r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20600
Expires: Sat, 03 Dec 2022 18:14:22 GMT
Date: Sat, 03 Dec 2022 12:31:02 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67e9370f1bf3e4946a01f346eeae8966
aaab391d1134302d718de7a0d5edbedf884633e6
27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4792
Cache-Control: max-age=170402
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:02 GMT
Etag: "638b2570-1d7"
Expires: Mon, 05 Dec 2022 11:51:04 GMT
Last-Modified: Sat, 03 Dec 2022 10:31:12 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 12:18:15 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 767
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11189
Expires: Sat, 03 Dec 2022 15:37:31 GMT
Date: Sat, 03 Dec 2022 12:31:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1+yXLt3W0w3suHebycxlbW5sN0g4xuwlfX3KgJ60XLZku89UwO2v21IyzE8k1EvmFRbRdBeCUMw=
x-amz-request-id: S9HYGT6MSPPQVQAA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 11:47:06 GMT
age: 2636
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 12:31:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
mkkuei4kdsz.com/988/840.html
64.225.91.73200 OK 329 B URL HTTP/1.1 mkkuei4kdsz.com/988/840.html
IP 64.225.91.73:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ecbcb8bae64098de3e587487b474f8b8
e275409fb40ea27c3826af493f70faf147d0f995
2597a3f2418586d8a9fb0764743a84486ba066c6af3ff194922fb6c65a783688
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /988/840.html HTTP/1.1
Host: mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 03 Dec 2022 12:31:02 GMT
content-type: text/html
last-modified: Wed, 12 Jan 2022 17:20:45 GMT
etag: W/"61df0ded-1ad"
content-encoding: gzip
transfer-encoding: chunked
cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
104.17.24.14200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (65451)
Hash 4b5f47439b640180cc3450f7de05d0d8
5a0dc9bcab80ddc409dd35fcb00a88fe6846fee2
1f85e8b327f42c17c025d69849914068536d9aa95412fe473ae90ffb2f4ebd82
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mkkuei4kdsz.com
Connection: keep-alive
Referer: http://mkkuei4kdsz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:31:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 15514366
expires: Thu, 23 Nov 2023 12:31:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vrSGODr1wvPx1ZP2X1pjafOLwnPaOcnW3t%2FYRCrNRqiYfQBHjEHKLIscGUpihes0i8FtTPQ5oVHODmxwCH%2Bi14t52zz1YlWA9apJvpXHiR4VxjlonqGbmBMZbx0tb8U69JNSeyfW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 773c51287fbd1c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.33.119.27200 OK 345 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e0d0f9b1c865a3e991332e8a7fc07bd8
cea8a7c9150c98b54fd547941bac9612c0b40151
2153b786541c89f6c2814bf1f1e70dfb7b52b2786919e67ba2de512583ae73ad
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2153B786541C89F6C2814BF1F1E70DFB7B52B2786919E67BA2DE512583AE73AD"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1828
Expires: Sat, 03 Dec 2022 13:01:30 GMT
Date: Sat, 03 Dec 2022 12:31:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 12:11:17 GMT
cache-control: public,max-age=3600
age: 1185
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
mkkuei4kdsz.com/favicon.ico
64.225.91.73200 OK 329 B URL HTTP/1.1 mkkuei4kdsz.com/favicon.ico
IP 64.225.91.73:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ecbcb8bae64098de3e587487b474f8b8
e275409fb40ea27c3826af493f70faf147d0f995
2597a3f2418586d8a9fb0764743a84486ba066c6af3ff194922fb6c65a783688
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mkkuei4kdsz.com/988/840.html
HTTP/1.1 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 03 Dec 2022 12:31:02 GMT
content-type: text/html
last-modified: Wed, 12 Jan 2022 17:20:45 GMT
etag: W/"61df0ded-1ad"
content-encoding: gzip
transfer-encoding: chunked
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4662
Cache-Control: max-age=165211
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:02 GMT
Etag: "638b11ab-1d7"
Expires: Mon, 05 Dec 2022 10:24:33 GMT
Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
domaincntrol.com/?orighost=http://mkkuei4kdsz.com/988/840.html
172.67.68.176200 OK 28 B URL HTTP/2 domaincntrol.com/?orighost=http://mkkuei4kdsz.com/988/840.html
IP 172.67.68.176:0
File type ASCII text, with no line terminators
Hash 7aae16ed70d2e07943585bbb1cd02b55
3209123510c034e6e38ca45edf14307f1375a8f5
51bfb53a70df6adc48f0670be59a16a657ab5a2bafc176973a32d5c36a4fc5d3
GET /?orighost=http://mkkuei4kdsz.com/988/840.html HTTP/1.1
Host: domaincntrol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mkkuei4kdsz.com
Connection: keep-alive
Referer: http://mkkuei4kdsz.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:31:02 GMT
content-type: text/javascript;charset=UTF-8
content-length: 28
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L41YC3m89yhYAY%2FLW%2B4R7eEj6ukiV9w%2B1cZK8DDayag8LLay1zAThL1V24qAtDyYD1SNETrdzVXNuuSpamckwlAVtb3hoELEdyScu6c%2FXh77ySkoEOVy7ixqBxG6cI%2FcV0A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773c51296a7f0b02-OSL
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.39.96.8101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.96.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: myrvePPGFqvJGdWAlM7hkQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mBZsm92fhvk/5CcWRCfQTqowfrI=
ww2.mkkuei4kdsz.com/
64.190.63.136200 OK 1.4 kB IP 64.190.63.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (700)
Hash e0747047863a4c6c07aa286d9919be08
32f45b6c23201f11e9fc066bec87dfe3e3c69852
e7eacfef068d01f7b8fce7f051f2cf341a02e19ee8ea780d4320aa9e05d9b309
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: ww2.mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mkkuei4kdsz.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
date: Sat, 03 Dec 2022 12:31:03 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_zfi2IAQMFhbeJz7TohoVHVtJWU2hwm7Lrp9mU2CS1tg8fh6Um4KcOzzYJ6LQkNLWAjiGBQP1WU+h5qP7TrTizQ==
last-modified: Sat, 03 Dec 2022 12:31:03 GMT
x-cache-miss-from: parking-d7dbd8c4d-hwmjh
server: NginX
content-encoding: gzip
ww2.mkkuei4kdsz.com/search/tsc.php?200=MzgzNDQ1ODM3&21=OTEuOTAuNDIuMTU0&681=MTY3MDA3MDY2MzcwZDU3ZDdiZWFlNmU5NTM1ZmEyOTI1NDlhMmNhYWE1&crc=0d2448a5122026ea05822955300677fd22952521&cv=1
64.190.63.136200 OK 0 B URL HTTP/1.1 ww2.mkkuei4kdsz.com/search/tsc.php?200=MzgzNDQ1ODM3&21=OTEuOTAuNDIuMTU0&681=MTY3MDA3MDY2MzcwZDU3ZDdiZWFlNmU5NTM1ZmEyOTI1NDlhMmNhYWE1&crc=0d2448a5122026ea05822955300677fd22952521&cv=1
IP 64.190.63.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /search/tsc.php?200=MzgzNDQ1ODM3&21=OTEuOTAuNDIuMTU0&681=MTY3MDA3MDY2MzcwZDU3ZDdiZWFlNmU5NTM1ZmEyOTI1NDlhMmNhYWE1&crc=0d2448a5122026ea05822955300677fd22952521&cv=1 HTTP/1.1
Host: ww2.mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww2.mkkuei4kdsz.com/
HTTP/1.1 200 OK
date: Sat, 03 Dec 2022 12:31:03 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.9
x-cache-miss-from: parking-d7dbd8c4d-565j6
server: NginX
ww2.mkkuei4kdsz.com/search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DIM1ONfbjQeg_0&v=ODFkNmNkOGNhMDQ4M2JjNmQ3ZDE2MWQxOThjMmQyNTEJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM4YjQxODczODkwYzAuNzIyOTIyODYJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOGI0MTg3Mzg5M2IwLjAxNTAwNjMxCTE2NzAwNzA2NjMJYWRfNjNfMA==&l=OAk1NjJiN2FlNTNlNjllMmNmOGJhNTlmYWI1N2U3NDBkZgkwCTM1CTAJZjlkZTE5OWQ4ZTZhZGY4YWJmOGQ1NWJiZjU4NWE1MzIJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzAwNzA2NjMJMC4wMDAyNzkJTgkwCTEJMTUxMgkxMjA1CTE5NDA0MzE0Mgk5MS45MC40Mi4xNTQJMA%3D%3D
64.190.63.136302 Found 0 B URL HTTP/1.1 ww2.mkkuei4kdsz.com/search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DIM1ONfbjQeg_0&v=ODFkNmNkOGNhMDQ4M2JjNmQ3ZDE2MWQxOThjMmQyNTEJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM4YjQxODczODkwYzAuNzIyOTIyODYJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOGI0MTg3Mzg5M2IwLjAxNTAwNjMxCTE2NzAwNzA2NjMJYWRfNjNfMA==&l=OAk1NjJiN2FlNTNlNjllMmNmOGJhNTlmYWI1N2U3NDBkZgkwCTM1CTAJZjlkZTE5OWQ4ZTZhZGY4YWJmOGQ1NWJiZjU4NWE1MzIJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzAwNzA2NjMJMC4wMDAyNzkJTgkwCTEJMTUxMgkxMjA1CTE5NDA0MzE0Mgk5MS45MC40Mi4xNTQJMA%3D%3D
IP 64.190.63.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DIM1ONfbjQeg_0&v=ODFkNmNkOGNhMDQ4M2JjNmQ3ZDE2MWQxOThjMmQyNTEJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM4YjQxODczODkwYzAuNzIyOTIyODYJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOGI0MTg3Mzg5M2IwLjAxNTAwNjMxCTE2NzAwNzA2NjMJYWRfNjNfMA==&l=OAk1NjJiN2FlNTNlNjllMmNmOGJhNTlmYWI1N2U3NDBkZgkwCTM1CTAJZjlkZTE5OWQ4ZTZhZGY4YWJmOGQ1NWJiZjU4NWE1MzIJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzAwNzA2NjMJMC4wMDAyNzkJTgkwCTEJMTUxMgkxMjA1CTE5NDA0MzE0Mgk5MS45MC40Mi4xNTQJMA%3D%3D HTTP/1.1
Host: ww2.mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww2.mkkuei4kdsz.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Sat, 03 Dec 2022 12:31:04 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Sat, 03 Dec 2022 12:31:04 GMT
location: /search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DIM1ONfbjQeg_0&v=ODFkNmNkOGNhMDQ4M2JjNmQ3ZDE2MWQxOThjMmQyNTEJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM4YjQxODczODkwYzAuNzIyOTIyODYJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOGI0MTg3Mzg5M2IwLjAxNTAwNjMxCTE2NzAwNzA2NjMJYWRfNjNfMA==&l=OAk1NjJiN2FlNTNlNjllMmNmOGJhNTlmYWI1N2U3NDBkZgkwCTM1CTAJZjlkZTE5OWQ4ZTZhZGY4YWJmOGQ1NWJiZjU4NWE1MzIJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzAwNzA2NjMJMC4wMDAyNzkJTgkwCTEJMTUxMgkxMjA1CTE5NDA0MzE0Mgk5MS45MC40Mi4xNTQJMA%3D%3D
x-cache-miss-from: parking-d7dbd8c4d-lpd8s
server: NginX
ww2.mkkuei4kdsz.com/search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DIM1ONfbjQeg_0&v=ODFkNmNkOGNhMDQ4M2JjNmQ3ZDE2MWQxOThjMmQyNTEJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM4YjQxODczODkwYzAuNzIyOTIyODYJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOGI0MTg3Mzg5M2IwLjAxNTAwNjMxCTE2NzAwNzA2NjMJYWRfNjNfMA==&l=OAk1NjJiN2FlNTNlNjllMmNmOGJhNTlmYWI1N2U3NDBkZgkwCTM1CTAJZjlkZTE5OWQ4ZTZhZGY4YWJmOGQ1NWJiZjU4NWE1MzIJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzAwNzA2NjMJMC4wMDAyNzkJTgkwCTEJMTUxMgkxMjA1CTE5NDA0MzE0Mgk5MS45MC40Mi4xNTQJMA%3D%3D
64.190.63.136302 Found 311 B URL HTTP/1.1 ww2.mkkuei4kdsz.com/search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DIM1ONfbjQeg_0&v=ODFkNmNkOGNhMDQ4M2JjNmQ3ZDE2MWQxOThjMmQyNTEJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM4YjQxODczODkwYzAuNzIyOTIyODYJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOGI0MTg3Mzg5M2IwLjAxNTAwNjMxCTE2NzAwNzA2NjMJYWRfNjNfMA==&l=OAk1NjJiN2FlNTNlNjllMmNmOGJhNTlmYWI1N2U3NDBkZgkwCTM1CTAJZjlkZTE5OWQ4ZTZhZGY4YWJmOGQ1NWJiZjU4NWE1MzIJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzAwNzA2NjMJMC4wMDAyNzkJTgkwCTEJMTUxMgkxMjA1CTE5NDA0MzE0Mgk5MS45MC40Mi4xNTQJMA%3D%3D
IP 64.190.63.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9f847b1afb1d751627f3079a855f55eb
a1a60ca0c541727b88071df717a7d6f7b2ada464
9cd3356a1f1f16d39180a7f8ea8654902224acf95f7033814ef0e070d0bd010e
Analyzer Verdict Alert quad9 Sinkholed
GET /search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DIM1ONfbjQeg_0&v=ODFkNmNkOGNhMDQ4M2JjNmQ3ZDE2MWQxOThjMmQyNTEJMQl3dzIubWtrdWVpNGtkc3ouY29tNjM4YjQxODczODkwYzAuNzIyOTIyODYJd3cyLm1ra3VlaTRrZHN6LmNvbTYzOGI0MTg3Mzg5M2IwLjAxNTAwNjMxCTE2NzAwNzA2NjMJYWRfNjNfMA==&l=OAk1NjJiN2FlNTNlNjllMmNmOGJhNTlmYWI1N2U3NDBkZgkwCTM1CTAJZjlkZTE5OWQ4ZTZhZGY4YWJmOGQ1NWJiZjU4NWE1MzIJMzgzNDQ1ODM3CW1ra3VlaTRrZHN6CTAJNjMJNgkyCTE2NzAwNzA2NjMJMC4wMDAyNzkJTgkwCTEJMTUxMgkxMjA1CTE5NDA0MzE0Mgk5MS45MC40Mi4xNTQJMA%3D%3D HTTP/1.1
Host: ww2.mkkuei4kdsz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww2.mkkuei4kdsz.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Sat, 03 Dec 2022 12:31:04 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Sat, 03 Dec 2022 12:31:04 GMT
location: http://xml.sedodna.com/click?i=IM1ONfbjQeg_0
x-cache-miss-from: parking-d7dbd8c4d-4r7pb
server: NginX
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3468
Expires: Sat, 03 Dec 2022 13:28:52 GMT
Date: Sat, 03 Dec 2022 12:31:04 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3468
Expires: Sat, 03 Dec 2022 13:28:52 GMT
Date: Sat, 03 Dec 2022 12:31:04 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3468
Expires: Sat, 03 Dec 2022 13:28:52 GMT
Date: Sat, 03 Dec 2022 12:31:04 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3468
Expires: Sat, 03 Dec 2022 13:28:52 GMT
Date: Sat, 03 Dec 2022 12:31:04 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3468
Expires: Sat, 03 Dec 2022 13:28:52 GMT
Date: Sat, 03 Dec 2022 12:31:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e74254b3fdce7d6b84a71a7aff43789
65c8b4abf957f9b54d99d0f78559e639adb29efb
f278c3cc6734da7188862a8c651c803e7ac1fda82234e191761453cb1359d3ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5354
x-amzn-requestid: 3d58ffea-3433-4c5c-a60b-17f6de3a33e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsnvG44oAMFfyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427ca-63b375f04189b7ce7d84cd5d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:15:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GBhAilKMKo9RvIzqzF9V4jTZbvpa2rPZeoy6Jy8fMc1-JO078OAYzQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:53:40 GMT
age: 23844
etag: "65c8b4abf957f9b54d99d0f78559e639adb29efb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:54 GMT
age: 53590
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 06:00:50 GMT
age: 23414
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F474ccac4-fb8f-4a01-8195-4840a857fbe7.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F474ccac4-fb8f-4a01-8195-4840a857fbe7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65bcc96d51cd1a45dd61a4dddef0b529
5ebd592fe35d0479855700baf8525a621d2eec2e
11bfdb9b2f9730e35596e636b0f75e819a70edef0488e671ac82d1bf53e56868
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F474ccac4-fb8f-4a01-8195-4840a857fbe7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8159
x-amzn-requestid: ed2fb67a-2113-4240-978e-e7c978a3ca3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgVH1KIAMFjOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-0c4966b87f844ec3624e9dae;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Wr-PIQraWVuOxXMhTjxXFixZHXCsoxLS-nd-ySjScKj0-h_JJ47kDg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:35:40 GMT
age: 53724
etag: "5ebd592fe35d0479855700baf8525a621d2eec2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57219d7e-330b-4d3f-a472-55cd262c7dc1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57219d7e-330b-4d3f-a472-55cd262c7dc1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbee75c6c314655f738b57b828bef016
bb36d39c7adf764e8a7dcf7f91125001623975b4
fd40949b9711db01be746d1723f78c2bb04d356063c6249b8b5ae1470532367a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57219d7e-330b-4d3f-a472-55cd262c7dc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10877
x-amzn-requestid: bebc4f7f-7349-4973-99f5-d6c3b8a27072
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1G2uIAMFryg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-0637a1a946db78074bc19dc3;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wtaahzdJXnHSYwqIlHyqFy-LsdPl1Nh-CThm-x57bU3dUEgrfB1Gvw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:47 GMT
age: 53597
etag: "bb36d39c7adf764e8a7dcf7f91125001623975b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:39:04 GMT
age: 49920
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
xml.sedodna.com/click?i=IM1ONfbjQeg_0
173.239.53.32302 Found 0 B URL HTTP/1.1 xml.sedodna.com/click?i=IM1ONfbjQeg_0
IP 173.239.53.32:0
ASN #27257 WEBAIR-INTERNET
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?i=IM1ONfbjQeg_0 HTTP/1.1
Host: xml.sedodna.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww2.mkkuei4kdsz.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: no-store
Content-Length: 0
Age: 0
Connection: keep-alive
Location: https://beta.mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_QH0A88-gtuCxG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stlF20PEq8hHSQo_2szb4ydpiYPJ9plE0m7sLI_RalizEQmcVjFyxSKD9mNp-ZNGHhw35RiTW08g3tDqcrSOSL1VeZUGiJFcNx78CWk5ZkhcuGwVPAs9p7MFpuiIOJaLxtWoymPka7ixRqdpSeE0c4_hKrob_ptTQgGEVszVRhb2kHEtPKSzzEUJegp8fmnoi_oTUXcpC8TQE564m1Iq68F2qwvtdivACvDCC-wp7ZwDuvmVWRYi5QgnlHYt5KOCiwDqkhiXLUvxwohlyVz6z151H4AxR338D12QMswxIJ1JcAT8NVe0uzEE8vPJkAqPvKBjiwb8cJZifSnBYrSqFuZoOEdq2UFwYJFnvz2yMo8kRors8L1a3z9_SYEuV7jDBRZwpZvNbCxrFJ7Y7KGrCtrWThawbmYuC6XneTUXIg2ObH3v0cUq0BFVUSG26p9tnR1NLf_vgDGtIZuAf-L-wMWtkaXmOXeB9nS3_c1pHqGKkVkraaAYDdH6mH1nPy1kj2OzXTygNDcdnZT_ueWZSmFvdbYhl0xn3jN08vV_1RzvmIz71osnc0ypkJu7wVoBvmJjIf4EspmSxfpcA93sil6LDxp1ZJbSAulLFgbxwNWi7Wak4-RRPx09YNtPA99lL5dCYsblvlKUbbpkzYkLvLSDMH-QvSzBj2VGSEzefaCI4PbDBzj2P3KJgkb6RrcvhQgL-K-9-k0ugKygnBJh_4UU_EabRzQAvu7iOwejdRsPP6aN5Coq47MV1F1qLfC2ah8BReo8xNHKqTg3DXs6E4EapH8yyTgfTf4PiAPJQ9hZgYCpNkq8waxgtpW1NbRt5BuALnXEwW2d6pWMn8W4x9E6QOVQQqtSkW4vy8bIXtj4xSyv_hRibuSKyPQDNiL-D1QARyQ6nwOPWLdtDFit1-8eaOwabe4OMnrKfSTLPceb9HpTd_uRvpBsi52eU2_9PAVyFGF1ar_G4_i8b1ZPyl3e9DIXGr_eyV78i4RyiwNZuOZ2tN-dpTVNakBjOP5q-mwGDOWkDQF0gtKvK27Xk4rKdYzEl5rWDDcqFTTJMp8G9xPPhVMgle3rib6aB1zmdSZSkTLo3qbFluXmkhldrQWNNbP-kjf_QbeJknuhSjKuV-ZalDvZtzi3bzkipllYGgyWpEFTukTIbTukb2ILiDQgotgsTlO8BcnoFxups43UzagngA9SL4TWj_LFKaQfdCIV7zGDkXThF6fxRzXxISqKCG6-EnCPrjjd-p9flQvgrg5c6TeowFoAUMjicWDiAG80QaSyll-xFFzk6bOVyRFK_lfsL8V505BB9_V1C4UKoJZuZIui9LBJibch3ZjvErtXT8_-DdPz2ccgnlJukZcO26rPQFgJesH6I95BagIoMPE150Bos2mKvpSmW1999Tm5MSn_rfb_sqp46ObaNyrgkdRWAT5y5pg_HpQDEvEcGCMI20R8Brj1_TXGBJbbaAConOqLNsrJIJ5ACqYgM7UXlqjn9OsYdmZmERB8F-MixYgjY2L30bbme6PPZECR2iAdJ5E5QvKjqMZbYz551kewCQwL-O_jedGzPQ19tbFxNIdhGoiTfHY340bYtXdmST48ZQMd7GYL2keGYSTpBxAiM-vneiY1WE02O-lWknIVJNInHfuhdb-VgVeMIcVXt6Pk0ewOPMMpKMjhcJc5ApG83_5sEU0tYy0BnqJyHxpyqDVIusUrzHUVKMhDqf7kErmDrOr0d6CIh02TZMnhRqKYtJoYCW5Q-bLpyvSQgi8ULYMqj8XOhT71s9PqyWlzFiFejBH82LAy5ICvLHM1MhvxSYNb-iWwdA0
Pragma: no-cache
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 35100cbf157b6825ef3d213be11b9169
8b1d43b2b0382b174ba275b72118932ad28a837a
d427cea895f3856ada3f1b648342b55f2463a7fc88a979b4e8e57e351997e5ee
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 12:31:05 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 07:25:42 GMT
Expires: Thu, 08 Dec 2022 07:25:41 GMT
Etag: "8b1d43b2b0382b174ba275b72118932ad28a837a"
Cache-Control: max-age=413076,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773c5136988fb50b-OSL
beta.mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_QH0A88-gtuCxG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stlF20PEq8hHSQo_2szb4ydpiYPJ9plE0m7sLI_RalizEQmcVjFyxSKD9mNp-ZNGHhw35RiTW08g3tDqcrSOSL1VeZUGiJFcNx78CWk5ZkhcuGwVPAs9p7MFpuiIOJaLxtWoymPka7ixRqdpSeE0c4_hKrob_ptTQgGEVszVRhb2kHEtPKSzzEUJegp8fmnoi_oTUXcpC8TQE564m1Iq68F2qwvtdivACvDCC-wp7ZwDuvmVWRYi5QgnlHYt5KOCiwDqkhiXLUvxwohlyVz6z151H4AxR338D12QMswxIJ1JcAT8NVe0uzEE8vPJkAqPvKBjiwb8cJZifSnBYrSqFuZoOEdq2UFwYJFnvz2yMo8kRors8L1a3z9_SYEuV7jDBRZwpZvNbCxrFJ7Y7KGrCtrWThawbmYuC6XneTUXIg2ObH3v0cUq0BFVUSG26p9tnR1NLf_vgDGtIZuAf-L-wMWtkaXmOXeB9nS3_c1pHqGKkVkraaAYDdH6mH1nPy1kj2OzXTygNDcdnZT_ueWZSmFvdbYhl0xn3jN08vV_1RzvmIz71osnc0ypkJu7wVoBvmJjIf4EspmSxfpcA93sil6LDxp1ZJbSAulLFgbxwNWi7Wak4-RRPx09YNtPA99lL5dCYsblvlKUbbpkzYkLvLSDMH-QvSzBj2VGSEzefaCI4PbDBzj2P3KJgkb6RrcvhQgL-K-9-k0ugKygnBJh_4UU_EabRzQAvu7iOwejdRsPP6aN5Coq47MV1F1qLfC2ah8BReo8xNHKqTg3DXs6E4EapH8yyTgfTf4PiAPJQ9hZgYCpNkq8waxgtpW1NbRt5BuALnXEwW2d6pWMn8W4x9E6QOVQQqtSkW4vy8bIXtj4xSyv_hRibuSKyPQDNiL-D1QARyQ6nwOPWLdtDFit1-8eaOwabe4OMnrKfSTLPceb9HpTd_uRvpBsi52eU2_9PAVyFGF1ar_G4_i8b1ZPyl3e9DIXGr_eyV78i4RyiwNZuOZ2tN-dpTVNakBjOP5q-mwGDOWkDQF0gtKvK27Xk4rKdYzEl5rWDDcqFTTJMp8G9xPPhVMgle3rib6aB1zmdSZSkTLo3qbFluXmkhldrQWNNbP-kjf_QbeJknuhSjKuV-ZalDvZtzi3bzkipllYGgyWpEFTukTIbTukb2ILiDQgotgsTlO8BcnoFxups43UzagngA9SL4TWj_LFKaQfdCIV7zGDkXThF6fxRzXxISqKCG6-EnCPrjjd-p9flQvgrg5c6TeowFoAUMjicWDiAG80QaSyll-xFFzk6bOVyRFK_lfsL8V505BB9_V1C4UKoJZuZIui9LBJibch3ZjvErtXT8_-DdPz2ccgnlJukZcO26rPQFgJesH6I95BagIoMPE150Bos2mKvpSmW1999Tm5MSn_rfb_sqp46ObaNyrgkdRWAT5y5pg_HpQDEvEcGCMI20R8Brj1_TXGBJbbaAConOqLNsrJIJ5ACqYgM7UXlqjn9OsYdmZmERB8F-MixYgjY2L30bbme6PPZECR2iAdJ5E5QvKjqMZbYz551kewCQwL-O_jedGzPQ19tbFxNIdhGoiTfHY340bYtXdmST48ZQMd7GYL2keGYSTpBxAiM-vneiY1WE02O-lWknIVJNInHfuhdb-VgVeMIcVXt6Pk0ewOPMMpKMjhcJc5ApG83_5sEU0tYy0BnqJyHxpyqDVIusUrzHUVKMhDqf7kErmDrOr0d6CIh02TZMnhRqKYtJoYCW5Q-bLpyvSQgi8ULYMqj8XOhT71s9PqyWlzFiFejBH82LAy5ICvLHM1MhvxSYNb-iWwdA0
108.168.193.189302 Found 0 B URL HTTP/2 beta.mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_QH0A88-gtuCxG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stlF20PEq8hHSQo_2szb4ydpiYPJ9plE0m7sLI_RalizEQmcVjFyxSKD9mNp-ZNGHhw35RiTW08g3tDqcrSOSL1VeZUGiJFcNx78CWk5ZkhcuGwVPAs9p7MFpuiIOJaLxtWoymPka7ixRqdpSeE0c4_hKrob_ptTQgGEVszVRhb2kHEtPKSzzEUJegp8fmnoi_oTUXcpC8TQE564m1Iq68F2qwvtdivACvDCC-wp7ZwDuvmVWRYi5QgnlHYt5KOCiwDqkhiXLUvxwohlyVz6z151H4AxR338D12QMswxIJ1JcAT8NVe0uzEE8vPJkAqPvKBjiwb8cJZifSnBYrSqFuZoOEdq2UFwYJFnvz2yMo8kRors8L1a3z9_SYEuV7jDBRZwpZvNbCxrFJ7Y7KGrCtrWThawbmYuC6XneTUXIg2ObH3v0cUq0BFVUSG26p9tnR1NLf_vgDGtIZuAf-L-wMWtkaXmOXeB9nS3_c1pHqGKkVkraaAYDdH6mH1nPy1kj2OzXTygNDcdnZT_ueWZSmFvdbYhl0xn3jN08vV_1RzvmIz71osnc0ypkJu7wVoBvmJjIf4EspmSxfpcA93sil6LDxp1ZJbSAulLFgbxwNWi7Wak4-RRPx09YNtPA99lL5dCYsblvlKUbbpkzYkLvLSDMH-QvSzBj2VGSEzefaCI4PbDBzj2P3KJgkb6RrcvhQgL-K-9-k0ugKygnBJh_4UU_EabRzQAvu7iOwejdRsPP6aN5Coq47MV1F1qLfC2ah8BReo8xNHKqTg3DXs6E4EapH8yyTgfTf4PiAPJQ9hZgYCpNkq8waxgtpW1NbRt5BuALnXEwW2d6pWMn8W4x9E6QOVQQqtSkW4vy8bIXtj4xSyv_hRibuSKyPQDNiL-D1QARyQ6nwOPWLdtDFit1-8eaOwabe4OMnrKfSTLPceb9HpTd_uRvpBsi52eU2_9PAVyFGF1ar_G4_i8b1ZPyl3e9DIXGr_eyV78i4RyiwNZuOZ2tN-dpTVNakBjOP5q-mwGDOWkDQF0gtKvK27Xk4rKdYzEl5rWDDcqFTTJMp8G9xPPhVMgle3rib6aB1zmdSZSkTLo3qbFluXmkhldrQWNNbP-kjf_QbeJknuhSjKuV-ZalDvZtzi3bzkipllYGgyWpEFTukTIbTukb2ILiDQgotgsTlO8BcnoFxups43UzagngA9SL4TWj_LFKaQfdCIV7zGDkXThF6fxRzXxISqKCG6-EnCPrjjd-p9flQvgrg5c6TeowFoAUMjicWDiAG80QaSyll-xFFzk6bOVyRFK_lfsL8V505BB9_V1C4UKoJZuZIui9LBJibch3ZjvErtXT8_-DdPz2ccgnlJukZcO26rPQFgJesH6I95BagIoMPE150Bos2mKvpSmW1999Tm5MSn_rfb_sqp46ObaNyrgkdRWAT5y5pg_HpQDEvEcGCMI20R8Brj1_TXGBJbbaAConOqLNsrJIJ5ACqYgM7UXlqjn9OsYdmZmERB8F-MixYgjY2L30bbme6PPZECR2iAdJ5E5QvKjqMZbYz551kewCQwL-O_jedGzPQ19tbFxNIdhGoiTfHY340bYtXdmST48ZQMd7GYL2keGYSTpBxAiM-vneiY1WE02O-lWknIVJNInHfuhdb-VgVeMIcVXt6Pk0ewOPMMpKMjhcJc5ApG83_5sEU0tYy0BnqJyHxpyqDVIusUrzHUVKMhDqf7kErmDrOr0d6CIh02TZMnhRqKYtJoYCW5Q-bLpyvSQgi8ULYMqj8XOhT71s9PqyWlzFiFejBH82LAy5ICvLHM1MhvxSYNb-iWwdA0
IP 108.168.193.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5pjcTajzqm_QH0A88-gtuCxG_6U4hqQTcO4eq_lgR48_oiQJuDuwoS9gcFc4_-stlF20PEq8hHSQo_2szb4ydpiYPJ9plE0m7sLI_RalizEQmcVjFyxSKD9mNp-ZNGHhw35RiTW08g3tDqcrSOSL1VeZUGiJFcNx78CWk5ZkhcuGwVPAs9p7MFpuiIOJaLxtWoymPka7ixRqdpSeE0c4_hKrob_ptTQgGEVszVRhb2kHEtPKSzzEUJegp8fmnoi_oTUXcpC8TQE564m1Iq68F2qwvtdivACvDCC-wp7ZwDuvmVWRYi5QgnlHYt5KOCiwDqkhiXLUvxwohlyVz6z151H4AxR338D12QMswxIJ1JcAT8NVe0uzEE8vPJkAqPvKBjiwb8cJZifSnBYrSqFuZoOEdq2UFwYJFnvz2yMo8kRors8L1a3z9_SYEuV7jDBRZwpZvNbCxrFJ7Y7KGrCtrWThawbmYuC6XneTUXIg2ObH3v0cUq0BFVUSG26p9tnR1NLf_vgDGtIZuAf-L-wMWtkaXmOXeB9nS3_c1pHqGKkVkraaAYDdH6mH1nPy1kj2OzXTygNDcdnZT_ueWZSmFvdbYhl0xn3jN08vV_1RzvmIz71osnc0ypkJu7wVoBvmJjIf4EspmSxfpcA93sil6LDxp1ZJbSAulLFgbxwNWi7Wak4-RRPx09YNtPA99lL5dCYsblvlKUbbpkzYkLvLSDMH-QvSzBj2VGSEzefaCI4PbDBzj2P3KJgkb6RrcvhQgL-K-9-k0ugKygnBJh_4UU_EabRzQAvu7iOwejdRsPP6aN5Coq47MV1F1qLfC2ah8BReo8xNHKqTg3DXs6E4EapH8yyTgfTf4PiAPJQ9hZgYCpNkq8waxgtpW1NbRt5BuALnXEwW2d6pWMn8W4x9E6QOVQQqtSkW4vy8bIXtj4xSyv_hRibuSKyPQDNiL-D1QARyQ6nwOPWLdtDFit1-8eaOwabe4OMnrKfSTLPceb9HpTd_uRvpBsi52eU2_9PAVyFGF1ar_G4_i8b1ZPyl3e9DIXGr_eyV78i4RyiwNZuOZ2tN-dpTVNakBjOP5q-mwGDOWkDQF0gtKvK27Xk4rKdYzEl5rWDDcqFTTJMp8G9xPPhVMgle3rib6aB1zmdSZSkTLo3qbFluXmkhldrQWNNbP-kjf_QbeJknuhSjKuV-ZalDvZtzi3bzkipllYGgyWpEFTukTIbTukb2ILiDQgotgsTlO8BcnoFxups43UzagngA9SL4TWj_LFKaQfdCIV7zGDkXThF6fxRzXxISqKCG6-EnCPrjjd-p9flQvgrg5c6TeowFoAUMjicWDiAG80QaSyll-xFFzk6bOVyRFK_lfsL8V505BB9_V1C4UKoJZuZIui9LBJibch3ZjvErtXT8_-DdPz2ccgnlJukZcO26rPQFgJesH6I95BagIoMPE150Bos2mKvpSmW1999Tm5MSn_rfb_sqp46ObaNyrgkdRWAT5y5pg_HpQDEvEcGCMI20R8Brj1_TXGBJbbaAConOqLNsrJIJ5ACqYgM7UXlqjn9OsYdmZmERB8F-MixYgjY2L30bbme6PPZECR2iAdJ5E5QvKjqMZbYz551kewCQwL-O_jedGzPQ19tbFxNIdhGoiTfHY340bYtXdmST48ZQMd7GYL2keGYSTpBxAiM-vneiY1WE02O-lWknIVJNInHfuhdb-VgVeMIcVXt6Pk0ewOPMMpKMjhcJc5ApG83_5sEU0tYy0BnqJyHxpyqDVIusUrzHUVKMhDqf7kErmDrOr0d6CIh02TZMnhRqKYtJoYCW5Q-bLpyvSQgi8ULYMqj8XOhT71s9PqyWlzFiFejBH82LAy5ICvLHM1MhvxSYNb-iWwdA0 HTTP/1.1
Host: beta.mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ww2.mkkuei4kdsz.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 03 Dec 2022 12:31:05 GMT
content-length: 0
set-cookie: rhid=82486297987; Max-Age=15552000; Expires=Thu, 01-Jun-2023 12:31:05 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
location: https://beta.mybettermb.com/adServe/domainClick?ai=IMh5EoW_2OoHygiiY-2otWSZVu5NPqSq-h2rSoksoBqNG2LV3Zkk-L8FPCSjKZr_YsQ0yRxpJ6k8LlotqmtX7ErGSkvN2YlGY4HZ8X7cx-dM1QaxFxK0PHGpJGlCLAoWMnzoVZuce8ueVaQ0F217-cHwFJ-CDJF8T7C2wcJ1dqtoOgN9pzNxgl6S4oChQzOvrPE96Ym7CMGlXRdGMK-TkKMF_XSxG7q5c9lRJWHNr4s5bSTdWcYVZJciO9bgcuS1jIeAEiXnU3VYEUAru7F_DuXugOnM5m-8Jm7EhOsk27bxGYd3vi6Mg89LCz5E8ciHT2L9NFyVXF77W8amRP1OQPKqHlok5Wh6bM7TR-A6o2LnrG8E1DfQ9Vu8kUSrMxroonOqLNsrJIKgUSZw7eMl7vr4nvPsKvQNOYwwqJPWDKxkmVbuTT6kqjvQfnk4ki0ivitaEXZPV_A9yZrhH3-Sbs19d78A9yty8XBUwr7h6bOOF0SokHo2PZeYO9hdbD2Gn6oVmfmCmc-q0T2xsmJwnBfZ8RtWPEH2SnZADPOdLz_p-OGBQW3exAhKJncPyYXssKbYd4jRL3fz-AbClJeve1IAxxj8fbHTscWi84ZIOk0qJeEuaLJ-WEdDYOEm2_nsCKidNDxuV5s&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukPNfXe_APcrct9aEuZ5hifkANoM0k81b9WH7szAu7BNyZUtxct_oZmwQnm-RLg807bPo0o8POs0hg&si=1&oref=e2905b67c440133e06d94d472902354c&optunit=g1X1rV7f4BpBS4YUfGI2rw&rb=2Vb288azLYM&rr=1&abtg=0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2
142.250.74.35200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 29564, version 1.0\012- data
Hash 1b66ccb164151a6cf698667c8b570cc6
f5617a0f087645703c874453960be6382c8a7427
4884fec2c73aa52a2461073c1b87d1ceb80f400520391b43f97ca7d3c39eeb24
GET /s/permanentmarker/v16/Fh4uPib9Iyv2ucM6pGQMWimMp004La2Cfw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://big-promotion.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29564
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 12:31:43 GMT
expires: Fri, 01 Dec 2023 12:31:43 GMT
cache-control: public, max-age=31536000
age: 172762
last-modified: Tue, 19 Apr 2022 17:55:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash c63d515eea38d91b650137867eebb035
02387300b1f487cc524012d39a87a554a9d46429
dbd57e78af4806ec75568feb830979c1ff3195e91b13412acb3f20fc50cbe449
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 03 Dec 2022 12:31:05 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 02 Dec 2022 21:14:20 GMT
Expires: Sat, 03 Dec 2022 21:14:20 GMT
ETag: "02387300b1f487cc524012d39a87a554a9d46429"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
r.srvtrck.com/v1/redirect?type=linkId&id=4dc8f423a23b42d683673dfd86eb0144&api_key=3f61f4defa887fe0a8b30aea88ae2d7c&site_id=f5e11b15e07c424c93f4e3305fa69c39&dch=feed&ad_t=advertiser&yk_tag=s-no-NO-443883817
104.19.168.96302 Found 0 B URL HTTP/2 r.srvtrck.com/v1/redirect?type=linkId&id=4dc8f423a23b42d683673dfd86eb0144&api_key=3f61f4defa887fe0a8b30aea88ae2d7c&site_id=f5e11b15e07c424c93f4e3305fa69c39&dch=feed&ad_t=advertiser&yk_tag=s-no-NO-443883817
IP 104.19.168.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/redirect?type=linkId&id=4dc8f423a23b42d683673dfd86eb0144&api_key=3f61f4defa887fe0a8b30aea88ae2d7c&site_id=f5e11b15e07c424c93f4e3305fa69c39&dch=feed&ad_t=advertiser&yk_tag=s-no-NO-443883817 HTTP/1.1
Host: r.srvtrck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 03 Dec 2022 12:31:06 GMT
content-length: 0
location: http://www.sportler.com
p3p: CP="CAO PSA OUR"
set-cookie: ykuid=9b4d95a13a4b42f6814414fe6dc4bbb1; Domain=.srvtrck.com; Expires=Sun, 03-Dec-2023 12:31:06 GMT; Path=/
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 773c513e88061c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash c63d515eea38d91b650137867eebb035
02387300b1f487cc524012d39a87a554a9d46429
dbd57e78af4806ec75568feb830979c1ff3195e91b13412acb3f20fc50cbe449
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 03 Dec 2022 12:31:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 02 Dec 2022 21:14:20 GMT
Expires: Sat, 03 Dec 2022 21:14:20 GMT
ETag: "02387300b1f487cc524012d39a87a554a9d46429"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.sportler.com/
151.101.130.133301 Moved Permanently 0 B IP 151.101.130.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Server: Varnish
Retry-After: 0
Location: https://www.sportler.com/
Accept-Ranges: bytes
Date: Sat, 03 Dec 2022 12:31:06 GMT
Via: 1.1 varnish
X-Served-By: cache-bma1636-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1670070667.639751,VS0,VE0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f6e34bfdd2217d7414f6e5f7eef256b1
61a7d4ac6906209e328265ef34871ade76eb535a
02f49ae4345cfe8e983ba3dfe8f23ebb9e80fea366e6e45d69dc7cf8d1be9872
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6573
Cache-Control: max-age=105228
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:06 GMT
Etag: "638a1fea-1d7"
Expires: Sun, 04 Dec 2022 17:44:54 GMT
Last-Modified: Fri, 02 Dec 2022 15:55:22 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
www.sportler.com/
151.101.66.133200 OK 44 kB IP 151.101.66.133:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2292), with CRLF, LF line terminators
Hash c7a40130487a586092b316e14b3a3f27
f7b025a02db9f8721ecb5c1481724119b48122aa
e757c3c56994c8b3add9f0b8d0acfc0dc86b42a6f812cebc39a04d698e616fdb
GET / HTTP/1.1
Host: www.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
cache-control: no-cache, no-store, must-revalidate
portal-engine: alpin.it db/portal server
x-frame-options: allow-from https://suite5.emarsys.net
content-security-policy: frame-ancestors https://suite5.emarsys.net https://admin.scarabresearch.com https://webchannel.static.emarsys.net
content-encoding: gzip
x-debug: www-ssl epoch time t=1670034000665071
content-type: text/html;charset=UTF-8
x-shield-generation: 2003
via: 1.1 varnish, 1.1 varnish
x-edge-generation: 2003
accept-ranges: bytes
date: Sat, 03 Dec 2022 12:31:06 GMT
age: 36665
x-served-by: cache-mxp6940-MXP, cache-bma1660-BMA
x-cache: HIT, HIT
x-cache-hits: 63, 2
x-timer: S1670070667.718142,VS0,VE2
vary: Accept-Encoding
content-length: 43486
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tracking.s24.com/js/conversion-tracking.js
104.18.28.233200 OK 1.2 kB URL HTTP/2 tracking.s24.com/js/conversion-tracking.js
IP 104.18.28.233:0
File type ASCII text, with very long lines (2527), with no line terminators
Hash 3c75965e2eb4eb832f86ddbec107a4f7
acce09aa9e3fc9a2a203d757cdb17a9509e365a5
9618909772f754510f258575972e68541f7ba9ddee520fa3049e9fd01ec47969
GET /js/conversion-tracking.js HTTP/1.1
Host: tracking.s24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:31:06 GMT
content-type: application/javascript
content-length: 1179
accept-ranges: bytes
cache-control: max-age=86400, public
content-encoding: gzip
etag: "03c75965e2eb4eb832f86ddbec107a4f7"
last-modified: Wed, 30 Nov 2022 13:41:25 GMT
p3p: CP="NOI DSP LAW NID CURa ADMa PSAa OUR LEG PUR COM NAV STA"
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://cspreport.s24.com/;
strict-transport-security: max-age=31536000;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 773c5143da7fb4ed-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 866972a21b455da59e4f55130564f927
b0fe5a4fad1c91327d9f065526b33a63fba076a1
ee4e3d650566365112b8e626c1c621e241be93496dea18d7805c0821b5289197
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=161436
Date: Sat, 03 Dec 2022 12:31:06 GMT
Etag: "638aff71-1d7"
Expires: Mon, 05 Dec 2022 09:21:42 GMT
Last-Modified: Sat, 03 Dec 2022 07:49:05 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7An_4wOkchbkcuakHDlNaDCBODtz97cHTaiRZjHN5aYHQnAyVntRUA==
Age: 5557
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 866972a21b455da59e4f55130564f927
b0fe5a4fad1c91327d9f065526b33a63fba076a1
ee4e3d650566365112b8e626c1c621e241be93496dea18d7805c0821b5289197
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 03 Dec 2022 12:31:06 GMT
Etag: "6389adf2-1d7"
Last-Modified: Sat, 03 Dec 2022 11:34:46 GMT
Server: ECS (dcb/7EEC)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TdKylpubKyIXoUhSoVOkB9LeA8WmqxABYnptLzstva-Q2xGjDhbBcw==
Age: 3380
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 8a678184041a01880049790da34af82e
e54a9578c33ed6fae762aff04a2e373253fb47e2
dc3e0d42d66ccc253ca8914241ee1164c83b42e1e3ca68b869258d91923d885f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=135364
Date: Sat, 03 Dec 2022 12:31:06 GMT
Etag: "638a9a44-1d7"
Expires: Mon, 05 Dec 2022 02:07:10 GMT
Last-Modified: Sat, 03 Dec 2022 00:37:24 GMT
Server: ECS (dcb/7F80)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: M6yAZncxQS-RKkB1E4PgUysycvcrg4PWM4t4rFpChkSeV3Lbmu8aFA==
Age: 5386
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 8a678184041a01880049790da34af82e
e54a9578c33ed6fae762aff04a2e373253fb47e2
dc3e0d42d66ccc253ca8914241ee1164c83b42e1e3ca68b869258d91923d885f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=134104
Date: Sat, 03 Dec 2022 12:31:06 GMT
Etag: "638a9a44-1d7"
Expires: Mon, 05 Dec 2022 01:46:10 GMT
Last-Modified: Sat, 03 Dec 2022 00:37:24 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: d7f5trvLVZ341ldwsHWW52CiKe4G9YX3nYjqGrgTtNrqvZyHVS_jvA==
Age: 4126
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 8a678184041a01880049790da34af82e
e54a9578c33ed6fae762aff04a2e373253fb47e2
dc3e0d42d66ccc253ca8914241ee1164c83b42e1e3ca68b869258d91923d885f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=129978
Date: Sat, 03 Dec 2022 12:31:06 GMT
Etag: "638a9a44-1d7"
Expires: Mon, 05 Dec 2022 00:37:24 GMT
Last-Modified: Sat, 03 Dec 2022 00:37:24 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EUbk-ARlZKCyHWAjEGqGBQYIstQSJ3QyAzpn4DpoRWXeM97exphrOA==
big-promotion.com/favicon.ico
137.74.65.7404 Not Found 2.3 kB URL HTTP/2 big-promotion.com/favicon.ico
IP 137.74.65.7:0
Hash 996cc5b82d96cd34afb8e59734c5942b
cd2fb73c3bdefe40f2140b0fc7fdae28ac0c084d
6879b49541912deb0f62291ff2bda5c3b1964de1629ab27b1fdb1a1fa32eb6bb
GET /favicon.ico HTTP/1.1
Host: big-promotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://big-promotion.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.14.2
date: Sat, 03 Dec 2022 12:31:05 GMT
content-type: text/html
content-encoding: gzip
X-Firefox-Spdy: h2
static.sportler.com/presentation/content/img/logo_sport_2000.png
54.230.111.18200 OK 6.2 kB URL HTTP/2 static.sportler.com/presentation/content/img/logo_sport_2000.png
IP 54.230.111.18:0
File type PNG image data, 230 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 8783aaaddddb642e7698d64daf961681
4ec96ddf3f0ff057e2dd08678d9ad169a5b2523e
dc1be0f939470defe66ef4b1fada5a432637cdf9b752d8e73303624f408fe9af
GET /presentation/content/img/logo_sport_2000.png HTTP/1.1
Host: static.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 6200
date: Wed, 30 Nov 2022 06:40:16 GMT
server: nginx
expires: Wed, 14 Dec 2022 06:40:16 GMT
access-control-allow-origin: *
cache-control: max-age=1209600, public, must-revalidate
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2L60Jrp5EFww69opHIBzyLCv9af5ScB26XHioczT0b1-Ofs3TRpJJQ==
age: 280251
X-Firefox-Spdy: h2
static.sportler.com/presentation/content/img/sportler_x1_77.png
54.230.111.18200 OK 2.8 kB URL HTTP/2 static.sportler.com/presentation/content/img/sportler_x1_77.png
IP 54.230.111.18:0
File type PNG image data, 225 x 77, 8-bit/color RGBA, non-interlaced\012- data
Hash 0f5b37fb6af5c09659879d81dcbf7b1c
3f12da40a263776fd4b70c991e33c84ea0c89eeb
c8e15663783c588834dd594d0c99e89cf144a8ac1ec1492656b3f4c035f89de4
GET /presentation/content/img/sportler_x1_77.png HTTP/1.1
Host: static.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2768
date: Fri, 25 Nov 2022 00:37:04 GMT
server: nginx
expires: Fri, 09 Dec 2022 00:37:04 GMT
access-control-allow-origin: *
cache-control: max-age=1209600, public, must-revalidate
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A47jfayso3zFe8StIdUdChZW8JD8zzM4lG3s1ZBYS_--iyrKW2LgXQ==
age: 734043
X-Firefox-Spdy: h2
static.sportler.com/presentation/content/img/flag_it.png
54.230.111.18200 OK 839 B URL HTTP/2 static.sportler.com/presentation/content/img/flag_it.png
IP 54.230.111.18:0
File type PNG image data, 70 x 70, 8-bit colormap, non-interlaced\012- data
Hash 55ec37af3aed6197790c1338a0c263cd
fff1a882e12d88318a01bc5b6da1969374afdaa7
9706abae332baadd6ed8b6ddb92acf0bd070ee3bec3880b29626edbf8144ce71
GET /presentation/content/img/flag_it.png HTTP/1.1
Host: static.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 839
date: Wed, 30 Nov 2022 09:55:57 GMT
server: nginx
expires: Wed, 14 Dec 2022 09:55:57 GMT
access-control-allow-origin: *
cache-control: max-age=1209600, public, must-revalidate
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rdwfFwGBcaM0lzXnH_hRXlOVvF_ZKqPer3ZZ-nR2uzl3_IerQbsUaQ==
age: 268510
X-Firefox-Spdy: h2
static.sportler.com/presentation/content/img/bz_it.png
54.230.111.18200 OK 4.1 kB URL HTTP/2 static.sportler.com/presentation/content/img/bz_it.png
IP 54.230.111.18:0
File type PNG image data, 102 x 47, 8-bit/color RGBA, non-interlaced\012- data
Hash 1ed42d4d85b70dd8c1203e6e6092d11a
4d902070d54bfad71e11dffd25d0ffc68d158159
93844a3202e5408e54c1bae1b199b5fe238bfff891a3dda5c3aa01352e799c8a
GET /presentation/content/img/bz_it.png HTTP/1.1
Host: static.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 4128
date: Wed, 30 Nov 2022 09:55:59 GMT
server: nginx
expires: Wed, 14 Dec 2022 09:55:59 GMT
access-control-allow-origin: *
cache-control: max-age=1209600, public, must-revalidate
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c98LY2ueQcjC-4ZnqSTev6myNHxdKITR_o56VPrD9dk6aF8Y5qt8OQ==
age: 268508
X-Firefox-Spdy: h2
static.sportler.com/presentation/content/img/flag_de.png
54.230.111.18200 OK 858 B URL HTTP/2 static.sportler.com/presentation/content/img/flag_de.png
IP 54.230.111.18:0
File type PNG image data, 70 x 70, 8-bit colormap, non-interlaced\012- data
Hash 837496295fbe532ce53d7cb95597f6a7
abbc28df3caa17af3a894f94cf236eb37cddfca8
30326decd6585de82ec340dab03ea3da53bbe7f6e40063642d89eab92d40e5f2
GET /presentation/content/img/flag_de.png HTTP/1.1
Host: static.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 858
date: Wed, 30 Nov 2022 09:55:57 GMT
server: nginx
expires: Wed, 14 Dec 2022 09:55:57 GMT
access-control-allow-origin: *
cache-control: max-age=1209600, public, must-revalidate
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GcRqdFaqDMq90gEuQVweKj5YoHGegHzUOwvsnEQn84yyE10cCM9Ozw==
age: 268510
X-Firefox-Spdy: h2
static.sportler.com/presentation/content/generated/sportler_style85.min.css
54.230.111.18200 OK 57 kB URL HTTP/2 static.sportler.com/presentation/content/generated/sportler_style85.min.css
IP 54.230.111.18:0
File type Unicode text, UTF-8 text, with very long lines (986)
Hash e20a2ec7d891b2f7059e24eeb45abbfa
3d14d1d1b92ba478aa83659ddca5711217604592
67ecf5c57108021e0df4b8ace41b9d40ab8c413c52b604e2d74d1f3eaebdb6c7
GET /presentation/content/generated/sportler_style85.min.css HTTP/1.1
Host: static.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/css
content-length: 56846
date: Tue, 29 Nov 2022 10:04:18 GMT
server: nginx
expires: Tue, 13 Dec 2022 10:04:18 GMT
access-control-allow-origin: *
cache-control: max-age=1209600, public, must-revalidate
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zyoKZTxjtSKje3qjt7iE0JOYKO2S62Q5-csdkXJt6fQ7Mgbg3pSewg==
age: 354409
X-Firefox-Spdy: h2
static.sportler.com/presentation/factfinder/ffsuggest.debounce.js
54.230.111.18200 OK 4.7 kB URL HTTP/2 static.sportler.com/presentation/factfinder/ffsuggest.debounce.js
IP 54.230.111.18:0
File type Unicode text, UTF-8 text, with very long lines (479)
Hash 5120b752f849e5a51105b8e8217ad9e1
f6ff354b3f6aac0d5c8116f48708b3dc87457371
9aeed8a13950e5a61499bd492bbf4d728392d1fcb99aa369db2be82d7cc20ca5
GET /presentation/factfinder/ffsuggest.debounce.js HTTP/1.1
Host: static.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 4653
date: Mon, 21 Nov 2022 14:42:24 GMT
server: nginx
expires: Mon, 05 Dec 2022 14:42:24 GMT
access-control-allow-origin: *
cache-control: max-age=1209600, public, must-revalidate
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: x3JI7WDeKIBccQBwBOHXSCdOW5x9W-DaBjlEDETSwhqdW_Vj_dZhzA==
age: 1028923
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 707feb6d6703c62106dc9bbddbf53318
e81aeadaa7a3dcfe42817d666af9dcf6489b330a
0937f18baea5d12c09cd8f86c7475ed561a89893a3ccd3d55056e1fde53280bf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 12:31:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 11:41:06 GMT
Expires: Sat, 10 Dec 2022 11:41:05 GMT
Etag: "e81aeadaa7a3dcfe42817d666af9dcf6489b330a"
Cache-Control: max-age=601197,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773c5144fab3b50b-OSL
static.sportler.com/presentation/content/generated/sportler_print85.min.css
54.230.111.18200 OK 1.6 kB URL HTTP/2 static.sportler.com/presentation/content/generated/sportler_print85.min.css
IP 54.230.111.18:0
File type ASCII text, with very long lines (494)
Hash a27d44b8b134faf02bd7c05fc254354d
e7855514a1625c5e4a5f25bfba74a1a4fc723771
d854951e45e05ab82a48427ba131fa64f6d3fc2b3930a6ad49273de268aa0879
GET /presentation/content/generated/sportler_print85.min.css HTTP/1.1
Host: static.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 1574
date: Tue, 29 Nov 2022 10:04:18 GMT
server: nginx
expires: Tue, 13 Dec 2022 10:04:18 GMT
access-control-allow-origin: *
cache-control: max-age=1209600, public, must-revalidate
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VTTDUHpkvGHUfMNxCBaaOTKRETPDyUKr_d92VkQ8WtHmg3ZnW2CuMw==
age: 354409
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 418377832fe79d4ad654df7aac948aad
e24c1acd23417a4bbd223b4fab5198617ee7a96a
3d40add447ba7cb2dbe67b3ef7827ab0815324d453770a47cd81fb6bd0e46b47
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=157167
Date: Sat, 03 Dec 2022 12:31:07 GMT
Etag: "638b039c-1d7"
Expires: Mon, 05 Dec 2022 08:10:34 GMT
Last-Modified: Sat, 03 Dec 2022 08:06:52 GMT
Server: ECS (dcb/7FA7)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7JrwMhLpq6sWex8fiSE7rel8INLjTLrsUa7am2wGTHmTwbosC8y7sA==
Age: 222
static.sportler.com/presentation/content/fonts/sportler/sportler.ttf?a2mcnz
54.230.111.18200 OK 16 kB URL HTTP/2 static.sportler.com/presentation/content/fonts/sportler/sportler.ttf?a2mcnz
IP 54.230.111.18:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, sportler \012- data
Hash ffabc6b584e4f1035620f68bc088fbcf
d65c17eac55c395efcd019b0ccdaac18e2487e0e
3bae7f75f55e8b71031d88b596e98f16f92b430876087687811da99240603df8
GET /presentation/content/fonts/sportler/sportler.ttf?a2mcnz HTTP/1.1
Host: static.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://static.sportler.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 16192
date: Mon, 28 Nov 2022 19:54:25 GMT
server: nginx
expires: Mon, 12 Dec 2022 19:54:25 GMT
access-control-allow-origin: *
cache-control: max-age=1209600, public, must-revalidate
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aMQKXN53em5YlN_eDjojhmkmpDozl7kYMLkce89P3rOFCppCSjvb9g==
age: 405402
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 418377832fe79d4ad654df7aac948aad
e24c1acd23417a4bbd223b4fab5198617ee7a96a
3d40add447ba7cb2dbe67b3ef7827ab0815324d453770a47cd81fb6bd0e46b47
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=156945
Date: Sat, 03 Dec 2022 12:31:07 GMT
Etag: "638b039c-1d7"
Expires: Mon, 05 Dec 2022 08:06:52 GMT
Last-Modified: Sat, 03 Dec 2022 08:06:52 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: oZ47lwmEA7mKXsb4pFXPm4Pa3FwGe_FjkD3al_BymVYLlSSu5zKy5g==
my-static.sportler.com/newsletter-register/frontend/assets/img/smartphone_waves.gif
54.230.111.67200 OK 31 kB URL HTTP/2 my-static.sportler.com/newsletter-register/frontend/assets/img/smartphone_waves.gif
IP 54.230.111.67:0
File type GIF image data, version 89a, 235 x 235\012- data
Hash 3c36a56ddc5ed4dfea6e2a579b8b33af
6be88b22490e8065bf205ca85fca38e60ffcdfa0
0ca8aa3e2d0cb262875afaba0b6ec33096de7121893ed714ccabf6fa4fd0c135
GET /newsletter-register/frontend/assets/img/smartphone_waves.gif HTTP/1.1
Host: my-static.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/gif
content-length: 31361
date: Sat, 28 May 2022 05:58:23 GMT
server: nginx
last-modified: Fri, 12 Oct 2018 09:16:23 GMT
etag: "5bc06667-7a81"
expires: Sun, 28 May 2023 05:58:23 GMT
pragma: public
cache-control: max-age=31536000, public
accept-ranges: bytes
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: R31eiFNjgIDOpHWt9Irh9HULF0_Kf5JMKGM7pyxHsIGZGyNSbIdY0Q==
age: 16353164
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 79507ecab36175ecc9d11e52faa1a1d9
6ffde27fb6d23ff5b23c0b66ca915506032558f0
b6b8ef3020d8be56ab2fbb1de8294d129505332d6f2c8751531bb45411fda0c3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=168806
Date: Sat, 03 Dec 2022 12:31:07 GMT
Etag: "638b31f1-1d7"
Expires: Mon, 05 Dec 2022 11:24:33 GMT
Last-Modified: Sat, 03 Dec 2022 11:24:33 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6XFM8-wNrdxvBOhJ3iUxdsqm2L_KR-4umx0sa-1E4y9b-iRdwzQyrQ==
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 4c5b61b63260495812ffa2cccdffea4d
8af8d6b6cd1c506acac3db91d7e451920eb6979e
c83bfb20a63ef1cd9cefc3842aaccdcdc1808b305611d3fe63a27d46b7c5e43b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=118131
Date: Sat, 03 Dec 2022 12:31:07 GMT
Etag: "638a5276-1d7"
Expires: Sun, 04 Dec 2022 21:19:58 GMT
Last-Modified: Fri, 02 Dec 2022 19:31:02 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _otqx3VFy-MEF_C-YkIpjS8tC4uRtPtGQcQC6ldwry3i_jmfT_ldDA==
Age: 6536
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
image.sportler.com/image/news/1616502049/gallery/_tpm300_1616502049_gallery_object_49308.jpg
143.204.55.128200 OK 49 kB URL HTTP/2 image.sportler.com/image/news/1616502049/gallery/_tpm300_1616502049_gallery_object_49308.jpg
IP 143.204.55.128:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 300x426, components 3\012- data
Hash 40cb1768d07f0bc8411d076db75da0da
3eed4af57721fa3b57fd4fe9a65e9b46ed2c1404
592c2bb2cbc0c3b2fa66ae16584ed10a07875b53d9a6b21793ab2460c11ec6a6
GET /image/news/1616502049/gallery/_tpm300_1616502049_gallery_object_49308.jpg HTTP/1.1
Host: image.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 48930
server: nginx
date: Sat, 26 Nov 2022 03:35:29 GMT
expires: Sat, 10 Dec 2022 03:35:29 GMT
access-control-allow-origin: *
cache-control: max-age=1209600, public, must-revalidate
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5iTdOFjHK4JhscwxrC6XZB8LgTAP6NDxhmDhSO45g1sPgTJwhNkDJg==
age: 636938
X-Firefox-Spdy: h2
engine.styla.com/xe/22d321-d01b572c/10.css
143.204.55.69200 OK 9.0 kB URL HTTP/2 engine.styla.com/xe/22d321-d01b572c/10.css
IP 143.204.55.69:0
Hash c69e207895a1b993ab22efd945795eec
2e5612e3cfc6ff25531fc15da23fa38e24cdf2bc
d2ef449c6cb16ed451a156bc5d52a561e69df471a4637ab928d580fb938f1b91
GET /xe/22d321-d01b572c/10.css HTTP/1.1
Host: engine.styla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Tue, 29 Nov 2022 15:07:26 GMT
last-modified: Thu, 17 Nov 2022 10:56:04 GMT
etag: W/"59f8ccd061738ff9dc2281f9c6a1fc3b"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, stale-while-revalidate=60, stale-if-error=86400
x-amz-version-id: xApk4oWQ8gJCwMagu81kHOhuI7RS5SwG
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: s-z0uLxNbNtYY_2FVfBFDRtLb8ptmD95SIZNZ8ORfcO7hgycRndptA==
age: 336222
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
www.trustedshops.com/bewertung/widget/widgets/X5871A0C7D73D7900FCB69E86E95A5123.gif
18.197.35.41200 OK 7.9 kB URL HTTP/2 www.trustedshops.com/bewertung/widget/widgets/X5871A0C7D73D7900FCB69E86E95A5123.gif
IP 18.197.35.41:0
File type GIF image data, version 87a, 140 x 204\012- data
Hash 27ab98f5f82e84233f1b5f51be1a4851
1f031d0ea4eb5b2ed6949087e607611312850425
59561a28f1e10251beb82def9cee56ada1326ffa35c42d7099f6ff8f16cc0431
GET /bewertung/widget/widgets/X5871A0C7D73D7900FCB69E86E95A5123.gif HTTP/1.1
Host: www.trustedshops.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:31:07 GMT
content-type: image/gif
content-length: 7903
server: Apache
last-modified: Sat, 03 Dec 2022 04:31:39 GMT
accept-ranges: bytes
cache-control: max-age=64832
expires: Sun, 04 Dec 2022 06:31:39 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), usb=(), web-share=(), xr-spatial-tracking=()
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
142.250.74.35200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Hash fe424f96cb627d8b835cb001af17f56e
c5b4368fed99812a99036fba86d01367b5549505
35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:17:08 GMT
expires: Tue, 28 Nov 2023 21:17:08 GMT
cache-control: public, max-age=31536000
age: 400439
last-modified: Mon, 18 Jul 2022 19:24:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2
142.250.74.35200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30480, version 1.0\012- data
Hash 0e7e5f9d3a8ef121149827180b790b5c
0e9f9333078e5df9245630ff6f68ba1d9da3c403
e8e147e15907f25cad69b2bcf060213efad4ed04e0d36374715cbca17b2afc1c
GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30480
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 20:08:19 GMT
expires: Thu, 30 Nov 2023 20:08:19 GMT
cache-control: public, max-age=31536000
age: 231768
last-modified: Wed, 27 Apr 2022 16:04:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2
142.250.74.35200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 29752, version 1.0\012- data
Hash ab1fc8621287e4ea9319a3136812cf80
fb4ed2e52e2a8d7ac50a7618a0c2ea5507a24ef3
7c00752ce82d6abaed0b9766d35b906b16675facdbe24115b410d1fab975effa
GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 18:32:05 GMT
expires: Wed, 29 Nov 2023 18:32:05 GMT
cache-control: public, max-age=31536000
age: 323942
last-modified: Wed, 27 Apr 2022 17:05:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
142.250.74.35200 OK 35 kB URL HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0\012- data
Hash 0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 12:29:21 GMT
expires: Fri, 01 Dec 2023 12:29:21 GMT
cache-control: public, max-age=31536000
age: 172906
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoC1CzjsGyN.woff2
142.250.74.35200 OK 39 kB URL HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoC1CzjsGyN.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 38752, version 1.0\012- data
Hash d451decbad0d0d2feba27610481a34d8
1479b2ad870d5e2bb04d206f33460089394f6eb5
a5515c53111bb4a4f45aff63d06df893ae9033dc85e82cc2ef27fc099a4d7609
GET /s/ubuntu/v20/4iCv6KVjbNBYlgoC1CzjsGyN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 38752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 08:31:55 GMT
expires: Fri, 01 Dec 2023 08:31:55 GMT
cache-control: public, max-age=31536000
age: 187152
last-modified: Wed, 27 Apr 2022 17:04:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669276702636_739d4f0c-a2ed-4ef1-9bee-7d65cf693a29?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges
151.101.246.208200 OK 15 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669276702636_739d4f0c-a2ed-4ef1-9bee-7d65cf693a29?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash 57f5ca2191682a5beca7d48845aea3b3
052798c7fe3182e48633de2c37e694b2c1751464
2b342fd45f66bb35c76aa67e4507028b10793f1ad01a0d92916d4c990cde1b6a
GET /8020b468-407f-466e-ad24-016f419a3148/1669276702636_739d4f0c-a2ed-4ef1-9bee-7d65cf693a29?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 23:36:39 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: e846811394802e4d9e434cbe400a39ef537fafb3
x-imgix-render-farm: 01.592
date: Sat, 03 Dec 2022 12:31:07 GMT
age: 392068
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10041-SJC, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 14930
X-Firefox-Spdy: h2
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669276719178_912e21e6-76cc-49c6-8dbf-9934f3996f84?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges
151.101.246.208200 OK 16 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669276719178_912e21e6-76cc-49c6-8dbf-9934f3996f84?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash 75b1cdbe3db3bbd6b02cdfbf790638f8
9da83b92149ef41002a3072aa6667bcd75f7b17f
e843edeeb0f7452fca3ad8de57f8be1627813e4205264dfb1e812e5e05b11dee
GET /8020b468-407f-466e-ad24-016f419a3148/1669276719178_912e21e6-76cc-49c6-8dbf-9934f3996f84?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 23:36:39 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 0fd3c4406ee185a09cee267843280bbecc4a02f5
x-imgix-render-farm: 01.592
date: Sat, 03 Dec 2022 12:31:07 GMT
age: 392067
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10074-SJC, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 16063
X-Firefox-Spdy: h2
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669276719023_3f5f2e26-00be-464f-9c51-bc36add6d225?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges
151.101.246.208200 OK 18 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669276719023_3f5f2e26-00be-464f-9c51-bc36add6d225?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash 3026f1ac0917c2facda1398d41c8b007
4810eaef5c8d095db9aeb88af56081935b4b288c
39798dbb05dfc3959fedf3acb8fe8b4157eb890d59fa97520c577c054d804500
GET /8020b468-407f-466e-ad24-016f419a3148/1669276719023_3f5f2e26-00be-464f-9c51-bc36add6d225?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 23:36:39 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: b98295138b247d8c551b7670d302cc295e9d754f
x-imgix-render-farm: 01.592
date: Sat, 03 Dec 2022 12:31:07 GMT
age: 392067
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10083-SJC, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 18384
X-Firefox-Spdy: h2
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669276719273_3a3f60a7-d68e-4402-a47b-b592ce40dfe7?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges
151.101.246.208200 OK 5.7 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669276719273_3a3f60a7-d68e-4402-a47b-b592ce40dfe7?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash f95dfdf12f2ddf6f7a00144a95fb25d1
9d857beaed6ddebe7fb6360b1558daf8066342f0
6a25c39f4ae26dbb0b2bd10c2b3337aeeb5a381803576eb7ff54217520a36738
GET /8020b468-407f-466e-ad24-016f419a3148/1669276719273_3a3f60a7-d68e-4402-a47b-b592ce40dfe7?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 23:36:39 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: cb931d119abc0ca0cf8551a8b9f922ecc1c973a0
x-imgix-render-farm: 01.592
date: Sat, 03 Dec 2022 12:31:07 GMT
age: 392068
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10073-SJC, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 5712
X-Firefox-Spdy: h2
cdn.iubenda.com/cookie_solution/iubenda_cs/1.43.0/core-it.js
138.199.37.229200 OK 68 kB URL HTTP/2 cdn.iubenda.com/cookie_solution/iubenda_cs/1.43.0/core-it.js
IP 138.199.37.229:0
ASN #60068 Datacamp Limited
File type Unicode text, UTF-8 text, with very long lines (65286), with no line terminators
Hash 6a30c9756ca8194df28b0b9d9351e28a
1fe85b8467781840f428025c90b38c1f81e11d6d
3f906eb765e62a23fa27a811a527113439fe66615c0e80a6909ddc0ba90aba55
GET /cookie_solution/iubenda_cs/1.43.0/core-it.js HTTP/1.1
Host: cdn.iubenda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:31:07 GMT
content-type: application/javascript
server: BunnyCDN-DE1-865
cdn-pullzone: 954456
cdn-uid: a7bd0c3f-43db-400a-80e2-073f933f3c99
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
etag: "6389a29e-f637"
last-modified: Fri, 02 Dec 2022 07:00:46 GMT
p3p: CP="DSP NOI COR", policyref="http://www.iubenda.com/w3c/p3p.xml"
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/02/2022 12:04:51
cdn-edgestorageid: 1047
cdn-status: 200
cdn-requestid: 491ab8dea658082eada3a26549d074ce
cdn-cache: HIT
X-Firefox-Spdy: h2
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669276719262_013b1039-d960-4a23-9727-a8acd3704549?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges
151.101.246.208200 OK 25 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669276719262_013b1039-d960-4a23-9727-a8acd3704549?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash 256bf6c2101ebf0e6e709d86ac12ee69
4528d31f3325e6f52f4cbae7119a9f7279483ab7
e118c56c11f3107f6de2f93bc483a3c14b3469e7648995206d845eb05544c449
GET /8020b468-407f-466e-ad24-016f419a3148/1669276719262_013b1039-d960-4a23-9727-a8acd3704549?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 23:36:39 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 9c18f020dadeecdc66d49e28bbf085b443708421
x-imgix-render-farm: 01.592
date: Sat, 03 Dec 2022 12:31:07 GMT
age: 392068
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10068-SJC, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 25176
X-Firefox-Spdy: h2
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669276719250_d20ab152-734a-4b71-8ca7-4cac2393300b?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges
151.101.246.208200 OK 11 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669276719250_d20ab152-734a-4b71-8ca7-4cac2393300b?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash 36d0327230fdfdf879729835bca69322
665c216444d72392bb44cfbd4b22da408baa53d1
abdce7e7d8d268f199bc389d44dd9bc1a568bf3d0d0b01ec79115764e5fe7e4b
GET /8020b468-407f-466e-ad24-016f419a3148/1669276719250_d20ab152-734a-4b71-8ca7-4cac2393300b?auto=format%2Ccompress&w=450&h=255&fit=crop&crop=faces%2Cedges HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 23:36:39 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 1a11599d4929261835c78663c5dedcb393885eb8
x-imgix-render-farm: 01.592
date: Sat, 03 Dec 2022 12:31:07 GMT
age: 392067
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10027-SJC, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 11396
X-Firefox-Spdy: h2
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669716655247_7f4ee840-5695-4994-b6aa-7ab59fa7481c?auto=format%2Ccompress&w=1280&h=224&fit=crop&crop=faces%2Cedges
151.101.246.208200 OK 16 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669716655247_7f4ee840-5695-4994-b6aa-7ab59fa7481c?auto=format%2Ccompress&w=1280&h=224&fit=crop&crop=faces%2Cedges
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash 58e340150e087b1b966f995ee4667a17
9182f7bfdba8c9b4b8583a5e6d6f7bae6e49ba65
d27dbc605646cbc4143052ee8ade881b7dc075f9999d51cbc52620a2ac8912a3
GET /8020b468-407f-466e-ad24-016f419a3148/1669716655247_7f4ee840-5695-4994-b6aa-7ab59fa7481c?auto=format%2Ccompress&w=1280&h=224&fit=crop&crop=faces%2Cedges HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 14:54:18 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 0850073ff6c94615a8357c6bd93fa75338582cf0
x-imgix-render-farm: 01.592
date: Sat, 03 Dec 2022 12:31:07 GMT
age: 164209
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10038-SJC, cache-hel1410031-HEL
x-cache: HIT, MISS
vary: Accept, User-Agent
content-length: 16442
X-Firefox-Spdy: h2
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669219311483_96866acd-4642-4bfa-a19b-48c73dea63f1?auto=format%2Ccompress&w=1280&h=416&fit=crop&crop=faces%2Cedges
151.101.246.208200 OK 38 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/1669219311483_96866acd-4642-4bfa-a19b-48c73dea63f1?auto=format%2Ccompress&w=1280&h=416&fit=crop&crop=faces%2Cedges
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash 51fc1b7cc90d1085e6be9574c9c98774
0fc51e2250d36b5d56fe67b0a6a81f75cd315f5e
73e3e8f2d4fa51c3fc98e2c97e607e05c105ffe22c232ce83adc4971137bc042
GET /8020b468-407f-466e-ad24-016f419a3148/1669219311483_96866acd-4642-4bfa-a19b-48c73dea63f1?auto=format%2Ccompress&w=1280&h=416&fit=crop&crop=faces%2Cedges HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 23:36:39 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 80ceccf0c5b7e4b6ff374372395d65973e97ee99
x-imgix-render-farm: 01.592
date: Sat, 03 Dec 2022 12:31:07 GMT
age: 392067
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10057-SJC, cache-hel1410031-HEL
x-cache: HIT, MISS
vary: Accept, User-Agent
content-length: 37816
X-Firefox-Spdy: h2
www.iubenda.com/cookie-solution/confs/js/92193333.js
194.242.11.186200 OK 5.2 kB URL HTTP/2 www.iubenda.com/cookie-solution/confs/js/92193333.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash 9f0fae692901663520ea86fc020e1fd7
f22212e8225debb537b29a24b72fd197f7f7d7c6
9702ecdb01a31dc283eb8e46400b2dad4e7f443b4a9316077afb156e8888c518
GET /cookie-solution/confs/js/92193333.js HTTP/1.1
Host: www.iubenda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:31:07 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 966339
cdn-uid: a7bd0c3f-43db-400a-80e2-073f933f3c99
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS
access-control-allow-origin: *
cache-control: public, max-age=3600
etag: W/"6387c533-9e"
last-modified: Wed, 30 Nov 2022 21:03:47 GMT
access-control-request-method: *
strict-transport-security: max-age=63072000
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/03/2022 12:31:07
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 8e2818ef5e5fe6bd8d2beddb4e144126
cdn-cache: BYPASS
content-encoding: br
X-Firefox-Spdy: h2
static.sportler.com/presentation/content/img/icons/android-icon-192x192.png
54.230.111.18200 OK 9.9 kB URL HTTP/2 static.sportler.com/presentation/content/img/icons/android-icon-192x192.png
IP 54.230.111.18:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 16a03fb16616dc2dc1fbebd2cd769527
6c8db669a7954d1f0b76b1f86f325dfda9ab3653
a1de6553eede81636627e972a89cffb548e7a2f9e45a593c14a84891f024a4da
GET /presentation/content/img/icons/android-icon-192x192.png HTTP/1.1
Host: static.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 9914
date: Sat, 26 Nov 2022 04:17:36 GMT
server: nginx
expires: Sat, 10 Dec 2022 04:17:36 GMT
access-control-allow-origin: *
cache-control: max-age=1209600, public, must-revalidate
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JLDOTTvbMn0LtRg1-sf7h6yvISwGQvhqlumLJMhuxItze_HAlDmi0g==
age: 634411
X-Firefox-Spdy: h2
config.styla.com/v2/boot?q=%7B%22client%22%3A%22sportler-it%22%2C%22areas%22%3A%5B%22home20221129%22%2C%22__notFound__%22%5D%7D
54.230.111.57200 OK 11 kB URL HTTP/2 config.styla.com/v2/boot?q=%7B%22client%22%3A%22sportler-it%22%2C%22areas%22%3A%5B%22home20221129%22%2C%22__notFound__%22%5D%7D
IP 54.230.111.57:0
File type Unicode text, UTF-8 text, with very long lines (65505), with no line terminators
Hash 6aeed53e101fc9804d9ce4e683ca7734
9b4d796ea300bca7504af7043f7e319b9040afe9
0014c3f8005bd6f4874b98880b2514e03142d78287fec1fd0850b61a2883b5bb
GET /v2/boot?q=%7B%22client%22%3A%22sportler-it%22%2C%22areas%22%3A%5B%22home20221129%22%2C%22__notFound__%22%5D%7D HTTP/1.1
Host: config.styla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-methods: GET, OPTION
access-control-allow-origin: https://www.sportler.com
access-control-max-age: 86400
cache-control: max-age=300, stale-while-revalidate=300, stale-if-error=86400, s-maxage=300
date: Sat, 03 Dec 2022 12:30:30 GMT
x-powered-by: Express
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CRtup3eFSYYgxyhFm1lq9xkiycySdm9gcNCMoDXNmLaf0__OxnpdXQ==
age: 37
X-Firefox-Spdy: h2
hits-i.iubenda.com/write?db=hits1
194.242.11.186204 No Content 0 B URL HTTP/2 hits-i.iubenda.com/write?db=hits1
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /write?db=hits1 HTTP/1.1
Host: hits-i.iubenda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: Basic aGl0czFfdTpoaXRzMV91cHdk
Content-Type: text/plain;charset=UTF-8
Content-Length: 39
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 12:31:07 GMT
server: BunnyCDN-NO1-830
cdn-pullzone: 967785
cdn-uid: a7bd0c3f-43db-400a-80e2-073f933f3c99
cdn-requestcountrycode: NO
access-control-allow-headers: Accept, Accept-Encoding, Authorization, Content-Length, Content-Type, X-CSRF-Token, X-HTTP-Method-Override
access-control-allow-methods: DELETE, GET, OPTIONS, POST, PUT
access-control-allow-origin: https://www.sportler.com
access-control-expose-headers: Date, X-InfluxDB-Version, X-InfluxDB-Build
cache-control: public, max-age=0
request-id: 5ca37547-7306-11ed-9f4c-0242ac110002
x-influxdb-build: OSS
x-influxdb-version: 1.8.2
x-request-id: 5ca37547-7306-11ed-9f4c-0242ac110002
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 204
cdn-cachedat: 12/03/2022 12:31:07
cdn-edgestorageid: 830
cdn-status: 204
cdn-requestid: 79ebb4a76099a34c617ffcabda18c23f
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
216.239.38.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.38.178:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 03 Dec 2022 10:41:08 GMT
expires: Sat, 03 Dec 2022 12:41:08 GMT
cache-control: public, max-age=7200
age: 6600
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-121786061-47&cid=935677237.1670070666&jid=752850398&gjid=1710670586&_gid=1368651900.1670070666&_u=YGDAgEABAAAAAEAAI~&z=181836802
108.177.14.155200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-121786061-47&cid=935677237.1670070666&jid=752850398&gjid=1710670586&_gid=1368651900.1670070666&_u=YGDAgEABAAAAAEAAI~&z=181836802
IP 108.177.14.155:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-121786061-47&cid=935677237.1670070666&jid=752850398&gjid=1710670586&_gid=1368651900.1670070666&_u=YGDAgEABAAAAAEAAI~&z=181836802 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.sportler.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 03 Dec 2022 12:31:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-733090-3&cid=935677237.1670070666&jid=529747897&gjid=66314495&_gid=1368651900.1670070666&_u=YGDAgEABAAAAAEAAI~&z=300722007
108.177.14.155200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-733090-3&cid=935677237.1670070666&jid=529747897&gjid=66314495&_gid=1368651900.1670070666&_u=YGDAgEABAAAAAEAAI~&z=300722007
IP 108.177.14.155:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-733090-3&cid=935677237.1670070666&jid=529747897&gjid=66314495&_gid=1368651900.1670070666&_u=YGDAgEABAAAAAEAAI~&z=300722007 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.sportler.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 03 Dec 2022 12:31:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.sportler.com/it/AjaxPersonalizedContentLandingPage/ajaxPersonalizedCtx-ViewHome-cid-121.html
151.101.66.133200 OK 42 kB URL HTTP/2 www.sportler.com/it/AjaxPersonalizedContentLandingPage/ajaxPersonalizedCtx-ViewHome-cid-121.html
IP 151.101.66.133:0
Hash 4c9b25f371079bb9da050ba92d21a56d
dbc41f4c63ab96e9387f284c4a3f1634e0dea930
c8f04894f6b205578e45d56c34677b6f59ae3f3ed3848dcdf053787db7eadc88
POST /it/AjaxPersonalizedContentLandingPage/ajaxPersonalizedCtx-ViewHome-cid-121.html HTTP/1.1
Host: www.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: Apache
set-cookie: JSESSIONID=1A76FC3ACD78DF22A3AC2BAE16FFDCB4; Path=/; Secure; HttpOnly
PartnerIdCookie=Y3VycmVudF9wYXJ0bmVyaWQ9dm9pZA; Max-Age=2678400; Expires=Tue, 03 Jan 2023 12:31:07 GMT; Path=/
cache-control: private, no-cache, no-store, must-revalidate
portal-engine: alpin.it db/portal server
x-frame-options: allow-from https://suite5.emarsys.net
content-security-policy: frame-ancestors https://suite5.emarsys.net https://admin.scarabresearch.com https://webchannel.static.emarsys.net
content-encoding: gzip
x-debug: www-ssl epoch time t=1670070667552691
content-type: text/html;charset=UTF-8
x-shield-generation: 2003
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
x-edge-generation: 2003
date: Sat, 03 Dec 2022 12:31:07 GMT
x-served-by: cache-mxp6935-MXP, cache-bma1660-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1670070667.451822,VS0,VE123
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 6cf7f423e1fd745023f4090f16cb168f
894b534fdad36c424baff4d6466f416229e00a69
f3661451f5890a07a6ad31cac8c1801e6c208f23cd0a0c0480bfcffb58c963c7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 03 Dec 2022 12:31:08 GMT
Last-Modified: Sat, 03 Dec 2022 11:43:04 GMT
Server: ECS (dcb/7F80)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KNLrw19dxqj9aFcJ4nFUhQqHFguirbhEpWm3MD83M9dvtiY69RYWgw==
Age: 2884
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 6cf7f423e1fd745023f4090f16cb168f
894b534fdad36c424baff4d6466f416229e00a69
f3661451f5890a07a6ad31cac8c1801e6c208f23cd0a0c0480bfcffb58c963c7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136931
Date: Sat, 03 Dec 2022 12:31:08 GMT
Etag: "638ab4e7-1d7"
Expires: Mon, 05 Dec 2022 02:33:19 GMT
Last-Modified: Sat, 03 Dec 2022 02:31:03 GMT
Server: ECS (dcb/7F3B)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: P5xEuqaoqUKChq8qu4LhBiWWolFnt4j_IDgyl1_pmexVFWZmLq-E1w==
Age: 136
instagramproxy.styla.com/get_styla/media
54.175.207.121404 Not Found 0 B URL HTTP/1.1 instagramproxy.styla.com/get_styla/media
IP 54.175.207.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /get_styla/media HTTP/1.1
Host: instagramproxy.styla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
access-control-allow-origin: https://www.sportler.com
access-control-expose-headers: api-version, content-length, content-md5, content-type, date, request-id, response-time
Cache-control: max-age=1600, stale-while-revalidate=60, stale-if-error=86400
Date: Sat, 03 Dec 2022 12:31:08 GMT
Server: instagramProxy
vary: origin
Content-Length: 0
Connection: keep-alive
instagramproxy.styla.com/17841402496187756/media
54.175.207.121200 OK 21 kB URL HTTP/1.1 instagramproxy.styla.com/17841402496187756/media
IP 54.175.207.121:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (20697), with no line terminators
Hash e8780141731c6643659909842cfc9414
f76b1a61999b54902ff804e8ce64803f03bbd005
bd014cf0f95e814163735fb6475a9c2e559e0c8419664a0674f637e83074a606
GET /17841402496187756/media HTTP/1.1
Host: instagramproxy.styla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: https://www.sportler.com
access-control-expose-headers: api-version, content-length, content-md5, content-type, date, request-id, response-time
Cache-control: max-age=1600, stale-while-revalidate=60, stale-if-error=86400
Content-Type: application/json
Date: Sat, 03 Dec 2022 12:31:08 GMT
Server: instagramProxy
vary: origin
Content-Length: 21019
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 060c8cd318816264e0aa5092f8eee023
6fd6a1f306afaf2c81df81130f19697420bd01aa
b5171324c50166d8548b7a8709f58a1d64bc969d93deb16161b1dd0c1dd5b6d2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=169341
Date: Sat, 03 Dec 2022 12:31:08 GMT
Etag: "638b1b7c-1d7"
Expires: Mon, 05 Dec 2022 11:33:29 GMT
Last-Modified: Sat, 03 Dec 2022 09:48:44 GMT
Server: ECS (dcb/7F80)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JBXmIUhUlS6FsBrsh6-HruGgLhuvVF5AUaI3doDcT1eKF_TphVT67A==
Age: 6285
redpanda.styla.com/v1/feed/tags/sportler-it/home?limit=9
54.230.111.11200 OK 20 kB URL HTTP/2 redpanda.styla.com/v1/feed/tags/sportler-it/home?limit=9
IP 54.230.111.11:0
Hash 98bb0f42ed029c276afe0355da2757ef
1003fcbbad223548a458aa8153a1a8d8e5a2cd4e
24baecf23afac49dd885f26ebb9bd4f10c642cb94e9836a2423c9df2e40a921a
GET /v1/feed/tags/sportler-it/home?limit=9 HTTP/1.1
Host: redpanda.styla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-origin: *
cache-control: max-age=300, must-revalidate
date: Sat, 03 Dec 2022 12:29:06 GMT
x-powered-by: Express
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: foBm4_kf9sUWOmLR8cbIitExEvgEfuPdGiUfDOXLn0HeurjzNxOgaQ==
age: 121
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1377c2956f6d4d989e6fafbe01600b49
7a550dd67e42a8f1ba1468646af02691d0580345
4e0206cd8e1112cdefa7f974876461a968bbcbbf016b1b1c2e3af77346507886
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-733090-1&cid=935677237.1670070666&jid=449594072&_u=YGDAgEABAAAAAEAAI~&z=1104969808
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-733090-1&cid=935677237.1670070666&jid=449594072&_u=YGDAgEABAAAAAEAAI~&z=1104969808
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-733090-1&cid=935677237.1670070666&jid=449594072&_u=YGDAgEABAAAAAEAAI~&z=1104969808 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 12:31:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-733090-1&cid=935677237.1670070666&jid=449594072&_u=YGDAgEABAAAAAEAAI~&z=1104969808
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-733090-1&cid=935677237.1670070666&jid=449594072&_u=YGDAgEABAAAAAEAAI~&z=1104969808
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-733090-1&cid=935677237.1670070666&jid=449594072&_u=YGDAgEABAAAAAEAAI~&z=1104969808 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 12:31:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f3a4f3edea56419c58836a0c80d5cea
1558a7ad0acc0c09cdf39ec92030f7ee5736e595
70aeda0cb136ac1add86931a338558b9f302576cd65537575d232fda623fe2f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/6efe3199-997d-4116-bb28-efa68cdf5454?auto=format%2Ccompress&w=616&h=312&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges
151.101.246.208200 OK 17 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/6efe3199-997d-4116-bb28-efa68cdf5454?auto=format%2Ccompress&w=616&h=312&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash 407a23d008887586213b7bdba05de54a
a9014b33fc0532abd5775bd9deafe33ed02fd66a
acb9bdee5c7ca0236174079c697c49552257af34f54f53cb5f21c96346537eb6
GET /8020b468-407f-466e-ad24-016f419a3148/6efe3199-997d-4116-bb28-efa68cdf5454?auto=format%2Ccompress&w=616&h=312&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 13:26:35 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 47c4716f6937eadb86ea5d0d905ac3b7fdda5faa
x-imgix-render-farm: 01.592
date: Sat, 03 Dec 2022 12:31:09 GMT
age: 169473
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10020-SJC, cache-hel1410031-HEL
x-cache: HIT, MISS
vary: Accept, User-Agent
content-length: 17391
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c97dea598dd09bc8176999f4bdb94e2a
a205d9e96839ff60e315e388b28e60a36a385c40
06d9ac361cd894dfa0c3eae1f6d04da04640f4cd6a3163312e2706e3c88c5fa4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2522
Cache-Control: max-age=128883
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:09 GMT
Etag: "638a8c26-1d7"
Expires: Mon, 05 Dec 2022 00:19:12 GMT
Last-Modified: Fri, 02 Dec 2022 23:37:10 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c97dea598dd09bc8176999f4bdb94e2a
a205d9e96839ff60e315e388b28e60a36a385c40
06d9ac361cd894dfa0c3eae1f6d04da04640f4cd6a3163312e2706e3c88c5fa4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2522
Cache-Control: max-age=128883
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:09 GMT
Etag: "638a8c26-1d7"
Expires: Mon, 05 Dec 2022 00:19:12 GMT
Last-Modified: Fri, 02 Dec 2022 23:37:10 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c97dea598dd09bc8176999f4bdb94e2a
a205d9e96839ff60e315e388b28e60a36a385c40
06d9ac361cd894dfa0c3eae1f6d04da04640f4cd6a3163312e2706e3c88c5fa4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2559
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:09 GMT
Last-Modified: Sat, 03 Dec 2022 11:48:30 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/8842c437-7c8e-49be-844a-cc8ac18a7da9?auto=format%2Ccompress&w=616&h=352&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges
151.101.246.208200 OK 19 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/8842c437-7c8e-49be-844a-cc8ac18a7da9?auto=format%2Ccompress&w=616&h=352&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash 3cbeed6ef969647d971cc3446f471d91
a626a973132442db9e594a478b5e7bc0375bb5e0
eddd6b7450390c9bb4e37ae5b8e622f49d10fbd4fa307ef8e6388f5825bfaec5
GET /8020b468-407f-466e-ad24-016f419a3148/8842c437-7c8e-49be-844a-cc8ac18a7da9?auto=format%2Ccompress&w=616&h=352&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 08:44:50 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: c48bdfe472f07fbf8b4ca9186653baa460b24afa
x-imgix-render-farm: 01.1104
date: Sat, 03 Dec 2022 12:31:09 GMT
age: 186378
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10025-SJC, cache-hel1410031-HEL
x-cache: HIT, MISS
vary: Accept, User-Agent
content-length: 18976
X-Firefox-Spdy: h2
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/dac87985-b34c-49a6-8359-eb306756fdaa?auto=format%2Ccompress&w=162&h=169&fit=original&rect=214%2C259%2C1314%2C1367
151.101.246.208200 OK 2.8 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/dac87985-b34c-49a6-8359-eb306756fdaa?auto=format%2Ccompress&w=162&h=169&fit=original&rect=214%2C259%2C1314%2C1367
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash 5bf3f6097afca41903ae07d77c2bb390
5002396fed6b412744d8e91c4f4834a7d76e8a72
59801c76fd3a4b7bbbeb1467bff4865dc2599b01e467b66e8e4ceaf4fa40b622
GET /8020b468-407f-466e-ad24-016f419a3148/dac87985-b34c-49a6-8359-eb306756fdaa?auto=format%2Ccompress&w=162&h=169&fit=original&rect=214%2C259%2C1314%2C1367 HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 10:35:45 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: d35bf07f6a1ce53be9ff8eeac6c92235bfb0930e
x-imgix-render-farm: 01.592
date: Sat, 03 Dec 2022 12:31:09 GMT
age: 179724
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10023-SJC, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 2792
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c97dea598dd09bc8176999f4bdb94e2a
a205d9e96839ff60e315e388b28e60a36a385c40
06d9ac361cd894dfa0c3eae1f6d04da04640f4cd6a3163312e2706e3c88c5fa4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2522
Cache-Control: max-age=128883
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:31:09 GMT
Etag: "638a8c26-1d7"
Expires: Mon, 05 Dec 2022 00:19:12 GMT
Last-Modified: Fri, 02 Dec 2022 23:37:10 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
styla-prod-us.imgix.net/b160b1fe-0aff-4f1f-9d94-cb8a85c37fb7?auto=format%2Ccompress&w=392&h=528&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges
151.101.246.208200 OK 44 kB URL HTTP/2 styla-prod-us.imgix.net/b160b1fe-0aff-4f1f-9d94-cb8a85c37fb7?auto=format%2Ccompress&w=392&h=528&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash d997207e2a46818eb3ff0104a79ee2a9
a48aa3be19494e665ab8da87fdcac64055c6dda3
f7d320f0be06d8ad2671d127c31f989b486da810dea580007264ab11a79e2bd8
GET /b160b1fe-0aff-4f1f-9d94-cb8a85c37fb7?auto=format%2Ccompress&w=392&h=528&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 13:26:35 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: a20755851bc4afc04a91df4020b9abc1b100a899
x-imgix-render-farm: 01.592
date: Sat, 03 Dec 2022 12:31:09 GMT
age: 169473
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10080-SJC, cache-hel1410031-HEL
x-cache: HIT, MISS
vary: Accept, User-Agent
content-length: 44056
X-Firefox-Spdy: h2
scontent-iad3-2.cdninstagram.com/v/t51.2885-15/316645607_865324194665578_9203690099559628455_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=IEe9Y6XsIPQAX-gbNaa&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AP4hL3IEAAAA&oh=00_AfB0tJ_CMZ9g4_lDAEYBQDh49AgRiCg4E9jKG6mWVvTlUg&oe=639115E0
157.240.229.63200 OK 20 kB URL HTTP/2 scontent-iad3-2.cdninstagram.com/v/t51.2885-15/316645607_865324194665578_9203690099559628455_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=IEe9Y6XsIPQAX-gbNaa&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AP4hL3IEAAAA&oh=00_AfB0tJ_CMZ9g4_lDAEYBQDh49AgRiCg4E9jKG6mWVvTlUg&oe=639115E0
IP 157.240.229.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Hash c2d72aac82468db882cfa0e5e26b5bcf
0fa3ed73aae3dc032e42c494b0ca00dffb7fee31
cf85eb1d66e964fcfb3f559ad7083786a2625f2829f77211c66c6619cdc208e7
GET /v/t51.2885-15/316645607_865324194665578_9203690099559628455_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=IEe9Y6XsIPQAX-gbNaa&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AP4hL3IEAAAA&oh=00_AfB0tJ_CMZ9g4_lDAEYBQDh49AgRiCg4E9jKG6mWVvTlUg&oe=639115E0 HTTP/1.1
Host: scontent-iad3-2.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Thu, 24 Nov 2022 16:00:58 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 3714971992
x-needle-checksum: 1691667669
content-digest: adler32=1691667669
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 20529
x-fb-trip-id: 1718053925
date: Sat, 03 Dec 2022 12:31:09 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-iad3-2.cdninstagram.com/v/t51.29350-15/317252388_883407976347910_3205702425174662652_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=OcFvslvv4iAAX8FHtFz&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AP4hL3IEAAAA&oh=00_AfA-8T0EgKPFUjcz0EpCTgl0GO-HYMXWeSe2dX4H-uMYQQ&oe=63907573
157.240.229.63200 OK 45 kB URL HTTP/2 scontent-iad3-2.cdninstagram.com/v/t51.29350-15/317252388_883407976347910_3205702425174662652_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=OcFvslvv4iAAX8FHtFz&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AP4hL3IEAAAA&oh=00_AfA-8T0EgKPFUjcz0EpCTgl0GO-HYMXWeSe2dX4H-uMYQQ&oe=63907573
IP 157.240.229.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x408, components 3\012- data
Hash 0836eb6c9ef08d234dc01af91b24bb21
6d828681daf3ed8b6d692f148a9a41ddc4b76b41
563a177df01f028a5d7809fc40accb7f13819e7ea2b25ac3b4ceee125d55768f
GET /v/t51.29350-15/317252388_883407976347910_3205702425174662652_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=OcFvslvv4iAAX8FHtFz&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AP4hL3IEAAAA&oh=00_AfA-8T0EgKPFUjcz0EpCTgl0GO-HYMXWeSe2dX4H-uMYQQ&oe=63907573 HTTP/1.1
Host: scontent-iad3-2.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Tue, 29 Nov 2022 16:04:34 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 3497120374
x-needle-checksum: 2014935980
content-digest: adler32=2014935980
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 45012
x-fb-trip-id: 1718053925
date: Sat, 03 Dec 2022 12:31:09 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/d849356b-8657-476e-b8d6-b588c8a2cb32?auto=format%2Ccompress&w=499&h=416&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges
151.101.246.208200 OK 11 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/d849356b-8657-476e-b8d6-b588c8a2cb32?auto=format%2Ccompress&w=499&h=416&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash 53b0c2ba3bca3395d4acca3a675800d8
74c67c5d8c6797274fae95b7ec6db5fe5f6d1e14
fb18a4007f85aa5745e088332fb6b815392d9ebaf70082d3c8def23d69fa3e8c
GET /8020b468-407f-466e-ad24-016f419a3148/d849356b-8657-476e-b8d6-b588c8a2cb32?auto=format%2Ccompress&w=499&h=416&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 13:26:36 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 355288a536fede57fad1e5981f541b924c29d206
x-imgix-render-farm: 01.1104
date: Sat, 03 Dec 2022 12:31:09 GMT
age: 169473
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10054-SJC, cache-hel1410031-HEL
x-cache: HIT, MISS
vary: Accept, User-Agent
content-length: 11301
X-Firefox-Spdy: h2
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/92be8352-eb3c-4ef2-80d2-93ffc5da6c02?auto=format%2Ccompress&w=125&h=196&fit=original&rect=267%2C0%2C1203%2C1889
151.101.246.208200 OK 2.5 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/92be8352-eb3c-4ef2-80d2-93ffc5da6c02?auto=format%2Ccompress&w=125&h=196&fit=original&rect=267%2C0%2C1203%2C1889
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash 560e289e326af7dab5ebbe802c553498
674ef7a73610cf8705ccff44921b2f73175718e3
6aaa43c4421a99f293e1c29091478bf463af4b6508eebb088ce8b0d20bdf3892
GET /8020b468-407f-466e-ad24-016f419a3148/92be8352-eb3c-4ef2-80d2-93ffc5da6c02?auto=format%2Ccompress&w=125&h=196&fit=original&rect=267%2C0%2C1203%2C1889 HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 21:04:44 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 21eb742ec298f03a26732c7ba60e9f2647a5e65f
x-imgix-render-farm: 01.592
date: Sat, 03 Dec 2022 12:31:09 GMT
age: 314785
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10042-SJC, cache-hel1410031-HEL
x-cache: HIT, MISS
vary: Accept, User-Agent
content-length: 2482
X-Firefox-Spdy: h2
scontent-iad3-2.cdninstagram.com/v/t51.2885-15/317372971_833657304580008_7501663340954767581_n.jpg?_nc_cat=102&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=MT17h4VIJiYAX_iL5l4&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AP4hL3IEAAAA&oh=00_AfBTgA97z9fU5zP7X9lk9Z2SCuQ3JTO8hGEwscApZHHgWA&oe=638FA657
157.240.229.63200 OK 280 kB URL HTTP/2 scontent-iad3-2.cdninstagram.com/v/t51.2885-15/317372971_833657304580008_7501663340954767581_n.jpg?_nc_cat=102&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=MT17h4VIJiYAX_iL5l4&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AP4hL3IEAAAA&oh=00_AfBTgA97z9fU5zP7X9lk9Z2SCuQ3JTO8hGEwscApZHHgWA&oe=638FA657
IP 157.240.229.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x1440, components 3\012- data
Size 280 kB (279922 bytes)
Hash 3869aac6d77031e300eebb8e133004f4
cd64c04cc028494a803ffd436b239aadccde3ef2
56abbd757e1806f2272d729f8880a96762492a0e60cf49750ca98d4221f2880d
GET /v/t51.2885-15/317372971_833657304580008_7501663340954767581_n.jpg?_nc_cat=102&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=MT17h4VIJiYAX_iL5l4&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AP4hL3IEAAAA&oh=00_AfBTgA97z9fU5zP7X9lk9Z2SCuQ3JTO8hGEwscApZHHgWA&oe=638FA657 HTTP/1.1
Host: scontent-iad3-2.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Thu, 01 Dec 2022 16:01:17 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 1388219477
x-needle-checksum: 1820935750
content-digest: adler32=1820935750
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 279922
x-fb-trip-id: 1718053925
date: Sat, 03 Dec 2022 12:31:09 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-iad3-2.cdninstagram.com/v/t51.29350-15/317240706_877898586727472_8414461149623645482_n.jpg?_nc_cat=108&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=SdzunqarxtMAX_N2R3A&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AP4hL3IEAAAA&oh=00_AfCjByiycLmSlY4c-_ukagOm8WpZOeQz08ahZZZYVt7xyQ&oe=638FAF7F
157.240.229.63200 OK 446 kB URL HTTP/2 scontent-iad3-2.cdninstagram.com/v/t51.29350-15/317240706_877898586727472_8414461149623645482_n.jpg?_nc_cat=108&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=SdzunqarxtMAX_N2R3A&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AP4hL3IEAAAA&oh=00_AfCjByiycLmSlY4c-_ukagOm8WpZOeQz08ahZZZYVt7xyQ&oe=638FAF7F
IP 157.240.229.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x1795, components 3\012- data
Size 446 kB (445815 bytes)
Hash 25ead598f2ccd2f828f61d9799f45e51
d052494a5f53efe16fb5b835dd166c526a38fbe7
fb6307de4bd2f79fc46afa5f63bbec014d1002bd129f3959e6cd44b04bd42a1f
GET /v/t51.29350-15/317240706_877898586727472_8414461149623645482_n.jpg?_nc_cat=108&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=SdzunqarxtMAX_N2R3A&_nc_ht=scontent-iad3-2.cdninstagram.com&edm=AP4hL3IEAAAA&oh=00_AfCjByiycLmSlY4c-_ukagOm8WpZOeQz08ahZZZYVt7xyQ&oe=638FAF7F HTTP/1.1
Host: scontent-iad3-2.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sat, 26 Nov 2022 20:04:38 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 1088114090
x-needle-checksum: 3798185325
accept-ranges: bytes
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-length: 445815
content-digest: adler32=3798185325
x-fb-trip-id: 1718053925
date: Sat, 03 Dec 2022 12:31:09 GMT
cache-control: max-age=1209600, no-transform
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/91ab3e7f-9505-4088-b1f9-2f15b231d835?auto=format%2Ccompress&w=143&h=167&fit=original&rect=252%2C272%2C1197%2C1395
151.101.246.208200 OK 2.7 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/91ab3e7f-9505-4088-b1f9-2f15b231d835?auto=format%2Ccompress&w=143&h=167&fit=original&rect=252%2C272%2C1197%2C1395
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash cda6869ac063c9c06f03233d11c55acc
12039969fa2cb9b5d5414db12ce50410aaa7f141
193f71885a30900d0b550b85afa2009018fe06be654ff1ee0463f9144e8fe04c
GET /8020b468-407f-466e-ad24-016f419a3148/91ab3e7f-9505-4088-b1f9-2f15b231d835?auto=format%2Ccompress&w=143&h=167&fit=original&rect=252%2C272%2C1197%2C1395 HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 16:15:03 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 7d9014c58a0391d886eb304c3b5b4cc99aa3a32c
x-imgix-render-farm: 01.592
date: Sat, 03 Dec 2022 12:31:09 GMT
age: 332166
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10045-SJC, cache-hel1410031-HEL
x-cache: HIT, MISS
vary: Accept, User-Agent
content-length: 2686
X-Firefox-Spdy: h2
styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/76edf359-aef7-4be5-bef5-33c4d1d82972?auto=format%2Ccompress&w=481&h=408&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges
151.101.246.208200 OK 50 kB URL HTTP/2 styla-prod-us.imgix.net/8020b468-407f-466e-ad24-016f419a3148/76edf359-aef7-4be5-bef5-33c4d1d82972?auto=format%2Ccompress&w=481&h=408&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges
IP 151.101.246.208:0
File type ISO Media, AVIF Image\012- data
Hash b8f91f795043bebb02bc22ea7d89fe29
10395d0887031590bb1f135e1e953aef36f557ca
0eeb6b7b9116351947b103666687e967e2806b3f0ccbf9f33f479797c3d01726
GET /8020b468-407f-466e-ad24-016f419a3148/76edf359-aef7-4be5-bef5-33c4d1d82972?auto=format%2Ccompress&w=481&h=408&fit=crop&rect=0%2C0%2C2000%2C1260&crop=faces%2Cedges HTTP/1.1
Host: styla-prod-us.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 30 Nov 2022 09:29:54 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 5b3db83e2534e4d3e4fa6b084aaae30870b3fbd7
x-imgix-render-farm: 01.592
date: Sat, 03 Dec 2022 12:31:09 GMT
age: 270075
accept-ranges: bytes
content-type: image/avif
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10080-SJC, cache-hel1410031-HEL
x-cache: HIT, MISS
vary: Accept, User-Agent
content-length: 50249
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Permanent+Marker&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Permanent+Marker&display=swap
IP 142.250.74.106:0
GET /css?family=Permanent+Marker&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://big-promotion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 12:31:05 GMT
date: Sat, 03 Dec 2022 12:31:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
engine.styla.com/init.js
143.204.55.69200 OK 0 B IP 143.204.55.69:0
GET /init.js HTTP/1.1
Host: engine.styla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 17 Nov 2022 10:56:39 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: i_SXI.QudJZSGK7yMyOm.tp_uN2fu3xc
server: AmazonS3
content-encoding: gzip
date: Fri, 02 Dec 2022 15:07:29 GMT
cache-control: max-age=86400, stale-while-revalidate=60, stale-if-error=86400
etag: W/"1bfe3d85813dfe419b1b5b13119679fd"
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3X8GU9SgPEPtnclnciStiz5EnixVmaa4BtaxRnJ64oKdhR6gerx2Pg==
age: 77019
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Ubuntu+Mono
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Ubuntu+Mono
IP 142.250.74.106:0
GET /css?family=Ubuntu+Mono HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 12:31:06 GMT
date: Sat, 03 Dec 2022 12:31:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
engine.styla.com/xe/22d321-d01b572c/4.css
143.204.55.69200 OK 0 B URL HTTP/2 engine.styla.com/xe/22d321-d01b572c/4.css
IP 143.204.55.69:0
GET /xe/22d321-d01b572c/4.css HTTP/1.1
Host: engine.styla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Tue, 29 Nov 2022 15:07:45 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 86400
last-modified: Thu, 17 Nov 2022 10:56:04 GMT
etag: W/"81d3a74f6b8850f7adb77cb8ba35e929"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, stale-while-revalidate=60, stale-if-error=86400
x-amz-version-id: MaPMNLdJx.1p0HoOrWVcDlLuRsBQM0ZX
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2cVAE6a2xATZJIiksOhOidwhbytj2nlChsVt6XrcCBvW6A3m9Q4Hpw==
age: 336203
X-Firefox-Spdy: h2
engine.styla.com/xe/22d321-d01b572c/4.css
143.204.55.69200 OK 0 B URL HTTP/2 engine.styla.com/xe/22d321-d01b572c/4.css
IP 143.204.55.69:0
GET /xe/22d321-d01b572c/4.css HTTP/1.1
Host: engine.styla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Tue, 29 Nov 2022 15:07:36 GMT
last-modified: Thu, 17 Nov 2022 10:56:04 GMT
etag: W/"81d3a74f6b8850f7adb77cb8ba35e929"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, stale-while-revalidate=60, stale-if-error=86400
x-amz-version-id: MaPMNLdJx.1p0HoOrWVcDlLuRsBQM0ZX
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bfl3i-vU6ZPHlBFQF-JFJB4UZ9cB36ZzGk-efaA8ljrGq8k55sjDYA==
age: 336212
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
my-static.sportler.com/newsletter-register/frontend/newsletter-register.js?_=241020191608
54.230.111.67200 OK 0 B URL HTTP/2 my-static.sportler.com/newsletter-register/frontend/newsletter-register.js?_=241020191608
IP 54.230.111.67:0
GET /newsletter-register/frontend/newsletter-register.js?_=241020191608 HTTP/1.1
Host: my-static.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
date: Sun, 27 Mar 2022 12:19:24 GMT
server: nginx
last-modified: Thu, 24 Oct 2019 14:01:14 GMT
etag: "5db1aeaa-52b0e-gzip"
expires: Mon, 27 Mar 2023 12:19:24 GMT
pragma: public
cache-control: max-age=31536000, public
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tbo2AfXvTxi4aBeDIaiBqmsfP9yjXbmOYVY4bscNv_O5541uA2ELww==
age: 21687103
X-Firefox-Spdy: h2
beta.mybettermb.com/adServe/domainClick?ai=IMh5EoW_2OoHygiiY-2otWSZVu5NPqSq-h2rSoksoBqNG2LV3Zkk-L8FPCSjKZr_YsQ0yRxpJ6k8LlotqmtX7ErGSkvN2YlGY4HZ8X7cx-dM1QaxFxK0PHGpJGlCLAoWMnzoVZuce8ueVaQ0F217-cHwFJ-CDJF8T7C2wcJ1dqtoOgN9pzNxgl6S4oChQzOvrPE96Ym7CMGlXRdGMK-TkKMF_XSxG7q5c9lRJWHNr4s5bSTdWcYVZJciO9bgcuS1jIeAEiXnU3VYEUAru7F_DuXugOnM5m-8Jm7EhOsk27bxGYd3vi6Mg89LCz5E8ciHT2L9NFyVXF77W8amRP1OQPKqHlok5Wh6bM7TR-A6o2LnrG8E1DfQ9Vu8kUSrMxroonOqLNsrJIKgUSZw7eMl7vr4nvPsKvQNOYwwqJPWDKxkmVbuTT6kqjvQfnk4ki0ivitaEXZPV_A9yZrhH3-Sbs19d78A9yty8XBUwr7h6bOOF0SokHo2PZeYO9hdbD2Gn6oVmfmCmc-q0T2xsmJwnBfZ8RtWPEH2SnZADPOdLz_p-OGBQW3exAhKJncPyYXssKbYd4jRL3fz-AbClJeve1IAxxj8fbHTscWi84ZIOk0qJeEuaLJ-WEdDYOEm2_nsCKidNDxuV5s&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukPNfXe_APcrct9aEuZ5hifkANoM0k81b9WH7szAu7BNyZUtxct_oZmwQnm-RLg807bPo0o8POs0hg&si=1&oref=e2905b67c440133e06d94d472902354c&optunit=g1X1rV7f4BpBS4YUfGI2rw&rb=2Vb288azLYM&rr=1&abtg=0
108.168.193.189200 OK 0 B URL HTTP/2 beta.mybettermb.com/adServe/domainClick?ai=IMh5EoW_2OoHygiiY-2otWSZVu5NPqSq-h2rSoksoBqNG2LV3Zkk-L8FPCSjKZr_YsQ0yRxpJ6k8LlotqmtX7ErGSkvN2YlGY4HZ8X7cx-dM1QaxFxK0PHGpJGlCLAoWMnzoVZuce8ueVaQ0F217-cHwFJ-CDJF8T7C2wcJ1dqtoOgN9pzNxgl6S4oChQzOvrPE96Ym7CMGlXRdGMK-TkKMF_XSxG7q5c9lRJWHNr4s5bSTdWcYVZJciO9bgcuS1jIeAEiXnU3VYEUAru7F_DuXugOnM5m-8Jm7EhOsk27bxGYd3vi6Mg89LCz5E8ciHT2L9NFyVXF77W8amRP1OQPKqHlok5Wh6bM7TR-A6o2LnrG8E1DfQ9Vu8kUSrMxroonOqLNsrJIKgUSZw7eMl7vr4nvPsKvQNOYwwqJPWDKxkmVbuTT6kqjvQfnk4ki0ivitaEXZPV_A9yZrhH3-Sbs19d78A9yty8XBUwr7h6bOOF0SokHo2PZeYO9hdbD2Gn6oVmfmCmc-q0T2xsmJwnBfZ8RtWPEH2SnZADPOdLz_p-OGBQW3exAhKJncPyYXssKbYd4jRL3fz-AbClJeve1IAxxj8fbHTscWi84ZIOk0qJeEuaLJ-WEdDYOEm2_nsCKidNDxuV5s&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukPNfXe_APcrct9aEuZ5hifkANoM0k81b9WH7szAu7BNyZUtxct_oZmwQnm-RLg807bPo0o8POs0hg&si=1&oref=e2905b67c440133e06d94d472902354c&optunit=g1X1rV7f4BpBS4YUfGI2rw&rb=2Vb288azLYM&rr=1&abtg=0
IP 108.168.193.189:0
GET /adServe/domainClick?ai=IMh5EoW_2OoHygiiY-2otWSZVu5NPqSq-h2rSoksoBqNG2LV3Zkk-L8FPCSjKZr_YsQ0yRxpJ6k8LlotqmtX7ErGSkvN2YlGY4HZ8X7cx-dM1QaxFxK0PHGpJGlCLAoWMnzoVZuce8ueVaQ0F217-cHwFJ-CDJF8T7C2wcJ1dqtoOgN9pzNxgl6S4oChQzOvrPE96Ym7CMGlXRdGMK-TkKMF_XSxG7q5c9lRJWHNr4s5bSTdWcYVZJciO9bgcuS1jIeAEiXnU3VYEUAru7F_DuXugOnM5m-8Jm7EhOsk27bxGYd3vi6Mg89LCz5E8ciHT2L9NFyVXF77W8amRP1OQPKqHlok5Wh6bM7TR-A6o2LnrG8E1DfQ9Vu8kUSrMxroonOqLNsrJIKgUSZw7eMl7vr4nvPsKvQNOYwwqJPWDKxkmVbuTT6kqjvQfnk4ki0ivitaEXZPV_A9yZrhH3-Sbs19d78A9yty8XBUwr7h6bOOF0SokHo2PZeYO9hdbD2Gn6oVmfmCmc-q0T2xsmJwnBfZ8RtWPEH2SnZADPOdLz_p-OGBQW3exAhKJncPyYXssKbYd4jRL3fz-AbClJeve1IAxxj8fbHTscWi84ZIOk0qJeEuaLJ-WEdDYOEm2_nsCKidNDxuV5s&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukPNfXe_APcrct9aEuZ5hifkANoM0k81b9WH7szAu7BNyZUtxct_oZmwQnm-RLg807bPo0o8POs0hg&si=1&oref=e2905b67c440133e06d94d472902354c&optunit=g1X1rV7f4BpBS4YUfGI2rw&rb=2Vb288azLYM&rr=1&abtg=0 HTTP/1.1
Host: beta.mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ww2.mkkuei4kdsz.com/
Connection: keep-alive
Cookie: rhid=82486297987
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 12:31:05 GMT
content-type: text/html;charset=ISO-8859-1
vary: Accept-Encoding
set-cookie: rhid=82486297987; Max-Age=15552000; Expires=Thu, 01-Jun-2023 12:31:05 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
loi=ad_1121758_off_566552_aff_90126_cid_201298-MKKUEI4KDSZ.COM_ts_1670070665; Max-Age=3600; Expires=Sat, 03-Dec-2022 13:31:05 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
content-encoding: gzip
X-Firefox-Spdy: h2
big-promotion.com/redirect-simple?ci=204&c=no&c_p=s&c_s=438203600&c_k=electronics&c_geo=NO&c_d=Desktop
137.74.65.7200 OK 0 B URL HTTP/2 big-promotion.com/redirect-simple?ci=204&c=no&c_p=s&c_s=438203600&c_k=electronics&c_geo=NO&c_d=Desktop
IP 137.74.65.7:0
GET /redirect-simple?ci=204&c=no&c_p=s&c_s=438203600&c_k=electronics&c_geo=NO&c_d=Desktop HTTP/1.1
Host: big-promotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Sat, 03 Dec 2022 12:31:05 GMT
content-type: text/html; charset=UTF-8
x-frame-options: *
content-encoding: gzip
X-Firefox-Spdy: h2
engine.styla.com/xe/22d321-d01b572c/627c1a64.js
143.204.55.69200 OK 0 B URL HTTP/2 engine.styla.com/xe/22d321-d01b572c/627c1a64.js
IP 143.204.55.69:0
GET /xe/22d321-d01b572c/627c1a64.js HTTP/1.1
Host: engine.styla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 29 Nov 2022 15:07:47 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 86400
last-modified: Thu, 17 Nov 2022 10:56:04 GMT
etag: W/"de96a556fdc32d0e68a5235f055b1204"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, stale-while-revalidate=60, stale-if-error=86400
x-amz-version-id: 6X5lKIxutw1dmCBqURW0DznikBWEMDJ_
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TY4CZp4uZmg79nS-wFrKRD_bGAFnTz7yoriH-_5NC9BsWc_X5raHKg==
age: 336201
X-Firefox-Spdy: h2
engine.styla.com/xe/22d321-d01b572c/10.css
143.204.55.69200 OK 0 B URL HTTP/2 engine.styla.com/xe/22d321-d01b572c/10.css
IP 143.204.55.69:0
GET /xe/22d321-d01b572c/10.css HTTP/1.1
Host: engine.styla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Tue, 29 Nov 2022 15:07:45 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 86400
last-modified: Thu, 17 Nov 2022 10:56:04 GMT
etag: W/"59f8ccd061738ff9dc2281f9c6a1fc3b"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, stale-while-revalidate=60, stale-if-error=86400
x-amz-version-id: xApk4oWQ8gJCwMagu81kHOhuI7RS5SwG
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vPQ5GZ-AX4RqYAA_rIzSLFYiv_wmkrOST2aFC4K9VUDkcUojT7bw7Q==
age: 336203
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Ubuntu:300,400,500,700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Ubuntu:300,400,500,700
IP 142.250.74.106:0
GET /css?family=Ubuntu:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 12:31:06 GMT
date: Sat, 03 Dec 2022 12:31:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.sportler.com/presentation/content/generated/sportler85.min.js
54.230.111.18200 OK 0 B URL HTTP/2 static.sportler.com/presentation/content/generated/sportler85.min.js
IP 54.230.111.18:0
GET /presentation/content/generated/sportler85.min.js HTTP/1.1
Host: static.sportler.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 29 Nov 2022 10:04:18 GMT
server: nginx
expires: Tue, 13 Dec 2022 10:04:18 GMT
access-control-allow-origin: *
cache-control: max-age=1209600, public, must-revalidate
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Sw86e5g9HZSX2HT6V8Ei6ODwsdq62dz1Yhnxq-mNPNgCGRZIkVAHqg==
age: 354409
X-Firefox-Spdy: h2
engine.styla.com/xe/22d321-d01b572c/da84aa09.js
143.204.55.69200 OK 0 B URL HTTP/2 engine.styla.com/xe/22d321-d01b572c/da84aa09.js
IP 143.204.55.69:0
GET /xe/22d321-d01b572c/da84aa09.js HTTP/1.1
Host: engine.styla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sportler.com
Connection: keep-alive
Referer: https://www.sportler.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 29 Nov 2022 15:07:47 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 86400
last-modified: Thu, 17 Nov 2022 10:56:04 GMT
etag: W/"2597cac5c907f4af0f4cbaa4ad931494"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, stale-while-revalidate=60, stale-if-error=86400
x-amz-version-id: PCABGt9FixskBn8zQy5oFybNr5PqsISg
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 92FCM7q5Huiki7svgTphyynF27n6FNdQbNmCBKAGPRAhEqskRvuDsg==
age: 336201
X-Firefox-Spdy: h2