22%3Aimg2x.asset-%3Eurl%2C%22img3x%22%3Aimg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22provider%22%3Acoalesce(provider-%3Eprovider.id%2Cprovider)%0A%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%7D%0A%20%20%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sun, 05 Feb 2023 19:15:25 GMT
server-timing: api;dur=189
x-sanity-shard: gcp-eu-w1-01-prod-1013
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
content-encoding: br
x-sanity-age: 2858
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 6367
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/media/home/features/features-desktop.jpg
54.230.111.16200 OK 136 kB URL HTTP/2 www.ibet.com/media/home/features/features-desktop.jpg
IP 54.230.111.16:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1440x824, components 3\012- data
Size 136 kB (135662 bytes)
Hash fffc21166194075701552a7d2218a9fc
c84cc4212579053740c58bf3245759c2371436f3
02ab2a6abaaa6981603402a187337d197b57578609f7ebf09b9b49dba94ca276
GET /media/home/features/features-desktop.jpg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Cookie: isiframeenabled=true; _gcl_au=1.1.707353092.1675627426; _ga_QMJ93CW4C3=GS1.1.1675627426.1.0.1675627426.0.0.0; _ga=GA1.1.1993555355.1675627426
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 135662
last-modified: Thu, 05 Jan 2023 16:20:42 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:05 GMT
etag: "fffc21166194075701552a7d2218a9fc"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pYcZqytPgKPu0PswZ_bx_Ukom7-9yNAcqIACrTXxw8f6hmSlCdO5Zw==
X-Firefox-Spdy: h2
www.ibet.com/static/media/IntegralCF-Regular.2bead141.woff2
54.230.111.16200 OK 18 kB URL HTTP/2 www.ibet.com/static/media/IntegralCF-Regular.2bead141.woff2
IP 54.230.111.16:0
File type Web Open Font Format (Version 2), TrueType, length 18484, version 1.6553\012- data
Hash 2bead14105eb2526e9547d6dd69ed86c
23601938b7bbb0631b6a33f7f6c7e73700241dea
07839fe34039d0bf261f3cb68b299f96f43705a4c8a0bce5063d6376a311c4d6
GET /static/media/IntegralCF-Regular.2bead141.woff2 HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Cookie: isiframeenabled=true; _gcl_au=1.1.707353092.1675627426; _ga_QMJ93CW4C3=GS1.1.1675627426.1.0.1675627426.0.0.0; _ga=GA1.1.1993555355.1675627426
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 18484
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:06 GMT
etag: "2bead14105eb2526e9547d6dd69ed86c"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Yg94wcH_6nX2CBnTZPdj9s50zte8NGV50SMNumPhe-TzeDdUvu5TnQ==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash b53b22fb999e186eebe72073aa62af32
310130edaa8d9e272cd3077e046330041f6af65f
8aba19386e013e82e03bde36039cb8b8f6aa97edee3fcdd41b4d21d152762518
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 13:59:51 GMT
Expires: Sat, 11 Feb 2023 13:59:50 GMT
Etag: "310130edaa8d9e272cd3077e046330041f6af65f"
Cache-Control: max-age=496004,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f514c22b506-OSL
cdn.sanity.io/images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png
35.190.70.79200 OK 5.2 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png
IP 35.190.70.79:0
File type PNG image data, 318 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash 54f08de44053ac484ef92bd1b2490323
fbfd97517c2b1e30611014c9938e5ac6f75e3315
68d588a5d493dc1ad73240aa42bbf23a7b522f8ab1c42b8718ce05a027293ac7
GET /images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 5240
x-b3-traceid: e3f6a940816f43e4c5ebb09c86ef203a
x-b3-parentspanid: 26f337bd597bbebf
x-b3-spanid: ec69cc0855f1b9bc
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-4
x-varnish-age: 3224
accept-ranges: bytes
via: 1.1 google
date: Thu, 12 Jan 2023 13:41:56 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Fri, 25 Nov 2022 13:38:56 GMT
content-type: image/png
age: 2096469
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7125328058f95e3c17e44f90a4b69a40
96073265c5bb3eb49b77f5e87a2b1226cc5082ea
afd80667fd34b628fb701a20a892c899a09d8029ea6aeb8527f6035b60e3e20b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2394
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:05 GMT
Last-Modified: Sun, 05 Feb 2023 19:23:11 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
cdn.sanity.io/images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png
35.190.70.79200 OK 1.8 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png
IP 35.190.70.79:0
File type PNG image data, 270 x 93, 8-bit colormap, non-interlaced\012- data
Hash e4b9e11554e481b113004a5fa1bcd3ca
55d86f60b146584dbf41fcd8444f32cad91ce0ae
5bff602b52530e6bf9e7328c551a062ffb4153b63b1a22a3e2701270b24cf694
GET /images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 1819
x-b3-traceid: 77bd0f0100d20d8e9e43eaf09eb22cf5
x-b3-parentspanid: 2a2abaa3af3a232b
x-b3-spanid: ae1bea431359881e
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 19 Jan 2023 06:43:22 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:39:31 GMT
content-type: image/png
age: 1516783
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/bc900fced5d5b640bf862dee4f6f672c336eb059-395x97.png
35.190.70.79200 OK 3.1 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/bc900fced5d5b640bf862dee4f6f672c336eb059-395x97.png
IP 35.190.70.79:0
File type PNG image data, 395 x 97, 8-bit colormap, non-interlaced\012- data
Hash bae88acf6501b95d744ac42753fd154e
bc900fced5d5b640bf862dee4f6f672c336eb059
a9b8a511c5a65723741f141c52a491e45a6d1d47d4cdc57c8b29f39e2ca0fe41
GET /images/w9lc5y04/production/bc900fced5d5b640bf862dee4f6f672c336eb059-395x97.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3072
x-b3-traceid: b147e828b1c351e4acc42fca131c08b0
x-b3-parentspanid: 8c08bd49005e7310
x-b3-spanid: fab7073899b8658e
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 4020
accept-ranges: bytes
via: 1.1 google
date: Sun, 29 Jan 2023 11:42:50 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:38:03 GMT
content-type: image/png
age: 634815
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.adsrvr.org/up_loader.1.1.0.js
143.204.45.46200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 143.204.45.46:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 05 Feb 2023 09:30:24 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UH2lxpmBc-WUqmq16xXASVDxAAM0y2AaRNxKWlHIBAzDMPvRyZdWAA==
Age: 37962
cdn.sanity.io/images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png
35.190.70.79200 OK 3.3 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png
IP 35.190.70.79:0
File type PNG image data, 560 x 107, 8-bit colormap, non-interlaced\012- data
Hash e83e505077311e5f9cd28570d22b274c
d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f
f0571891d0bb64899275389561c72cf12622f87bc6921910c0fea86108c13fae
GET /images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3304
x-b3-traceid: 7461f171b153f3c8368a63661c7ddd43
x-b3-parentspanid: 7a7456c7997eeb09
x-b3-spanid: a0ccdbcc7ed7f1ed
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Mon, 16 Jan 2023 16:07:49 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:37:21 GMT
content-type: image/png
age: 1742116
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/9baabec764476ca445f88710f67677b633a54b95-430x100.png
35.190.70.79200 OK 3.6 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/9baabec764476ca445f88710f67677b633a54b95-430x100.png
IP 35.190.70.79:0
File type PNG image data, 430 x 100, 8-bit colormap, non-interlaced\012- data
Hash b3af83174bcd7c3365106aec05ceabc1
9baabec764476ca445f88710f67677b633a54b95
42fae6932054cb4d37203480d9e5c6cf8787934f3b5ac09176da4f1867a992de
GET /images/w9lc5y04/production/9baabec764476ca445f88710f67677b633a54b95-430x100.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3612
x-b3-traceid: e2f617095e6df9261ebf1cd5a444d3ad
x-b3-parentspanid: 041a632520f96ba9
x-b3-spanid: 6482dccd13148bd3
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-4
x-varnish-age: 17296
accept-ranges: bytes
via: 1.1 google
date: Sat, 04 Feb 2023 02:02:07 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 151258
last-modified: Wed, 14 Jul 2021 11:37:46 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d5d5072dfd2b363217c5c7aa84c2ad38
3ba151f6b126bba281deb3a6b5e2d9a34a341931
aaeba9d091f1847d828f7c5d69ce6d43bdc0036cda77f7b408414ab6bbd161d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 901
Cache-Control: max-age=97263
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:05 GMT
Etag: "63dee0e3-117"
Expires: Mon, 06 Feb 2023 23:04:08 GMT
Last-Modified: Sat, 04 Feb 2023 22:49:07 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
cdn.sanity.io/images/w9lc5y04/production/98a1fe10a380461fda22a3baccc6031744fef4fb-991x225.png
35.190.70.79200 OK 23 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/98a1fe10a380461fda22a3baccc6031744fef4fb-991x225.png
IP 35.190.70.79:0
File type PNG image data, 991 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash ded03dbc96554750e94cb0f5b1b780ff
98a1fe10a380461fda22a3baccc6031744fef4fb
e001ab0ed5f5808d34f62add059289fc8fa6ccb6a347a610b7e0a668d810cf0b
GET /images/w9lc5y04/production/98a1fe10a380461fda22a3baccc6031744fef4fb-991x225.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 22817
x-b3-traceid: fc2f9c4996453cb553936b565bb017a2
x-b3-parentspanid: f3e17e8daf1d516c
x-b3-spanid: 1b092ac8942b265b
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-6
x-varnish-age: 3224
accept-ranges: bytes
via: 1.1 google
date: Thu, 12 Jan 2023 13:41:56 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 28 Apr 2022 12:46:16 GMT
content-type: image/png
age: 2096469
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash b53b22fb999e186eebe72073aa62af32
310130edaa8d9e272cd3077e046330041f6af65f
8aba19386e013e82e03bde36039cb8b8f6aa97edee3fcdd41b4d21d152762518
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 13:59:51 GMT
Expires: Sat, 11 Feb 2023 13:59:50 GMT
Etag: "310130edaa8d9e272cd3077e046330041f6af65f"
Cache-Control: max-age=496004,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f510db21c16-OSL
cdn.sanity.io/images/w9lc5y04/production/261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3-256x90.png
35.190.70.79200 OK 2.3 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3-256x90.png
IP 35.190.70.79:0
File type PNG image data, 256 x 90, 8-bit colormap, non-interlaced\012- data
Hash 3cc63e63d23d84e22251a97cae156b43
261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3
a24220152c92cc21497f600a6ec7abe14875485a719e1ef2841919188681d803
GET /images/w9lc5y04/production/261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3-256x90.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 2272
x-b3-traceid: 89b50c2590c4bc1062f18c100fe9e32a
x-b3-parentspanid: 55ecef5e374ef206
x-b3-spanid: 6bbcce4e2a098d91
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Wed, 18 Jan 2023 03:39:40 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:35:44 GMT
content-type: image/png
age: 1614205
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/c6476b7dad8121a50fb3e1df4967deeceed4d9a7-2880x818.jpg
35.190.70.79200 OK 232 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/c6476b7dad8121a50fb3e1df4967deeceed4d9a7-2880x818.jpg
IP 35.190.70.79:0
File type JPEG image data, baseline, precision 8, 2880x818, components 3\012- data
Size 232 kB (231740 bytes)
Hash 1a5b1e2a803f72f3313ccff2510b341f
8ee6de4df5cf6fb172cf6557749a2446bd9ba5a3
bde9857aa366a78f56ca63e35ff4320b47a99f805711e6c021a9c18544c66c3f
GET /images/w9lc5y04/production/c6476b7dad8121a50fb3e1df4967deeceed4d9a7-2880x818.jpg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 231740
x-b3-traceid: ecfd32df7038aedd62d1494282520f06
x-b3-parentspanid: 660c42ec857ba858
x-b3-spanid: 3a41126c38d44154
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-7
x-varnish-age: 10187
accept-ranges: bytes
via: 1.1 google
date: Wed, 11 Jan 2023 03:54:35 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 2218110
last-modified: Tue, 22 Feb 2022 10:29:42 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAUT
23.36.79.43200 OK 37 kB URL HTTP/2 tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAUT
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (61814)
Hash 7a4c7084a1cc66299069cae286e77ae9
69e0d50e779ea14bf86e8da3791c0ac246317499
08a9e9ea264c09e8bbed7876e604711eaa12870ead3a524324bc429b415032a0
GET /dist/tag-manager.js?id=STM-AAAAUT HTTP/1.1
Host: tm.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
apigw-requestid: f4aGfiIEDoEEPhA=
vary: Accept-Encoding
content-encoding: gzip
content-length: 37374
date: Sun, 05 Feb 2023 20:03:05 GMT
cache-control: max-age=900, public
x-n: S
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png
35.190.70.79200 OK 1.0 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png
IP 35.190.70.79:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash c54b1baea0fee1c28f161b98caca9b6f
73b98cda447fa00944f7922509f1c40435f9a2c3
84ae01ad9032bb57c873dac068aaad998c5b813259b1a0b200cede6061d9044f
GET /images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 1009
x-b3-traceid: 534ac352808132bba1a7919a1ff589a4
x-b3-parentspanid: b4039d28eb7ef0d7
x-b3-spanid: 4d54b32893a80699
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-8
x-varnish-age: 21625
accept-ranges: bytes
via: 1.1 google
date: Wed, 18 Jan 2023 23:16:44 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 28 Feb 2022 12:12:47 GMT
content-type: image/png
age: 1543581
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mpsnare.iesnare.com/star
54.228.71.178101 Switching Protocols 0 B IP 54.228.71.178:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: X1aGDpVW0UUv7xk+NsHkyw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sun, 05 Feb 2023 20:03:05 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: Hgmz9YwwhdC85iLL8a7YVAG97aY=
Upgrade: WebSocket
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 81c6adbb4976a888b58d7b8f9b33f24a
56f5df6c416b47d9e354ba414386665d9ef099ad
3acff27161efd5050e7e734d26468ff01987d08754a023963e1a82ed0485a168
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 09 Feb 2023 17:45:08 GMT
ETag: "56f5df6c416b47d9e354ba414386665d9ef099ad"
Last-Modified: Sun, 05 Feb 2023 17:45:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1484
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794e3f55faf4b4ee-OSL
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 81c6adbb4976a888b58d7b8f9b33f24a
56f5df6c416b47d9e354ba414386665d9ef099ad
3acff27161efd5050e7e734d26468ff01987d08754a023963e1a82ed0485a168
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 09 Feb 2023 17:45:08 GMT
ETag: "56f5df6c416b47d9e354ba414386665d9ef099ad"
Last-Modified: Sun, 05 Feb 2023 17:45:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1484
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794e3f55fa0db4f9-OSL
imagesrv.adition.com/js/aut.js
217.79.188.59200 OK 3.6 kB URL HTTP/2 imagesrv.adition.com/js/aut.js
IP 217.79.188.59:0
ASN #24961 myLoc managed IT AG
File type C source, ASCII text, with very long lines (575)
Hash 20bcb89e1593d0791dc1e75cddc1651d
d696cd7a407d3d95f197c44cf1d8e47312242e1b
453f86a616db4a42e5dd92fc00a580d769a6275c0adb56700b134290c8302971
GET /js/aut.js HTTP/1.1
Host: imagesrv.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
etag: "2397954584-br"
last-modified: Wed, 11 Jan 2023 08:47:11 GMT
content-length: 3634
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: br
date: Sun, 05 Feb 2023 20:03:05 GMT
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/0cd9d8df940727270d20ce8c2d21011a5e694964-4320x1227.jpg
35.190.70.79200 OK 12 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/0cd9d8df940727270d20ce8c2d21011a5e694964-4320x1227.jpg
IP 35.190.70.79:0
File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Hash b34b13d85152f71b7fd15289c78c0583
0bb20191b022bbd0e75f2bbce7f6332886079c2c
7a3fc57394ecc6745eb6e18745aa1e5e5d05cb2237c4d0d754ab43d33863a84c
GET /images/w9lc5y04/production/0cd9d8df940727270d20ce8c2d21011a5e694964-4320x1227.jpg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 397080
x-b3-traceid: bdf3d97f349b62aeb86f557957aab2e9
x-b3-parentspanid: d312e27635b25951
x-b3-spanid: 4501cb8678ce9b31
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Mon, 16 Jan 2023 07:54:28 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1771717
last-modified: Fri, 06 Jan 2023 16:47:14 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash b53b22fb999e186eebe72073aa62af32
310130edaa8d9e272cd3077e046330041f6af65f
8aba19386e013e82e03bde36039cb8b8f6aa97edee3fcdd41b4d21d152762518
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 13:59:51 GMT
Expires: Sat, 11 Feb 2023 13:59:50 GMT
Etag: "310130edaa8d9e272cd3077e046330041f6af65f"
Cache-Control: max-age=496004,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f515e6ab4ed-OSL
cdn.sanity.io/images/w9lc5y04/production/417d814c6c80a9400e9b057707dbb54c08cfefd4-897x497.png
35.190.70.79200 OK 19 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/417d814c6c80a9400e9b057707dbb54c08cfefd4-897x497.png
IP 35.190.70.79:0
File type PNG image data, 897 x 497, 8-bit/color RGBA, non-interlaced\012- data
Hash 7f9d14d17f40f7e7ee9a226a905b08bd
417d814c6c80a9400e9b057707dbb54c08cfefd4
ed8b6c84dbbf53d89846770b7765d9c33ca294cb5c7cddd73a8e7cb3fc102d48
GET /images/w9lc5y04/production/417d814c6c80a9400e9b057707dbb54c08cfefd4-897x497.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 18989
x-b3-traceid: 50b224e44cae4bf167acc35a09767d15
x-b3-parentspanid: bd2d34f4c74b4ab7
x-b3-spanid: dc6a29255a57b8c7
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 17507
accept-ranges: bytes
via: 1.1 google
date: Wed, 01 Feb 2023 08:02:10 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 388855
last-modified: Thu, 29 Sep 2022 08:53:29 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash b53b22fb999e186eebe72073aa62af32
310130edaa8d9e272cd3077e046330041f6af65f
8aba19386e013e82e03bde36039cb8b8f6aa97edee3fcdd41b4d21d152762518
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 13:59:51 GMT
Expires: Sat, 11 Feb 2023 13:59:50 GMT
Etag: "310130edaa8d9e272cd3077e046330041f6af65f"
Cache-Control: max-age=496004,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f516baefab8-OSL
cdn.sanity.io/images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg
35.190.70.79200 OK 1.5 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg
IP 35.190.70.79:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2523)
Hash 2ad526f14821d156aa6ce0121aa08ce7
8593c593a45edaaee6f643cfb1721ad99e9ab3d8
c8b2ebb7f2ac2a8d902463ff865937d7136396cb72d0693d5505cffd15b7ac64
GET /images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding, origin, accept-encoding
x-b3-traceid: 7c02707013b6a74d12e0ac558c7a63f6
x-b3-parentspanid: 6dac6917b568e37d
x-b3-spanid: 399c54fbb746121b
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
content-encoding: br
x-varnish-age: 36154
accept-ranges: bytes
content-length: 1454
via: 1.1 google
date: Mon, 30 Jan 2023 14:49:31 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 20 Jul 2022 10:00:20 GMT
content-type: image/svg+xml
age: 537214
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d5d5072dfd2b363217c5c7aa84c2ad38
3ba151f6b126bba281deb3a6b5e2d9a34a341931
aaeba9d091f1847d828f7c5d69ce6d43bdc0036cda77f7b408414ab6bbd161d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 901
Cache-Control: max-age=97263
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:05 GMT
Etag: "63dee0e3-117"
Expires: Mon, 06 Feb 2023 23:04:08 GMT
Last-Modified: Sat, 04 Feb 2023 22:49:07 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
region1.google-analytics.com/g/collect?v=2&tid=G-QMJ93CW4C3>m=45je3210&_p=16434489&cid=1993555355.1675627426&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675627426&sct=1&seg=0&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&dt=iBet.com&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-QMJ93CW4C3>m=45je3210&_p=16434489&cid=1993555355.1675627426&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675627426&sct=1&seg=0&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&dt=iBet.com&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-QMJ93CW4C3>m=45je3210&_p=16434489&cid=1993555355.1675627426&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675627426&sct=1&seg=0&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&dt=iBet.com&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.ibet.com
date: Sun, 05 Feb 2023 20:03:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 750eea13270d515ca3d0e42b5db8885c
17d65469a0c73fe5ae4d5f51a25051d54010dd4a
6cd245cb7388b0b1bf584ca48cdd293d835bbe95e33c533befb1e85f23d417ee
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 03:09:29 GMT
Expires: Fri, 10 Feb 2023 03:09:28 GMT
Etag: "17d65469a0c73fe5ae4d5f51a25051d54010dd4a"
Cache-Control: max-age=370582,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f561c071c16-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 750eea13270d515ca3d0e42b5db8885c
17d65469a0c73fe5ae4d5f51a25051d54010dd4a
6cd245cb7388b0b1bf584ca48cdd293d835bbe95e33c533befb1e85f23d417ee
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 03:09:29 GMT
Expires: Fri, 10 Feb 2023 03:09:28 GMT
Etag: "17d65469a0c73fe5ae4d5f51a25051d54010dd4a"
Cache-Control: max-age=370582,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f560b12b506-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash b53b22fb999e186eebe72073aa62af32
310130edaa8d9e272cd3077e046330041f6af65f
8aba19386e013e82e03bde36039cb8b8f6aa97edee3fcdd41b4d21d152762518
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 13:59:51 GMT
Expires: Sat, 11 Feb 2023 13:59:50 GMT
Etag: "310130edaa8d9e272cd3077e046330041f6af65f"
Cache-Control: max-age=496004,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f56c8dbb4ed-OSL
js.zohocdn.com/salesiq/js/floatbutton1_aaa7d7b4872c11015e75ee4b6a789bc6_.js
185.20.209.147200 OK 13 kB URL HTTP/2 js.zohocdn.com/salesiq/js/floatbutton1_aaa7d7b4872c11015e75ee4b6a789bc6_.js
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (36889), with no line terminators
Hash 442bffdefe2ad3df847c10003dfaa48e
8e99d0948737ae632d6e3e71a4e6224c60330abf
74712da9d15ad35a1cd198fb88274206dc23cf453b0e34a77c29a63dddae9e0f
GET /salesiq/js/floatbutton1_aaa7d7b4872c11015e75ee4b6a789bc6_.js HTTP/1.1
Host: js.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Sun, 05 Feb 2023 20:03:05 GMT
content-type: application/javascript;charset=UTF-8
content-length: 12566
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "442bffdefe2ad3df847c10003dfaa48e"
content-language: en-US
last-modified: Wed, 01 Feb 2023 13:08:55 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: cd039cfee8dbab5777e09a7dc39c3e89
z-origin-id: ex1-4f40072a62474b55ad0bb57ef5f71748
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
css.zohocdn.com/salesiq/styles/floatbutton1_bd045c29766df2806787522c13149e23_.css
185.20.209.147200 OK 5.1 kB URL HTTP/2 css.zohocdn.com/salesiq/styles/floatbutton1_bd045c29766df2806787522c13149e23_.css
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (22576), with no line terminators
Hash 9674bdea22120177e94ec071e3dfbe6c
206b3ab605f3409b8f33e7e4b1b464c02d6831b0
63f3b43a7dfed48774b53a6432331e78e98bd86549e2916cfc0e9eb8fc530c12
GET /salesiq/styles/floatbutton1_bd045c29766df2806787522c13149e23_.css HTTP/1.1
Host: css.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Sun, 05 Feb 2023 20:03:05 GMT
content-type: text/css;charset=UTF-8
content-length: 5141
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "9674bdea22120177e94ec071e3dfbe6c"
content-language: en-US
last-modified: Mon, 09 Jan 2023 12:41:16 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: b1d5862eb2e0568e5f0694b81f502e50
z-origin-id: ex1-d9d6f077eca2436b8fcbb97ac0861de0
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 7a942df038e18997eb83c77533333fcb
75b4b06074dfbd059731f87c7a8ddbb012e393b1
4d1229f61a50bceb2b05f2d8da12d541c6175657e13e873ff1237e5643cc1a9f
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "4D1229F61A50BCEB2B05F2D8DA12D541C6175657E13E873FF1237E5643CC1A9F"
Last-Modified: Sun, 05 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1163
Expires: Sun, 05 Feb 2023 20:22:28 GMT
Date: Sun, 05 Feb 2023 20:03:05 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 7a942df038e18997eb83c77533333fcb
75b4b06074dfbd059731f87c7a8ddbb012e393b1
4d1229f61a50bceb2b05f2d8da12d541c6175657e13e873ff1237e5643cc1a9f
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "4D1229F61A50BCEB2B05F2D8DA12D541C6175657E13E873FF1237E5643CC1A9F"
Last-Modified: Sun, 05 Feb 2023 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1159
Expires: Sun, 05 Feb 2023 20:22:24 GMT
Date: Sun, 05 Feb 2023 20:03:05 GMT
Connection: keep-alive
a.sportradarserving.com/pixel?type=js&aid=1622&id=7046
3.122.35.197302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/pixel?type=js&aid=1622&id=7046
IP 3.122.35.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?type=js&aid=1622&id=7046 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 05 Feb 2023 20:03:05 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
Set-Cookie: zuuid=e471aeef-abb8-4133-9d87-8b0bfd60c223; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675627385; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675627385; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
3.122.35.197302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP 3.122.35.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 05 Feb 2023 20:03:05 GMT
Location: https://a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
Set-Cookie: zuuid=d7756bd1-6d9f-4098-b94e-b35ef481510d; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675627385; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675627385; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
3.122.35.197302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP 3.122.35.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Cookie: zuuid=d7756bd1-6d9f-4098-b94e-b35ef481510d; c=1675627385; zuuid_lu=1675627385
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 05 Feb 2023 20:03:05 GMT
Location: https://x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7756bd1-6d9f-4098-b94e-b35ef481510d
Set-Cookie: zuuid=d7756bd1-6d9f-4098-b94e-b35ef481510d; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675627385; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675627385; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
3.122.35.197200 OK 1.5 kB URL HTTP/1.1 a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
IP 3.122.35.197:0
File type ASCII text, with very long lines (1527), with no line terminators
Hash fe0e1d292d69faa35b2369ca970f7574
d2ed8dedd7e5cba451664371f0adf5aa7389ffa7
187c67634b8100a08042d9c6ce5099e0133e94c2fdc72886b2b80195ac719ee2
GET /ul_cb/pixel?type=js&aid=1622&id=7046 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Cookie: zuuid=d7756bd1-6d9f-4098-b94e-b35ef481510d; c=1675627385; zuuid_lu=1675627385
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Sun, 05 Feb 2023 20:03:05 GMT
Set-Cookie: zuuid=d7756bd1-6d9f-4098-b94e-b35ef481510d; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675627385; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675627385; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,444884585; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
cm4=!bidswitch,444956585; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 1527
Connection: keep-alive
origin.acuityplatform.com/event/v2/pixel.js
23.32.99.71200 OK 2.4 kB URL HTTP/1.1 origin.acuityplatform.com/event/v2/pixel.js
IP 23.32.99.71:0
File type HTML document, ASCII text, with very long lines (2423)
Hash c1e398d8cc65cd9241cc3f1840add2cb
316b1005d23d838c83e8bc65d3c2679b8c098df6
89cf66cb9de8da20fc15e9953845dd4d1de2c0fb465c827a09d818449222c533
GET /event/v2/pixel.js HTTP/1.1
Host: origin.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.0
Content-Type: application/javascript
Content-Length: 2424
Last-Modified: Wed, 04 Jan 2023 18:57:40 GMT
ETag: "63b5cc24-978"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Sun, 05 Feb 2023 20:03:05 GMT
Connection: keep-alive
amplify.outbrain.com/cp/obtp.js
23.38.201.81200 OK 5.9 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (17769), with no line terminators
Hash 939f95ffc91ae8a9eacb6998ec5a635f
e122fe07195821f6abf871cc65f315c6b9e27f4a
49462b3c223095ac3fc223f11a29e4bceed96feba62e167d444e9a082626fc17
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "b07048fb19f7c325242e254218118e14:1675339769.124179"
Last-Modified: Thu, 02 Feb 2023 09:48:30 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Sun, 05 Feb 2023 20:23:05 GMT
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Length: 5911
Connection: keep-alive
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 05 Feb 2023 19:44:08 GMT
expires: Sun, 05 Feb 2023 21:44:08 GMT
cache-control: public, max-age=7200
age: 1137
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/unip/1504263/tfa.js
151.101.193.44200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1504263/tfa.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (59751)
Hash eaaa55ecd0df9f3d15025fe31067d6e2
41d2ff206533e0a0591830006eeb0d23ad4067e4
523a64e22feeba57088890ef903114b51e99be9c234cc67584fd503885b50221
GET /libtrc/unip/1504263/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cjPISMejHhhCUvSLbVC5G9pNPTqRSMsZmp5txQxMJ80ktMx7Td2IXOTj1p8eSdTP5X/x3MMG+f4=
x-amz-request-id: 3Z7KQJXSYZRZ551M
x-amz-replication-status: PENDING
last-modified: Sun, 05 Feb 2023 11:37:23 GMT
etag: "301611c7eae6b8e6feeec85b501e908d"
x-amz-version-id: _ThGk74OaON4eTUIKCvsct5EpXcGSKOg
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 05 Feb 2023 20:03:05 GMT
via: 1.1 varnish
age: 23
x-served-by: cache-bma1634-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675627386.720510,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 2
content-length: 18376
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1195dd6a2166c4b6c4f45510e64cbd2c
1600d859c9c6e74468bbd3d30b86a666ff307116
d0603547733c0617e521f5f0c1766800d3541f1afc470b8f8c94ca58d34df1c1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5563
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:05 GMT
Last-Modified: Sun, 05 Feb 2023 18:30:22 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a7ed08b61e1f407bfe7782586c4fcdc2
5e313201e568c67987f3a67daa6e356cf7def5f8
1b905ee301b7659f9e84f736609e39cb3cf6409d80511b723ef62fc7618bc1a0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4427
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:05 GMT
Last-Modified: Sun, 05 Feb 2023 18:49:18 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash bdabf00f5b421e3db62557deb88c2f77
ca07ef3560df59142ce86b045d2a19a96b57a9dc
43fd5e2670b2d926faf796cafe51609d187aae64c9e4aa6cecf1c4bd4251c37a
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 09 Feb 2023 19:23:32 GMT
ETag: "ca07ef3560df59142ce86b045d2a19a96b57a9dc"
Last-Modified: Sun, 05 Feb 2023 19:23:33 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 216
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794e3f58dfacb4ee-OSL
mpsnare.iesnare.com/time.mp3?nocache=0.8586976164267834
54.228.71.178206 Partial Content 504 B URL HTTP/1.1 mpsnare.iesnare.com/time.mp3?nocache=0.8586976164267834
IP 54.228.71.178:0
File type MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Hash cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.8586976164267834 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Server: nginx
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
mpsnare.iesnare.com/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
54.228.71.178200 OK 19 kB URL HTTP/1.1 mpsnare.iesnare.com/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP 54.228.71.178:0
File type ASCII text, with very long lines (1056)
Hash 4e5fd362025eb3e3463095388d128fe4
5039b2e7b7ea4a6579f11e551fc7267f6e3b1695
b7d28f28abadbfc479ca39fda5fd4a679f36f12222b1f93c22b6ba503dfcf4c4
GET /general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: io_token_7c6a6574-f011-4c9a-abdd-9894a102ccef=2PaOCptrNZIzPJeprYLCHlacrciDlUhXmiIHRrOpBUQ=;Path=/;Expires=Mon, 05-Feb-2024 20:03:05 GMT;Max-Age=31536000;Secure;HttpOnly;SameSite=None
Cache-Control: no-cache, private
Pragma: no-cache
Expires: 0
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
adfarm1.adition.com/i?raw=1&ts=139539206
217.79.188.8200 OK 19 B URL HTTP/2 adfarm1.adition.com/i?raw=1&ts=139539206
IP 217.79.188.8:0
ASN #24961 myLoc managed IT AG
File type ASCII text, with no line terminators
Hash 044cb1b10f62774bca6943b6fe66f27f
de43a82f1195aa014f20969b891180015f94ca18
3b10b79cdffeadc408358dec7053678039d71b9758f3b242c5152f3614afb031
GET /i?raw=1&ts=139539206 HTTP/1.1
Host: adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
content-length: 19
server: ADITIONSERVER v1.0
date: Sun, 05 Feb 2023 21:03:05 +0100
access-control-allow-credentials: true
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: set-cookie
cache-control: max-age=31536000,private
p3p: policyref="https://imagesrv.adition.com/w3c/p3p-ssl.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
set-cookie: UserID1=7196764818870569737; expires=Sat, 06-May-2023 21:03:05 GMT; path=/; domain=.adfarm1.adition.com; SameSite=None; Secure
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist//sp-2.14.0.js
23.36.79.43200 OK 30 kB URL HTTP/2 tracker.ads.sportradar.com/dist//sp-2.14.0.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (64903)
Hash 44f237857b8d03f32b53fe551e83c95a
91536fe6c60d947d29dfcb5f04d09b752b5ccf03
a5e10dc2f3c729300afe8fe24aa430f57d91fdefa8112c0b35dd424ba612caa7
GET /dist//sp-2.14.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "8dba669b94e3865c9205ef8fd15ee4d1"
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: dvubTwXiRCjiJB7wCHMomvWFLhrbYyzD7rIO_O4yfnHhyBM3lf2JMA==
vary: Accept-Encoding
content-encoding: gzip
date: Sun, 05 Feb 2023 20:03:05 GMT
content-length: 30370
cache-control: max-age=900, public
X-Firefox-Spdy: h2
s2.adform.net/banners/scripts/st/trackpoint-async.js
37.157.5.71200 OK 99 kB URL HTTP/2 s2.adform.net/banners/scripts/st/trackpoint-async.js
IP 37.157.5.71:0
Hash cb08a87d4c474e8d0244765fc8da0822
4cfdc766df8d1eeaab123f4f24bf1aa31ec7dad6
cff4a849ccf1d5b142084a3c05cd450027a4e9f7f97e0d921bb31cb6454fe7d7
GET /banners/scripts/st/trackpoint-async.js HTTP/1.1
Host: s2.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 20:03:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 29 Nov 2022 10:23:25 GMT
x-rgw-object-type: Normal
etag: W/"83eb5fafaa212c785f7393188ff817aa"
x-amz-request-id: tx00000e0bfd352a09a0604-006385e0d4-3293aae9-default
access-control-allow-origin: *
cache-control: public, max-age=604800
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-SJDus0aEB8nDE.js
54.230.111.4200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-SJDus0aEB8nDE.js
IP 54.230.111.4:0
Hash 2c7ec77dcb085abc40e3ff98738bfef5
2be6000c8124f67c59a84558ba19702b4fc3efd5
b29a1754d555695ef6044793dc63e4614cdbaf4dc19aa1e1dec711f42ff9d916
GET /rules-p-SJDus0aEB8nDE.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Fri, 14 Oct 2022 00:21:05 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Sun, 05 Feb 2023 19:59:35 GMT
cache-control: max-age=3600
etag: "2c7ec77dcb085abc40e3ff98738bfef5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VQOFdZSSkpczg8hXcssTLIupUPmrEPFWRGtwOd9J1aHFJbYGvbD0dQ==
age: 211
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=452622,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f59fc94fab8-OSL
mpsnare.iesnare.com/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
54.228.71.178200 OK 421 B URL HTTP/1.1 mpsnare.iesnare.com/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
IP 54.228.71.178:0
File type ASCII text, with very long lines (377)
Hash 6727530cef84d62f4af7bf045ea59946
d9f08e139df51b8a3b4634da1bf86d31b494e35b
8bfc36db60c84df896eafed82e7faf0c30a867e7dd8171851ef7f9ced3b2e385
GET /5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Feb 2023 20:03:05 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 May 2014 00:01:40 GMT
Expires: Mon, 05 Feb 2024 20:03:05 GMT
Cache-Control: private
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=452622,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f5a39371c16-OSL
x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7756bd1-6d9f-4098-b94e-b35ef481510d
18.196.249.120302 Found 0 B URL HTTP/2 x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7756bd1-6d9f-4098-b94e-b35ef481510d
IP 18.196.249.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /syncd?dsp_id=409&user_group=1&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7756bd1-6d9f-4098-b94e-b35ef481510d HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 20:03:05 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7756bd1-6d9f-4098-b94e-b35ef481510d
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=3b0d240c-7ddd-43c3-9dd3-d0db9a743240; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675627385; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675627385; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675627385; path=/; expires=Mon, 05-Feb-2024 20:03:05 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
x.bidswitch.net/syncd?dsp_id=409&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
18.196.249.120302 Found 0 B URL HTTP/2 x.bidswitch.net/syncd?dsp_id=409&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP 18.196.249.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /syncd?dsp_id=409&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 20:03:06 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=1c7a0a05-6256-4f55-b333-bbc7bf62c15a; path=/; expires=Mon, 05-Feb-2024 20:03:06 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675627386; path=/; expires=Mon, 05-Feb-2024 20:03:06 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675627386; path=/; expires=Mon, 05-Feb-2024 20:03:06 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675627386; path=/; expires=Mon, 05-Feb-2024 20:03:06 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
mpsnare.iesnare.com/star
54.228.71.178101 Switching Protocols 0 B IP 54.228.71.178:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JhtEsxP1a4Quv0Xgln5nDw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sun, 05 Feb 2023 20:03:06 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: w63v7EePMzRD2lYYoBxuoLCOQeo=
Upgrade: WebSocket
pixel.quantserve.com/pixel;r=473859673;source=gtm;rf=0;a=p-SJDus0aEB8nDE;url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk;uh=82244417f956ac7c599f191593f7e441a4fafa20a4158fd52e154f1dc4c8ed92;uht=2;fpan=1;fpa=P0-664100685-1675627427588;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=ibet.com;dst=0;et=1675627427776;tzo=0;ogl=type.website%2Ctitle.iBet%252Ecom%20online%20tipping%252C%20casino%252C%20spill%20-%20F%C3%A5%20din%20250%20Euro%20Velkomstbonus%20n%C3%A5!%2Curl.https%3A%2F%2Fwww%252Eibet%252Ecom%2Cdescription.Velkommen%20til%20iBet%252Ecom%20-%20Online%20spill%20p%C3%A5%20sport%20med%20topp%20odds%252C%20spennende%20casino%252C%20;ses=6cd10dc8-dff9-45eb-bddd-32939cb387ed
91.228.74.208200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=473859673;source=gtm;rf=0;a=p-SJDus0aEB8nDE;url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk;uh=82244417f956ac7c599f191593f7e441a4fafa20a4158fd52e154f1dc4c8ed92;uht=2;fpan=1;fpa=P0-664100685-1675627427588;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=ibet.com;dst=0;et=1675627427776;tzo=0;ogl=type.website%2Ctitle.iBet%252Ecom%20online%20tipping%252C%20casino%252C%20spill%20-%20F%C3%A5%20din%20250%20Euro%20Velkomstbonus%20n%C3%A5!%2Curl.https%3A%2F%2Fwww%252Eibet%252Ecom%2Cdescription.Velkommen%20til%20iBet%252Ecom%20-%20Online%20spill%20p%C3%A5%20sport%20med%20topp%20odds%252C%20spennende%20casino%252C%20;ses=6cd10dc8-dff9-45eb-bddd-32939cb387ed
IP 91.228.74.208:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=473859673;source=gtm;rf=0;a=p-SJDus0aEB8nDE;url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk;uh=82244417f956ac7c599f191593f7e441a4fafa20a4158fd52e154f1dc4c8ed92;uht=2;fpan=1;fpa=P0-664100685-1675627427588;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=ibet.com;dst=0;et=1675627427776;tzo=0;ogl=type.website%2Ctitle.iBet%252Ecom%20online%20tipping%252C%20casino%252C%20spill%20-%20F%C3%A5%20din%20250%20Euro%20Velkomstbonus%20n%C3%A5!%2Curl.https%3A%2F%2Fwww%252Eibet%252Ecom%2Cdescription.Velkommen%20til%20iBet%252Ecom%20-%20Online%20spill%20p%C3%A5%20sport%20med%20topp%20odds%252C%20spennende%20casino%252C%20;ses=6cd10dc8-dff9-45eb-bddd-32939cb387ed HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 20:03:06 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=63e00b7a-1798f-8d151-a5194; expires=Thu, 07-Mar-2024 20:03:06 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash fb423a66c98ab00eb29e2500e5eda7dd
a0bd07605519379e5bb0e293cee1571a24b22204
de6f82134bfb36f431d899a9a501847c8a23f27da1bfc9c1780e28a75e8e6aea
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 05 Feb 2023 20:03:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 04 Feb 2023 22:14:44 GMT
Expires: Sun, 05 Feb 2023 22:14:44 GMT
ETag: "a0bd07605519379e5bb0e293cee1571a24b22204"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e.acuityplatform.com/pj?pk=1371925522788786818&pu=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&pixelKey=1371925522788786818
154.59.122.94200 OK 1.3 kB URL HTTP/1.1 e.acuityplatform.com/pj?pk=1371925522788786818&pu=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&pixelKey=1371925522788786818
IP 154.59.122.94:0
File type ASCII text, with very long lines (1294), with no line terminators
Hash 82e28da8fbc68db07915af4981bf39a1
4337a932d0a5339a5be20bfa1a7772698f7255b2
2092d1eb8a4ae140020ca4d169f23d98d75dd77fd87881dc407831a97da66f67
GET /pj?pk=1371925522788786818&pu=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&pixelKey=1371925522788786818 HTTP/1.1
Host: e.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 1294
Set-Cookie: aum=OikKAfqbdXNlck1hdGNoQnlVc2VyTWF0Y2hpbmdJZE1hcPqBNjT6jXVzZXJNYXRjaGluZ0lkJAKAkWxhc3REcm9wVGltZU1pbGxpcyUBQwhlTSi+mGxhc3RTdWNjZXNzZnVsTWF0Y2hNaWxsaXMhj3RoaXJkUGFydHlVc2VySWQh+4IxMjj6QiQEgEMlAUMIZU0ovkQhRSH7gTQ5+kIkAaJDJQFDCGVNKL5EIUUh+4ExN/pCJKJDJQFDCGVNKL5EIUUh+4IxMzX6QiQEjkMlAUMIZU0ovkQhRSH7gjExOfpCJAOuQyUBQwhlTSi+RCFFIfuBMjP6QiSuQyUBQwhlTSi+RCFFIfuBMTD6QtRDJQFDCGVNKL5EIUUh+4IxMDn6QiQDmkMlAUMIZU0ovkQhRSH7gTYy+kIkAbxDJQFDCGVNKL5EIUUh+/uGdmVyc2lvbsL7; Domain=.acuityplatform.com; Expires=Mon, 05-Feb-2024 20:03:06 GMT; Path=/; SameSite=None; Secure
auid=739855899523; Domain=acuityplatform.com; Expires=Mon, 05-Feb-2024 20:03:06 GMT; Path=/; SameSite=None; Secure
Access-Control-Allow-Origin: *
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=452621,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f5a497eb506-OSL
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160917518-1&cid=1993555355.1675627426&jid=1865898360&gjid=798312852&_gid=662654743.1675627428&_u=YADAAEAAAAAAACAAI~&z=34909402
64.233.165.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160917518-1&cid=1993555355.1675627426&jid=1865898360&gjid=798312852&_gid=662654743.1675627428&_u=YADAAEAAAAAAACAAI~&z=34909402
IP 64.233.165.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160917518-1&cid=1993555355.1675627426&jid=1865898360&gjid=798312852&_gid=662654743.1675627428&_u=YADAAEAAAAAAACAAI~&z=34909402 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.ibet.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 05 Feb 2023 20:03:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=452621,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f5a5846b4ed-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=452621,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f5a6d09fab8-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash b53b22fb999e186eebe72073aa62af32
310130edaa8d9e272cd3077e046330041f6af65f
8aba19386e013e82e03bde36039cb8b8f6aa97edee3fcdd41b4d21d152762518
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:06 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 13:59:51 GMT
Expires: Sat, 11 Feb 2023 13:59:50 GMT
Etag: "310130edaa8d9e272cd3077e046330041f6af65f"
Cache-Control: max-age=496003,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794e3f517bb70b06-OSL
trc.taboola.com/1504263/log/3/unip?en=all_pages&tim=1675627427619&vi=1675627427592&ri=43a2f9d1a5f7be7fa48d19268e470eff&ref=null&cv=20230205-12-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&tos=187&ssd=1&scd=0
151.101.193.44204 No Content 0 B URL HTTP/2 trc.taboola.com/1504263/log/3/unip?en=all_pages&tim=1675627427619&vi=1675627427592&ri=43a2f9d1a5f7be7fa48d19268e470eff&ref=null&cv=20230205-12-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&tos=187&ssd=1&scd=0
IP 151.101.193.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1504263/log/3/unip?en=all_pages&tim=1675627427619&vi=1675627427592&ri=43a2f9d1a5f7be7fa48d19268e470eff&ref=null&cv=20230205-12-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&tos=187&ssd=1&scd=0 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.ibet.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Sun, 05 Feb 2023 20:03:06 GMT
via: 1.1 varnish
x-served-by: cache-bma1634-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675627386.089037,VS0,VE94
x-vcl-time-ms: 94
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&cb=f4d63aef-1018-40f4-b441-da9c25c98e47
18.196.249.120302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&cb=f4d63aef-1018-40f4-b441-da9c25c98e47
IP 18.196.249.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=3&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&cb=f4d63aef-1018-40f4-b441-da9c25c98e47 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 20:03:06 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.208200 OK 10 kB URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.208:0
File type ASCII text, with very long lines (25892)
Hash fe505b3bd9b6b0202990132e752cab66
7cea558342a670498b779f39577c58bd9a9bc307
13e321b4746ef2a5eb0a193a3fefcce83880852acacbdd91c55f7760e3f6eb88
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 20:03:05 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "u+riIbpeWSVolXo4r+dT2g=="
expires: Sun, 12 Feb 2023 20:03:05 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&cb=b3845617-ebef-4f5c-9430-d2343c4c677e
18.196.249.120302 Found 6.6 kB URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&cb=b3845617-ebef-4f5c-9430-d2343c4c677e
IP 18.196.249.120:0
Hash aef57cce3dbc7da44e40d32ca2d4449f
d11b5f6244b0131a6ec0cd43db68c2018221a17b
b5f518d35887f3ef7959879caac458bf92ec0a5db6d115145e45e517b3297ca1
GET /sync?dsp_id=409&expires=14&user_group=3&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&cb=b3845617-ebef-4f5c-9430-d2343c4c677e HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 20:03:06 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&cb=b3845617-ebef-4f5c-9430-d2343c4c677e
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=bc60a2a3-c21f-4866-a5bd-96195132e61e; path=/; expires=Mon, 05-Feb-2024 20:03:06 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675627386; path=/; expires=Mon, 05-Feb-2024 20:03:06 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675627386; path=/; expires=Mon, 05-Feb-2024 20:03:06 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675627386; path=/; expires=Mon, 05-Feb-2024 20:03:06 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5ac5aaa2dd1a2ab697244f3c0fe3b5b5
bb8a9aeb28cc645435760f3a9a57d85e295de419
d42327bb295e41a2b04efa1c2ad6094a3480d0010de10bb32600f4d17fe9f0d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mpsnare.iesnare.com/time.mp3?nocache=0.9132163134400775
54.228.71.178206 Partial Content 504 B URL HTTP/1.1 mpsnare.iesnare.com/time.mp3?nocache=0.9132163134400775
IP 54.228.71.178:0
File type MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Hash cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.9132163134400775 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Server: nginx
Date: Sun, 05 Feb 2023 20:03:06 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
x.bidswitch.net/sync?dsp_id=236&user_id=739855899523&expires=30&user_group=1
18.196.249.120302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=236&user_id=739855899523&expires=30&user_group=1
IP 18.196.249.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=236&user_id=739855899523&expires=30&user_group=1 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 05 Feb 2023 20:03:06 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=739855899523&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7d267d83a126d050c7cd3d37daf7308c
ae050bd3eaccd6b6238f69bd360bd954ab62a1f7
6e0ab46ee3ac5e3052b4a2aa055ea55fb1d7c3c0515482292d59e6cb3f1f385e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 711
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:06 GMT
Last-Modified: Sun, 05 Feb 2023 19:51:15 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e58d6980cbddaa1e952d4f64fda8fa6c
5be91756739fff3289837e3a4ec43ee902966230
be1b404742c28b1171e1f7e8c6beb4e68a62d775d3c43b2844b5d1a3bb145a98
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1850
Cache-Control: max-age=157206
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:06 GMT
Etag: "63dfc756-1d7"
Expires: Tue, 07 Feb 2023 15:43:12 GMT
Last-Modified: Sun, 05 Feb 2023 15:12:22 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
pixel.tapad.com/idsync/ex/receive?partner_id=3150&partner_device_id=739855899523&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739855899523%26uid%3D%24%7BTA_DEVICE_ID%7D
35.227.248.159302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive?partner_id=3150&partner_device_id=739855899523&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739855899523%26uid%3D%24%7BTA_DEVICE_ID%7D
IP 35.227.248.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive?partner_id=3150&partner_device_id=739855899523&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739855899523%26uid%3D%24%7BTA_DEVICE_ID%7D HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 20:03:06 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1675627386353;Expires=Thu, 06 Apr 2023 20:03:06 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=002d7f72-3894-40a3-811b-7d63f6f3204b;Expires=Thu, 06 Apr 2023 20:03:06 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=3150&partner_device_id=739855899523&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D739855899523%26uid%3D%24%7BTA_DEVICE_ID%7D
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7d267d83a126d050c7cd3d37daf7308c
ae050bd3eaccd6b6238f69bd360bd954ab62a1f7
6e0ab46ee3ac5e3052b4a2aa055ea55fb1d7c3c0515482292d59e6cb3f1f385e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 711
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 20:03:06 GMT
Last-Modified: Sun, 05 Feb 2023 19:51:15 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
pixel.advertising.com/ups/55950/sync?uid=739855899523&_origin=1
18.156.0.31301 Moved Permanently 355 B URL HTTP/2 pixel.advertising.com/ups/55950/sync?uid=739855899523&_origin=1
IP 18.156.0.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cde184a6b78bfc17c9e6a3311acba524
7c0db378f125f750b0ccf8d66a11e5c521ca1bab
3a1f4cf8616c2ac6e06938133c3c595609ad159551493a3074631c53526f51fc
GET /ups/55950/sync?uid=739855899523&_origin=1 HTTP/1.1
Host: pixel.advertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 05 Feb 2023 20:03:06 GMT
server: ATS/9.1.10.25
cache-control: no-store
location: https://ups.analytics.yahoo.com/ups/55950/sync?uid=739855899523&_origin=1
content-type: text/html
content-language: en
set-cookie: A3=d=AQABBHoL4GMCEP3ClcOYE5unSZ1z0ZfPHZ4FEgEBAQFc4WPpYwAAAAAA_eMAAA&S=AQAAAivDyhbY1bJmwXLzxa7Hg5I; Expires=Tue, 6 Feb 2024 02:03:06 GMT; Max-Age=31557600; Domain=.advertising.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 355
X-Firefox-Spdy: h2
secure.adnxs.com/getuid?https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D10%26auid%3D739855899523%26uid%3D%24UID
185.89.210.180307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuid?https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D10%26auid%3D739855899523%26uid%3D%24UID
IP 185.89.210.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D10%26auid%3D739855899523%26uid%3D%24UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 05 Feb 2023 20:03:06 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D739855899523%2526uid%253D%2524UID
AN-X-Request-Uuid: c24ea46b-6b0e-4579-8a7f-b3bbeec7d695
Set-Cookie: uuid2=2931927572518472130; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 06-May-2023 20:03:06 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 958.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
18.196.249.120200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP 18.196.249.120:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/syncd?dsp_id=409&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 20:03:06 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 9c7cfc46c1a02a2ca0c44b35d75546d9
06ef5e2c5023814571fe796c883709d5a277e0fe
d2f9fe418926f903a38730140750747d3acde8d070077e31ae1c1bc43a9039f3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 20:03:06 GMT
Last-Modified: Sun, 05 Feb 2023 19:03:29 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: p7t5QppS_3yRHZ96X7lZRTUswEgTDCEmN9PM8nxyAn-0mTajvAgn3g==
Age: 3577
tr.outbrain.com/cachedClickId?marketerId=undefined
64.202.112.31200 OK 35 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=undefined
IP 64.202.112.31:0
File type ASCII text, with no line terminators
Hash 75c843c7b717e7b722777907475c67a3
983d1c9a05b315288039b9d4694ce3b402259240
1d348f9f803c95305f63def9d75fd50e79e54a375e1a4a888edbbea366845580
GET /cachedClickId?marketerId=undefined HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:06 GMT
Content-Type: application/javascript
Content-Length: 35
X-TraceId: 5a85d3119a234457620f5a55bad79790
track.adform.net/Serving/TrackPoint/?CC=1&pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=462924764321&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.5.141200 OK 184 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?CC=1&pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=462924764321&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.5.141:0
File type ASCII text, with CRLF line terminators
Hash c13136d2b1fe8b16bb3ddf519b6baa78
875cca302b518f903d8eecfd54cd7e20fd3fc161
cd3d2e6d539436e57ae48ccbba84b880e602a77617190b03151ceae877dba860
GET /Serving/TrackPoint/?CC=1&pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=462924764321&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 20:03:06 GMT
content-type: text/javascript; charset=utf-8
content-length: 184
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
match.adsrvr.org/track/cmf/generic?ttd_pid=epmasz0&ttd_puid=739855899523&ttd_tpi=1&gpdr=0
3.33.220.150200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=epmasz0&ttd_puid=739855899523&ttd_tpi=1&gpdr=0
IP 3.33.220.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=epmasz0&ttd_puid=739855899523&ttd_tpi=1&gpdr=0 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 20:03:06 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7756bd1-6d9f-4098-b94e-b35ef481510d
18.196.249.120200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7756bd1-6d9f-4098-b94e-b35ef481510d
IP 18.196.249.120:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/syncd?dsp_id=409&user_group=1&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7756bd1-6d9f-4098-b94e-b35ef481510d HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 20:03:06 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
tr.outbrain.com/unifiedPixel?marketerId=0015ef2fd363de31fda729e1cf9b43cc1b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&g=1&optOut=false&bust=09562651526565992&referrer=
64.202.112.31200 OK 53 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=0015ef2fd363de31fda729e1cf9b43cc1b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&g=1&optOut=false&bust=09562651526565992&referrer=
IP 64.202.112.31:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 414bd2a5161db03fdd910327b42c6daa
65d4cf50496813c5f1a34eddd5c50dc67d44ff47
b51f3497b0a65f1e1e87e75f5e7e823d871c23bcf76a5ee4101783c8f939e553
GET /unifiedPixel?marketerId=0015ef2fd363de31fda729e1cf9b43cc1b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&g=1&optOut=false&bust=09562651526565992&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 20:03:06 GMT
Content-Type: image/gif;
Content-Length: 53
Cache-Control: no-cache
X-TraceId: 0a7fd49546de81da7526520c0243200d
eb2.3lift.com/getuid?redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D23%26auid%3D739855899523%26uid%3D%24UID
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/getuid?redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D23%26auid%3D739855899523%26uid%3D%24UID
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /getuid?redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D23%26auid%3D739855899523%26uid%3D%24UID HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 20:03:06 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&cb=b3845617-ebef-4f5c-9430-d2343c4c677e
18.196.249.120302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&cb=b3845617-ebef-4f5c-9430-d2343c4c677e
IP 18.196.249.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&cb=b3845617-ebef-4f5c-9430-d2343c4c677e HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 05 Feb 2023 20:03:06 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&cb=3ff82027-c77e-4cb3-915a-4d5412d5efab
18.196.249.120302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&cb=3ff82027-c77e-4cb3-915a-4d5412d5efab
IP 18.196.249.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&cb=3ff82027-c77e-4cb3-915a-4d5412d5efab HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 05 Feb 2023 20:03:06 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
tags.bluekai.com/site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D739855899523%26uid%3D%24_BK_UUID
184.24.45.23302 Found 0 B URL HTTP/2 tags.bluekai.com/site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D739855899523%26uid%3D%24_BK_UUID
IP 184.24.45.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D739855899523%26uid%3D%24_BK_UUID HTTP/1.1
Host: tags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://ums.acuityplatform.com/sum?umid=49&auid=739855899523&uid=$_BK_UUID
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Sun, 05 Feb 2023 20:03:06 GMT
set-cookie: bku=tJ/99cGnTsB4Lwyi; Path=/; Domain=.bluekai.com; Expires=Sat, 05 Aug 2023 20:03:06 GMT; Secure; SameSite=None
bkpa=KJyA0ncvQp9x9mY7mD42dpLEpHOviyHvjtzJh+/ee0V8eclfxg+24aNClEGSM11nJdIwNOFqfY0Ld3dJVInLUbo79qGYOLOxoqHhgSpFzTdbwnv6b0s9GPxOYkDT9Dt29fuh4MtxsT6j7EB/QwSUQwN0K0pp4JXI9yYGo04s; Path=/; Domain=.bluekai.com; Expires=Sat, 05 Aug 2023 20:03:06 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=462924764321&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.5.141302 Found 39 kB URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=462924764321&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.5.141:0
Hash d03efe2486d352a573b018effa5eb386
66b2d116ceb519ced053474c7bed75422ab695ff
7975328dacb2d9fd16558407c33580396652dd7c922c0ec330cf590f80c223d1
GET /Serving/TrackPoint/?pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=462924764321&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sun, 05 Feb 2023 20:03:06 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=462924764321&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Sun, 05-Mar-2023 20:03:06 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
143.204.55.101200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 143.204.55.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Opbay0z268q1CwfTr-o9AObHqJjrDaejNVACv4zStjWgLBWkh2nyqA==
age: 197580
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 7747482ad48551c80c7099680c497b3a
369de8f8c56917f793d8f8c425c8ab6204832159
3f6a47246c40f0b1ebb5de42929e4f084c7908f41b6f1fe74f286ed27306cae0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 20:03:06 GMT
Last-Modified: Sun, 05 Feb 2023 19:03:25 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nBvAlKoTMdaln9hzuHwftzUAvTykaTHmcLBRfw555_ToX26cD5FaeA==
Age: 3581
secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D739855899523%2526uid%253D%2524UID
185.89.210.180302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D739855899523%2526uid%253D%2524UID
IP 185.89.210.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D739855899523%2526uid%253D%2524UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sun, 05 Feb 2023 20:03:06 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ums.acuityplatform.com/sum?umid=10&auid=739855899523&uid=0
AN-X-Request-Uuid: 8b31e6cc-5978-40c7-82b7-3c41c82e6e74
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 958.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ups.analytics.yahoo.com/ups/55950/sync?uid=739855899523&_origin=1
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/55950/sync?uid=739855899523&_origin=1
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/55950/sync?uid=739855899523&_origin=1 HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 05 Feb 2023 20:03:06 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/55950/sync?uid=739855899523&_origin=1&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBHoL4GMCEJihsIOHaY6vPGl9oxHRch0FEgEBAQFc4WPpYwAAAAAA_eMAAA&S=AQAAArHwiW-svv18oQLuKbpA80Q; Expires=Tue, 6 Feb 2024 02:03:06 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
52.29.44.9204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 52.29.44.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 20:03:06 GMT
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=739855899523&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
52.29.44.9204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=739855899523&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 52.29.44.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=739855899523&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 20:03:06 GMT
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/55950/sync?uid=739855899523&_origin=1&verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/55950/sync?uid=739855899523&_origin=1&verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/55950/sync?uid=739855899523&_origin=1&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 20:03:06 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBHoL4GMCEKKD7ZUIzrWgKVIyu5JfzjIFEgEBAQFc4WPpYwAAAAAA_eMAAA&S=AQAAAn6eFExTY9y2lNZkY52afXE; Expires=Tue, 6 Feb 2024 02:03:06 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
52.29.44.9204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 52.29.44.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 20:03:06 GMT
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
52.29.44.9204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 52.29.44.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7756bd1-6d9f-4098-b94e-b35ef481510d&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 20:03:06 GMT
X-Firefox-Spdy: h2
ums.acuityplatform.com/sum?umid=10&auid=739855899523&uid=0
154.59.122.79204 No Content 0 B URL HTTP/1.1 ums.acuityplatform.com/sum?umid=10&auid=739855899523&uid=0
IP 154.59.122.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sum?umid=10&auid=739855899523&uid=0 HTTP/1.1
Host: ums.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
ums.acuityplatform.com/sum?umid=49&auid=739855899523&uid=$_BK_UUID
154.59.122.79204 No Content 0 B URL HTTP/1.1 ums.acuityplatform.com/sum?umid=49&auid=739855899523&uid=$_BK_UUID
IP 154.59.122.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sum?umid=49&auid=739855899523&uid=$_BK_UUID HTTP/1.1
Host: ums.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
ums.acuityplatform.com/sum?umid=64&auid=739855899523&uid=edf3cde6-e030-4989-8be8-76cc73557fbd
154.59.122.79204 No Content 0 B URL HTTP/1.1 ums.acuityplatform.com/sum?umid=64&auid=739855899523&uid=edf3cde6-e030-4989-8be8-76cc73557fbd
IP 154.59.122.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sum?umid=64&auid=739855899523&uid=edf3cde6-e030-4989-8be8-76cc73557fbd HTTP/1.1
Host: ums.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
access-control-allow-origin: *
set-cookie: auid=739873167332; Domain=.acuityplatform.com; Expires=Mon, 05-Feb-2024 20:03:06 GMT; Path=/; SameSite=None; Secure
aum="OikKAfqbdXNlck1hdGNoQnlVc2VyTWF0Y2hpbmdJZE1hcPqBNjT6jXVzZXJNYXRjaGluZ0lkJAKAkWxhc3REcm9wVGltZU1pbGxpcyUBQwhlTT2CmGxhc3RTdWNjZXNzZnVsTWF0Y2hNaWxsaXMlAUMIZU09go90aGlyZFBhcnR5VXNlcklkY2VkZjNjZGU2LWUwMzAtNDk4OS04YmU4LTc2Y2M3MzU1N2ZiZPv7hnZlcnNpb27C+w=="; Version=1; Domain=.acuityplatform.com; Max-Age=31536000; Expires=Mon, 05-Feb-2024 20:03:06 GMT; Path=/; SameSite=None; Secure
x-acuity-userid: 739873167332
access-control-expose-headers: X-Acuity-UserID
insight.adsrvr.org/track/up?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
3.33.220.150302 Found 357 B URL HTTP/2 insight.adsrvr.org/track/up?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
IP 3.33.220.150:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (357), with no line terminators
Hash 129688a5861c73425c471a53f9882e2a
68777316c89c453e227ca65cf9784625e9f7c00d
3eb21c99d39f66d8202f6138f5719cdeb8616bf4c97fcd61a9062885ba77130f
GET /track/up?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 05 Feb 2023 20:03:06 GMT
content-type: text/html; charset=utf-8
location: https://match.adsrvr.org/track/upb/?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
set-cookie: TDID=abb23270-f444-4eea-a29b-224201a71af9; domain=.adsrvr.org; expires=Mon, 05-Feb-2024 20:03:06 GMT; path=/; secure; SameSite=None
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 251f1a5d671fb797fb98e9a71754c341
335425603d9eec146a3c03422dbca91134272e53
74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6202
x-amzn-requestid: 01b85fcd-69a0-49da-8640-32a3ef19378a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bUFEJoAMFapg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c48-14817e717361e09170714e9d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1_1mEN4j5cciWEiimz4PRjx3PNGnrSRib9oEJAdYLrrtyjqnz_zvcQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:30:31 GMT
age: 30759
etag: "335425603d9eec146a3c03422dbca91134272e53"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3070584.js?sv=7
54.230.111.66200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3070584.js?sv=7
IP 54.230.111.66:0
GET /c/hotjar-3070584.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sun, 05 Feb 2023 20:02:07 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/c73c25fc06543f8915da499eb297a318
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kyfhouObo1AJD-B1eeLLzUcsA7YEPVadCh78ayaeJ1v9-nQjQ0_uqw==
age: 58
X-Firefox-Spdy: h2
www.ibet.com/static/js/56.2ed00168.chunk.js
54.230.111.16200 OK 0 B URL HTTP/2 www.ibet.com/static/js/56.2ed00168.chunk.js
IP 54.230.111.16:0
GET /static/js/56.2ed00168.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=oGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1238789
last-modified: Thu, 05 Jan 2023 16:20:43 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 20:03:03 GMT
etag: "5b98e1b5c0306fbb6a00599a1f71ec11"
x-cache: RefreshHit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VmvkReKSgqDK4bXR0IJ05B0CnyzwxXylHbRUBpqabfbbq6VQdQLvDQ==
X-Firefox-Spdy: h2
trc.taboola.com/1504263/trc/3/json?tim=1675627427601&data=%7B%22id%22%3A329%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675627427592%2C%22cv%22%3A%2220230205-12-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.ibet.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Datomikibetsam-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675627427601%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk%22%2C%22tos%22%3A4%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.193.44200 OK 0 B URL HTTP/2 trc.taboola.com/1504263/trc/3/json?tim=1675627427601&data=%7B%22id%22%3A329%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675627427592%2C%22cv%22%3A%2220230205-12-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.ibet.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Datomikibetsam-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675627427601%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk%22%2C%22tos%22%3A4%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.193.44:0
GET /1504263/trc/3/json?tim=1675627427601&data=%7B%22id%22%3A329%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675627427592%2C%22cv%22%3A%2220230205-12-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.ibet.com%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Datomikibetsam-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675627427601%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3DoGgaFnevTfBTLA1BmmYjsWNd7ZgqdRLk%22%2C%22tos%22%3A4%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Sun, 05 Feb 2023 20:03:06 GMT
via: 1.1 varnish
x-served-by: cache-bma1634-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675627386.934161,VS0,VE100
vary: Accept-Encoding
x-vcl-time-ms: 100
X-Firefox-Spdy: h2
api.fouanalytics.com/api/init-2315cm3nkx3pemx84qeo.js
172.64.169.33200 OK 0 B URL HTTP/2 api.fouanalytics.com/api/init-2315cm3nkx3pemx84qeo.js
IP 172.64.169.33:0
GET /api/init-2315cm3nkx3pemx84qeo.js HTTP/1.1
Host: api.fouanalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 20:03:05 GMT
content-type: text/javascript
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
expires: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xkkD0etDNHn5LyojMFOoEn%2FzBmelcGuhcyGxauYJAcZzUJ6U8GalelyNEvB3BUGMSbNGgUUauNuUXUk%2BlGMaxL3hmSmr4i0GdVWuGpZrK37kecxH5EJ0DkVKUJu1JnwenLkSscWSxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 794e3f55cd35f42f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ad1.adfarm1.adition.com/track?tid=26000&sid=55435&type=image&orderid=&itemno=&descr=&quantity=&price=0.00&total=0.00&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&parm1=&parm2=&parm3=&parm4=
217.79.188.2302 Found 0 B URL HTTP/2 ad1.adfarm1.adition.com/track?tid=26000&sid=55435&type=image&orderid=&itemno=&descr=&quantity=&price=0.00&total=0.00&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&parm1=&parm2=&parm3=&parm4=
IP 217.79.188.2:0
ASN #24961 myLoc managed IT AG
GET /track?tid=26000&sid=55435&type=image&orderid=&itemno=&descr=&quantity=&price=0.00&total=0.00&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&parm1=&parm2=&parm3=&parm4= HTTP/1.1
Host: ad1.adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/plain
location: https://imagesrv.adition.com/1x1.gif
server: ADITIONSERVER v1.0
date: Sun, 05 Feb 2023 21:03:05 +0100
access-control-allow-origin: *
cache-control: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
p3p: policyref="https://imagesrv.adition.com/w3c/p3p-ssl.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
pragma: no-cache
set-cookie: UserID1=7196764818906154193; expires=Sat, 06-May-2023 21:03:04 GMT; path=/; domain=.adfarm1.adition.com; SameSite=None; Secure
X-Firefox-Spdy: h2
ad1.adfarm1.adition.com/tagging?type=image&network=834&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&tag[iBet_Retargeting.iBet_Ret_Site_Visit]&userid=7196764818870569737
217.79.188.2302 Found 0 B URL HTTP/2 ad1.adfarm1.adition.com/tagging?type=image&network=834&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&tag[iBet_Retargeting.iBet_Ret_Site_Visit]&userid=7196764818870569737
IP 217.79.188.2:0
ASN #24961 myLoc managed IT AG
GET /tagging?type=image&network=834&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&tag[iBet_Retargeting.iBet_Ret_Site_Visit]&userid=7196764818870569737 HTTP/1.1
Host: ad1.adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/plain
location: https://imagesrv.adition.com/1x1.gif
server: ADITIONSERVER v1.0
date: Sun, 05 Feb 2023 21:03:05 +0100
access-control-allow-origin: *
p3p: policyref="https://imagesrv.adition.com/w3c/p3p-ssl.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
set-cookie: UserID1=7196764818870569737; expires=Sat, 06-May-2023 21:03:05 GMT; path=/; domain=.adfarm1.adition.com; SameSite=None; Secure
X-Firefox-Spdy: h2