Report - walter-larence.com/371fe56d-ab9b-4e43-9ba5-f4ecf81f0a61

Report Overview

Submitted URL
walter-larence.com/371fe56d-ab9b-4e43-9ba5-f4ecf81f0a61
IP
18.193.146.82
ASN
#16509 AMAZON-02
Submitted
2022-11-06 14:55:02
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.hollywoodbets.net	unknown	2016-09-30T18:35:55Z	2023-03-09T00:56:18Z	507 B	927 B	104.18.38.227
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	44.238.3.246
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	4.5 kB	16 kB	142.250.74.35
zz.connextra.com	14652	2014-03-20T18:05:16Z	2023-03-10T12:31:56Z	1.8 kB	20 kB	104.88.23.60
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-10T14:35:32Z	1.4 kB	3.9 kB	104.18.32.68
s.yimg.com	375	2012-05-21T00:45:00Z	2023-03-10T13:12:29Z	771 B	1.7 kB	188.125.94.206
t.co	569	2012-07-25T21:09:44Z	2023-03-10T09:31:30Z	782 B	593 B	104.244.42.5
mpsnare.iesnare.com	5723	2016-04-10T13:13:26Z	2023-03-10T09:31:29Z	2.4 kB	10 kB	54.195.39.4
www.google.com	7	2015-05-10T13:11:19Z	2023-03-10T12:19:40Z	1.0 kB	1.4 kB	142.250.74.164
analytics.twitter.com	526	2013-04-10T21:53:18Z	2023-03-10T09:31:30Z	799 B	613 B	104.244.42.3
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.4 kB	6.2 kB	23.36.76.226
tags.feedad.com	26948	2019-10-23T20:30:02Z	2023-03-09T00:47:52Z	467 B	475 B	216.239.36.21
api.feedad.com	5296	2017-12-20T18:42:46Z	2023-03-10T13:45:47Z	472 B	475 B	216.239.38.21
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-10T13:03:15Z	387 B	93 kB	142.250.74.168
tracker.ads.sportradar.com	41720	2019-05-23T10:10:00Z	2023-03-10T07:36:22Z	797 B	308 kB	23.36.79.43
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-10T13:35:34Z	3.1 kB	23 kB	142.250.74.174
static.ads-twitter.com	614	2018-06-24T00:08:39Z	2023-03-10T09:31:28Z	370 B	16 kB	151.101.84.157
match.prod.bidr.io	503	2015-09-24T20:51:01Z	2023-03-10T00:33:27Z	821 B	627 B	54.217.231.82
secure.adnxs.com	396	2012-05-22T18:37:37Z	2023-03-10T05:19:42Z	1.3 kB	2.5 kB	185.89.211.84
pixel.mathtag.com	1199	2012-05-22T07:36:42Z	2023-03-10T11:19:34Z	1.9 kB	4.1 kB	23.38.200.207
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
a.sportradarserving.com	2372	2019-05-18T10:44:07Z	2023-03-09T22:47:42Z	1.9 kB	7.3 kB	35.156.160.245
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-10T12:41:09Z	1.9 kB	2.1 kB	64.233.162.154
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	657 B	349 B	31.13.72.36
match.sharethrough.com	604	2015-12-22T23:55:59Z	2023-03-10T08:50:51Z	1.7 kB	240 B	18.158.86.133
walter-larence.com	208176	2019-03-30T11:22:48Z	2023-03-10T05:38:10Z	386 B	835 B	18.193.146.82
wlhollywoodbets.adsrv.eacdn.com	unknown	2019-09-05T09:47:41Z	2023-03-10T10:54:15Z	1.1 kB	2.1 kB	40.127.232.184
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-10T05:15:22Z	379 B	28 kB	31.13.72.12
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-10T05:19:43Z	1.6 kB	1.1 kB	216.239.34.36
tm.ads.sportradar.com	40177	2019-07-25T12:47:51Z	2023-03-10T11:36:01Z	396 B	38 kB	23.36.79.43
ocsp.entrust.net	1208	2014-01-10T03:18:45Z	2023-03-10T05:15:17Z	680 B	5.4 kB	104.110.10.32
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	68 kB	34.120.237.76
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	2.1 kB	6.0 kB	143.204.42.158
eb2.3lift.com	402	2014-09-24T17:03:42Z	2023-03-10T11:15:12Z	443 B	206 B	13.248.245.213
sync.mathtag.com	427	2012-05-22T07:36:42Z	2023-03-10T14:25:37Z	473 B	642 B	185.29.132.241
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	3.4 kB	7.7 kB	93.184.220.29
protect-za.mimecast.com	657053	2017-02-13T19:12:16Z	2023-03-01T14:34:11Z	389 B	469 B	41.74.196.103
x.bidswitch.net	286	2012-10-04T01:30:53Z	2023-03-10T05:16:09Z	4.7 kB	5.4 kB	3.127.118.33
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-10T07:09:08Z	1.0 kB	1.4 kB	142.250.74.35
sp.analytics.yahoo.com	816	2014-01-31T21:48:24Z	2023-03-10T05:19:44Z	675 B	948 B	212.82.100.181
segment.prod.bidr.io	10225	2015-10-13T07:06:08Z	2023-03-10T10:39:41Z	949 B	875 B	54.220.164.105

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-06	medium	walter-larence.com/371fe56d-ab9b-4e43-9ba5-f4ecf81f0a61	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (42)

	URL	Size	First Seen	Last Seen
	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 15:57:03 Times Seen37095062 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.hollywoodbets.net/iojs/general5/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false	40 kB	2023-03-07	2023-09-14
Pretty URL www.hollywoodbets.net/iojs/general5/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:29 Last Seen2023-09-14 21:36:02 Times Seen5 Hash 759c54cc3d96e919e9d36d73c6165127 1c3e43631d6327115823cdd6b7d71eea5e4c7220 40310d0d67284fe114b30be52ae10dddac01fa243da60254ee9533a385bc3948 Loading...

	www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00	652 B	2023-03-07	2023-03-13
Pretty URL www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00 IP 104.18.38.227 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:26 Last Seen2023-03-13 21:26:04 Times Seen1 Hash 0c9154c1a4bb0d6e97a16157047de7b7 a5cffa4a19a940c7d5dbdd4e8720b11f395cda29 760bbac872d195f800a1fb7813e9640050b8f9923550c906a5a78ed38bf59b7a Loading...

	www.hollywoodbets.net/Scripts/Iovation/iovationConfig.js	361 B	2023-03-07	2023-03-13
Pretty URL www.hollywoodbets.net/Scripts/Iovation/iovationConfig.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:26 Last Seen2023-03-13 21:26:04 Times Seen1 Hash 4ba77c79bbe776c820cb87a9e31114f9 398a23a5b66dea22e3903fe5b68784ca61d53686 d2bbf23bec60fbba419f1febf15c81f872df8cfe957db983fd6f2b5381787dda Loading...

	tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAR6	285 kB	2023-03-09	2023-03-13
Pretty URL tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAR6 IP 23.36.79.43 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:59:38 Last Seen2023-03-13 00:07:55 Times Seen1 Hash 02118fe5c5116496fad0c2a6bf815354 59e9ebccf376dc3ecf66fe25358976c5fd20936a 06107781bd97904aec53a6dbb8230e2d421cbecb7e057085b8cb2bb29aad2463 Loading...

	www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00	421 B	2023-03-07	2023-03-14
Pretty URL www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00 IP 104.18.38.227 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:27 Last Seen2023-03-14 19:59:49 Times Seen1 Hash 1ec8193595d6013d6e5b0350646bc2fa d6342a2f675e781551d84c1f773d7f53dde5c7c9 85faa5e921ab0e16a6a2482269f36dac55bc1eafed4c6d59f7ecb9b884ad9a5c Loading...

	www.googletagmanager.com/gtag/js?id=G-DW98L34F06&l=dataLayer&cx=c	228 kB	2023-03-10	2023-03-10
Pretty URL www.googletagmanager.com/gtag/js?id=G-DW98L34F06&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 22:29:09 Last Seen2023-03-10 22:29:09 Times Seen1 Hash d5bac1e1fc78aec1207e73231636eec6 dbc377b6ec6fb1e15a094588e849484253c9499a 116a87d6fb27901644c0a182a0f725d5aea53be235bc98cf2939b24465a955d2 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-26
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-26 05:50:27 Times Seen1534 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	www.hollywoodbets.net/iojs/5.5.0/logo.js	505 B	2023-03-10	2023-03-10
Pretty URL www.hollywoodbets.net/iojs/5.5.0/logo.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 22:29:09 Last Seen2023-03-10 22:29:09 Times Seen1 Hash 5abaf6e5882c2ce1e37f6c5762bdc9b1 4eff998db76ffeb193f9be9e8e040ae1c9bc6237 5a41dabb697f90844ea1e37117faaed7c2f7004ca05482041ada241ee3873215 Loading...

	www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00	8.5 kB	2023-03-09	2023-03-13
Pretty URL www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00 IP 104.18.38.227 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:59:37 Last Seen2023-03-13 21:26:04 Times Seen1 Hash 3ae00734bc5538159de01d16a2efd59a 538fb9b9e8bcee8191f6fc207335f6b5a8b22580 95f013218fa080ef82d10c71d7bad0a85f39cc70f7a9cf3c4e6c5f3830f107ed Loading...

	mpsnare.iesnare.com/5.5.0/logo.js	505 B	2023-03-10	2023-03-10
Pretty URL mpsnare.iesnare.com/5.5.0/logo.js IP 54.195.39.4 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 22:29:09 Last Seen2023-03-10 22:29:09 Times Seen1 Hash 2058a03f80280ae4d073ffd2ed148926 8cc0a56d280282712ad06478f801df79e6641485 9cb6f13d03f87dee4e9364970cb21b9c974e25e28f207ca5174109393d612dcd Loading...

	www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00	503 B	2023-03-07	2024-04-26
Pretty URL www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00 IP 104.18.38.227 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:26 Last Seen2024-04-26 01:42:49 Times Seen43 Hash 3251daa2d6c03314e765b25ba64cd545 58af65abefb522007aecaff9e7dd5ab35517dda2 9a043b82239bd13576bb3ed5b6060327cf6bcd8d0672e4a5cca36d6e8e8a1314 Loading...

	zz.connextra.com/dcs/tagController/tag/5e5309a42928/regstart	47 kB	2023-03-07	2023-04-17
Pretty URL zz.connextra.com/dcs/tagController/tag/5e5309a42928/regstart IP 104.88.23.60 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:27 Last Seen2023-04-17 16:55:16 Times Seen12 Hash fae3a08aeb3ffecfeb03a98e49aa09db acc875f5f64cb9b3628ffe8f7439aa0effff7fab e15a6788bf166a40a6d041396fed6f1129ab74af366c552febddfc5b1a64d5d5 Loading...

	a.sportradarserving.com/pixel?type=js&aid=1529&id=6104	2.3 kB	2023-03-10	2023-03-10
Pretty URL a.sportradarserving.com/pixel?type=js&aid=1529&id=6104 IP 35.156.160.245 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 22:29:09 Last Seen2023-03-10 22:29:09 Times Seen1 Hash d26bec60dbba713394695a2bc51da5c8 1f1206e53929109ebe9ff23b7db40f92f4c2c4ec 78e15e38fd55d1158ae3670948f4a690015947f8f9e5c8da17003c073ce751cf Loading...

	s.yimg.com/wi/ytc.js	17 kB	2023-03-07	2024-03-04
Pretty URL s.yimg.com/wi/ytc.js IP 188.125.94.206 ASN #10310 YAHOO-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-03-04 14:29:23 Times Seen1244 Hash 6a624022b5d271dcefb070b0b6670abc e9a0a059a5cefc0cd9e6cc0e8d7bd8d64c23936b 249c4eba880cfb74e1b6e1d1048def310636dc3b1ce5b3fe525703fd4025238f Loading...

	connect.facebook.net/signals/config/20245989318767?v=2.9.89&r=stable	5.4 kB	2023-03-07	2023-03-14
Pretty URL connect.facebook.net/signals/config/20245989318767?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:26 Last Seen2023-03-14 19:59:49 Times Seen1 Hash d30550a9b97a97c2fc6c8e0c1f46a181 05799fb48c6d60868d3a1d122eb7ecbad08d52d2 ca6db528d52124f46bbed4f01c5c55111d1050a0a34fbec7ed92724d568eec8f Loading...

	www.hollywoodbets.net/combres.axd/siteJs/-1916812089/	1.1 MB	2023-03-10	2023-03-11
Pretty URL www.hollywoodbets.net/combres.axd/siteJs/-1916812089/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 21:34:14 Last Seen2023-03-11 11:21:38 Times Seen1 Hash b262d3d532dd80c99a62faa44d0503ab 8c0e8d5bfc84966aa30605be4e990a312c9fc107 6c48dab63d0de93adc8819ec9a0e3d85f580c04b94f26b3a01720bc5386c1f27 Loading...

	www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00	1.8 kB	2023-03-07	2023-03-13
Pretty URL www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00 IP 104.18.38.227 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:27 Last Seen2023-03-13 21:26:04 Times Seen1 Hash 07a45f8dc15b00c83f6527dbaf3a4790 05b76f52853e7c3bd3b2faa62d225a63b79f3623 3c38b8157e0edc4b649d2c0afab3fbac8b8b93a50f1d1486709d5d54deb63736 Loading...

	www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00	352 B	2023-03-09	2023-09-17
Pretty URL www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00 IP 104.18.38.227 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:59:38 Last Seen2023-09-17 15:11:34 Times Seen2 Hash b69c9cb1667e769e4063010d7d1da3e0 7dd54e2095e4cd3b967bc8b636ef331093578b8b 9ea73aca4eb42198d6e7198007deb6dbfc72a5573e0f3f74e5456cc9aa339b48 Loading...

	www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00	339 B	2023-03-07	2023-09-09
Pretty URL www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00 IP 104.18.38.227 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:26 Last Seen2023-09-09 23:56:25 Times Seen2 Hash b94b996184fe093e82f6594d40481592 2bfc340c5c685b4666b394044d82d355b0591de7 da4604f29f0f995f148665a255b513de6d6dae1257aef0dee2503f5c3121aef0 Loading...

	tracker.ads.sportradar.com/dist//sp-2.14.0.js	100 kB	2023-03-07	2024-04-20
Pretty URL tracker.ads.sportradar.com/dist//sp-2.14.0.js IP 23.36.79.43 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2024-04-20 11:40:01 Times Seen531 Hash 8dba669b94e3865c9205ef8fd15ee4d1 5dceffefe841258fbee60749b15cbad56a4961b1 50cf303cfaa020fcbedd6ad1bf045a008cbb88dfc792f731f07235dd1ca13599 Loading...

	pixel.mathtag.com/event/js?mt_id=1483929&mt_adid=238671&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3=	1.5 kB	2023-03-10	2023-03-10
Pretty URL pixel.mathtag.com/event/js?mt_id=1483929&mt_adid=238671&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3= IP 23.38.200.207 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 22:29:09 Last Seen2023-03-10 22:29:09 Times Seen1 Hash 87c6127db9fe66daf48d305600bc58ce 8d2c48572d18f4b51f4a0bc03a2dd3603b104f31 1fff00251bc2e57f56370adfdf2d429dc6e1f5fb5850d209f8488077b982eed8 Loading...

	www.hollywoodbets.net/Scripts/Iovation/iovation.js	3.7 kB	2023-03-07	2023-12-14
Pretty URL www.hollywoodbets.net/Scripts/Iovation/iovation.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:26 Last Seen2023-12-14 09:31:16 Times Seen5 Hash ef2705f894180b1b55dbdbe6eb8739e8 a3b4b4ae228ee2f6b013ecfb4fcea9b264147c7f bb39a1888f2df27c27095585b9e77678788195818e0154eb8c31bdbde8d1abcc Loading...

	www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00	26 B	2023-03-07	2024-04-26
Pretty URL www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00 IP 104.18.38.227 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:05 Last Seen2024-04-26 15:38:50 Times Seen673 Hash eb7a24ef1bd1aec83ac360dcc088ba45 ec5f90396a524b12f0c07a53394a1b1b45d6b95c 2cc26ff044a57e2085fbda562947b3f955f2bd9758ad3f9f710dc4a6ce173f24 Loading...

	connect.facebook.net/signals/config/420245989318767?v=2.9.89&r=stable	301 kB	2023-03-10	2023-03-10
Pretty URL connect.facebook.net/signals/config/420245989318767?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 22:29:10 Last Seen2023-03-10 22:29:10 Times Seen1 Hash 4934d86ed2c89ba88e3df66a80ab92c4 5b89f0b391f561aafbecffd95feca34a1bc6bd78 01a520b50c7177ea34cc8b3ef48de7a9b8ce9c74f9fcae5db76c85809b523e15 Loading...

	www.hollywoodbets.net/ruxitagentjs_ICA2QVfghjqrux_10251220909040818.js	349 kB	2023-03-10	2023-03-11
Pretty URL www.hollywoodbets.net/ruxitagentjs_ICA2QVfghjqrux_10251220909040818.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 21:34:13 Last Seen2023-03-11 14:09:22 Times Seen1 Hash 51f2ef4fe36d6b611c29184e601b3106 1f5655a749909fc12e6ab259cf5be7e18f7e4a56 27e1b67d3ecbbd586650b69344d6944cf302280bb63b680a44a9642ee335e571 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MPHWJL3	276 kB	2023-03-10	2023-03-10
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MPHWJL3 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 22:29:10 Last Seen2023-03-10 22:29:10 Times Seen1 Hash 9b2d476a92475be6f0411ac85cdabd84 3c3601a86208831c12150c6b7b22603d4a8ab219 71386473310d3527daca236e1255f788b462524e5c69d072a7f2af3ed1f22179 Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-10	2023-10-31
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 17:19:33 Last Seen2023-10-31 18:18:05 Times Seen6 Hash 8938d4fc65afd3422bf533482ca33a53 2d92351d88fc6fd59cdac7d801753ac64ba52277 f896040524443394b8b1ba4fbd1de94be74378ab901e53b3b40c1323d1735143 Loading...

	mpsnare.iesnare.com/general5/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false	42 kB	2023-03-10	2023-03-10
Pretty URL mpsnare.iesnare.com/general5/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 22:29:10 Last Seen2023-03-10 22:29:10 Times Seen1 Hash 718fbe684a11cb771ce65fee5719974f 7f6b64d719ead2d55c53d15274c25335c8175eca 06c3b6d2ec7515b046196fce2fe6a6f1162211f0cc1bb1cd9e3ce9017ae79876 Loading...

	static.ads-twitter.com/uwt.js	58 kB	2023-03-08	2024-04-20
Pretty URL static.ads-twitter.com/uwt.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:46 Last Seen2024-04-20 17:48:03 Times Seen4329 Hash 32ad004436155ec972bc50e6238b5b67 9b2cdb645c2fa5b98a9d05dcdca521fed4a17b7b cf7fcc9f75c8717897bfaef72f303fab423ce1b70c98512aeb3677e4af988dee Loading...

	pixel.mathtag.com/sync/iframe?mt_uuid=a10d6367-cabf-4100-832f-fd74a89b4842&no_iframe=1&mt_adid=238671&source=mathtag	643 B	2023-03-07	2023-03-17
Pretty URL pixel.mathtag.com/sync/iframe?mt_uuid=a10d6367-cabf-4100-832f-fd74a89b4842&no_iframe=1&mt_adid=238671&source=mathtag IP 23.38.200.207 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:42 Last Seen2023-03-17 12:46:46 Times Seen1 Hash dc6f1789f9271ac721dd1a4c46029089 5321f3beb6309a3a8d1cffc3314638418891f78c 4c0963c4a64be36b64d44218fc19d45763a6e8b122ce4085d07e020424e458ef Loading...

	www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00	362 B	2023-03-07	2023-03-13
Pretty URL www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00 IP 104.18.38.227 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:26 Last Seen2023-03-13 21:26:04 Times Seen1 Hash b6adb00620e9679ee312c30fb57ce6e5 b1fafdd66bffc56943b8788415b9428a058d4449 2b1472e6a76215b30829229eb5370303002ed3957f62b7ed36e087d50a497c01 Loading...

	www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00	62 B	2023-03-07	2023-03-13
Pretty URL www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00 IP 104.18.38.227 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:26 Last Seen2023-03-13 21:26:04 Times Seen1 Hash 9b6666d1b038cb39dd45bd55b5a4d32d 1f26bbfe697805c4d1c226d4fa24f71091f9fb4d 94802e40093e754d6c0c9eb66b4b988a717a64cff96b68511c53805d6ca12247 Loading...

	tracker.ads.sportradar.com/dist/tracker.js	40 kB	2023-03-07	2023-04-11
Pretty URL tracker.ads.sportradar.com/dist/tracker.js IP 23.36.79.43 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:10 Last Seen2023-04-11 01:45:29 Times Seen285 Hash 5ff82a1c468a89919e9437d33e0402cb 6baf383b129de295b63354f5030a374fbfbacd17 feda67648acd203488c2c74a84f52bef7a05a3154a00cb2fbc94c62d559afb46 Loading...

	www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00	373 B	2023-03-07	2024-04-26
Pretty URL www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00 IP 104.18.38.227 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:20:42 Last Seen2024-04-26 01:42:48 Times Seen43 Hash dbdde8cc506b023ccbc44d31fd90d194 4e458a71b469e3c00ee1116d8c1b04bbf5ebe6b9 8069a8ddbad01d3acb63b4611a37f4ada9d59643d175ae856de92b3c85563046 Loading...

	www.hollywoodbets.net/iojs/5.5.0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false	2.2 kB	2023-03-10	2023-03-10
Pretty URL www.hollywoodbets.net/iojs/5.5.0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 22:29:10 Last Seen2023-03-10 22:29:10 Times Seen1 Hash 054f372cf45a06c513e41c953ca58607 940c4cfef581fdd82f818e641fd4db758509b00e ce49bbcfed77e6778921bae5ef4d21331dcf158f8c98f82fc84bb99b89d6cb7e Loading...

		Size	First Seen	Last Seen
	#1 Eval - d215771b6c8548e81866fa21bfc2c995	151 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:36:27 Last Seen2024-04-26 01:42:50 Times Seen42 Hash d215771b6c8548e81866fa21bfc2c995 4d03d91bbcbc9756a0dc166e53bb14332ad663b1 d7d9db53bbc5db7cec1f1493750b27ca30f5f76d04dba7344041397d8de27745 Loading...

		Size	First Seen	Last Seen
	#1 Write - fc1be604b162de892a149b40fbbeed0b	226 B	2023-03-07	2023-05-06
Pretty Observations First Seen2023-03-07 01:28:42 Last Seen2023-05-06 00:11:34 Times Seen89 Hash fc1be604b162de892a149b40fbbeed0b 73a73ccb81fb66bd2b49936e2d85cf7a49031adc 6303ed4a7c8859b4def4e26273466612559fa8a79269a5586b8471a3c27a63f5 Loading...

	#2 Write - b21d96f2393ef7fa0e7d654034ed8a34	184 B	2023-03-07	2023-04-17
Pretty Observations First Seen2023-03-07 01:36:27 Last Seen2023-04-17 16:55:16 Times Seen9 Hash b21d96f2393ef7fa0e7d654034ed8a34 5d51104b5de678ccc022ab7667fe847c979575c0 e697d794b57f75784269f2cd8c93a31eb2280caa2ae505bcee31c698b15d3a05 Loading...

	#3 Write - be697b6dfc757d76713a72a0aced3741	190 B	2023-03-07	2023-05-06
Pretty Observations First Seen2023-03-07 01:06:21 Last Seen2023-05-06 00:11:34 Times Seen161 Hash be697b6dfc757d76713a72a0aced3741 6ebc97158e27218a733b71e28bab1d52c30c2afb 743f6492a5beb847167322304f93922a25b48b4fda556b6039418e53930e9df1 Loading...

	#4 Write - d4a3896696dec4fc1cd635a5987e9cdd	228 B	2023-03-07	2023-04-17
Pretty Observations First Seen2023-03-07 01:36:27 Last Seen2023-04-17 16:55:16 Times Seen9 Hash d4a3896696dec4fc1cd635a5987e9cdd bf6ae924f245f266c1106f9b067fbd574364c31b 3efe7041b2b5ab9ba6b59f33e106cadef492fa83fe201dcac1a8e676d0939fff Loading...

	#5 Write - 605fc91cfccf4e72af0c38051ece7c72	147 B	2023-03-07	2023-05-06
Pretty Observations First Seen2023-03-07 01:28:42 Last Seen2023-05-06 00:11:34 Times Seen79 Hash 605fc91cfccf4e72af0c38051ece7c72 f001853e5f4efdaca5e86af7bb73a818f519f05c d9a659e344fc1b019f5857ebabb9f774aaf9dc6541e725593412c3a5fc9b068b Loading...

HTTP Transactions (121)

URL IP Response Size

walter-larence.com/371fe56d-ab9b-4e43-9ba5-f4ecf81f0a61

18.193.146.82

302

0 B

URL HTTP/1.1
walter-larence.com/371fe56d-ab9b-4e43-9ba5-f4ecf81f0a61
IP
18.193.146.82:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /371fe56d-ab9b-4e43-9ba5-f4ecf81f0a61 HTTP/1.1
Host: walter-larence.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 
Server: nginx
Date: Sun, 06 Nov 2022 14:54:49 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://wlhollywoodbets.adsrv.eacdn.com/C.ashx?btag=a_905b_1469c_&affid=655084&siteid=905&adid=1469&c=w6j4tmedeul1fe9k2ecl9r00
Pragma: no-cache
Set-Cookie: 371fe56d-ab9b-4e43-9ba5-f4ecf81f0a61-v4=vY_NhxYrOq9F5lCzuHPYABlgty6IrbMSCwLzzytCOOM; Max-Age=86400; Expires=Mon, 07-Nov-2022 14:54:49 GMT; Domain=walter-larence.com; Path=/; HttpOnly
cc-v4=CvFVtMxfxMq83HuLzgJyw22ViId%2F0CGGcl6ChE%2B3OMBK%2BJNwsCgf2pewXioAqu59aZ7GNbXEuTbNse1oWWS0sV6WDiSAfyLKypYtkW3mKuKdqenwAeDcIruxcJTI1RjbOnUrTDFFZj5lpXWGbnyqiA%3D%3D; Max-Age=31536000; Expires=Mon, 06-Nov-2023 14:54:49 GMT; Domain=walter-larence.com; Path=/; HttpOnly

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c7a8ba48383a0e56baca8c8c41b81a04
b04c1f1e730a71f17ff639c9db697c532d4e5421
7860552382285e6eddddc5226c6f6400caa3f6fc3cb4b8a2d550c6fc653f78bb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7860552382285E6EDDDDC5226C6F6400CAA3F6FC3CB4B8A2D550C6FC653F78BB"
Last-Modified: Sun, 06 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14593
Expires: Sun, 06 Nov 2022 18:58:02 GMT
Date: Sun, 06 Nov 2022 14:54:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9a21dcd6794c5ba4178522096f695511
d731cf49db5e048d0d820d5cee03417cdd8c1c7b
c4981ce849fcfce045d1c9eeb2978767d87fcbf6087626f3d6541ec8b1938a37

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C4981CE849FCFCE045D1C9EEB2978767D87FCBF6087626F3D6541EC8B1938A37"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7219
Expires: Sun, 06 Nov 2022 16:55:08 GMT
Date: Sun, 06 Nov 2022 14:54:49 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
05978511215be8462d0b69e33b3a91a3
61535ba131d547f1c5108d9e7763ee3fc8d8c824
cfdbf0f9e88e3c1ae8eb03e46c352633a75d4b2edbfbd57c1c6b52ff1623a109

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3449
Cache-Control: max-age=160423
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:49 GMT
Etag: "63678ce7-1d7"
Expires: Tue, 08 Nov 2022 11:28:32 GMT
Last-Modified: Sun, 06 Nov 2022 10:31:03 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Ns7WXTvdz3qVfWkxBR2Eva1yhDDak9qSFyl9fkj0Pitub3EvwoSMMsPjQEjgil9rIVWPCHrVqCM=
x-amz-request-id: W3SDB4BRFHK96K3D
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 06 Nov 2022 14:47:40 GMT
age: 429
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
00a2603322ab8f48d4526f3a7bba90cc
bde8a1362914431f1d0077574172f91f3552863a
f8dc2943b6c6e450162d1ab87a4de76c756ce4e9ec061ee884a7315fe213cf39

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6579
Cache-Control: max-age=123595
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:49 GMT
Etag: "6366f0d1-1d7"
Expires: Tue, 08 Nov 2022 01:14:44 GMT
Last-Modified: Sat, 05 Nov 2022 23:25:05 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 14:54:49 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

wlhollywoodbets.adsrv.eacdn.com/C.ashx?btag=a_905b_1469c_&affid=655084&siteid=905&adid=1469&c=w6j4tmedeul1fe9k2ecl9r00

40.127.232.184

302 Found

265 B

URL HTTP/1.1
wlhollywoodbets.adsrv.eacdn.com/C.ashx?btag=a_905b_1469c_&affid=655084&siteid=905&adid=1469&c=w6j4tmedeul1fe9k2ecl9r00
IP
40.127.232.184:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
265 B (265 bytes)
Hash
1c640a73a967807eedce39cb4b030d20
038476385a98faafdf808a5da3457ec690b1d3f8
d86cf41e7e1857b9dd3a9d58af35d2f0d1dbd29c558bf93172482e32032f794c

HTTP Headers

GET /C.ashx?btag=a_905b_1469c_&affid=655084&siteid=905&adid=1469&c=w6j4tmedeul1fe9k2ecl9r00 HTTP/1.1
Host: wlhollywoodbets.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: //wlhollywoodbets.adsrv.eacdn.com/C.ashx?btag=a_905b_1469c_&affid=655084&siteid=905&adid=1469&c=w6j4tmedeul1fe9k2ecl9r00&AutoR=1
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: CEK=a; expires=Sat, 04-Feb-2023 14:54:50 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Sun, 06 Nov 2022 14:54:49 GMT
X-Cnection: close
Content-Length: 265
Vary: Accept-Encoding

wlhollywoodbets.adsrv.eacdn.com/C.ashx?btag=a_905b_1469c_&affid=655084&siteid=905&adid=1469&c=w6j4tmedeul1fe9k2ecl9r00&AutoR=1

40.127.232.184

302 Found

203 B

URL HTTP/1.1
wlhollywoodbets.adsrv.eacdn.com/C.ashx?btag=a_905b_1469c_&affid=655084&siteid=905&adid=1469&c=w6j4tmedeul1fe9k2ecl9r00&AutoR=1
IP
40.127.232.184:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
203 B (203 bytes)
Hash
9267219972e7ae8ec7d3993f619fbfff
908db59e2f856b3c2c0fe40841c04a344328cc73
43d3a0142139e1fa5173af6b94e7acfef9b716c24d79e3a2c8d95120fb5b8bd9

HTTP Headers

GET /C.ashx?btag=a_905b_1469c_&affid=655084&siteid=905&adid=1469&c=w6j4tmedeul1fe9k2ecl9r00&AutoR=1 HTTP/1.1
Host: wlhollywoodbets.adsrv.eacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: CEK=a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00
Server: Microsoft-IIS/10.0
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
X-AspNet-Version: 4.0.30319
Set-Cookie: XYZ=3&1&148&&&&0&1&&0d55f7b6-9062-46cc-8443-58c6683815b2&&a_905b_1469&; expires=Sat, 04-Feb-2023 14:54:50 GMT; path=/; SameSite=None; Secure
A_1469=a=1469&r=0&fv=0&lv=0&vc=0&fc=20221106&lc=20221106025450&cc=1; expires=Sat, 04-Feb-2023 14:54:50 GMT; path=/; SameSite=None; Secure
PM_4=c=w6j4tmedeul1fe9k2ecl9r00&s=905&ad=1469&md=0&pm=4&d=20221106145450&ip=1532635802&r=0&ref=&RedirectParams=btag%3da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00; expires=Sat, 04-Feb-2023 14:54:50 GMT; path=/; SameSite=None; Secure
CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Sun, 06 Nov 2022 14:54:49 GMT
X-Cnection: close
Content-Length: 203
Vary: Accept-Encoding

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d862f992e9902530594e7aca425f129b
25b414fe833d30b52928535d659a1ee281b82e3a
0c6286152fe8bb5fdf1505f2001d530a65ee53aa6d9601bbb1eecb683036071d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1932
Cache-Control: max-age=153853
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:50 GMT
Etag: "6367792b-1d7"
Expires: Tue, 08 Nov 2022 09:39:03 GMT
Last-Modified: Sun, 06 Nov 2022 09:06:51 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

44.238.3.246

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.238.3.246:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7Im2MVv+xXTPqGhp09WQ3Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3ktEgUMSDPycycsAvf8yrCIcTrE=

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

7.4 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
7.4 kB (7444 bytes)
Hash
e8b69d8e18c95ecc15e3ab5aa87269fe
5521bff0d110d094781c2e552aa50950e08ad93c
3fec0ed80b082acf7a78e891b1e56921b43519f8e64b41faecd5af6641a8a221

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAR6

23.36.79.43

200 OK

37 kB

URL HTTP/2
tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAR6
IP
23.36.79.43:0
ASN
#20940 Akamai International B.V.

File type
data
Size
37 kB (37314 bytes)
Hash
279fb6b35d53879fd9df32fbef8ae3b7
ec6dc32ab9e551ed374d70fcfa804538a08a7f2d
5b301bf3dda3d00eff58b259a8fb85f5e2e9336caead73b3a3cea7deb8184b81

HTTP Headers

GET /dist/tag-manager.js?id=STM-AAAAR6 HTTP/1.1
Host: tm.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
apigw-requestid: bLs3ri9GjoEEM3g=
vary: Accept-Encoding
content-encoding: gzip
content-length: 37099
date: Sun, 06 Nov 2022 14:54:51 GMT
cache-control: max-age=900, public
x-n: S
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-MPHWJL3

142.250.74.168

200 OK

92 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-MPHWJL3
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with CRLF line terminators
Size
92 kB (91865 bytes)
Hash
8a53fd92209c75bf242508e8b2fdc179
1ac46317754d222ae7f9933de4b7a0d4c8169c90
f70601a34175e0839005f2e89de2bd39b4747cb07138d9f45921c045a5f4d731

HTTP Headers

GET /gtm.js?id=GTM-MPHWJL3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 06 Nov 2022 14:54:51 GMT
expires: Sun, 06 Nov 2022 14:54:51 GMT
cache-control: private, max-age=900
last-modified: Sun, 06 Nov 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91677
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
12a1f191d3251cadd0fce23ca14e1a5d
a95b5c8eafe5d0ae8d78c77d4965ba1c486ec864
95b318059b6735c7221e60eabe0489c228c705c47a5f6adc8f829ac0f3c5f77c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tracker.ads.sportradar.com/dist/tracker.js

23.36.79.43

200 OK

277 kB

URL HTTP/2
tracker.ads.sportradar.com/dist/tracker.js
IP
23.36.79.43:0
ASN
#20940 Akamai International B.V.

File type
data
Size
277 kB (276813 bytes)
Hash
d7b4a3cb150f97b6d25a741ce481fdef
e740117b4f451dfce42640784ec7ba2e639f7c45
b8fb0a31f40f5692476db961f17c1b215b9144de651e83c2f0e33be981ef2c4f

HTTP Headers

GET /dist/tracker.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "5ff82a1c468a89919e9437d33e0402cb"
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: eTjUpBAqYx7KGywLsUwh7Ktxoe3eLpssThHTRl9ZaCGzQ0T38Sb6rA==
vary: Accept-Encoding
content-encoding: gzip
date: Sun, 06 Nov 2022 14:54:51 GMT
content-length: 11553
cache-control: max-age=900, public
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
498a93ef6474e78f5c7b8ec391786b1c
2fdbd636d3ec6c2476c2ac34697ba171eecdb768
ab9705c42b3e1f2c2cc005974f4dd27f75c27a053bd29e81d2a99824200dcef7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5208
Cache-Control: max-age=136596
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:51 GMT
Etag: "636728f7-1d7"
Expires: Tue, 08 Nov 2022 04:51:27 GMT
Last-Modified: Sun, 06 Nov 2022 03:24:39 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

tracker.ads.sportradar.com/dist//sp-2.14.0.js

23.36.79.43

200 OK

30 kB

URL HTTP/2
tracker.ads.sportradar.com/dist//sp-2.14.0.js
IP
23.36.79.43:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (64903)
Size
30 kB (30370 bytes)
Hash
44f237857b8d03f32b53fe551e83c95a
91536fe6c60d947d29dfcb5f04d09b752b5ccf03
a5e10dc2f3c729300afe8fe24aa430f57d91fdefa8112c0b35dd424ba612caa7

HTTP Headers

GET /dist//sp-2.14.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "8dba669b94e3865c9205ef8fd15ee4d1"
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: CqpRrG_vZm2Ztif5MA7yfe3EwTkgtwhqZK8TdgLYtpjItBXuDqG8Kw==
vary: Accept-Encoding
content-encoding: gzip
date: Sun, 06 Nov 2022 14:54:51 GMT
content-length: 30370
cache-control: max-age=900, public
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27337 bytes)
Hash
0ac10debd3a9ea8147a26d045bb93e6e
ff45f3442508e8695f2303701682ebdb6e016464
5dee7b453b2c72c07ff1d62432493a044507835a8031ea62edf2fa7cc26219b9

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: KIJ7lH1UsEgSAv+r1/ccTLiA5Bn0uklBJqSAetcMvYN9tn97YhPzDxR7J/BV4hhO5IR9dyXSZYWZJDLl05d5JQ==
content-length: 27337
x-fb-trip-id: 1904183273
date: Sun, 06 Nov 2022 14:54:51 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
6ef905d0db8d6d2f0121ab68ccef7bfe
a88c314f0c9c557c7b4a7436903dad321b47d2d0
88faa3d3b18ed45641caca410b84fcef85387ba7ef47fa52d2d4517c0727fe9a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5250
Cache-Control: max-age=84428
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:51 GMT
Etag: "63665d06-1d7"
Expires: Mon, 07 Nov 2022 14:21:59 GMT
Last-Modified: Sat, 05 Nov 2022 12:54:30 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

zz.connextra.com/dcs/tagController/tag/5e5309a42928/regstart

104.88.23.60

200 OK

17 kB

URL HTTP/2
zz.connextra.com/dcs/tagController/tag/5e5309a42928/regstart
IP
104.88.23.60:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- exported SGML document, ASCII text, with very long lines (2762)
Size
17 kB (16619 bytes)
Hash
1a4a090b87cd3a488b84acec041199f7
bdd288845433031fa9c86363a2aadca8176d6495
5eac3a2501a9f591065eac072ed676de95475d4936a33e88e3a55971593f22af

HTTP Headers

GET /dcs/tagController/tag/5e5309a42928/regstart HTTP/1.1
Host: zz.connextra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript;charset=utf-8
content-length: 16619
server: istio-envoy
content-encoding: gzip
x-envoy-upstream-service-time: 3
cache-control: must-revalidate, max-age=300
expires: Sun, 06 Nov 2022 14:59:51 GMT
date: Sun, 06 Nov 2022 14:54:51 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
498a93ef6474e78f5c7b8ec391786b1c
2fdbd636d3ec6c2476c2ac34697ba171eecdb768
ab9705c42b3e1f2c2cc005974f4dd27f75c27a053bd29e81d2a99824200dcef7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5208
Cache-Control: max-age=136596
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:51 GMT
Etag: "636728f7-1d7"
Expires: Tue, 08 Nov 2022 04:51:27 GMT
Last-Modified: Sun, 06 Nov 2022 03:24:39 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

ocsp.entrust.net/

104.110.10.32

200 OK

3.1 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
3.1 kB (3116 bytes)
Hash
e31a38249f42f9346b63e90400436c55
e0f3cd832a61481319afd6c076e8ed705a9b861d
4616260357f1c129140c39765ed4b98e47cbd35bda1430cab4a49eda563359aa

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "C35D5E2D107DE079F8FCA8A48619D205C5991CAFE211A46A61CA2D1874A44EE1"
Last-Modified: Sun, 06 Nov 2022 06:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1738
Expires: Sun, 06 Nov 2022 15:23:50 GMT
Date: Sun, 06 Nov 2022 14:54:52 GMT
Connection: keep-alive

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
fae7878f94d8b24207b30a224af7ffc9
f7f21e1d216926108225d34c23b6f8eae62690ca
c35d5e2d107de079f8fca8a48619d205c5991cafe211a46a61ca2d1874a44ee1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "C35D5E2D107DE079F8FCA8A48619D205C5991CAFE211A46A61CA2D1874A44EE1"
Last-Modified: Sun, 06 Nov 2022 06:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1738
Expires: Sun, 06 Nov 2022 15:23:50 GMT
Date: Sun, 06 Nov 2022 14:54:52 GMT
Connection: keep-alive

a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=

35.156.160.245

302 Moved Temporarily

1.6 kB

URL HTTP/1.1
a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP
35.156.160.245:0
ASN
#16509 AMAZON-02

File type
data
Size
1.6 kB (1556 bytes)
Hash
2ca73624949f6a6e63636f046f2e9262
9d621a8a87d414346fd6f638c1189e5064eb585c
4f61ec3e3cd0ceaa8bf4df9d67b655cba3617b10cc80dc3737dc77c089458dc6

HTTP Headers

GET /sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 06 Nov 2022 14:54:52 GMT
Location: https://a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
Set-Cookie: zuuid=4c29797c-761f-4e51-a4ba-da53410c1147; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
c=1667746492; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1667746492; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive

a.sportradarserving.com/pixel?type=js&aid=1529&id=6104

35.156.160.245

302 Moved Temporarily

174 B

URL HTTP/1.1
a.sportradarserving.com/pixel?type=js&aid=1529&id=6104
IP
35.156.160.245:0
ASN
#16509 AMAZON-02

File type
data
Size
174 B (174 bytes)
Hash
d54bebd8784525a2ffc26ff40d45ad91
75b47486a5e76040ff19c01d71ce5b3625911c75
b0a17a728271f076209a5dd75ffd49699bd765a94567522e01777cfae21415d6

HTTP Headers

GET /pixel?type=js&aid=1529&id=6104 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 06 Nov 2022 14:54:52 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1529&id=6104
Set-Cookie: zuuid=d7662dce-8556-4306-9b37-aafbfa1ae4d2; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
c=1667746492; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1667746492; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e37c89a5a7f608a21ac42b87ee0f7fc
55132fb03671e178b7e186da48ac7e02d6e96e23
6d71b8c1578f69619e174e61fbe9c92de7df4563e4a413b7b3d1be229f464df2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D71B8C1578F69619E174E61FBE9C92DE7DF4563E4A413B7B3D1BE229F464DF2"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7129
Expires: Sun, 06 Nov 2022 16:53:41 GMT
Date: Sun, 06 Nov 2022 14:54:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e37c89a5a7f608a21ac42b87ee0f7fc
55132fb03671e178b7e186da48ac7e02d6e96e23
6d71b8c1578f69619e174e61fbe9c92de7df4563e4a413b7b3d1be229f464df2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D71B8C1578F69619E174E61FBE9C92DE7DF4563E4A413B7B3D1BE229F464DF2"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7129
Expires: Sun, 06 Nov 2022 16:53:41 GMT
Date: Sun, 06 Nov 2022 14:54:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e37c89a5a7f608a21ac42b87ee0f7fc
55132fb03671e178b7e186da48ac7e02d6e96e23
6d71b8c1578f69619e174e61fbe9c92de7df4563e4a413b7b3d1be229f464df2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D71B8C1578F69619E174E61FBE9C92DE7DF4563E4A413B7B3D1BE229F464DF2"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7129
Expires: Sun, 06 Nov 2022 16:53:41 GMT
Date: Sun, 06 Nov 2022 14:54:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e37c89a5a7f608a21ac42b87ee0f7fc
55132fb03671e178b7e186da48ac7e02d6e96e23
6d71b8c1578f69619e174e61fbe9c92de7df4563e4a413b7b3d1be229f464df2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D71B8C1578F69619E174E61FBE9C92DE7DF4563E4A413B7B3D1BE229F464DF2"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7129
Expires: Sun, 06 Nov 2022 16:53:41 GMT
Date: Sun, 06 Nov 2022 14:54:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e37c89a5a7f608a21ac42b87ee0f7fc
55132fb03671e178b7e186da48ac7e02d6e96e23
6d71b8c1578f69619e174e61fbe9c92de7df4563e4a413b7b3d1be229f464df2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D71B8C1578F69619E174E61FBE9C92DE7DF4563E4A413B7B3D1BE229F464DF2"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7129
Expires: Sun, 06 Nov 2022 16:53:41 GMT
Date: Sun, 06 Nov 2022 14:54:52 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7220419a-cf8c-4056-a522-11012e67cf32.jpeg

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7220419a-cf8c-4056-a522-11012e67cf32.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (14415 bytes)
Hash
fa77f05b1af971db287607d9d9a30e0f
276f1493d6da74c8fa3ef83dee77bf48850ff4b4
005d0273b7fe7b68081d1db630df9444c4082140be87c34f3e9e5fb7db9a4160

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7220419a-cf8c-4056-a522-11012e67cf32.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14415
x-amzn-requestid: 9eadfbeb-38b2-483a-894a-375e00f646dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJabgHcMoAMFTLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d77c-104fa5e61c64aaf230ffb045;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:37:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zwi4Hg5iu5MB4zr0EFVhTRAvrnN2J1GnY31mOvlXJW0E_cgQu1gmgA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 22:12:38 GMT
age: 60134
etag: "276f1493d6da74c8fa3ef83dee77bf48850ff4b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=

35.156.160.245

302 Moved Temporarily

0 B

URL HTTP/1.1
a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP
35.156.160.245:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Cookie: zuuid=d7662dce-8556-4306-9b37-aafbfa1ae4d2; c=1667746492; zuuid_lu=1667746492
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 06 Nov 2022 14:54:52 GMT
Location: https://x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7662dce-8556-4306-9b37-aafbfa1ae4d2
Set-Cookie: zuuid=d7662dce-8556-4306-9b37-aafbfa1ae4d2; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1667746492; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1667746492; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5cee1982-fead-41ba-9720-19ae491d0af1.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8309 bytes)
Hash
3929fb3c2f0dad9409e9b247ab891518
b8f906e9e3c3addf73e2d387c7238dc1ffe0bb28
64822bf90b140698a0043ea76542823a55daf3bb6ad1b6b3ba972c7fbb256bb5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5cee1982-fead-41ba-9720-19ae491d0af1.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8309
x-amzn-requestid: 377e4474-c2ee-4477-be4b-18d264ca9aa5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJbgwH23IAMF3kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d937-7692bcd1131d9749085800b0;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:44:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JK-yLq7PeMFrcv4opjTjHprEUQ8IIBuHPzhz0ttxQx9GYdBY1EauBA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 22:17:07 GMT
age: 59865
etag: "b8f906e9e3c3addf73e2d387c7238dc1ffe0bb28"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (8961 bytes)
Hash
dcc79e66d1e21452efb26d26650f6739
1f727a7ea032082658944cf4041686446fb6b5f2
af1fe8de442a365a108d5c03f0d3ae8b0beb1abb4f267a46979f9c885ee026c6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8961
x-amzn-requestid: 3a50374d-d90e-452e-bb89-82ca14c94b52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJarpGtqIAMFkPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d7e3-55c356475fb64e6625a338c7;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:38:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Ry_OKFFZDdDoVya2hTxnFlDGtgoSw0JRqieDnCO4mSNFbgV-AuLE5Q==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:44:33 GMT
age: 61819
etag: "1f727a7ea032082658944cf4041686446fb6b5f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8df47f1e-c13a-452f-b0e2-28c141dbb191.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7573 bytes)
Hash
b18a8c9f5539ce33476f843f5811e01d
11d1f2ce72d2aa6686c79f777cd0bdb4ddeb681b
fc20e507eedccb52078979f2132434b11b9d50d917cab512d8e0c99515b1236c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8df47f1e-c13a-452f-b0e2-28c141dbb191.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7573
x-amzn-requestid: d56e7b27-f2cb-4cd3-9f67-ba18d1bfe270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bDkhGHmjoAMFxxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364813a-3a1c18b13c41f38673890b00;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 03:04:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: c-u9tBFoIve3sEwtbUvIFZoPu6eudy3ZFQi8j2m9mTPNEarihTvddw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 05:31:43 GMT
age: 33789
etag: "11d1f2ce72d2aa6686c79f777cd0bdb4ddeb681b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10462 bytes)
Hash
4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 6dc7dc5c-88e9-4550-abf0-f16965ab7cd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bF_38GKXoAMFwSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636579cc-28ea4125437c31cc34683fb7;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 20:45:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cLOqm36ioY751X1yA1WcQpaXiFYuvzFn8xLQ56MyDTpvi1J4Ruvc9Q==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 06:27:59 GMT
age: 30413
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78f88d98-b52b-4ad1-8cfc-e60fd17b46e0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11535 bytes)
Hash
b370c4e3b01be9fbbc3e310e6958cd55
cc22e90a0b476215f2fd864d84c9b00dded100a6
f54d90c5854b6f140b63dad3aa92bd858b8f360b8c77d50fdf344e813e9385c5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78f88d98-b52b-4ad1-8cfc-e60fd17b46e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11535
x-amzn-requestid: 0a1d9895-e2e3-4070-921a-736d8c6f254e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJatPGwjoAMFx8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d7ee-101a7f3a2b834d0b411c9de0;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:38:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: j0I2JcPIptLTJZlwg8QG7kkTE1eCvZiBDzi6j2YYqNwvawJ6k2CqHQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:48:50 GMT
age: 61562
etag: "cc22e90a0b476215f2fd864d84c9b00dded100a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

a.sportradarserving.com/ul_cb/pixel?type=js&aid=1529&id=6104

35.156.160.245

200 OK

2.3 kB

URL HTTP/1.1
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1529&id=6104
IP
35.156.160.245:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (2325), with no line terminators
Size
2.3 kB (2325 bytes)
Hash
d26bec60dbba713394695a2bc51da5c8
1f1206e53929109ebe9ff23b7db40f92f4c2c4ec
78e15e38fd55d1158ae3670948f4a690015947f8f9e5c8da17003c073ce751cf

HTTP Headers

GET /ul_cb/pixel?type=js&aid=1529&id=6104 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Cookie: zuuid=d7662dce-8556-4306-9b37-aafbfa1ae4d2; c=1667746492; zuuid_lu=1667746492
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Sun, 06 Nov 2022 14:54:52 GMT
Set-Cookie: zuuid=d7662dce-8556-4306-9b37-aafbfa1ae4d2; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1667746492; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1667746492; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,437003692; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
cm4=!bidswitch,437075692; path=/; expires=Mon, 06-Nov-2023 14:54:52 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 2325
Connection: keep-alive

mpsnare.iesnare.com/star

54.195.39.4

101 Switching Protocols

7.1 kB

URL HTTP/1.1
mpsnare.iesnare.com/star
IP
54.195.39.4:0
ASN
#16509 AMAZON-02

File type
data
Size
7.1 kB (7077 bytes)
Hash
c2089b53329a346f716153b0f3e3590f
84466e840e0b8deda5adeb06b1442be36ed9127c
d91b77e5ecc42db8d908de4c70d4ce20e1dc2c6a5511d63aaaee2adb3a647d8e

HTTP Headers

GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.hollywoodbets.net
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xE9Y+57sWBy1cpH3YDwI5Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sun, 06 Nov 2022 14:54:52 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: Rgad7jYf8pTo4TaFBIjFiof0s/w=
Upgrade: WebSocket

ocsp.pki.goog/s/gts1d4/tTkxSEAAs8c

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/tTkxSEAAs8c
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9ad05a216034f84eb2c56cb607c549b2
93af332c9976a8310b572bbd13851dbe18f08cd9
b18f6912d801edf0d821331a4b9fe9e4b8b4c854305b6838d90888b3908a65ad

HTTP Headers

POST /s/gts1d4/tTkxSEAAs8c HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:52 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1d4/mxoWbFvua2o

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/mxoWbFvua2o
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1e382d5133806ccca49d5f782d08407c
54d78db6f386aedbef394e8b0ac63a70d194100c
38fc54a44eccb6389ab785c802b2d55fce7ce18b32cd8ff9133ee9dff30733c2

HTTP Headers

POST /s/gts1d4/mxoWbFvua2o HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:52 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tags.feedad.com/1/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=d7662dce-8556-4306-9b37-aafbfa1ae4d2

216.239.36.21

200 OK

42 B

URL HTTP/2
tags.feedad.com/1/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=d7662dce-8556-4306-9b37-aafbfa1ae4d2
IP
216.239.36.21:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /1/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=d7662dce-8556-4306-9b37-aafbfa1ae4d2 HTTP/1.1
Host: tags.feedad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
set-cookie: fa_8461718b-151b-486e-8ea2-a9b349f07f98_u=d7662dce-8556-4306-9b37-aafbfa1ae4d2; Domain=.feedad.com; Path=/; Max-Age=2592000; HttpOnly; SameSite=None; Secure
x-cloud-trace-context: 73e972a13a1b7af96863b54a1b2a2144
date: Sun, 06 Nov 2022 14:54:52 GMT
server: Google Frontend
content-length: 42
expires: Sun, 06 Nov 2022 14:54:52 GMT
cache-control: private
X-Firefox-Spdy: h2

api.feedad.com/1.1/web/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=d7662dce-8556-4306-9b37-aafbfa1ae4d2

216.239.38.21

200 OK

42 B

URL HTTP/2
api.feedad.com/1.1/web/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=d7662dce-8556-4306-9b37-aafbfa1ae4d2
IP
216.239.38.21:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /1.1/web/usersyncs?b=8461718b-151b-486e-8ea2-a9b349f07f98&u=d7662dce-8556-4306-9b37-aafbfa1ae4d2 HTTP/1.1
Host: api.feedad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
set-cookie: fa_8461718b-151b-486e-8ea2-a9b349f07f98_u=d7662dce-8556-4306-9b37-aafbfa1ae4d2; Domain=.feedad.com; Path=/; Max-Age=2592000; HttpOnly; SameSite=None; Secure
x-cloud-trace-context: 0faa857b53bd6fba959b70fd2f59e1e4
date: Sun, 06 Nov 2022 14:54:52 GMT
server: Google Frontend
content-length: 42
expires: Sun, 06 Nov 2022 14:54:52 GMT
cache-control: private
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7a49d6d1bc0cfb130edffbb5428a0411
cdf72c8684159d90838a442c8ed66b8bae979a6e
c5a10da5bdfc663571d035f4ff9d235c524a57e491b2d8cdbcca7bb409cd31ff

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3608
Cache-Control: max-age=82789
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:52 GMT
Etag: "63665d09-1d7"
Expires: Mon, 07 Nov 2022 13:54:40 GMT
Last-Modified: Sat, 05 Nov 2022 12:54:33 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

region1.google-analytics.com/g/collect?v=2&tid=G-DW98L34F06&gtm=2oeb20&_p=2071511892&cid=2039704803.1667746490&ul=en-us&sr=1280x1024&_s=1&sid=1667746490&sct=1&seg=0&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-DW98L34F06&gtm=2oeb20&_p=2071511892&cid=2039704803.1667746490&ul=en-us&sr=1280x1024&_s=1&sid=1667746490&sct=1&seg=0&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-DW98L34F06&gtm=2oeb20&_p=2071511892&cid=2039704803.1667746490&ul=en-us&sr=1280x1024&_s=1&sid=1667746490&sct=1&seg=0&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hollywoodbets.net
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.hollywoodbets.net
date: Sun, 06 Nov 2022 14:54:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-199PN1FWZ1&gtm=2oeb20&_p=2071511892&cid=2039704803.1667746490&ul=en-us&sr=1280x1024&_s=1&sid=1667746490&sct=1&seg=0&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&en=page_view&_fv=1&_ss=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-199PN1FWZ1&gtm=2oeb20&_p=2071511892&cid=2039704803.1667746490&ul=en-us&sr=1280x1024&_s=1&sid=1667746490&sct=1&seg=0&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&en=page_view&_fv=1&_ss=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-199PN1FWZ1&gtm=2oeb20&_p=2071511892&cid=2039704803.1667746490&ul=en-us&sr=1280x1024&_s=1&sid=1667746490&sct=1&seg=0&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hollywoodbets.net
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 204 No Content
access-control-allow-origin: https://www.hollywoodbets.net
date: Sun, 06 Nov 2022 14:54:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

protect-za.mimecast.com/s/oNnPCnZlO1SlyRLgiZQZAj

41.74.196.103

429 0008 Call Quota Exceeded

161 B

URL HTTP/1.1
protect-za.mimecast.com/s/oNnPCnZlO1SlyRLgiZQZAj
IP
41.74.196.103:0
ASN
#37235 MimecastSA

File type
ASCII text, with no line terminators
Size
161 B (161 bytes)
Hash
b23dd3970ad43775b2722cc4a3a99d81
7d9554b9ac528b2bd7fcbde0168fe5c929d69315
8170227e77813c259996b487f8f5e9b0d46477a7c6d6bce1e0c9791ccb40c503

HTTP Headers

GET /s/oNnPCnZlO1SlyRLgiZQZAj HTTP/1.1
Host: protect-za.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 429 0008 Call Quota Exceeded
Date: Sun, 06 Nov 2022 14:54:52 GMT
Content-Type: */*
Content-Length: 161
Connection: keep-alive
x-mc-reasonphrase: 0008 Call Quota Exceeded
Cache-control: no-store
Pragma: no-cache
X-Robots-Tag: noindex, nofollow
Content-MD5: b23dd3970ad43775b2722cc4a3a99d81

mpsnare.iesnare.com/star

54.195.39.4

101 Switching Protocols

0 B

URL HTTP/1.1
mpsnare.iesnare.com/star
IP
54.195.39.4:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.hollywoodbets.net
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mo4IqaD/y7jVEbk6LUs4/w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sun, 06 Nov 2022 14:54:52 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: trTaUusjtO5keX0g1EuAnriUoAk=
Upgrade: WebSocket

mpsnare.iesnare.com/5.5.0/logo.js

54.195.39.4

200 OK

420 B

URL HTTP/1.1
mpsnare.iesnare.com/5.5.0/logo.js
IP
54.195.39.4:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (377)
Size
420 B (420 bytes)
Hash
7548ffd606b19d45bd8cd9b0ef137779
0963b3f260af97a5d865ef3dbf68f24ab991be40
91d9aa82e5c5d0f4502f3b7c0ba39e5aa473cb5bcb044008e6c25db123f896e7

HTTP Headers

GET /5.5.0/logo.js HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 14:54:52 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 May 2014 00:01:40 GMT
Expires: Mon, 06 Nov 2023 14:54:52 GMT
Cache-Control: private
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 06 Nov 2022 14:41:09 GMT
expires: Sun, 06 Nov 2022 16:41:09 GMT
cache-control: public, max-age=7200
age: 823
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

mpsnare.iesnare.com/time.mp3?nocache=0.6661419437900696

54.195.39.4

206 Partial Content

504 B

URL HTTP/1.1
mpsnare.iesnare.com/time.mp3?nocache=0.6661419437900696
IP
54.195.39.4:0
ASN
#16509 AMAZON-02

File type
MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Size
504 B (504 bytes)
Hash
cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507

HTTP Headers

GET /time.mp3?nocache=0.6661419437900696 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
Server: nginx
Date: Sun, 06 Nov 2022 14:54:52 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains

static.ads-twitter.com/uwt.js

151.101.84.157

200 OK

15 kB

URL HTTP/2
static.ads-twitter.com/uwt.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (57596), with no line terminators
Size
15 kB (15375 bytes)
Hash
573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7

HTTP Headers

GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Sun, 06 Nov 2022 14:54:52 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1632-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2

www.google-analytics.com/j/collect?v=1&_v=j98&a=2071511892&t=pageview&_s=1&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&ul=en-us&de=UTF-8&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=903780146&gjid=1791394231&cid=2039704803.1667746490&tid=UA-151661671-3&_gid=1702638503.1667746491&_r=1&gtm=2wgb20MPHWJL3&z=1737525758

142.250.74.174

200 OK

2 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j98&a=2071511892&t=pageview&_s=1&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&ul=en-us&de=UTF-8&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=903780146&gjid=1791394231&cid=2039704803.1667746490&tid=UA-151661671-3&_gid=1702638503.1667746491&_r=1&gtm=2wgb20MPHWJL3&z=1737525758
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af

HTTP Headers

POST /j/collect?v=1&_v=j98&a=2071511892&t=pageview&_s=1&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&ul=en-us&de=UTF-8&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=903780146&gjid=1791394231&cid=2039704803.1667746490&tid=UA-151661671-3&_gid=1702638503.1667746491&_r=1&gtm=2wgb20MPHWJL3&z=1737525758 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.hollywoodbets.net
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.hollywoodbets.net
date: Sun, 06 Nov 2022 14:54:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google-analytics.com/j/collect?v=1&_v=j98&a=2071511892&t=pageview&_s=1&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&ul=en-us&de=UTF-8&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=489752958&gjid=1995298866&cid=2039704803.1667746490&tid=UA-48636955-11&_gid=1702638503.1667746491&_r=1&gtm=2wgb20MPHWJL3&z=2040767488

142.250.74.174

200 OK

2 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j98&a=2071511892&t=pageview&_s=1&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&ul=en-us&de=UTF-8&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=489752958&gjid=1995298866&cid=2039704803.1667746490&tid=UA-48636955-11&_gid=1702638503.1667746491&_r=1&gtm=2wgb20MPHWJL3&z=2040767488
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af

HTTP Headers

POST /j/collect?v=1&_v=j98&a=2071511892&t=pageview&_s=1&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&ul=en-us&de=UTF-8&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=489752958&gjid=1995298866&cid=2039704803.1667746490&tid=UA-48636955-11&_gid=1702638503.1667746491&_r=1&gtm=2wgb20MPHWJL3&z=2040767488 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.hollywoodbets.net
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.hollywoodbets.net
date: Sun, 06 Nov 2022 14:54:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google-analytics.com/j/collect?v=1&_v=j98&a=2071511892&t=pageview&_s=1&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&ul=en-us&de=UTF-8&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=1945241411&gjid=373239558&cid=2039704803.1667746490&tid=UA-200317192-2&_gid=1702638503.1667746491&_r=1&gtm=2wgb20MPHWJL3&z=877214421

142.250.74.174

200 OK

2 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j98&a=2071511892&t=pageview&_s=1&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&ul=en-us&de=UTF-8&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=1945241411&gjid=373239558&cid=2039704803.1667746490&tid=UA-200317192-2&_gid=1702638503.1667746491&_r=1&gtm=2wgb20MPHWJL3&z=877214421
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af

HTTP Headers

POST /j/collect?v=1&_v=j98&a=2071511892&t=pageview&_s=1&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&ul=en-us&de=UTF-8&dt=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=1945241411&gjid=373239558&cid=2039704803.1667746490&tid=UA-200317192-2&_gid=1702638503.1667746491&_r=1&gtm=2wgb20MPHWJL3&z=877214421 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.hollywoodbets.net
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.hollywoodbets.net
date: Sun, 06 Nov 2022 14:54:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
2f75d606d78f1bb1899625dd8cf247a7
2a29750c52f72412d1cfcb75ee403c1c75ad30f6
227d7501f2b10c85afbee42f15b770372301d3cd7832558533fbbfc6f3e78536

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 14:54:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 05 Nov 2022 01:56:50 GMT
Expires: Sat, 12 Nov 2022 01:56:49 GMT
Etag: "2a29750c52f72412d1cfcb75ee403c1c75ad30f6"
Cache-Control: max-age=471115,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 765eaabd59790b51-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
2f75d606d78f1bb1899625dd8cf247a7
2a29750c52f72412d1cfcb75ee403c1c75ad30f6
227d7501f2b10c85afbee42f15b770372301d3cd7832558533fbbfc6f3e78536

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 14:54:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 05 Nov 2022 01:56:50 GMT
Expires: Sat, 12 Nov 2022 01:56:49 GMT
Etag: "2a29750c52f72412d1cfcb75ee403c1c75ad30f6"
Cache-Control: max-age=471115,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 765eaabd5d370af6-OSL

x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7662dce-8556-4306-9b37-aafbfa1ae4d2

3.127.118.33

302 Moved Temporarily

0 B

URL HTTP/1.1
x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7662dce-8556-4306-9b37-aafbfa1ae4d2
IP
3.127.118.33:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /syncd?dsp_id=409&user_group=1&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7662dce-8556-4306-9b37-aafbfa1ae4d2 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 06 Nov 2022 14:54:53 GMT
Location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7662dce-8556-4306-9b37-aafbfa1ae4d2
Set-Cookie: tuuid=229d69cd-3774-4ae2-9203-6fb7d2a48133; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
c=1667746493; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1667746493; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
c=1667746493; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive

x.bidswitch.net/syncd?dsp_id=409&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D

3.127.118.33

302 Moved Temporarily

0 B

URL HTTP/1.1
x.bidswitch.net/syncd?dsp_id=409&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP
3.127.118.33:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /syncd?dsp_id=409&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 06 Nov 2022 14:54:53 GMT
Location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
Set-Cookie: tuuid=32469e92-c8c0-4c88-9063-61f3753a9a5e; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
c=1667746493; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1667746493; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
c=1667746493; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive

x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=3c8b5488-c618-49bc-a189-7ad437d28486

3.127.118.33

302 Moved Temporarily

154 B

URL HTTP/1.1
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=3c8b5488-c618-49bc-a189-7ad437d28486
IP
3.127.118.33:0
ASN
#16509 AMAZON-02

File type
data
Size
154 B (154 bytes)
Hash
e6ecbec96ca9e7d4ab06164bc5aa8b9f
99dbfd41e0ca81bec8c3f03872d99556b9aee6cd
7889ce69eb6c0baed34a118483be5e74bbe3ca6ae1dbb3a08a565f67467613e0

HTTP Headers

GET /sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=3c8b5488-c618-49bc-a189-7ad437d28486 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 06 Nov 2022 14:54:53 GMT
Location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=3c8b5488-c618-49bc-a189-7ad437d28486
Set-Cookie: tuuid=e4884966-35f8-49a2-9325-8f781d098650; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
c=1667746493; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1667746493; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
c=1667746493; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive

s.yimg.com/wi/config/10170232.json

188.125.94.206

200 OK

22 B

URL HTTP/2
s.yimg.com/wi/config/10170232.json
IP
188.125.94.206:0
ASN
#10310 YAHOO-1

File type
JSON data\012- , ASCII text, with no line terminators
Size
22 B (22 bytes)
Hash
14293ad9ad0ffaf9f7a3acf1b0793b66
718dea6b65b9516e5e33fac53451056397deb255
73a1b438b0221511fb3dde18e019f5ab045811b2248d25d424e40980c683a9dc

HTTP Headers

GET /wi/config/10170232.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hollywoodbets.net
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: 2GKNBMMV8K2VK5KG
x-amz-id-2: jIQr8aBt95ABV7m7f6KyTzqCvsbLVLgMZ3rt0jPhA6CJMOabAMwl+sOhO8sHtHEEdt+CacrCy4M=
content-type: application/json
date: Sun, 06 Nov 2022 14:02:23 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-encoding: gzip
content-length: 22
age: 3150
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

mpsnare.iesnare.com/time.mp3?nocache=0.9124972893359914

54.195.39.4

206 Partial Content

504 B

URL HTTP/1.1
mpsnare.iesnare.com/time.mp3?nocache=0.9124972893359914
IP
54.195.39.4:0
ASN
#16509 AMAZON-02

File type
MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Size
504 B (504 bytes)
Hash
cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507

HTTP Headers

GET /time.mp3?nocache=0.9124972893359914 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
Server: nginx
Date: Sun, 06 Nov 2022 14:54:53 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f3832eb0418d94ec98c40df1bcf3ce5b
74dd7fa6ff4f9da9324c0772d075da5f42ab5879
cc42acc8dffa6c7f0c4c3a16ffe8c88919daf4859b7524a7a0ffc6e4b169c50d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f3832eb0418d94ec98c40df1bcf3ce5b
74dd7fa6ff4f9da9324c0772d075da5f42ab5879
cc42acc8dffa6c7f0c4c3a16ffe8c88919daf4859b7524a7a0ffc6e4b169c50d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
c2d8522b14e56eb5b544ae20fef80f5a
e4b0e5ae97f5cc35c6c734abb23341fd4ba3eaed
11ae2b75c72545ee038bec4d3b6c7e4b6ae80e9de5aef8b0a771cfa0c755de47

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171325
Date: Sun, 06 Nov 2022 14:54:53 GMT
Etag: "6367b01b-1d7"
Expires: Tue, 08 Nov 2022 14:30:18 GMT
Last-Modified: Sun, 06 Nov 2022 13:01:15 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TA1MUQHSenZRCHg5EzAtJcjc9wSVyT2zBxiwtI4siEOE0ooCdCmt4w==
Age: 5343

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-48636955-11&cid=2039704803.1667746490&jid=489752958&gjid=1995298866&_gid=1702638503.1667746491&_u=YADAAEABAAAAACAAI~&z=406676579

64.233.162.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-48636955-11&cid=2039704803.1667746490&jid=489752958&gjid=1995298866&_gid=1702638503.1667746491&_u=YADAAEABAAAAACAAI~&z=406676579
IP
64.233.162.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-48636955-11&cid=2039704803.1667746490&jid=489752958&gjid=1995298866&_gid=1702638503.1667746491&_u=YADAAEABAAAAACAAI~&z=406676579 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.hollywoodbets.net
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.hollywoodbets.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 06 Nov 2022 14:54:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
81987dfbacbce9468e5344b21729a60e
2ce04e5fc88e86e078aed9845a11299cff1aba69
f7bbbf60f375660e2d0f4f3e06faa3fe0b111278109dac140a790e0d8564cd77

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6391
Cache-Control: max-age=168376
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:53 GMT
Etag: "6367a07e-139"
Expires: Tue, 08 Nov 2022 13:41:09 GMT
Last-Modified: Sun, 06 Nov 2022 11:54:38 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 313

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-151661671-3&cid=2039704803.1667746490&jid=903780146&gjid=1791394231&_gid=1702638503.1667746491&_u=YADAAEAAAAAAACAAI~&z=1337741098

64.233.162.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-151661671-3&cid=2039704803.1667746490&jid=903780146&gjid=1791394231&_gid=1702638503.1667746491&_u=YADAAEAAAAAAACAAI~&z=1337741098
IP
64.233.162.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-151661671-3&cid=2039704803.1667746490&jid=903780146&gjid=1791394231&_gid=1702638503.1667746491&_u=YADAAEAAAAAAACAAI~&z=1337741098 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.hollywoodbets.net
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.hollywoodbets.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 06 Nov 2022 14:54:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-200317192-2&cid=2039704803.1667746490&jid=1945241411&gjid=373239558&_gid=1702638503.1667746491&_u=YADAAEABAAAAACAAI~&z=1139971681

64.233.162.154

200 OK

1 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-200317192-2&cid=2039704803.1667746490&jid=1945241411&gjid=373239558&_gid=1702638503.1667746491&_u=YADAAEABAAAAACAAI~&z=1139971681
IP
64.233.162.154:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-200317192-2&cid=2039704803.1667746490&jid=1945241411&gjid=373239558&_gid=1702638503.1667746491&_u=YADAAEABAAAAACAAI~&z=1139971681 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.hollywoodbets.net
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.hollywoodbets.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 06 Nov 2022 14:54:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

eb2.3lift.com/xuid?mid=7963&xuid=d7662dce-8556-4306-9b37-aafbfa1ae4d2&dongle=3oy7

13.248.245.213

200 OK

37 B

URL HTTP/2
eb2.3lift.com/xuid?mid=7963&xuid=d7662dce-8556-4306-9b37-aafbfa1ae4d2&dongle=3oy7
IP
13.248.245.213:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
37 B (37 bytes)
Hash
3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96

HTTP Headers

GET /xuid?mid=7963&xuid=d7662dce-8556-4306-9b37-aafbfa1ae4d2&dongle=3oy7 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 06 Nov 2022 14:54:53 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f3832eb0418d94ec98c40df1bcf3ce5b
74dd7fa6ff4f9da9324c0772d075da5f42ab5879
cc42acc8dffa6c7f0c4c3a16ffe8c88919daf4859b7524a7a0ffc6e4b169c50d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
2f75d606d78f1bb1899625dd8cf247a7
2a29750c52f72412d1cfcb75ee403c1c75ad30f6
227d7501f2b10c85afbee42f15b770372301d3cd7832558533fbbfc6f3e78536

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 14:54:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 05 Nov 2022 01:56:50 GMT
Expires: Sat, 12 Nov 2022 01:56:49 GMT
Etag: "2a29750c52f72412d1cfcb75ee403c1c75ad30f6"
Cache-Control: max-age=471115,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 765eaabd59760b51-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
2f75d606d78f1bb1899625dd8cf247a7
2a29750c52f72412d1cfcb75ee403c1c75ad30f6
227d7501f2b10c85afbee42f15b770372301d3cd7832558533fbbfc6f3e78536

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 14:54:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 05 Nov 2022 01:56:50 GMT
Expires: Sat, 12 Nov 2022 01:56:49 GMT
Etag: "2a29750c52f72412d1cfcb75ee403c1c75ad30f6"
Cache-Control: max-age=471115,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 765eaabd5f26b506-OSL

x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=22aef570-9d36-4d73-aca0-92a334eb4558

3.127.118.33

302 Moved Temporarily

0 B

URL HTTP/1.1
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=22aef570-9d36-4d73-aca0-92a334eb4558
IP
3.127.118.33:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=22aef570-9d36-4d73-aca0-92a334eb4558 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 06 Nov 2022 14:54:53 GMT
Location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=22aef570-9d36-4d73-aca0-92a334eb4558
Set-Cookie: tuuid=4d8b8b10-4359-4641-88d9-75e14e30e83a; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
c=1667746493; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1667746493; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
c=1667746493; path=/; expires=Mon, 06-Nov-2023 14:54:53 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive

x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=48fb6084-9e18-4b25-8d4e-c878cfa89a92

3.127.118.33

302 Moved Temporarily

380 B

URL HTTP/1.1
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=48fb6084-9e18-4b25-8d4e-c878cfa89a92
IP
3.127.118.33:0
ASN
#16509 AMAZON-02

File type
data
Size
380 B (380 bytes)
Hash
1a69eb96a4204fab7828d5c76a75ca5d
585115405c930689e1c713647045a9fb335ec1d3
96774de176c84b3c51e60450fc69000ed41e2cee42954e39efb5dacd30e69a0e

HTTP Headers

GET /sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=48fb6084-9e18-4b25-8d4e-c878cfa89a92 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 06 Nov 2022 14:54:53 GMT
Location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
Content-Length: 0
Connection: keep-alive

t.co/i/adsct?bci=3&eci=2&event_id=d7f1955b-201e-4dcb-a975-eab8483bb190&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=89d3c8ac-bf36-41b5-988f-60d9e8550841&tw_document_href=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o6h93&type=javascript&version=2.3.29

104.244.42.5

200 OK

43 B

URL HTTP/2
t.co/i/adsct?bci=3&eci=2&event_id=d7f1955b-201e-4dcb-a975-eab8483bb190&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=89d3c8ac-bf36-41b5-988f-60d9e8550841&tw_document_href=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o6h93&type=javascript&version=2.3.29
IP
104.244.42.5:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=d7f1955b-201e-4dcb-a975-eab8483bb190&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=89d3c8ac-bf36-41b5-988f-60d9e8550841&tw_document_href=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o6h93&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 06 Nov 2022 14:54:52 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=a904cce4-4f8f-42ee-8b50-241a53474235; Max-Age=63072000; Expires=Tue, 05 Nov 2024 14:54:53 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 291648a0bda35719
strict-transport-security: max-age=0
x-response-time: 109
x-connection-hash: 809b6f8e2276220d7d7e7eb740cb85008fd7f80f66423f2603cd6fe843f3602c
X-Firefox-Spdy: h2

x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7662dce-8556-4306-9b37-aafbfa1ae4d2

3.127.118.33

200 OK

43 B

URL HTTP/1.1
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_group=1&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7662dce-8556-4306-9b37-aafbfa1ae4d2
IP
3.127.118.33:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /ul_cb/syncd?dsp_id=409&user_group=1&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3Dd7662dce-8556-4306-9b37-aafbfa1ae4d2 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Sun, 06 Nov 2022 14:54:53 GMT
Content-Length: 43
Connection: keep-alive

x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=22aef570-9d36-4d73-aca0-92a334eb4558

3.127.118.33

302 Moved Temporarily

0 B

URL HTTP/1.1
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=22aef570-9d36-4d73-aca0-92a334eb4558
IP
3.127.118.33:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=22aef570-9d36-4d73-aca0-92a334eb4558 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 06 Nov 2022 14:54:53 GMT
Location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
Content-Length: 0
Connection: keep-alive

x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D

3.127.118.33

200 OK

43 B

URL HTTP/1.1
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP
3.127.118.33:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /ul_cb/syncd?dsp_id=409&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Sun, 06 Nov 2022 14:54:53 GMT
Content-Length: 43
Connection: keep-alive

x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=3c8b5488-c618-49bc-a189-7ad437d28486

3.127.118.33

302 Moved Temporarily

0 B

URL HTTP/1.1
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=3c8b5488-c618-49bc-a189-7ad437d28486
IP
3.127.118.33:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&cb=3c8b5488-c618-49bc-a189-7ad437d28486 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 06 Nov 2022 14:54:53 GMT
Location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
Content-Length: 0
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6b72bfaacba486284aa2ecb4bcd8ebba
89fa4ef09e60380fc432c73b7919a29f26117088
fed14b27362ffe0dfbe0b1696e8dab5f6bba3e08b76bec620e75f0f3f213f69b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6b72bfaacba486284aa2ecb4bcd8ebba
89fa4ef09e60380fc432c73b7919a29f26117088
fed14b27362ffe0dfbe0b1696e8dab5f6bba3e08b76bec620e75f0f3f213f69b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f522cfb1dc454906f23b71b17ca1afce
65200811b6dead00db7008996571497260968d81
461906f6bfa7f492a4e61faa6d0ba37e7d343a4ef2a1b824ceb35acc89357cf2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f522cfb1dc454906f23b71b17ca1afce
65200811b6dead00db7008996571497260968d81
461906f6bfa7f492a4e61faa6d0ba37e7d343a4ef2a1b824ceb35acc89357cf2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

312 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
312 B (312 bytes)
Hash
402e13c703432ff4d271516c27fb9f25
dd4d4f16f297039599e01aff4b355297ddbf5bdc
14395b03bc53bb129c5e48602b9f0c2791a6c349e7535126515608d6f69fb705

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5707
Cache-Control: max-age=118726
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:53 GMT
Etag: "6366e138-138"
Expires: Mon, 07 Nov 2022 23:53:39 GMT
Last-Modified: Sat, 05 Nov 2022 22:18:32 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 312

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-48636955-11&cid=2039704803.1667746490&jid=489752958&_u=YADAAEABAAAAACAAI~&z=981425751

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-48636955-11&cid=2039704803.1667746490&jid=489752958&_u=YADAAEABAAAAACAAI~&z=981425751
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-48636955-11&cid=2039704803.1667746490&jid=489752958&_u=YADAAEABAAAAACAAI~&z=981425751 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 06 Nov 2022 14:54:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-151661671-3&cid=2039704803.1667746490&jid=903780146&_u=YADAAEAAAAAAACAAI~&z=24142538

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-151661671-3&cid=2039704803.1667746490&jid=903780146&_u=YADAAEAAAAAAACAAI~&z=24142538
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-151661671-3&cid=2039704803.1667746490&jid=903780146&_u=YADAAEAAAAAAACAAI~&z=24142538 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 06 Nov 2022 14:54:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-48636955-11&cid=2039704803.1667746490&jid=489752958&_u=YADAAEABAAAAACAAI~&z=981425751

142.250.74.35

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-48636955-11&cid=2039704803.1667746490&jid=489752958&_u=YADAAEABAAAAACAAI~&z=981425751
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-48636955-11&cid=2039704803.1667746490&jid=489752958&_u=YADAAEABAAAAACAAI~&z=981425751 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 06 Nov 2022 14:54:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-151661671-3&cid=2039704803.1667746490&jid=903780146&_u=YADAAEAAAAAAACAAI~&z=24142538

142.250.74.35

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-151661671-3&cid=2039704803.1667746490&jid=903780146&_u=YADAAEAAAAAAACAAI~&z=24142538
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-151661671-3&cid=2039704803.1667746490&jid=903780146&_u=YADAAEAAAAAAACAAI~&z=24142538 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 06 Nov 2022 14:54:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d2b4c49a0fb79e3d3bc40d2a28b27120
3f53633851cf851451354ccfd2931f2ec7a9e40f
a8a4ca2c09bae5cc3375077e531b357e2c1724693433a085ad038e3e6adfd96b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f522cfb1dc454906f23b71b17ca1afce
65200811b6dead00db7008996571497260968d81
461906f6bfa7f492a4e61faa6d0ba37e7d343a4ef2a1b824ceb35acc89357cf2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

sp.analytics.yahoo.com/sp.pl?a=10000&d=Sun%2C%2006%20Nov%202022%2014%3A54%3A51%20GMT&n=0&b=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&.yp=10170232&f=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&enc=UTF-8&yv=1.13.0&tagmgr=gtm

212.82.100.181

200 OK

43 B

URL HTTP/2
sp.analytics.yahoo.com/sp.pl?a=10000&d=Sun%2C%2006%20Nov%202022%2014%3A54%3A51%20GMT&n=0&b=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&.yp=10170232&f=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP
212.82.100.181:0
ASN
#34010 Yahoo! UK Services Limited

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39

HTTP Headers

GET /sp.pl?a=10000&d=Sun%2C%2006%20Nov%202022%2014%3A54%3A51%20GMT&n=0&b=Register%20a%20Hollywood%20account%20and%20receive%20a%20R25%20Signup%20Bonus&.yp=10170232&f=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 06 Nov 2022 14:54:53 GMT
expires: Sun, 06 Nov 2022 14:54:53 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBL3KZ2MCEBpW07sdHfHNaJ8eO3-wy1wFEgEBAQEcaWNxYwAAAAAA_eMAAA&S=AQAAApzOjBYsJF9mZwjHEdYXwyk; Expires=Mon, 6 Nov 2023 20:54:53 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=420245989318767&ev=PageView&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&rl=&if=false&ts=1667746491402&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1667746491401.387256033&it=1667746489831&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=420245989318767&ev=PageView&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&rl=&if=false&ts=1667746491402&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1667746491401.387256033&it=1667746489831&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=420245989318767&ev=PageView&dl=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&rl=&if=false&ts=1667746491402&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1667746491401.387256033&it=1667746489831&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 06 Nov 2022 14:54:53 GMT
X-Firefox-Spdy: h2

analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=d7f1955b-201e-4dcb-a975-eab8483bb190&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=89d3c8ac-bf36-41b5-988f-60d9e8550841&tw_document_href=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o6h93&type=javascript&version=2.3.29

104.244.42.3

200 OK

43 B

URL HTTP/2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=d7f1955b-201e-4dcb-a975-eab8483bb190&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=89d3c8ac-bf36-41b5-988f-60d9e8550841&tw_document_href=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o6h93&type=javascript&version=2.3.29
IP
104.244.42.3:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=d7f1955b-201e-4dcb-a975-eab8483bb190&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=89d3c8ac-bf36-41b5-988f-60d9e8550841&tw_document_href=https%3A%2F%2Fwww.hollywoodbets.net%2Fregister.aspx%3Fbtag%3Da_905b_1469c_w6j4tmedeul1fe9k2ecl9r00&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o6h93&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 06 Nov 2022 14:54:52 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_Pc8Q17uuuw44g+d7s5K2Ew=="; Max-Age=63072000; Expires=Tue, 05 Nov 2024 14:54:53 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: b57051940aa577b4
strict-transport-security: max-age=631138519
x-response-time: 105
x-connection-hash: e1cea240689613c2fb8a317839738aad9ef18bc2b3a741ff4ce7e9713bffdf1f
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
6017cd32317984639fc0d9e39d976b32
70a1a195622ab38ecf1791516680ef16c621193f
b043d59a294e145ceff6fdcdc7e1c74569a76781c72058eea5eca91ef2f2b8bd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=137924
Date: Sun, 06 Nov 2022 14:54:53 GMT
Etag: "6367316a-1d7"
Expires: Tue, 08 Nov 2022 05:13:37 GMT
Last-Modified: Sun, 06 Nov 2022 04:00:42 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: N3UOzcHO7H7tgi3CCjzoUnHbxTch7VxiXUk-814Kf6wM-ry1jyypMg==
Age: 4375

match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=

18.158.86.133

204 No Content

0 B

URL HTTP/2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP
18.158.86.133:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Sun, 06 Nov 2022 14:54:53 GMT
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
6017cd32317984639fc0d9e39d976b32
70a1a195622ab38ecf1791516680ef16c621193f
b043d59a294e145ceff6fdcdc7e1c74569a76781c72058eea5eca91ef2f2b8bd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=138566
Date: Sun, 06 Nov 2022 14:54:53 GMT
Etag: "6367316a-1d7"
Expires: Tue, 08 Nov 2022 05:24:19 GMT
Last-Modified: Sun, 06 Nov 2022 04:00:42 GMT
Server: ECS (nyb/1D2F)
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0thUxJGmMvhxzuRgjjVIs0_hyIEDVvygkN_C4LH05H6Rs7PtzEKnXg==
Age: 5017

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
6017cd32317984639fc0d9e39d976b32
70a1a195622ab38ecf1791516680ef16c621193f
b043d59a294e145ceff6fdcdc7e1c74569a76781c72058eea5eca91ef2f2b8bd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=139222
Date: Sun, 06 Nov 2022 14:54:53 GMT
Etag: "6367316a-1d7"
Expires: Tue, 08 Nov 2022 05:35:15 GMT
Last-Modified: Sun, 06 Nov 2022 04:00:42 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: n-Bximh1abC4b_JPnkc7p5GRE-XxE_h6ByRdIyMDvBxZ8pl02E8lfw==
Age: 5673

match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=

18.158.86.133

204 No Content

0 B

URL HTTP/2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP
18.158.86.133:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Sun, 06 Nov 2022 14:54:53 GMT
X-Firefox-Spdy: h2

match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=

18.158.86.133

204 No Content

0 B

URL HTTP/2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP
18.158.86.133:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=d7662dce-8556-4306-9b37-aafbfa1ae4d2&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Sun, 06 Nov 2022 14:54:53 GMT
X-Firefox-Spdy: h2

zz.connextra.com/Hollywoodbets/dcs/tagController/tagData/5e5309a42928

104.88.23.60

200 OK

430 B

URL HTTP/2
zz.connextra.com/Hollywoodbets/dcs/tagController/tagData/5e5309a42928
IP
104.88.23.60:0
ASN
#16625 AKAMAI-AS

File type
data
Size
430 B (430 bytes)
Hash
90c58972380ea4a794699a1de2d5c38d
045b4d22b6c9368fad62f491001d14b7834c0147
17b9e82bc44c94d03e61c0a23f922428cbb5a47b6b4dd3212c60ae00daf8bb79

HTTP Headers

POST /Hollywoodbets/dcs/tagController/tagData/5e5309a42928 HTTP/1.1
Host: zz.connextra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 41
Origin: https://www.hollywoodbets.net
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/plain
server: istio-envoy
access-control-allow-credentials: true
access-control-allow-origin: https://www.hollywoodbets.net
vary: origin,accept-encoding
p3p: CP=NOI DSP COR CURa ADMa DEVa PSAa PSDa OUR SAMa BUS IND UNI PUR COM NAV
content-encoding: gzip
x-envoy-upstream-service-time: 3
expires: Sun, 06 Nov 2022 14:54:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 14:54:54 GMT
content-length: 20
set-cookie: CxtId=4cd8404c-b862-4d43-bc97-e654f83d3b86; Domain=.connextra.com; Expires=Tue, 05-Nov-2024 14:54:54 GMT; Path=/; Secure
Hollywoodbets=P%7Cregstart%7C1%7C202211061454; Domain=.connextra.com; Expires=Mon, 06-Nov-2023 14:54:54 GMT; Path=/; Secure; HttpOnly
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1fbad3e9f0ce3f70b49a08c32bb16388
ca0927a88e52a1cf0211d210a11d38ad63aee658
27da365bef06a0e0d5750fefeeb939548f162c7a86ffe9d734f7a893921c9f13

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 867
Cache-Control: max-age=108513
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 14:54:54 GMT
Etag: "6366cc3c-1d7"
Expires: Mon, 07 Nov 2022 21:03:27 GMT
Last-Modified: Sat, 05 Nov 2022 20:49:00 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

secure.adnxs.com/getuidnb?https%3A//zz.connextra.com/sync/data/uid/3bc1d7fd2e/%24UID

185.89.211.84

200 OK

43 B

URL HTTP/1.1
secure.adnxs.com/getuidnb?https%3A//zz.connextra.com/sync/data/uid/3bc1d7fd2e/%24UID
IP
185.89.211.84:0
ASN
#29990 ASN-APPNEX

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef

HTTP Headers

GET /getuidnb?https%3A//zz.connextra.com/sync/data/uid/3bc1d7fd2e/%24UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 06 Nov 2022 14:54:54 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: ea55ce44-59cd-459d-a9a6-9c467ec0e69f
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 959.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

secure.adnxs.com/seg?add=22404129&t=2

185.89.211.84

307 Redirection

0 B

URL HTTP/1.1
secure.adnxs.com/seg?add=22404129&t=2
IP
185.89.211.84:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /seg?add=22404129&t=2 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 06 Nov 2022 14:54:54 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D22404129%26t%3D2
AN-X-Request-Uuid: c76a6bcd-bc1c-4bb5-b638-c8a8890b03e8
Set-Cookie: uuid2=8332255883630729739; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 04-Feb-2023 14:54:54 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 959.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

secure.adnxs.com/bounce?%2Fseg%3Fadd%3D22404129%26t%3D2

185.89.211.84

200 OK

43 B

URL HTTP/1.1
secure.adnxs.com/bounce?%2Fseg%3Fadd%3D22404129%26t%3D2
IP
185.89.211.84:0
ASN
#29990 ASN-APPNEX

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef

HTTP Headers

GET /bounce?%2Fseg%3Fadd%3D22404129%26t%3D2 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 06 Nov 2022 14:54:54 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: bbd69b45-3ad2-4223-8a5b-799d9bd74a60
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2Ildja8qd!]tbP6j2F-XstGt!@DlB$qJ_(; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 04-Feb-2023 14:54:54 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 959.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

pixel.mathtag.com/event/js?mt_id=1483929&mt_adid=238671&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3=

23.38.200.207

200 OK

1.5 kB

URL HTTP/1.1
pixel.mathtag.com/event/js?mt_id=1483929&mt_adid=238671&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3=
IP
23.38.200.207:0
ASN
#16625 AKAMAI-AS

File type
ASCII text
Size
1.5 kB (1493 bytes)
Hash
87c6127db9fe66daf48d305600bc58ce
8d2c48572d18f4b51f4a0bc03a2dd3603b104f31
1fff00251bc2e57f56370adfdf2d429dc6e1f5fb5850d209f8488077b982eed8

HTTP Headers

GET /event/js?mt_id=1483929&mt_adid=238671&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3= HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 1493
Access-Control-Allow-Origin: *
Server: MT3 4539 98cc2da master ord-pixel-x56 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Sun, 06 Nov 2022 14:54:53 GMT
Date: Sun, 06 Nov 2022 14:54:54 GMT
Connection: keep-alive
Set-Cookie: uuid=a10d6367-cabf-4100-832f-fd74a89b4842; domain=.mathtag.com; path=/; expires=Mon, 04-Dec-2023 14:54:55 GMT; SameSite=None; Secure

sync.mathtag.com/sync/img?redir=https%3A%2F%2Fzz.connextra.com%2Fsync%2Fdata%2Fuid%2F6c883bd680%2F%5BMM_UUID%5D

185.29.132.241

302 Moved Temporarily

0 B

URL HTTP/1.1
sync.mathtag.com/sync/img?redir=https%3A%2F%2Fzz.connextra.com%2Fsync%2Fdata%2Fuid%2F6c883bd680%2F%5BMM_UUID%5D
IP
185.29.132.241:0
ASN
#30419 MEDIAMATH-INC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync/img?redir=https%3A%2F%2Fzz.connextra.com%2Fsync%2Fdata%2Fuid%2F6c883bd680%2F%5BMM_UUID%5D HTTP/1.1
Host: sync.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Date: Sun, 06 Nov 2022 14:54:54 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=360
Access-Control-Allow-Origin: *
Server: MT3 4629 97bee97 master zrh-pixel-x9 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: uuid=a6716367-cabf-4f00-a1e5-6c5ceab5b381; domain=.mathtag.com; path=/; expires=Mon, 04-Dec-2023 14:54:55 GMT; SameSite=None; Secure
location: https://zz.connextra.com/sync/data/uid/6c883bd680/a6716367-cabf-4f00-a1e5-6c5ceab5b381
Expires: Sun, 06 Nov 2022 14:54:53 GMT

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
06634f039efa06218ab51f732f937448
9290f8d7213da10e0f6d8f1e33bf51340cbb2089
ed4c991e1e1b318e40702b7bd51ae574ca550e89084a2facb35e74fb854a7ffc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=131117
Date: Sun, 06 Nov 2022 14:54:54 GMT
Etag: "63670fa0-1d7"
Expires: Tue, 08 Nov 2022 03:20:11 GMT
Last-Modified: Sun, 06 Nov 2022 01:36:32 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AY2trT0c9f87kdCc2QDcMD1wa7HW3MvdD1b4EPeHxZWI1MFccryWTQ==
Age: 6219

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ef3851c27818237c5559415e788b5e69
44a1194b71f7e03beff5e5387219e4d7fd8a9b66
98a7f51845624a0760ff55cab0e60d0d2a0ef6b02ec8b11a29e51d0a1d5d3b78

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=166925
Date: Sun, 06 Nov 2022 14:54:54 GMT
Etag: "63679ae1-1d7"
Expires: Tue, 08 Nov 2022 13:16:59 GMT
Last-Modified: Sun, 06 Nov 2022 11:30:41 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: d3k5PdKoYHQ3Tnw_v4-ROI9zNnc3BMbDZihO_q2g9SKf7GlwmBJfpw==
Age: 6378

zz.connextra.com/sync/data/uid/6c883bd680/a6716367-cabf-4f00-a1e5-6c5ceab5b381

104.88.23.60

200 OK

64 B

URL HTTP/2
zz.connextra.com/sync/data/uid/6c883bd680/a6716367-cabf-4f00-a1e5-6c5ceab5b381
IP
104.88.23.60:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
64 B (64 bytes)
Hash
28eef568735b80a8332521d787dd86bb
28f5f77711609381a229447f8560d374d0eadc62
09cf0142653a98e763b6a79dae28efd223810b8fb099beb9f573306fd626fc02

HTTP Headers

GET /sync/data/uid/6c883bd680/a6716367-cabf-4f00-a1e5-6c5ceab5b381 HTTP/1.1
Host: zz.connextra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/gif
p3p: CP=NOI DSP COR CURa ADMa DEVa PSAa PSDa OUR SAMa BUS IND UNI PUR COM NAV
vary: accept-encoding
content-encoding: gzip
x-envoy-upstream-service-time: 1
server: istio-envoy
expires: Sun, 06 Nov 2022 14:54:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 14:54:54 GMT
content-length: 64
set-cookie: CxtId=927d318d-d928-4117-b7eb-768313f35a60; Domain=.connextra.com; Expires=Mon, 06-Nov-2023 14:54:54 GMT; Path=/; Secure
ex_uuid=6c883bd680%2Ca6716367-cabf-4f00-a1e5-6c5ceab5b381; Domain=.connextra.com; Expires=Mon, 06-Nov-2023 14:54:54 GMT; Path=/; Secure
X-Firefox-Spdy: h2

segment.prod.bidr.io/associate-segment?buzz_key=geniussportsmedia&segment_key=geniussportsmedia-1643&value=

54.220.164.105

303 See Other

0 B

URL HTTP/1.1
segment.prod.bidr.io/associate-segment?buzz_key=geniussportsmedia&segment_key=geniussportsmedia-1643&value=
IP
54.220.164.105:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /associate-segment?buzz_key=geniussportsmedia&segment_key=geniussportsmedia-1643&value= HTTP/1.1
Host: segment.prod.bidr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 303 See Other
Date: Sun, 06 Nov 2022 14:54:54 GMT
location: https://segment.prod.bidr.io/associate-segment?buzz_key=geniussportsmedia&segment_key=geniussportsmedia-1643&value=&_bee_ppp=1
Server: gunicorn
set-cookie: checkForPermission=ok; Domain=bidr.io; expires=Sun, 06 Nov 2022 15:04:54 GMT; Path=/; SameSite=None; Secure
strict-transport-security: max-age=2592000; includeSubDomains
Content-Length: 0
Connection: keep-alive

match.prod.bidr.io/cookie-sync/geniussports

54.217.231.82

303 See Other

0 B

URL HTTP/1.1
match.prod.bidr.io/cookie-sync/geniussports
IP
54.217.231.82:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cookie-sync/geniussports HTTP/1.1
Host: match.prod.bidr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 303 See Other
Date: Sun, 06 Nov 2022 14:54:54 GMT
location: https://match.prod.bidr.io/cookie-sync/geniussports?_bee_ppp=1
Server: gunicorn
set-cookie: checkForPermission=ok; Domain=bidr.io; expires=Sun, 06 Nov 2022 15:04:54 GMT; Path=/; SameSite=None; Secure
strict-transport-security: max-age=2592000; includeSubDomains
Content-Length: 0
Connection: keep-alive

segment.prod.bidr.io/associate-segment?buzz_key=geniussportsmedia&segment_key=geniussportsmedia-1643&value=&_bee_ppp=1

54.220.164.105

200 OK

43 B

URL HTTP/1.1
segment.prod.bidr.io/associate-segment?buzz_key=geniussportsmedia&segment_key=geniussportsmedia-1643&value=&_bee_ppp=1
IP
54.220.164.105:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b

HTTP Headers

GET /associate-segment?buzz_key=geniussportsmedia&segment_key=geniussportsmedia-1643&value=&_bee_ppp=1 HTTP/1.1
Host: segment.prod.bidr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
cache-control: no-cache, must-revalidate
content-type: image/gif
Date: Sun, 06 Nov 2022 14:54:55 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
p3p: CP="This is not a P3P policy! See https://beeswax.com/privacy for more info."
pragma: no-cache
Server: gunicorn
strict-transport-security: max-age=2592000; includeSubDomains
Content-Length: 43
Connection: keep-alive

pixel.mathtag.com/comp/img?mt_id=99&ns=xx&bcdv=0

23.38.200.207

200 OK

0 B

URL HTTP/1.1
pixel.mathtag.com/comp/img?mt_id=99&ns=xx&bcdv=0
IP
23.38.200.207:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /comp/img?mt_id=99&ns=xx&bcdv=0 HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 0
Access-Control-Allow-Origin: *
Server: MT3 4629 97bee97 master iad-pixel-x11 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Sun, 06 Nov 2022 14:54:53 GMT
Date: Sun, 06 Nov 2022 14:54:55 GMT
Connection: keep-alive
Set-Cookie: uuid=73fd6367-cabf-4900-9f08-bd3a10cd2283; domain=.mathtag.com; path=/; expires=Mon, 04-Dec-2023 14:54:55 GMT; SameSite=None; Secure

match.prod.bidr.io/cookie-sync/geniussports?_bee_ppp=1

54.217.231.82

303 See Other

0 B

URL HTTP/1.1
match.prod.bidr.io/cookie-sync/geniussports?_bee_ppp=1
IP
54.217.231.82:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cookie-sync/geniussports?_bee_ppp=1 HTTP/1.1
Host: match.prod.bidr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 303 See Other
Date: Sun, 06 Nov 2022 14:54:55 GMT
location: https://zz.connextra.com/sync/data/uid/508a5e2dd5/
Server: gunicorn
strict-transport-security: max-age=2592000; includeSubDomains
Content-Length: 0
Connection: keep-alive

pixel.mathtag.com/sync/iframe?mt_uuid=a10d6367-cabf-4100-832f-fd74a89b4842&no_iframe=1&mt_adid=238671&source=mathtag

23.38.200.207

200 OK

713 B

URL HTTP/1.1
pixel.mathtag.com/sync/iframe?mt_uuid=a10d6367-cabf-4100-832f-fd74a89b4842&no_iframe=1&mt_adid=238671&source=mathtag
IP
23.38.200.207:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document, ASCII text
Size
713 B (713 bytes)
Hash
f853f2ecf3f2d763c4057f4ff5c3e4e8
0f9ca6de16aa4261f1202443311462a81717dd85
8040be8c28a19b0f78481f2da17e7220e75adde27eb9713ff626652a066f92da

HTTP Headers

GET /sync/iframe?mt_uuid=a10d6367-cabf-4100-832f-fd74a89b4842&no_iframe=1&mt_adid=238671&source=mathtag HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 713
Access-Control-Allow-Origin: *
Server: MT3 4539 98cc2da master ord-pixel-x22 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Sun, 06 Nov 2022 14:54:53 GMT
Date: Sun, 06 Nov 2022 14:54:55 GMT
Connection: keep-alive

zz.connextra.com/sync/data/uid/508a5e2dd5/

104.88.23.60

200 OK

64 B

URL HTTP/2
zz.connextra.com/sync/data/uid/508a5e2dd5/
IP
104.88.23.60:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
64 B (64 bytes)
Hash
28eef568735b80a8332521d787dd86bb
28f5f77711609381a229447f8560d374d0eadc62
09cf0142653a98e763b6a79dae28efd223810b8fb099beb9f573306fd626fc02

HTTP Headers

GET /sync/data/uid/508a5e2dd5/ HTTP/1.1
Host: zz.connextra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hollywoodbets.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/gif
p3p: CP=NOI DSP COR CURa ADMa DEVa PSAa PSDa OUR SAMa BUS IND UNI PUR COM NAV
vary: accept-encoding
content-encoding: gzip
x-envoy-upstream-service-time: 0
server: istio-envoy
expires: Sun, 06 Nov 2022 14:54:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 06 Nov 2022 14:54:55 GMT
content-length: 64
set-cookie: CxtId=01a3ad22-b41f-41e1-b7f0-9f186589faa1; Domain=.connextra.com; Expires=Mon, 06-Nov-2023 14:54:55 GMT; Path=/; Secure
X-Firefox-Spdy: h2

pixel.mathtag.com/comp/img?mt_id=99&ns=xx&bcdv=0

23.38.200.207

200 OK

0 B

URL HTTP/1.1
pixel.mathtag.com/comp/img?mt_id=99&ns=xx&bcdv=0
IP
23.38.200.207:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /comp/img?mt_id=99&ns=xx&bcdv=0 HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pixel.mathtag.com/sync/iframe?mt_uuid=a10d6367-cabf-4100-832f-fd74a89b4842&no_iframe=1&mt_adid=238671&source=mathtag
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 0
Access-Control-Allow-Origin: *
Server: MT3 4629 97bee97 master iad-pixel-x12 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Sun, 06 Nov 2022 14:54:54 GMT
Date: Sun, 06 Nov 2022 14:54:55 GMT
Connection: keep-alive
Set-Cookie: uuid=14086367-cabf-4b00-b40d-1ddf96b4348e; domain=.mathtag.com; path=/; expires=Mon, 04-Dec-2023 14:54:55 GMT; SameSite=None; Secure

www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00

104.18.38.227

200 OK

0 B

URL HTTP/2
www.hollywoodbets.net/register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00
IP
104.18.38.227:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /register.aspx?btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00 HTTP/1.1
Host: www.hollywoodbets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Sun, 06 Nov 2022 14:54:50 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
x-aspnet-version: 4.0.30319
x-ua-compatible: IE=Edge
x-oneagent-js-injection: true
x-ruxit-js-agent: true
server-timing: dtSInfo;desc="1"
set-cookie: ASP.NET_SessionId=hv51suf1qbcpupw5gh14etd4; path=/; HttpOnly; SameSite=Lax
NetReferBtag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00; expires=Mon, 06-Feb-2023 14:54:50 GMT; path=/
btag=a_905b_1469c_w6j4tmedeul1fe9k2ecl9r00; domain=hollywoodbets.net; expires=Sat, 04-Feb-2023 14:54:50 GMT; path=/;SameSite=None; secure; HttpOnly
dtCookie=v_4_srv_1_sn_ADF31C3D6B2CF3DE84631871699A773F_perc_0_ol_1_app-3A571193d6750a72c6_0_rcs-3Acss_0; Path=/; Domain=.hollywoodbets.net
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 765eaaab6840b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

s.yimg.com/wi/ytc.js

188.125.94.206

200 OK

0 B

URL HTTP/2
s.yimg.com/wi/ytc.js
IP
188.125.94.206:0
ASN
#10310 YAHOO-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hollywoodbets.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: rA6m4OvmKf6ZlfbKkBgwkoDE/CPkWnIHmaB077RfZBYzao2hVvtMdmkWVYM23B2odrXIK3ab5b0=
x-amz-request-id: AQJR5YNX9J8GD3Q3
date: Sun, 06 Nov 2022 14:39:41 GMT
last-modified: Tue, 14 Jun 2022 12:21:31 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "6a624022b5d271dcefb070b0b6670abc-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: .QD3nDfK79S8_ikLSJXTL23Tdis9tg0C
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 912
content-encoding: gzip
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (42)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP