r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15797
Expires: Mon, 30 Jan 2023 06:01:50 GMT
Date: Mon, 30 Jan 2023 01:38:33 GMT
Connection: keep-alive
scuderiafans.com/
89.42.218.99301 Moved Permanently 707 B IP 89.42.218.99:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Mon, 30 Jan 2023 01:38:31 GMT
server: LiteSpeed
location: https://scuderiafans.com/
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5666
Expires: Mon, 30 Jan 2023 03:12:59 GMT
Date: Mon, 30 Jan 2023 01:38:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2844
Expires: Mon, 30 Jan 2023 02:25:57 GMT
Date: Mon, 30 Jan 2023 01:38:33 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 00:43:10 GMT
content-type: application/json
age: 3323
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: K4Byn+47zPGjYNIPDlmurRTXXLNv6AFlS6TsiMDZr0Vhly5ItP2lJeS2hizLSekcG35YkkfCLXp7fpFdNv0pmg==
x-amz-request-id: Z1YBCQM5T3A6CPVA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 01:21:36 GMT
age: 1017
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:33 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
scuderiafans.com/wp-includes/css/dist/block-library/style.min.css?ver=5.2.17
89.42.218.99200 OK 4.5 kB URL HTTP/2 scuderiafans.com/wp-includes/css/dist/block-library/style.min.css?ver=5.2.17
IP 89.42.218.99:0
File type ASCII text, with very long lines (29271), with no line terminators
Hash a1333f25aea88dc0c51e11f22502501b
9ccba4bc14c0a9e6f00c68869861f2ea6b93a91a
b3ab0098d7050c4d94d6888745817f67dc0661936c8387a45bef674d167ffcec
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.2.17 HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 13:17:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4474
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6
89.42.218.99200 OK 559 B URL HTTP/2 scuderiafans.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6
IP 89.42.218.99:0
Hash 5d06058ba2673856ad5f584ee3d591de
5d4927e0b7868171f89488e527837199b7f9a3b1
af6f2608a9097d4c4a8c90504fbdf376435afe4cf4c789d9177a89ca609b201d
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6 HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: text/css
last-modified: Mon, 13 Jan 2020 08:26:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 559
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-content/themes/Truemag/assets/css/shortcodes.css
89.42.218.99200 OK 3.2 kB URL HTTP/2 scuderiafans.com/wp-content/themes/Truemag/assets/css/shortcodes.css
IP 89.42.218.99:0
File type ASCII text, with CRLF line terminators
Hash d5db313cec1281fa6fbb17744f2b13cf
23c322f2168148b37c618054b0d63a551fe0a4e6
36bf06aad8b449d32f3c533fe5fc6d954d7afdc8f36284256876261b00f02606
GET /wp-content/themes/Truemag/assets/css/shortcodes.css HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: text/css
last-modified: Mon, 19 Dec 2016 19:52:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3152
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-content/plugins/stkit/components/lightbox/assets/css/prettyPhoto.css
89.42.218.99200 OK 2.7 kB URL HTTP/2 scuderiafans.com/wp-content/plugins/stkit/components/lightbox/assets/css/prettyPhoto.css
IP 89.42.218.99:0
File type ASCII text, with CRLF line terminators
Hash c6c45875e5f7c09efe0dfb7654627b14
39e97fbd7e8fbe729f3268ba09edf845573160ed
af7ad3350de6cd8f9e6a862f657a341c24db890038869847b14356fab3282137
GET /wp-content/plugins/stkit/components/lightbox/assets/css/prettyPhoto.css HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: text/css
last-modified: Wed, 09 Jan 2019 15:30:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2694
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-content/plugins/ultimate-social-media-plus/css/sfsi-style.css?ver=5.2.17
89.42.218.99200 OK 14 kB URL HTTP/2 scuderiafans.com/wp-content/plugins/ultimate-social-media-plus/css/sfsi-style.css?ver=5.2.17
IP 89.42.218.99:0
File type ASCII text, with CRLF line terminators
Hash a360e6b4ab3f3750d3af1d491cada503
2b1ca8f227d40aca27074bd48aaae62041f9f4a6
e0c5a0bfd63ca3f8d1d43b1590102e25dd80cf2edd5678a6e172ece415060404
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-social-media-plus/css/sfsi-style.css?ver=5.2.17 HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: text/css
last-modified: Sat, 29 Jan 2022 23:33:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14114
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scuderiafans.com/wp-content/themes/Truemag/style.css
89.42.218.99200 OK 27 kB URL HTTP/2 scuderiafans.com/wp-content/themes/Truemag/style.css
IP 89.42.218.99:0
File type ASCII text, with CRLF line terminators
Hash 4323f3efcaa52d9808d828cbe006c25a
4196026ffc94e0d7015f5d20402fb138abf29447
d4a3776cca559637af3e667a6d0749c4f8f6f48a67998a64c007b235a62e6ab9
GET /wp-content/themes/Truemag/style.css HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: text/css
last-modified: Mon, 19 Dec 2016 19:52:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 26737
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-content/plugins/cookie-notice/css/front.min.css?ver=5.2.17
89.42.218.99200 OK 952 B URL HTTP/2 scuderiafans.com/wp-content/plugins/cookie-notice/css/front.min.css?ver=5.2.17
IP 89.42.218.99:0
File type ASCII text, with very long lines (5269), with no line terminators
Hash 79dae1c3ce5b325b10d5065d90dc12d2
5756ab530203aa2a5127dca5fe7984602c3ee021
25b4cde27581fae7a8039e7512f1107802c6f4a586f30592a640692a99575912
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=5.2.17 HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: text/css
last-modified: Sat, 29 Jan 2022 23:32:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 952
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-content/tablepress-combined.min.css?ver=5
89.42.218.99200 OK 2.5 kB URL HTTP/2 scuderiafans.com/wp-content/tablepress-combined.min.css?ver=5
IP 89.42.218.99:0
File type ASCII text, with very long lines (5818)
Hash fe14594abb1507303da95bfb8643c3ba
bfd41d93488480802c5aa98828affdb9e86891c6
db5f58094b99b519c4a7a19d3252e19cc28e8dc9e5970ca06a8e3ff2518b66f6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/tablepress-combined.min.css?ver=5 HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: text/css
last-modified: Fri, 23 Dec 2016 12:17:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2522
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-content/plugins/stkit/assets/plugins/mediaelement/mediaelementplayer.min.css
89.42.218.99200 OK 2.6 kB URL HTTP/2 scuderiafans.com/wp-content/plugins/stkit/assets/plugins/mediaelement/mediaelementplayer.min.css
IP 89.42.218.99:0
File type ASCII text, with very long lines (18187), with no line terminators
Hash 2f08ffa3a7a93c0b086d85a641b88e1f
fa3662ef185e25ed692cb47c7b2bdefb8abcc636
d0780dce978a9f297ef60900ba07550c9717bc19c3eeab75c749267b569e5efe
GET /wp-content/plugins/stkit/assets/plugins/mediaelement/mediaelementplayer.min.css HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: text/css
last-modified: Wed, 09 Jan 2019 15:30:35 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2581
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-content/themes/Truemag/assets/css/responsive.css
89.42.218.99200 OK 8.1 kB URL HTTP/2 scuderiafans.com/wp-content/themes/Truemag/assets/css/responsive.css
IP 89.42.218.99:0
File type ASCII text, with CRLF line terminators
Hash ebb0249a3e83990407ac83053d51152f
11400fc0c2fa2010f3cbe089a90ec06658143704
8a3d15ea203e2e3b392cb2aa4ccab0898ab9e0271bd2770a9f21fc229a736676
GET /wp-content/themes/Truemag/assets/css/responsive.css HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: text/css
last-modified: Mon, 19 Dec 2016 19:52:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8050
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scuderiafans.com/wp-content/uploads/truemag_custom.css
89.42.218.99200 OK 2.5 kB URL HTTP/2 scuderiafans.com/wp-content/uploads/truemag_custom.css
IP 89.42.218.99:0
File type ASCII text, with CRLF, LF line terminators
Hash 94d17e4a4219ae2a700b81dd9b919937
6990aafc809f662afc27c44273686a1ee62624cf
995a230df8aaf1d8b54c50585aef152f2dcd19f38e4b6fb92f6a4209af094c01
GET /wp-content/uploads/truemag_custom.css HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: text/css
last-modified: Wed, 16 Mar 2022 14:35:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2517
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
89.42.218.99200 OK 33 kB URL HTTP/2 scuderiafans.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 89.42.218.99:0
File type ASCII text, with very long lines (31997)
Hash a95303ca3b1a9372809d72ffa31bca40
65130bca144d3b49d5f97387173c423b9b4abfe3
c5d914b6693616fcf2c61bc363660dcc5f6ea7de5a25b1d6a5a2a95f39846565
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: application/javascript
last-modified: Wed, 31 Jul 2019 18:22:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32853
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
89.42.218.99200 OK 3.8 kB URL HTTP/2 scuderiafans.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 89.42.218.99:0
File type ASCII text, with very long lines (9959)
Hash 7c4522c04f6ad8cc5ba9d83d27a652c9
9b3058c58d6f0f3bcf204d57d5e38fc3ef507b8f
186df88869ab6951e2647db3b07fc025857cdab144cd7367513944d1d2f0f26c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: application/javascript
last-modified: Fri, 20 May 2016 03:11:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3823
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-content/plugins/ultimate-social-media-plus/images/icons_theme/default/default_rss.png
89.42.218.99200 OK 1.3 kB URL HTTP/2 scuderiafans.com/wp-content/plugins/ultimate-social-media-plus/images/icons_theme/default/default_rss.png
IP 89.42.218.99:0
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash e4fa24aadaaa171cad395fd042ecbcec
c4af0a89c6dd159cf2e433bf536ae5cbe1722a3b
e6d287afb76e0ff4e669831b39916e90d92f10e521f8c6c7674b4d5ee1abfd6f
GET /wp-content/plugins/ultimate-social-media-plus/images/icons_theme/default/default_rss.png HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: image/png
last-modified: Sat, 29 Jan 2022 23:33:12 GMT
accept-ranges: bytes
content-length: 1335
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-content/plugins/ultimate-social-media-plus/images/icons_theme/default/default_fb.png
89.42.218.99200 OK 1.0 kB URL HTTP/2 scuderiafans.com/wp-content/plugins/ultimate-social-media-plus/images/icons_theme/default/default_fb.png
IP 89.42.218.99:0
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 4111c678af8ac22f429dc8c866ed32cc
cf88ac5bd04e17e56a28040e27b5a57656e3c970
9ddd8b79f5c9e1dc6cc2223cbe200e8ac027401a099f2ea68c6777a59f794c78
GET /wp-content/plugins/ultimate-social-media-plus/images/icons_theme/default/default_fb.png HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: image/png
last-modified: Sat, 29 Jan 2022 23:33:12 GMT
accept-ranges: bytes
content-length: 1000
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-content/plugins/ultimate-social-media-plus/images/icons_theme/default/default_twitter.png
89.42.218.99200 OK 1.2 kB URL HTTP/2 scuderiafans.com/wp-content/plugins/ultimate-social-media-plus/images/icons_theme/default/default_twitter.png
IP 89.42.218.99:0
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 5ef581a76d066d21387f83a6cb6818e2
7914b3902b034780b575d6319e5db633448a80eb
c938c59100b0c9f1873d47453c9f2924ad60fabe79cb44aacc601198af379f62
GET /wp-content/plugins/ultimate-social-media-plus/images/icons_theme/default/default_twitter.png HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: image/png
last-modified: Sat, 29 Jan 2022 23:33:12 GMT
accept-ranges: bytes
content-length: 1224
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-content/plugins/ultimate-social-media-plus/images/visit_icons/Visit_us_twitter/icon_Visit_us_en_US.png
89.42.218.99200 OK 3.9 kB URL HTTP/2 scuderiafans.com/wp-content/plugins/ultimate-social-media-plus/images/visit_icons/Visit_us_twitter/icon_Visit_us_en_US.png
IP 89.42.218.99:0
File type PNG image data, 93 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash d8f2d254eec166adde349712feece919
d8f91466e126a1b6d926efb7d8811619b72ea7f5
f648b1f3b68f323856f2d786726d72dcc26ca2d57c5cca680404e385ef07e009
GET /wp-content/plugins/ultimate-social-media-plus/images/visit_icons/Visit_us_twitter/icon_Visit_us_en_US.png HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: image/png
last-modified: Sat, 29 Jan 2022 23:33:12 GMT
accept-ranges: bytes
content-length: 3943
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
scuderiafans.com/wp-content/plugins/ultimate-social-media-plus/images/share_icons/Twitter_Follow/en_US_Follow.svg
89.42.218.99200 OK 1.4 kB URL HTTP/2 scuderiafans.com/wp-content/plugins/ultimate-social-media-plus/images/share_icons/Twitter_Follow/en_US_Follow.svg
IP 89.42.218.99:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1560), with CRLF line terminators
Hash 9a8f34f35e478eca8b6944cf89211b64
b02ab5e9c2741ae99bd0b690abf5393023983a1f
a5884eef4aa6a3c68e30c615d6bc154ea6bfb9b60af8d7695016f4c608987355
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-social-media-plus/images/share_icons/Twitter_Follow/en_US_Follow.svg HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 06 Feb 2023 01:38:32 GMT
content-type: image/svg+xml
last-modified: Sat, 29 Jan 2022 23:33:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1409
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ebe74c5fe5460791229d5bf9493c8587
d32988b554fd5f6ac0a2d39177ce0ba52636d4a4
a2a01cc9a2c18a9d99a8c68b1b14d6a89e25ab02817c0b8591d991a98f33027a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A2A01CC9A2C18A9D99A8C68B1B14D6A89E25AB02817C0B8591D991A98F33027A"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5873
Expires: Mon, 30 Jan 2023 03:16:26 GMT
Date: Mon, 30 Jan 2023 01:38:33 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-DMW283XKGD
142.250.74.168200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-DMW283XKGD
IP 142.250.74.168:0
File type ASCII text, with very long lines (19467)
Hash 698dcf6d88e3e24e20dd794a75059503
71259593c748f97945cebe1b89e3d0dfe55ccd04
c4f32c7086f74f0c84fce48f18e324b9d4331158ddc9f01c2bf5828a9bb047cf
GET /gtag/js?id=G-DMW283XKGD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 01:38:33 GMT
expires: Mon, 30 Jan 2023 01:38:33 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77186
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 901afc0d51d4a89a00ff3d9bced8b43a
0f94cc31084c68fa6b9cd9936d951906e1c9d9ee
6e68d119d7fd80f500c2487ecb7a460ee0547a514bc3a18abbbb3f8447a5b08d
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154800
Date: Mon, 30 Jan 2023 01:38:33 GMT
Etag: "63d6c3dd-1d7"
Expires: Tue, 31 Jan 2023 20:38:33 GMT
Last-Modified: Sun, 29 Jan 2023 19:07:09 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jn7u6tMUpTwODd7UUDl4SlRc9_JqhOaYCzbdCxofX_z7x16tfrSDEg==
Age: 5484
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 00:49:04 GMT
age: 2969
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
a.impactradius-go.com/display-ad/11910-1264305
54.230.111.38200 OK 128 kB URL HTTP/2 a.impactradius-go.com/display-ad/11910-1264305
IP 54.230.111.38:0
File type PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size 128 kB (128280 bytes)
Hash e55c46994b523e422149d7a583cd21f2
348587cbd5717a965cb4f05d82164d50600b4d36
abf1788db1868e913708490687b017f58a2f61bc4b23f9d4148f2abf992705b7
GET /display-ad/11910-1264305 HTTP/1.1
Host: a.impactradius-go.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 128280
last-modified: Fri, 11 Feb 2022 09:23:12 GMT
accept-ranges: bytes
server: AmazonS3
date: Mon, 30 Jan 2023 01:38:33 GMT
cache-control: public,max-age=900,s-maxage=600
etag: "e55c46994b523e422149d7a583cd21f2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aJmk2QTnJlRteyx8wH6sbuKHfbJ3jwbJX9wp8u1bwzTkCdnnze-pSw==
age: 164
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash dce88b75d8e9afa5ca7b472c67f1af88
132458af27a087d34f3232ba4416e0b2f201a744
47b6336a22572251fb923f60b9d0c00971b5d02fa528de7b4e43574affd0b6d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=114404
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:33 GMT
Etag: "63d63b7d-117"
Expires: Tue, 31 Jan 2023 09:25:17 GMT
Last-Modified: Sun, 29 Jan 2023 09:25:17 GMT
Server: nginx
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 93df0470cb49c7820459b9d9127a34da
cae0d0525d59d16cfca2e761020a1c77df602c11
74338c0b3d75cc11537e775e361b91f8b852bf0232439387309f9e930608421d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:38:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 14:29:48 GMT
Expires: Sun, 05 Feb 2023 14:29:47 GMT
Etag: "cae0d0525d59d16cfca2e761020a1c77df602c11"
Cache-Control: max-age=564073,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79167d1f9908fabc-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6170
Expires: Mon, 30 Jan 2023 03:21:23 GMT
Date: Mon, 30 Jan 2023 01:38:33 GMT
Connection: keep-alive
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.67200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://scuderiafans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:52:41 GMT
expires: Tue, 23 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 542752
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
imp.pxf.io/i/3664209/1264305/11910
35.201.76.231302 Found 128 B URL HTTP/2 imp.pxf.io/i/3664209/1264305/11910
IP 35.201.76.231:0
File type HTML document, ASCII text
Hash e7a6b7209996a73c004a9815ecfa3483
6243d0efc51cda574207ccd0d8f72f3b322afa8a
a9bac1e44a74280685d444547f2c6d174d75db1929773d4a381bf29f35f2d6cd
GET /i/3664209/1264305/11910 HTTP/1.1
Host: imp.pxf.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Mon, 30 Jan 2023 01:38:33 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
location: https://f1.pxf.io/i/3664209/1264305/11910?level=1&srcref=https%3A%2F%2Fscuderiafans.com%2F
content-type: text/html; charset=utf-8
content-length: 128
date: Mon, 30 Jan 2023 01:38:33 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
roobetaffiliates.ck-cdn.com/tn/serve/?cid=361457
172.67.70.145200 OK 100 kB URL HTTP/2 roobetaffiliates.ck-cdn.com/tn/serve/?cid=361457
IP 172.67.70.145:0
File type PNG image data, 300 x 300, 8-bit/color RGB, interlaced\012- data
Size 100 kB (100398 bytes)
Hash 7de2afc8f4bc40bf282ef5176d0951c5
656efe2567c0eb104b2d7da9d2633590911fa135
0736e6a9a58b40aa476b797471a5b86127df60cd41ec022e552f4d2532b4ae4f
GET /tn/serve/?cid=361457 HTTP/1.1
Host: roobetaffiliates.ck-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: i
content-length: 100398
cf-ray: 79167d21fb62b4ee-OSL
accept-ranges: bytes
cache-control: max-age=2678400
etag: "7de2afc8f4bc40bf282ef5176d0951c5"
last-modified: Mon, 09 Jan 2023 12:48:25 GMT
set-cookie: 361457=true
vary: Accept-Encoding
cf-cache-status: REVALIDATED
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
x-amz-id-2: f0pQZHfRBKPcjZ8GDxy0fmToefOL8Q7MDC30saU8pgvc0bD88/lUoWBPVYXzRrO277mH/xUPYuU=
x-amz-request-id: ATF762F3QHARMKT4
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XUbXzGlJBnfcQy%2FFBL4Yczg3j%2B%2B9Kq9kjAWYyE%2Fj%2BMtO7ukHg82Bwu0Co%2FHc3%2FgtzbY95cmKUAPDM36OIo3UCS5jhzxYc6fGYMyN3752z%2BGf6tLP6ZPV3%2Bo1T69YUOx%2BFuh%2BBeCstVpRONcaMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
f1.pxf.io/i/3664209/1264305/11910?level=1&srcref=https%3A%2F%2Fscuderiafans.com%2F
35.201.76.231302 Found 209 B URL HTTP/2 f1.pxf.io/i/3664209/1264305/11910?level=1&srcref=https%3A%2F%2Fscuderiafans.com%2F
IP 35.201.76.231:0
File type HTML document, ASCII text
Hash 6203c62ebe9640c458c3766ad99f2c4f
54cadd2318f2cfb2cd26870926f23f91f719cdc9
3fbff85c9697ea1792949ad395a9bc3f7a620014a44af743a6ca36a340113915
GET /i/3664209/1264305/11910?level=1&srcref=https%3A%2F%2Fscuderiafans.com%2F HTTP/1.1
Host: f1.pxf.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scuderiafans.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Mon, 30 Jan 2023 01:38:34 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
location: https://www.ojrq.net/p/?return=https%3A%2F%2Ff1.pxf.io%2Fi%2F3664209%2F1264305%2F11910%3Flevel%3D2%26srcref%3Dhttps%253A%252F%252Fscuderiafans.com%252F&cid=11910&tpsync=no
content-type: text/html; charset=utf-8
content-length: 209
date: Mon, 30 Jan 2023 01:38:34 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 28a840fca6cfe2975e97a83644077ab9
4279a33d40a41a6c50bdc0552c24affadd0cde55
f83c4ad27cf8151c1b926bc9d83285c31f59494cbf634c20a5aa29373dbf7a80
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:38:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 17:39:59 GMT
Expires: Sat, 04 Feb 2023 17:39:58 GMT
Etag: "4279a33d40a41a6c50bdc0552c24affadd0cde55"
Cache-Control: max-age=489083,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79167d220ebfb506-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 28a840fca6cfe2975e97a83644077ab9
4279a33d40a41a6c50bdc0552c24affadd0cde55
f83c4ad27cf8151c1b926bc9d83285c31f59494cbf634c20a5aa29373dbf7a80
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:38:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 17:39:59 GMT
Expires: Sat, 04 Feb 2023 17:39:58 GMT
Etag: "4279a33d40a41a6c50bdc0552c24affadd0cde55"
Cache-Control: max-age=489083,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79167d2208d8b4fa-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d51f479d558eccaf6999a8120b3eafbc
6fc0a16a1b7b2864658f384532ea28a996d30377
4450d2316e7f0f1463571c403c8dcee8c13bbb2bded054cc6919981fa7d11a23
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4450D2316E7F0F1463571C403C8DCEE8C13BBB2BDED054CC6919981FA7D11A23"
Last-Modified: Sun, 29 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14236
Expires: Mon, 30 Jan 2023 05:35:50 GMT
Date: Mon, 30 Jan 2023 01:38:34 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 277 B IP 93.184.220.29:0
Hash 53075f7048c7277bb3017f11a79a0acc
c7c45015d920303cd38f9d3bf97189867a639f39
a8dd4aafcf79479478540c05085f0dd74e5aa69627033ce08e573c87653986c7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6327
Cache-Control: max-age=139052
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:34 GMT
Etag: "63d6830f-115"
Expires: Tue, 31 Jan 2023 16:16:06 GMT
Last-Modified: Sun, 29 Jan 2023 14:30:39 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 277
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.85.173.255101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.85.173.255:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vdMxs03qMOHANDc6B4w6xg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: i3rv+ttUFlW4Ur8S/KoSgox28pM=
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 28a840fca6cfe2975e97a83644077ab9
4279a33d40a41a6c50bdc0552c24affadd0cde55
f83c4ad27cf8151c1b926bc9d83285c31f59494cbf634c20a5aa29373dbf7a80
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:38:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 17:39:59 GMT
Expires: Sat, 04 Feb 2023 17:39:58 GMT
Etag: "4279a33d40a41a6c50bdc0552c24affadd0cde55"
Cache-Control: max-age=489083,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79167d2228910b59-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 28a840fca6cfe2975e97a83644077ab9
4279a33d40a41a6c50bdc0552c24affadd0cde55
f83c4ad27cf8151c1b926bc9d83285c31f59494cbf634c20a5aa29373dbf7a80
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:38:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 17:39:59 GMT
Expires: Sat, 04 Feb 2023 17:39:58 GMT
Etag: "4279a33d40a41a6c50bdc0552c24affadd0cde55"
Cache-Control: max-age=489083,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79167d21f97dfabc-OSL
cdn-header-bidding.snack-media.com/assets/js/snack-loader/2811?cb=0
194.242.11.186200 OK 9.0 kB URL HTTP/2 cdn-header-bidding.snack-media.com/assets/js/snack-loader/2811?cb=0
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (8145)
Hash ce24601759aa1ea07f5bc3fa0d5c376a
6f979bbc4bea7beb9471c250d27e96916053eaca
fbc6c9d87bb498d7f69b6d2b90d8a95db9dca13e8cc5747130e9f2bffd2313dc
GET /assets/js/snack-loader/2811?cb=0 HTTP/1.1
Host: cdn-header-bidding.snack-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 145563
cdn-uid: cf85643b-ef61-4e40-8871-e5ff38046499
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=3600
expires: Mon, 30 Jan 2023 00:57:11 GMT
cdn-cachedat: 01/30/2023 00:44:19
x-powered-by: PHP/7.4.33
link: <https://header-bidding.snack-media.com/wp-json/>; rel="https://api.w.org/"
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 5eb30a97d909fb33fe53688177922cea
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 53b86777ddb35b793cffe1165f3d04d0
d43929ae010be39444191a16dce99d5bb89e71b7
062dd08344741e8505b761db9080b7193d46864142efebfc74998abccc8414c1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "062DD08344741E8505B761DB9080B7193D46864142EFEBFC74998ABCCC8414C1"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=898
Expires: Mon, 30 Jan 2023 01:53:32 GMT
Date: Mon, 30 Jan 2023 01:38:34 GMT
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 28a840fca6cfe2975e97a83644077ab9
4279a33d40a41a6c50bdc0552c24affadd0cde55
f83c4ad27cf8151c1b926bc9d83285c31f59494cbf634c20a5aa29373dbf7a80
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:38:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 17:39:59 GMT
Expires: Sat, 04 Feb 2023 17:39:58 GMT
Etag: "4279a33d40a41a6c50bdc0552c24affadd0cde55"
Cache-Control: max-age=489083,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79167d220dacb4ed-OSL
s.cdnmpro.com/892723050/content/Shop%20images/banner%20Ferrari%20shop.png
185.181.100.89200 OK 160 kB URL HTTP/2 s.cdnmpro.com/892723050/content/Shop%20images/banner%20Ferrari%20shop.png
IP 185.181.100.89:0
File type PNG image data, 300 x 900, 8-bit/color RGBA, non-interlaced\012- data
Size 160 kB (160231 bytes)
Hash 30d15831d04a21a7a114498214b37f4d
44cdcb8a998c75414d6972309a35b98fe50a493e
2fd63566d2f436ff5ee29005384f18a462672b3b368e36282b7caab23a6ae1a5
GET /892723050/content/Shop%20images/banner%20Ferrari%20shop.png HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/png
content-length: 160231
last-modified: Sat, 04 Sep 2021 12:37:16 GMT
etag: "6133687c-271e7"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
s.cdnmpro.com/892723050/content/banner%20paid/BNZC1.png
185.181.100.89200 OK 23 kB URL HTTP/2 s.cdnmpro.com/892723050/content/banner%20paid/BNZC1.png
IP 185.181.100.89:0
File type PNG image data, 300 x 268, 8-bit colormap, non-interlaced\012- data
Hash 3a954ede904bcbdfe70dd853eaef310c
f74d2b9213883b6be4fbcca74e068ac98317d7b4
ebc317fddc7034da04468049a6dcbdaebc3a588965b4e05d40eb66977885848b
GET /892723050/content/banner%20paid/BNZC1.png HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/png
content-length: 23225
last-modified: Fri, 12 Aug 2022 11:16:49 GMT
etag: "62f636a1-5ab9"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
boot.pbstck.com/v1/tag/6a10f206-3490-4383-910c-3bd4424e4009
188.114.98.234200 OK 967 B URL HTTP/2 boot.pbstck.com/v1/tag/6a10f206-3490-4383-910c-3bd4424e4009
IP 188.114.98.234:0
File type ASCII text, with very long lines (726)
Hash a4332ef4b031fc9024712647f4c73b43
2874af0b734b215083486a81a8a9030b8a921750
e2ac6b3357dbf469bd78b42066b64d0dfa07435e6ab727032070061ccd239709
GET /v1/tag/6a10f206-3490-4383-910c-3bd4424e4009 HTTP/1.1
Host: boot.pbstck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: private,max-age=120
timing-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79167d247a6eb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 93df0470cb49c7820459b9d9127a34da
cae0d0525d59d16cfca2e761020a1c77df602c11
74338c0b3d75cc11537e775e361b91f8b852bf0232439387309f9e930608421d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:38:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 14:29:48 GMT
Expires: Sun, 05 Feb 2023 14:29:47 GMT
Etag: "cae0d0525d59d16cfca2e761020a1c77df602c11"
Cache-Control: max-age=564072,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79167d23bf97b506-OSL
s.cdnmpro.com/892723050/content/banner%20paid/bettingguide300x250.png
185.181.100.89200 OK 8.7 kB URL HTTP/2 s.cdnmpro.com/892723050/content/banner%20paid/bettingguide300x250.png
IP 185.181.100.89:0
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 81e5a9169b8b027846ea1e75190afcc3
3275a52e164f80ea95da5f7f563b38de4579dca6
0820c4cc0f797ce854b29909f20fd93d4ba3fde341c57a5e29ebb6acd92bc6c6
GET /892723050/content/banner%20paid/bettingguide300x250.png HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/png
content-length: 8726
last-modified: Thu, 14 Oct 2021 09:16:15 GMT
etag: "6167f55f-2216"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
s.cdnmpro.com/892723050/content/banner%20paid/bettinglounge300x250.png
185.181.100.89200 OK 2.8 kB URL HTTP/2 s.cdnmpro.com/892723050/content/banner%20paid/bettinglounge300x250.png
IP 185.181.100.89:0
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash a5a766a431363f5e14e334e8ff4fbd23
df996f94ec22f8636081c9cf2420f9414077a8de
5cda46ba54ff9aaa070ea103564aba1f3e5952e9112daba7156a357332a7633c
GET /892723050/content/banner%20paid/bettinglounge300x250.png HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/png
content-length: 2812
last-modified: Thu, 14 Oct 2021 09:16:15 GMT
etag: "6167f55f-afc"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
s.cdnmpro.com/892723050/content/banner%20paid/gamblescope.png
185.181.100.89200 OK 12 kB URL HTTP/2 s.cdnmpro.com/892723050/content/banner%20paid/gamblescope.png
IP 185.181.100.89:0
File type PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash a92f837f0039bc79ef2945491536477f
b1cf9cb230e43792fcdcf80f035e59b9bd07347e
19f5825ab9d829553eb021638b7446eb0c89d18c80fee3f1bc95039c180bd0c5
GET /892723050/content/banner%20paid/gamblescope.png HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/png
content-length: 12248
last-modified: Sat, 21 May 2022 11:27:31 GMT
etag: "6288cca3-2fd8"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 93df0470cb49c7820459b9d9127a34da
cae0d0525d59d16cfca2e761020a1c77df602c11
74338c0b3d75cc11537e775e361b91f8b852bf0232439387309f9e930608421d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:38:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 14:29:48 GMT
Expires: Sun, 05 Feb 2023 14:29:47 GMT
Etag: "cae0d0525d59d16cfca2e761020a1c77df602c11"
Cache-Control: max-age=564072,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79167d23ea27b4fa-OSL
s.cdnmpro.com/892723050/content/banner%20paid/scuderiafans.com%202%20banner.jpeg
185.181.100.89200 OK 49 kB URL HTTP/2 s.cdnmpro.com/892723050/content/banner%20paid/scuderiafans.com%202%20banner.jpeg
IP 185.181.100.89:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 350x250, components 3\012- data
Hash 0468e814a7831ecb06373c86c8158b7e
664eb6f8990ff5bda1aba18709745adef1e178fb
4f6de30c3e4bb79942c1257ab800813bf5d61c347ee0c5776d6802dd3287181d
GET /892723050/content/banner%20paid/scuderiafans.com%202%20banner.jpeg HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/jpeg
content-length: 49440
last-modified: Tue, 26 Apr 2022 09:24:06 GMT
etag: "6267ba36-c120"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
s.cdnmpro.com/892723050/content/banner%20paid/Betzillion.png
185.181.100.89200 OK 11 kB URL HTTP/2 s.cdnmpro.com/892723050/content/banner%20paid/Betzillion.png
IP 185.181.100.89:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash adeaf4338b68f0728784a80945547e4c
4c6df6473425fc8a6e2cd1b94ee2aafe66ab87ce
e72aac211362eb9c09774dfbed4cbc9e13089f980a299bca91606327392b1a54
GET /892723050/content/banner%20paid/Betzillion.png HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/png
content-length: 10826
last-modified: Mon, 27 Jun 2022 17:28:00 GMT
etag: "62b9e8a0-2a4a"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
s.cdnmpro.com/892723050/content/banner%20paid/betiton_300x100.png
185.181.100.89200 OK 28 kB URL HTTP/2 s.cdnmpro.com/892723050/content/banner%20paid/betiton_300x100.png
IP 185.181.100.89:0
File type PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 80d334c146f2cb7d249e8d1fa335def6
e379175d4a9d430a4877d0f50612ead757629361
5231c895acec6569f0197e144f824a96c7d94e3ec3f56c86f2cf2ead4b61fce6
GET /892723050/content/banner%20paid/betiton_300x100.png HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/png
content-length: 27568
last-modified: Thu, 03 Nov 2022 13:52:33 GMT
etag: "6363c7a1-6bb0"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
s.cdnmpro.com/674711093/content/austria/join.jpg
185.181.100.89200 OK 64 kB URL HTTP/2 s.cdnmpro.com/674711093/content/austria/join.jpg
IP 185.181.100.89:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2016:12:20 22:41:04], progressive, precision 8, 269x194, components 3\012- data
Hash e452897f0ab1dfcbc0f33f3e046fcc31
ce0df4b184ab3d39434a6e0e6f57851fde8adba7
5e79e0bbfb8a6f7e1c976a30d6fb2abef29f4053d3e7c142caf64e9813f65c84
GET /674711093/content/austria/join.jpg HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/jpeg
content-length: 63920
last-modified: Tue, 08 Jan 2019 10:10:48 GMT
etag: "5c347728-f9b0"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
s.cdnmpro.com/892723050/content/banner%20paid/casimos.jpeg
185.181.100.89200 OK 39 kB URL HTTP/2 s.cdnmpro.com/892723050/content/banner%20paid/casimos.jpeg
IP 185.181.100.89:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 396x165, components 3\012- data
Hash 962e66196b996a42801e015726f7de44
92f230cdcac9899642b1506f8d8e320d4b0189d7
052895fd3006d1cea477360eaf3470639ad038f52cc2c3f939a8c3a3a82dc08b
GET /892723050/content/banner%20paid/casimos.jpeg HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/jpeg
content-length: 39325
last-modified: Thu, 21 Apr 2022 13:35:29 GMT
etag: "62615da1-999d"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
s.cdnmpro.com/674711093/content/austria/FAQ.jpg
185.181.100.89200 OK 74 kB URL HTTP/2 s.cdnmpro.com/674711093/content/austria/FAQ.jpg
IP 185.181.100.89:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2017:01:05 20:49:14], progressive, precision 8, 300x414, components 3\012- data
Hash 6921d0fed27df1b3caec9a94025db558
203b9147030af708d11080231b3b4126ffe57d64
e8bcc949ab3cc8d276c257b64475f53ca7d46d13078012981d9441392a18b8ba
GET /674711093/content/austria/FAQ.jpg HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/jpeg
content-length: 74251
last-modified: Tue, 08 Jan 2019 10:25:53 GMT
etag: "5c347ab1-1220b"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
s.cdnmpro.com/674711093/content/00/mybettingsites-ad-300.png
185.181.100.89200 OK 77 kB URL HTTP/2 s.cdnmpro.com/674711093/content/00/mybettingsites-ad-300.png
IP 185.181.100.89:0
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash fd26ebfa5e4d020d329d9a962dd32302
4b787c69deba7d899389de5e6ca8c4637fb6e2b7
345e08cea05ecc31202116325a03485ff5939b0c428dc96094a68662d352e212
GET /674711093/content/00/mybettingsites-ad-300.png HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/png
content-length: 76685
last-modified: Tue, 01 Sep 2020 20:04:42 GMT
etag: "5f4ea95a-12b8d"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
s.cdnmpro.com/892723050/content/banner%20paid/banner%20betopin.png
185.181.100.89200 OK 48 kB URL HTTP/2 s.cdnmpro.com/892723050/content/banner%20paid/banner%20betopin.png
IP 185.181.100.89:0
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash c08ae2b32764fcc331b300abd916dbd2
aa3e3c6c80acf5f6040674e49ea7b87501274236
e3a5faf4f7ad8aeaacd27eb441de2fb13832be43a92a6e19045265d428034859
GET /892723050/content/banner%20paid/banner%20betopin.png HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/png
content-length: 47512
last-modified: Thu, 12 Aug 2021 07:01:07 GMT
etag: "6114c733-b998"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 51f65ac64d862998bc4f6972bcb2fdca
03b69701cb2856659c79fba84a317ea251417d11
d9238e86d38a64baadedd4fb1bc834b24038405e56fb9db9c88011305ded5f04
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:38:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 07:07:58 GMT
Expires: Sat, 04 Feb 2023 07:07:57 GMT
Etag: "03b69701cb2856659c79fba84a317ea251417d11"
Cache-Control: max-age=451162,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79167d24593d0b59-OSL
www.ojrq.net/p/?return=https%3A%2F%2Ff1.pxf.io%2Fi%2F3664209%2F1264305%2F11910%3Flevel%3D2%26srcref%3Dhttps%253A%252F%252Fscuderiafans.com%252F&cid=11910&tpsync=no
34.95.127.121302 Found 0 B URL HTTP/2 www.ojrq.net/p/?return=https%3A%2F%2Ff1.pxf.io%2Fi%2F3664209%2F1264305%2F11910%3Flevel%3D2%26srcref%3Dhttps%253A%252F%252Fscuderiafans.com%252F&cid=11910&tpsync=no
IP 34.95.127.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/?return=https%3A%2F%2Ff1.pxf.io%2Fi%2F3664209%2F1264305%2F11910%3Flevel%3D2%26srcref%3Dhttps%253A%252F%252Fscuderiafans.com%252F&cid=11910&tpsync=no HTTP/1.1
Host: www.ojrq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scuderiafans.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Mon, 30 Jan 2023 01:38:34 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
set-cookie: brwsr=cf53b7fd-a03e-11ed-b88e-65dd490f2b32; Domain=.ojrq.net; Path=/; Secure; Max-Age=62208000; Expires=Sun, 19 Jan 2025 01:38:34 GMT; HttpOnly; SameSite=None
location: https://f1.pxf.io/i/3664209/1264305/11910?level=2&srcref=https%3A%2F%2Fscuderiafans.com%2F&brwsr=cf53b7fd-a03e-11ed-b88e-65dd490f2b32&brwsrsig=SoTRuXwyYzgN1QyyzqTpz1rPX3KX5k
content-length: 0
date: Mon, 30 Jan 2023 01:38:34 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s.cdnmpro.com/674711093/content/schumacher.jpg
185.181.100.89200 OK 213 kB URL HTTP/2 s.cdnmpro.com/674711093/content/schumacher.jpg
IP 185.181.100.89:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2016:12:21 23:28:33], progressive, precision 8, 300x800, components 3\012- data
Size 213 kB (213313 bytes)
Hash a0612b64d291a766552669da015051a6
532e71c557de4f9c66ffc72a4c53c49766f06bc1
6778bae1fb4e1047416cf8061b887ed52d1865ab093630efc4429f5af7713868
GET /674711093/content/schumacher.jpg HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/jpeg
content-length: 213313
last-modified: Thu, 14 Feb 2019 23:07:44 GMT
etag: "5c65f4c0-34141"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
s.cdnmpro.com/892723050/content/banner%20paid/300%D1%85250.png
185.181.100.89200 OK 132 kB URL HTTP/2 s.cdnmpro.com/892723050/content/banner%20paid/300%D1%85250.png
IP 185.181.100.89:0
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size 132 kB (131642 bytes)
Hash f71c7c7a6d67126474e02632d8d3cca5
bab69a57bac5f50ff20c5cb17f965dca372247c4
30ce5f30bda11a254715d04cbd0e9ff799abffccd028f49a0cde7116638c116e
GET /892723050/content/banner%20paid/300%D1%85250.png HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/png
content-length: 131642
last-modified: Fri, 06 Aug 2021 14:30:16 GMT
etag: "610d4778-2023a"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
s.cdnmpro.com/674711093/content/austria/test-2.jpg
185.181.100.89200 OK 335 kB URL HTTP/2 s.cdnmpro.com/674711093/content/austria/test-2.jpg
IP 185.181.100.89:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2017:08:15 18:52:47], progressive, precision 8, 1366x557, components 3\012- data
Size 335 kB (334792 bytes)
Hash b725b75fe06638ca6ac58c8b7df6c406
599b9ad131af2f2a78930449f1fb4d8543b579d9
a4d3a112bbd232ec75be117dec65e6d30d17a88479e8528561fed092af6a2d88
GET /674711093/content/austria/test-2.jpg HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/jpeg
content-length: 334792
last-modified: Tue, 08 Jan 2019 10:50:16 GMT
etag: "5c348068-51bc8"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 51f65ac64d862998bc4f6972bcb2fdca
03b69701cb2856659c79fba84a317ea251417d11
d9238e86d38a64baadedd4fb1bc834b24038405e56fb9db9c88011305ded5f04
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:38:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 07:07:58 GMT
Expires: Sat, 04 Feb 2023 07:07:57 GMT
Etag: "03b69701cb2856659c79fba84a317ea251417d11"
Cache-Control: max-age=451162,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79167d260a63fabc-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 14681339fc16ac120967600c85c37d96
589ed56dc45067e35e26a667ad3d9a12d0f61884
c7a020eb97f372e9325a03c89aa4d97d023f8583ea94af56ae1ffc2363ab8547
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5774
Cache-Control: max-age=89219
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:34 GMT
Etag: "63d5c28f-1d7"
Expires: Tue, 31 Jan 2023 02:25:33 GMT
Last-Modified: Sun, 29 Jan 2023 00:49:19 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ui.cleverwebserver.com/
104.18.24.246200 OK 609 B IP 104.18.24.246:0
File type ASCII text, with no line terminators
Hash aa58edd2ea95b0814f69103bce64b11b
1d690438394b5ad12b993e2c7fd235cfb967ca86
0948cff92e4b19fec8ca5f2cb1511479ccbab0b52528ac91ab91451d2ab19916
GET / HTTP/1.1
Host: ui.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: application/javascript
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79167d265a100b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
scripts.snack-media.com/stickyfloor/sticky-floor-button-narrow.js
194.242.11.186200 OK 54 kB URL HTTP/2 scripts.snack-media.com/stickyfloor/sticky-floor-button-narrow.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with CRLF line terminators
Hash b8a0debea168ab7b897b84b086a05f75
e2f061756f5c96581286d1df32cb34f0dab410cf
2bff4e98a286db05da8a9dbeb40cfce3d67217e454d079ab056db64cf98880e2
GET /stickyfloor/sticky-floor-button-narrow.js HTTP/1.1
Host: scripts.snack-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 171196
cdn-uid: cf85643b-ef61-4e40-8871-e5ff38046499
cdn-requestcountrycode: NO
vary: Accept-Encoding
cache-control: public, max-age=2592000
content-encoding: br
etag: W/"62cd3a4c-7b4"
last-modified: Tue, 12 Jul 2022 09:09:32 GMT
cdn-cachedat: 01/10/2023 19:35:43
cdn-storageserver: DE-165
cdn-fileserver: 382
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: a59449724c95ad90578d1fab02104356
cdn-cache: HIT
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.66200 OK 28 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (39375)
Hash 00424d8e4851366129916317c4d17343
4d7c96e81b1bd8934d6a267f92ecb6941fd5861a
f560c22b331d8fb4de1462b248d11a42714f16e17e811cfad3d3379db01b13da
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27594
date: Mon, 30 Jan 2023 01:38:34 GMT
expires: Mon, 30 Jan 2023 01:38:34 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1467 / 696 of 1000 / last-modified: 1674860937"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-DMW283XKGD>m=2oe1p0&_p=1094920822&cid=1560414561.1675042724&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675042724&sct=1&seg=0&dl=https%3A%2F%2Fscuderiafans.com%2F&dt=Scuderia%20Ferrari%20Fans&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-DMW283XKGD>m=2oe1p0&_p=1094920822&cid=1560414561.1675042724&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675042724&sct=1&seg=0&dl=https%3A%2F%2Fscuderiafans.com%2F&dt=Scuderia%20Ferrari%20Fans&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DMW283XKGD>m=2oe1p0&_p=1094920822&cid=1560414561.1675042724&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675042724&sct=1&seg=0&dl=https%3A%2F%2Fscuderiafans.com%2F&dt=Scuderia%20Ferrari%20Fans&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scuderiafans.com
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://scuderiafans.com
date: Mon, 30 Jan 2023 01:38:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 14681339fc16ac120967600c85c37d96
589ed56dc45067e35e26a667ad3d9a12d0f61884
c7a020eb97f372e9325a03c89aa4d97d023f8583ea94af56ae1ffc2363ab8547
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5774
Cache-Control: max-age=89219
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:34 GMT
Etag: "63d5c28f-1d7"
Expires: Tue, 31 Jan 2023 02:25:33 GMT
Last-Modified: Sun, 29 Jan 2023 00:49:19 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
scripts.cleverwebserver.com/5da361ad62b75317c5c92cc168f95877.js
104.18.24.246200 OK 49 kB URL HTTP/2 scripts.cleverwebserver.com/5da361ad62b75317c5c92cc168f95877.js
IP 104.18.24.246:0
File type Unicode text, UTF-8 text, with very long lines (65455), with no line terminators
Hash a4bb119088b5225d476e26e6b1a4acf6
9277534bf96c08c685afa73e97ab4408463290a8
5de84bb19955cfc587bc1af5c61cdeb6b9a343e4052b2a8e4db42d5da80ed5b8
GET /5da361ad62b75317c5c92cc168f95877.js HTTP/1.1
Host: scripts.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: application/javascript
x-amz-id-2: CziuZHTGWJzyXHQsjw0IJ3/cUmt9ZU9gFBso7wrWJ5Q0QcQhaDwYxIl5saUrHRAo24uXs8uv/jE=
x-amz-request-id: QC5BJ6SF7T1WNTBN
last-modified: Wed, 18 Jan 2023 11:02:21 GMT
x-amz-version-id: NzU38aq5KVjfWrEBrcyDVhejIEVFQmyF
etag: W/"9ca785607060fc119226dd83f46cd6c6"
cf-cache-status: REVALIDATED
expires: Mon, 30 Jan 2023 02:08:34 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 79167d23b9010b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
call.cleverwebserver.com/?id=50280&c=NO&r=null&l=114&b=Firefox&os=Win10&mob=0&v=1.34.7&ref=aHR0cHM6Ly9zY3VkZXJpYWZhbnMuY29tLw%3D%3D&ruri=&iv=-1&ctr=NO&sz=939
104.18.24.246200 OK 43 B URL HTTP/2 call.cleverwebserver.com/?id=50280&c=NO&r=null&l=114&b=Firefox&os=Win10&mob=0&v=1.34.7&ref=aHR0cHM6Ly9zY3VkZXJpYWZhbnMuY29tLw%3D%3D&ruri=&iv=-1&ctr=NO&sz=939
IP 104.18.24.246:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /?id=50280&c=NO&r=null&l=114&b=Firefox&os=Win10&mob=0&v=1.34.7&ref=aHR0cHM6Ly9zY3VkZXJpYWZhbnMuY29tLw%3D%3D&ruri=&iv=-1&ctr=NO&sz=939 HTTP/1.1
Host: call.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79167d27ca800b59-OSL
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 949c346d289b3950a98813ab59c02672
ea65f155175c0baadb87dca78fa20869ed39f920
940f4918ea1f4ebcc4ba884c9f4d6ae49b6841acc2dfceb69afb9894aa6e0809
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:38:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 23:29:53 GMT
Expires: Thu, 02 Feb 2023 23:29:52 GMT
Etag: "ea65f155175c0baadb87dca78fa20869ed39f920"
Cache-Control: max-age=337277,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79167d280bdab4fa-OSL
connect.facebook.net/en_US/sdk.js?hash=7df80ed211f1389304eb744617558f37
157.240.205.11200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=7df80ed211f1389304eb744617558f37
IP 157.240.205.11:0
File type ASCII text, with very long lines (18530)
Hash 7450ddcde70e4ee44f9f7c778a33835a
ebc3ca409321f1dc269bac9f6d1cb3455d35fb9b
03c7695c3765b091406913893323022235fdaf0f5eaf113de42bfaa51ef2323e
GET /en_US/sdk.js?hash=7df80ed211f1389304eb744617558f37 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scuderiafans.com
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 6b2e5a2eff88662f490bcd50301f6c5f
etag: "ad475bfdb7752ff16826e174c01fd1da"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 29 Jan 2024 23:10:05 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: dFDdzecOTuRPn3x3ijODWg==
x-fb-debug: UZZ9C8XQal3ai2bBJS7IDNZtWGB/5LhF4LXkmPGI0ytxT4nggpRzDPosHxHLmn3/UVPdjMxdjBPDDaLOXPjGzw==
priority: u=3,i
content-length: 88416
x-fb-trip-id: 1679558926
date: Mon, 30 Jan 2023 01:38:34 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e839d271be56bca014e4c2f17abc2f61
0e97fd179b6640654ab0d8d089fd1daad58cbd24
c1aa2df4973fcaf73e2d6c20d39da281488fffac1b3e4052bdeebca7a632abb4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5418
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:35 GMT
Last-Modified: Mon, 30 Jan 2023 00:08:17 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/320x320.gif?v=3
104.18.24.246200 OK 104 kB URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/320x320.gif?v=3
IP 104.18.24.246:0
File type GIF image data, version 89a, 320 x 320\012- data
Size 104 kB (103451 bytes)
Hash 78c2e8955d027f557388a44621fa68a9
4cd0a062d4054f4a89dbf6162740a90445c79e14
842f215e4742116d1d98864a07d2f0c4fdfa7946048666fcf2f164898f9321de
GET /bet365/no/sports/grp1/imgs/320x320.gif?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/style.css?v=3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: image/gif
content-length: 103451
cf-bgj: imgq:100,h2pri
cf-polished: origSize=103714, status=webp_bigger
etag: "052539074c3d7d29770f91c9e7b88b46"
last-modified: Mon, 23 Jan 2023 21:59:16 GMT
x-amz-id-2: xktIdMYbSCaYc8pspafaQSysGcWBei/dY8RlYMvNVPhg/XdhfPhg9TR0tV6YG6zmhK/QuMuBsEI=
x-amz-request-id: N03HKHXY5TRASVCS
cf-cache-status: HIT
age: 861
expires: Mon, 30 Jan 2023 02:08:35 GMT
cache-control: public, max-age=1800
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79167d2bdc120b59-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 969bafeec18ca7c8abf0e7d9e3c7c2f2
0ce0df4307bb1b2d66b1b62bb1f11913b90d6c19
a01b8db2e251e5e3436bc5f623e5be72e5f50ea02b895bc71a7eb52b588a35ce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2919
Cache-Control: max-age=160838
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:35 GMT
Etag: "63d6e57a-1d7"
Expires: Tue, 31 Jan 2023 22:19:13 GMT
Last-Modified: Sun, 29 Jan 2023 21:30:34 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
rules.quantcount.com/rules-p-0Q_T1ja8r-Dkk.js
54.230.111.33200 OK 72 kB URL HTTP/2 rules.quantcount.com/rules-p-0Q_T1ja8r-Dkk.js
IP 54.230.111.33:0
Hash f0918e6e43e8b43aa8fc63229448ebdf
aa1589fbd27bbab00ceded1d6c12517823537f12
46a06469913b679f6cc78b708d8273c67ef7de62403bd61a3a8cef91522cdf13
GET /rules-p-0Q_T1ja8r-Dkk.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 00:46:56 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Mon, 30 Jan 2023 01:02:21 GMT
cache-control: max-age=3600
etag: W/"f22058b7a1bf5f832fb5b1e61a3ac691"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: euJH2YDRjUcaMme4_UN5jXfZIDVypgvXbSXIAOaO3DSBa1skXMdMIg==
age: 2175
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4779
Expires: Mon, 30 Jan 2023 02:58:14 GMT
Date: Mon, 30 Jan 2023 01:38:35 GMT
Connection: keep-alive
lp.cleverwebserver.com/bet365/js/clever.js
104.18.24.246200 OK 985 B URL HTTP/2 lp.cleverwebserver.com/bet365/js/clever.js
IP 104.18.24.246:0
File type ASCII text, with very long lines (426)
Hash a24903715335ffd5f58bb1c5491fa6c7
7ed1596d7472e443f3cdca2a7b8643f0e4c68241
df9e73be3ad9ff657f16d01d3d23c82aa6161d908525b353bc4fbda4ad429c3b
GET /bet365/js/clever.js HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01117931
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=904
etag: W/"8ea865e35172970217abe4443d096ee5"
last-modified: Fri, 27 Jan 2023 17:02:23 GMT
x-amz-id-2: UvLaVaxoKSBah1A9lnVWv7OJ1aIvCJscOh7PO/Cf8L2wQw4vo6qagk39Afos1tV+UX/kpg7tD3c=
x-amz-request-id: A89MT5B4A7XMHCYM
cf-cache-status: HIT
age: 1525
expires: Mon, 30 Jan 2023 02:08:35 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 79167d2bec170b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4779
Expires: Mon, 30 Jan 2023 02:58:14 GMT
Date: Mon, 30 Jan 2023 01:38:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4779
Expires: Mon, 30 Jan 2023 02:58:14 GMT
Date: Mon, 30 Jan 2023 01:38:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa29141be-cb17-4a1d-a64f-9b3d296461f2.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa29141be-cb17-4a1d-a64f-9b3d296461f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 546f1cb9f94ea553ae884a6f50c6bd3d
fd08d9841bcd8864aaf2e5d93ca61b31246b6db5
5aba48ac6c65e371c6c1aeee43f97670f196d3a3933b9f5812a67be90b7dbdfa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa29141be-cb17-4a1d-a64f-9b3d296461f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5764
x-amzn-requestid: 33ebf979-ba40-451e-bbdb-3ee4a9dc07ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhksyGRVoAMF5UQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7eb-55fcbb4d6d88dbf758409801;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: X3lzViVGoynSgoeenp6EIU2E3FMSRlKNGOy73pIOAASV11hOk2B4UA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:11:27 GMT
age: 12428
etag: "fd08d9841bcd8864aaf2e5d93ca61b31246b6db5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4779
Expires: Mon, 30 Jan 2023 02:58:14 GMT
Date: Mon, 30 Jan 2023 01:38:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e1c93b4-807b-47ea-82fe-50d8216b163c.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e1c93b4-807b-47ea-82fe-50d8216b163c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f49153c1aade8aa30bc6c84db4fa09d7
5cce4e085c87e7fbe82907694a36a91cc1bc9bfc
3285916959352e77cdbea34515dad3b3a0315b74bca7f45a8e5a2de4661203e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e1c93b4-807b-47ea-82fe-50d8216b163c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6646
x-amzn-requestid: c8a7d4b9-1a13-41c1-8391-853f03f3150c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbvRsHiaIAMF4Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d49271-634529cc6844e70829b5750f;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 03:11:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PXMbaFBZrgdsIRduRmCb8ALPII3zv7dTT4Ikn2B_Waxz3wLcp2giKQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 03:49:27 GMT
age: 78548
etag: "5cce4e085c87e7fbe82907694a36a91cc1bc9bfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
kvt.cookieless-data.com/api/v1/public/p/28662/d/33/c?url=https%3A%2F%2Fscuderiafans.com%2F&args_country&args_device=desktop&args_zone_id=37421&callback=sublimeCb1675042725210
51.158.28.83200 OK 227 B URL HTTP/1.1 kvt.cookieless-data.com/api/v1/public/p/28662/d/33/c?url=https%3A%2F%2Fscuderiafans.com%2F&args_country&args_device=desktop&args_zone_id=37421&callback=sublimeCb1675042725210
IP 51.158.28.83:0
File type ASCII text, with very long lines (327), with no line terminators
Hash 32d11e4cf5d9bde020f296d1367d2f31
54e4694310a0040faafbf10fd95f0f56acdc0255
2f5f1465e2794b0505d2c030131e7add709655be94c9ac3160824e536d8705aa
GET /api/v1/public/p/28662/d/33/c?url=https%3A%2F%2Fscuderiafans.com%2F&args_country&args_device=desktop&args_zone_id=37421&callback=sublimeCb1675042725210 HTTP/1.1
Host: kvt.cookieless-data.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Mon, 30 Jan 2023 01:38:35 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
Content-Encoding: gzip
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5190c0bdc6abe0ee258e9f8c20ddaf51
d60f280f8a742480527dbc32d08f321f972d4fcf
874b38a04aa3736e65aaef72da2cc2efceb208618267107a495bdfe51ec58e58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12507
x-amzn-requestid: 85c9adcd-b997-48ca-bbfb-ccdeaf3e8cfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhklyFaJoAMFqKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-2bcdd8c353d8429d2b1e95f6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UDJKl99GiUxTW_EgWFDjLaJZbKFhfaJR-XRLsbQphwHuCXczDlxrDA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:54:37 GMT
age: 13438
etag: "d60f280f8a742480527dbc32d08f321f972d4fcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc895bb6-fa1f-4972-a2f8-5ce71b0c72c0.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc895bb6-fa1f-4972-a2f8-5ce71b0c72c0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6d200552d23c85c199558b79cc24348f
8cc20b9ce98eeacd5b826268da24955a82e78a01
09b05ae6f75b5141401ddc49014e0eb2eac0856ba3b5020bc85f4a9a64d3d2a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc895bb6-fa1f-4972-a2f8-5ce71b0c72c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9700
x-amzn-requestid: 9f944a46-7e39-44c3-a640-3c7e9b778bca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkoEEkJIAMFs0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7cd-4b29196f5bd1b2fb04e6363f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jdh2u-xrCjqq1SKWL7hCTqrlGRjbytuxecJS-cwiXb5FQypGKYbFzg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:35 GMT
age: 13380
etag: "8cc20b9ce98eeacd5b826268da24955a82e78a01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/cta-left.svg?v=3
104.18.24.246200 OK 13 kB URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/cta-left.svg?v=3
IP 104.18.24.246:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6577)
Hash aae2480368d63b83f71a2f338b1636c7
47300aea859607ad285d6229224e8ad88eddedc3
05bc0696887b4076192900a69b367d67d43ed14e8bc9d11abef99ef3acc2b39d
GET /bet365/no/sports/grp1/imgs/cta-left.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01117931
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: image/svg+xml
x-amz-id-2: 6F6NQuNe6vFK41P0bX+mUoTe+E3zblKMCBZs6SQ2V96vlEqvB/UNwSK9ePnCiMw8MhmwKC+Nv+M=
x-amz-request-id: 3MCAZ6CATDWA7KQY
last-modified: Fri, 27 Jan 2023 17:02:25 GMT
etag: W/"c6b9d640f895b50913249215f1ed4478"
cf-cache-status: HIT
age: 1321
expires: Mon, 30 Jan 2023 02:08:35 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 79167d2b4bd60b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
lp.cleverwebserver.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
104.18.24.246200 OK 15 kB URL HTTP/2 lp.cleverwebserver.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP 104.18.24.246:0
Hash fece953b201092d8aa1b6bd16f162edc
bd3e2e2e6aa9faf09d7e50c34fc4f67e5e89667a
c5260e5b154853f62b63f8e69bf4e2f5c8d0f5775bdbaf0c31416005517879cb
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01117931
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: application/javascript
last-modified: Mon, 23 Jan 2023 11:05:52 GMT
etag: W/"63ce6a10-302c"
vary: Accept-Encoding
server: cloudflare
cf-ray: 79167d2b4bd80b59-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Wed, 01 Feb 2023 01:38:35 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
test.cmp.quantcast.com/GVL-v2/cmp-list.json
54.230.111.120200 OK 46 kB URL HTTP/2 test.cmp.quantcast.com/GVL-v2/cmp-list.json
IP 54.230.111.120:0
Hash 932dd99d7cd79bda8b2b57d9da9759b8
8d35a4bcd5b4efd4b0ad5eae016d63aaeef6f923
651ca9df9e6584cec6a5bca698c5b54563ba4772f31aa0080f733f3cea4e552f
GET /GVL-v2/cmp-list.json HTTP/1.1
Host: test.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scuderiafans.com
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 86400
cache-control: max-age=172800
date: Sun, 29 Jan 2023 19:52:31 GMT
last-modified: Sun, 29 Jan 2023 19:52:29 GMT
etag: W/"104d73e097947079d97b7ce656d124ce"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4AIQAJ98xxQb5Z9H_UdCs9PW1_AVpdm2
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4oWRqDJztlDHcK7omsFuC_poDwglJe-XXxOhIiPmXBcxjTQ8539f9A==
age: 20765
X-Firefox-Spdy: h2
s.cdnmpro.com/674711093/content/austria/test-2.jpg?qc-size=1366,557
185.181.100.89200 OK 335 kB URL HTTP/2 s.cdnmpro.com/674711093/content/austria/test-2.jpg?qc-size=1366,557
IP 185.181.100.89:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2017:08:15 18:52:47], progressive, precision 8, 1366x557, components 3\012- data
Size 335 kB (334792 bytes)
Hash b725b75fe06638ca6ac58c8b7df6c406
599b9ad131af2f2a78930449f1fb4d8543b579d9
a4d3a112bbd232ec75be117dec65e6d30d17a88479e8528561fed092af6a2d88
GET /674711093/content/austria/test-2.jpg?qc-size=1366,557 HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: image/jpeg
content-length: 334792
last-modified: Tue, 08 Jan 2019 10:50:16 GMT
etag: "5c348068-51bc8"
expires: Wed, 01 Mar 2023 01:38:35 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
members.bet365.com/Members/Helpers/DefaultAff.aspx?affiliate=365_01117931
5.226.179.10200 OK 177 B URL HTTP/1.1 members.bet365.com/Members/Helpers/DefaultAff.aspx?affiliate=365_01117931
IP 5.226.179.10:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 475774a26d4f30240a3534bcbd2fd161
9fd7b986673786b4fc80943b330bd1c03256049e
f7541d6ca43b4da74a89ec05885dceabf1a4af132d36326cf7974a47c904c811
GET /Members/Helpers/DefaultAff.aspx?affiliate=365_01117931 HTTP/1.1
Host: members.bet365.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:38:35 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 177
Connection: keep-alive
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
ME-Redirect: PQB
CF-Cache-Status: DYNAMIC
Set-Cookie: Affiliates=Code=365_01117931%2f165436110790&prd=Sports; domain=.bet365.com; expires=Thu, 16-Mar-2023 01:38:35 GMT; path=/; secure
session=processform=0; path=/; secure
pstk=77EFA108C10E41A6B7BC94BD5154A413000003; domain=.bet365.com; path=/; secure
__cf_bm=6BbBQ21gKXFCC._KLgvts2J5b1e1QzOCtu3aMA9qsao-1675042715-0-AQYFd9RNjP0zVtEKYUAjcg6LiY9AFqocTnNRRDu6ILy+Bp/4kkHq9Kc9Lj7gHoQCupavA4E+4XpWvI3560fRvKw=; path=/; expires=Mon, 30-Jan-23 02:08:35 GMT; domain=.bet365.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 79167d2cda48b518-OSL
audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%220Q_T1ja8r-Dkk%22%2C%22domain%22%3A%22scuderiafans.com%22%2C%22publisher%22%3A%22Scuderia%20Fans%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.45%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22p0gdHr5CC1ccy86dhLes%2Bg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1675042725474%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-adi72ajiwam9n2r5sri3%22%7D
3.72.156.146200 OK 2 B URL HTTP/2 audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%220Q_T1ja8r-Dkk%22%2C%22domain%22%3A%22scuderiafans.com%22%2C%22publisher%22%3A%22Scuderia%20Fans%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.45%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22p0gdHr5CC1ccy86dhLes%2Bg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1675042725474%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-adi72ajiwam9n2r5sri3%22%7D
IP 3.72.156.146:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /?log=%7B%22accountId%22%3A%220Q_T1ja8r-Dkk%22%2C%22domain%22%3A%22scuderiafans.com%22%2C%22publisher%22%3A%22Scuderia%20Fans%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.45%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22p0gdHr5CC1ccy86dhLes%2Bg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1675042725474%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-adi72ajiwam9n2r5sri3%22%7D HTTP/1.1
Host: audit-tcfv2.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scuderiafans.com
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
X-Firefox-Spdy: h2
geoworker.ayads.co/
104.20.11.37200 OK 1 B IP 104.20.11.37:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
GET / HTTP/1.1
Host: geoworker.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scuderiafans.com
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:36 GMT
content-type: text/plain;charset=UTF-8
content-length: 1
access-control-allow-origin: *
access-control-allow-methods: GET
sublime-worker: true
vary: Accept-Encoding
server: cloudflare
cf-ray: 79167d318c59b500-OSL
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01117931
104.18.24.246200 OK 37 kB URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01117931
IP 104.18.24.246:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (909)
Hash e6d495be0980d1c29bdb5a94dd9eebdd
5fe388da2a97c6699d6a1cf64b4852df31349cda
0aaa04e9a0354eee79eb68d734bbb546d18e4befd4229366946729c599cf60b4
GET /bet365/no/sports/grp1/?affiliate=365_01117931 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scuderiafans.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: text/html
x-amz-id-2: 9E081oNQV+ObwMhbdAAT8GxfzdjImBRypSfIa77g0PYOlDry9AIz+/wEf1Y4gmBW8cWBwip7/SM=
x-amz-request-id: MT6ZVN61WH0X5RA8
last-modified: Wed, 25 Jan 2023 14:34:49 GMT
cf-cache-status: REVALIDATED
expires: Mon, 30 Jan 2023 02:08:35 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 79167d293b0c0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
antenna.ayads.co/?device=d&et=3529&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=2&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1068&tse=1675042726281&ver=20230127155355&z=37421&e=p&bh=939&bw=1268&gd&gdv&ph=8432&ctxs=783881263%3A10%2C800658834%3A10%2C1296263684%3A10%2C1639260065%3A10%2C1672815233%3A10%2C2377023418%3A10%2C2476997525%3A3%2C2493775105%3A3%2C2730379223%3A10%2C2870760662%3A10%2C3427609677%3A3%2C3494012816%3A10%2C3501378401%3A4%2C3501378405%3A10&schin=1&schinc=1
18.200.182.178204 No Content 0 B URL HTTP/2 antenna.ayads.co/?device=d&et=3529&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=2&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1068&tse=1675042726281&ver=20230127155355&z=37421&e=p&bh=939&bw=1268&gd&gdv&ph=8432&ctxs=783881263%3A10%2C800658834%3A10%2C1296263684%3A10%2C1639260065%3A10%2C1672815233%3A10%2C2377023418%3A10%2C2476997525%3A3%2C2493775105%3A3%2C2730379223%3A10%2C2870760662%3A10%2C3427609677%3A3%2C3494012816%3A10%2C3501378401%3A4%2C3501378405%3A10&schin=1&schinc=1
IP 18.200.182.178:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?device=d&et=3529&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=2&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1068&tse=1675042726281&ver=20230127155355&z=37421&e=p&bh=939&bw=1268&gd&gdv&ph=8432&ctxs=783881263%3A10%2C800658834%3A10%2C1296263684%3A10%2C1639260065%3A10%2C1672815233%3A10%2C2377023418%3A10%2C2476997525%3A3%2C2493775105%3A3%2C2730379223%3A10%2C2870760662%3A10%2C3427609677%3A3%2C3494012816%3A10%2C3501378401%3A4%2C3501378405%3A10&schin=1&schinc=1 HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 30 Jan 2023 01:38:36 GMT
X-Firefox-Spdy: h2
antenna.ayads.co/?device=d&et=3539&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=4&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1079&tse=1675042726291&ver=20230127155355&z=37421&a=305887&sspname=sspv3-appnexus&isssp=1&sspplid=28397755&e=sspc
18.200.182.178204 No Content 0 B URL HTTP/2 antenna.ayads.co/?device=d&et=3539&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=4&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1079&tse=1675042726291&ver=20230127155355&z=37421&a=305887&sspname=sspv3-appnexus&isssp=1&sspplid=28397755&e=sspc
IP 18.200.182.178:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?device=d&et=3539&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=4&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1079&tse=1675042726291&ver=20230127155355&z=37421&a=305887&sspname=sspv3-appnexus&isssp=1&sspplid=28397755&e=sspc HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 30 Jan 2023 01:38:36 GMT
X-Firefox-Spdy: h2
antenna.ayads.co/?device=d&et=3544&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=5&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1084&tse=1675042726297&ver=20230127155355&z=37421&a=305894&sspname=sspv3-smartadserver&isssp=1&sspplid=564377%7C1712866%7C42281&e=sspc
18.200.182.178204 No Content 0 B URL HTTP/2 antenna.ayads.co/?device=d&et=3544&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=5&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1084&tse=1675042726297&ver=20230127155355&z=37421&a=305894&sspname=sspv3-smartadserver&isssp=1&sspplid=564377%7C1712866%7C42281&e=sspc
IP 18.200.182.178:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?device=d&et=3544&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=5&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1084&tse=1675042726297&ver=20230127155355&z=37421&a=305894&sspname=sspv3-smartadserver&isssp=1&sspplid=564377%7C1712866%7C42281&e=sspc HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 30 Jan 2023 01:38:36 GMT
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
37.252.171.21200 OK 165 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.171.21:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9e63c57a6652c3f44539924ebfea092a
640220bb5a1827a39e27faae01ba640a05b18bb9
293d9596730be032e363d367d3488d27e5e6b2d4000ef67ff9df3c85b6409790
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1485
Origin: https://scuderiafans.com
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Mon, 30 Jan 2023 01:38:36 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 165
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://scuderiafans.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: fc30b78e-4e5f-4c62-9b04-7b37ebf30704
Set-Cookie: icu=ChkI3YWJARAKGAEgASgBMJy_3J4GOAFAAUgBEJy_3J4GGAA.; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 30-Apr-2023 01:38:36 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=3861207787872551555; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 30-Apr-2023 01:38:36 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1004.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 10c0ec2ac145d586418c9b7c424c54d9
08697581d0c5095a889d35696d3d220b8df3d0f3
855452abe7077aa14ff7a8a05ca04a44d614084cadeb64449f9a6f26b552edde
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171396
Date: Mon, 30 Jan 2023 01:38:36 GMT
Etag: "63d71138-1d7"
Expires: Wed, 01 Feb 2023 01:15:12 GMT
Last-Modified: Mon, 30 Jan 2023 00:37:12 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: aChYibnj4G0xJyI589kPDM0jYiko2X5p9_j8XdhdKUIns5ZA4Tz7sA==
Age: 2281
optchk.ayads.co/?callback=sublimeOptchk
34.243.79.160200 OK 16 B URL HTTP/1.1 optchk.ayads.co/?callback=sublimeOptchk
IP 34.243.79.160:0
File type ASCII text, with no line terminators
Hash b2ee86932229113c43e95c610591563d
f3019b46b6420b1fe35bf3935802d304ba8e723a
49120de5d47bd735b7fe51736fde6bfd75dcdadbe3862c7eff507f27214ad6c2
GET /?callback=sublimeOptchk HTTP/1.1
Host: optchk.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate
Content-Type: application/javascript
Date: Mon, 30 Jan 2023 01:38:36 GMT
Expires: Sun, 01 Jan 2014 00:00:00 GMT
Pragma: no-cache
Server: nginx/1.6.2
Content-Length: 16
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 2ae92259ec035172729f1aa2db9ffb15
52f63e1a41cff5e2a332084c90a2732d71b44957
43ba154d0c583ea8473701dfe181f636be5df7c93e3d2b25def035696abef46c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2819
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:36 GMT
Last-Modified: Mon, 30 Jan 2023 00:51:37 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 2ae92259ec035172729f1aa2db9ffb15
52f63e1a41cff5e2a332084c90a2732d71b44957
43ba154d0c583ea8473701dfe181f636be5df7c93e3d2b25def035696abef46c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2819
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:36 GMT
Last-Modified: Mon, 30 Jan 2023 00:51:37 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313
ad.360yield.com/pb
3.66.52.111204 No Content 0 B IP 3.66.52.111:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1353
Origin: https://scuderiafans.com
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 01:38:36 GMT
access-control-allow-origin: https://scuderiafans.com
set-cookie: tuuid=304a6d92-d85a-4ab3-9050-956d9104523c; Expires=Sun, 30 Apr 2023 01:38:36 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1675042716; Expires=Sun, 30 Apr 2023 01:38:36 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www8.smartadserver.com/ac?nwid=1827&siteid=392138&pgid=1345107&fmtid=97506&async=1&visit=m&tmstp=&gdpr_consent=
5.135.209.96200 OK 1.1 kB URL HTTP/1.1 www8.smartadserver.com/ac?nwid=1827&siteid=392138&pgid=1345107&fmtid=97506&async=1&visit=m&tmstp=&gdpr_consent=
IP 5.135.209.96:0
File type ASCII text, with CRLF, LF line terminators
Hash c4023c487ca606330f5cc31a58d913ff
0a8915a92c82bb91cd739cf6c178a631e0643772
a6086d50eb89015417d033e955689559966fefb2974cec9a8a13aba350d485da
GET /ac?nwid=1827&siteid=392138&pgid=1345107&fmtid=97506&async=1&visit=m&tmstp=&gdpr_consent= HTTP/1.1
Host: www8.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 30 Jan 2023 01:38:36 GMT
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Tue, 30 Jan 2024 01:38:36 GMT; domain=.smartadserver.com; path=/
vs=392138=5300738; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Tue, 30 Jan 2024 01:38:36 GMT; domain=.smartadserver.com; path=/
pid=129942943170069207; expires=Tue, 30 Jan 2024 01:38:36 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638106395167776824&o=1; expires=Tue, 31 Jan 2023 01:38:36 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Tue, 31 Jan 2023 01:38:36 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
x-smrt-i: 10166347
www8.smartadserver.com/ac?siteid=564377&pgid=1712866&fmtid=42281&visit=M&tmstp=1675042726299&tgt=json%3Bvskinz%3Dtrue%3Bgm%3D0%3Bscreen%3Dmedium%3Bmedium_screen%3DTRUE%3Btag%3Dpb%3Bpage_height%3Dlarge%3Bpage_home%3Dtrue%3Bpage_height_num%3D8000%3Bpage_weight%3D460000%3Bskinz%3Dtrue%3Bskinz-d%3D676%3Bsdta%3D783881263%3Bsdta%3D800658834%3Bsdta%3D1296263684%3Bsdta%3D1639260065%3Bsdta%3D1672815233%3Bsdta%3D2377023418%3Bsdta%3D2476997525%3Bsdta%3D2493775105%3Bsdta%3D2730379223%3Bsdta%3D2870760662%3Bsdta%3D3427609677%3Bsdta%3D3494012816%3Bsdta%3D3501378401%3Bsdta%3D3501378405%3Bsdta-safe%3D1%3Bsdta-origin%3D1&out=json&gdpr=0&pgDomain=https%3A%2F%2Fscuderiafans.com%2F&schain=1.0%2C1!snack-media.com%2CSNM_2811%2C1!sublime.xyz%2C850%2C1
5.135.209.96200 OK 0 B URL HTTP/1.1 www8.smartadserver.com/ac?siteid=564377&pgid=1712866&fmtid=42281&visit=M&tmstp=1675042726299&tgt=json%3Bvskinz%3Dtrue%3Bgm%3D0%3Bscreen%3Dmedium%3Bmedium_screen%3DTRUE%3Btag%3Dpb%3Bpage_height%3Dlarge%3Bpage_home%3Dtrue%3Bpage_height_num%3D8000%3Bpage_weight%3D460000%3Bskinz%3Dtrue%3Bskinz-d%3D676%3Bsdta%3D783881263%3Bsdta%3D800658834%3Bsdta%3D1296263684%3Bsdta%3D1639260065%3Bsdta%3D1672815233%3Bsdta%3D2377023418%3Bsdta%3D2476997525%3Bsdta%3D2493775105%3Bsdta%3D2730379223%3Bsdta%3D2870760662%3Bsdta%3D3427609677%3Bsdta%3D3494012816%3Bsdta%3D3501378401%3Bsdta%3D3501378405%3Bsdta-safe%3D1%3Bsdta-origin%3D1&out=json&gdpr=0&pgDomain=https%3A%2F%2Fscuderiafans.com%2F&schain=1.0%2C1!snack-media.com%2CSNM_2811%2C1!sublime.xyz%2C850%2C1
IP 5.135.209.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ac?siteid=564377&pgid=1712866&fmtid=42281&visit=M&tmstp=1675042726299&tgt=json%3Bvskinz%3Dtrue%3Bgm%3D0%3Bscreen%3Dmedium%3Bmedium_screen%3DTRUE%3Btag%3Dpb%3Bpage_height%3Dlarge%3Bpage_home%3Dtrue%3Bpage_height_num%3D8000%3Bpage_weight%3D460000%3Bskinz%3Dtrue%3Bskinz-d%3D676%3Bsdta%3D783881263%3Bsdta%3D800658834%3Bsdta%3D1296263684%3Bsdta%3D1639260065%3Bsdta%3D1672815233%3Bsdta%3D2377023418%3Bsdta%3D2476997525%3Bsdta%3D2493775105%3Bsdta%3D2730379223%3Bsdta%3D2870760662%3Bsdta%3D3427609677%3Bsdta%3D3494012816%3Bsdta%3D3501378401%3Bsdta%3D3501378405%3Bsdta-safe%3D1%3Bsdta-origin%3D1&out=json&gdpr=0&pgDomain=https%3A%2F%2Fscuderiafans.com%2F&schain=1.0%2C1!snack-media.com%2CSNM_2811%2C1!sublime.xyz%2C850%2C1 HTTP/1.1
Host: www8.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scuderiafans.com
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json
date: Mon, 30 Jan 2023 01:38:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://scuderiafans.com
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Tue, 30 Jan 2024 01:38:36 GMT; domain=.smartadserver.com; path=/
vs=564377=5300738; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Tue, 30 Jan 2024 01:38:36 GMT; domain=.smartadserver.com; path=/
pid=6487063113315680909; expires=Tue, 30 Jan 2024 01:38:36 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638106395167858115&o=1; expires=Tue, 31 Jan 2023 01:38:36 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Tue, 31 Jan 2023 01:38:36 GMT; domain=.smartadserver.com; path=/
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=smartadserver&endpoint=eu
104.110.14.155301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=smartadserver&endpoint=eu
IP 104.110.14.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?p=smartadserver&endpoint=eu HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=smartadserver&endpoint=eu
date: Mon, 30 Jan 2023 01:38:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
antenna.ayads.co/?device=d&et=3955&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=6&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1494&tse=1675042726707&ver=20230127155355&z=37421&e=notifynoad¬id=7a26f466-d029-4e81-b710-a4b9002f4500
18.200.182.178204 No Content 0 B URL HTTP/2 antenna.ayads.co/?device=d&et=3955&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=6&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1494&tse=1675042726707&ver=20230127155355&z=37421&e=notifynoad¬id=7a26f466-d029-4e81-b710-a4b9002f4500
IP 18.200.182.178:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?device=d&et=3955&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=6&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1494&tse=1675042726707&ver=20230127155355&z=37421&e=notifynoad¬id=7a26f466-d029-4e81-b710-a4b9002f4500 HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 30 Jan 2023 01:38:36 GMT
X-Firefox-Spdy: h2
antenna.ayads.co/?device=d&et=3956&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=7&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1496&tse=1675042726708&ver=20230127155355&z=37421&a=305876&sspname=sspv3-improve&isssp=1&sspplid=22892658&sspr=4&rt=362&e=sspko
18.200.182.178204 No Content 0 B URL HTTP/2 antenna.ayads.co/?device=d&et=3956&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=7&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1496&tse=1675042726708&ver=20230127155355&z=37421&a=305876&sspname=sspv3-improve&isssp=1&sspplid=22892658&sspr=4&rt=362&e=sspko
IP 18.200.182.178:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?device=d&et=3956&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=7&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1496&tse=1675042726708&ver=20230127155355&z=37421&a=305876&sspname=sspv3-improve&isssp=1&sspplid=22892658&sspr=4&rt=362&e=sspko HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 30 Jan 2023 01:38:36 GMT
X-Firefox-Spdy: h2
antenna.ayads.co/?device=d&et=3957&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=8&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1496&tse=1675042726709&ver=20230127155355&z=37421&a=305887&sspname=sspv3-appnexus&isssp=1&sspplid=28397755&sspr=1&rt=216&e=sspko
18.200.182.178204 No Content 0 B URL HTTP/2 antenna.ayads.co/?device=d&et=3957&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=8&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1496&tse=1675042726709&ver=20230127155355&z=37421&a=305887&sspname=sspv3-appnexus&isssp=1&sspplid=28397755&sspr=1&rt=216&e=sspko
IP 18.200.182.178:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?device=d&et=3957&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=8&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1496&tse=1675042726709&ver=20230127155355&z=37421&a=305887&sspname=sspv3-appnexus&isssp=1&sspplid=28397755&sspr=1&rt=216&e=sspko HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 30 Jan 2023 01:38:36 GMT
X-Firefox-Spdy: h2
antenna.ayads.co/?device=d&et=3957&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=9&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1497&tse=1675042726710&ver=20230127155355&z=37421&a=305894&sspname=sspv3-smartadserver&isssp=1&sspplid=564377%7C1712866%7C42281&sspr=1&rt=405&e=sspko
18.200.182.178204 No Content 0 B URL HTTP/2 antenna.ayads.co/?device=d&et=3957&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=9&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1497&tse=1675042726710&ver=20230127155355&z=37421&a=305894&sspname=sspv3-smartadserver&isssp=1&sspplid=564377%7C1712866%7C42281&sspr=1&rt=405&e=sspko
IP 18.200.182.178:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?device=d&et=3957&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=9&src=pb&suid=s997295506278318723&t=1675042725213&tfz=1497&tse=1675042726710&ver=20230127155355&z=37421&a=305894&sspname=sspv3-smartadserver&isssp=1&sspplid=564377%7C1712866%7C42281&sspr=1&rt=405&e=sspko HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 30 Jan 2023 01:38:36 GMT
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html?p=smartadserver&endpoint=eu
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?p=smartadserver&endpoint=eu
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?p=smartadserver&endpoint=eu HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scuderiafans.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Mon, 30 Jan 2023 01:38:36 GMT
Connection: keep-alive
Vary: Accept-Encoding
eus.rubiconproject.com/usync.js
104.88.9.101200 OK 10 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 104.88.9.101:0
File type ASCII text, with very long lines (18573)
Hash 9db6df8675d70da3543f1495e19e060a
3d9a4872575f8000423b1e18ad35efe37e40e192
d26ce3f3796c4442d6f26a5aaed23fb0b2ff12c1ce38080fbad9887e354ef81d
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?p=smartadserver&endpoint=eu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Sun, 29 Jan 2023 22:06:25 GMT
Content-Encoding: gzip
Content-Length: 10037
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=73669
Expires: Mon, 30 Jan 2023 22:06:26 GMT
Date: Mon, 30 Jan 2023 01:38:37 GMT
Connection: keep-alive
Vary: Accept-Encoding
map.cookieless-data.com/MAP.d?mn=smart&pa=22959&mv=129942943170069207&gdpr=0&gdpr_consent=
51.158.28.83307 Temporary Redirect 0 B URL HTTP/1.1 map.cookieless-data.com/MAP.d?mn=smart&pa=22959&mv=129942943170069207&gdpr=0&gdpr_consent=
IP 51.158.28.83:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /MAP.d?mn=smart&pa=22959&mv=129942943170069207&gdpr=0&gdpr_consent= HTTP/1.1
Host: map.cookieless-data.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.20.2
Date: Mon, 30 Jan 2023 01:38:37 GMT
Content-Length: 0
Connection: keep-alive
Expires: Tue, 01 Jan 2000 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
X-Xss-Protection: 0
Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
P3p: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Location: https://map.sddan.com/MAP.d?mn=smart&pa=22959&mv=129942943170069207&gdpr=0&gdpr_consent=
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 42c8a5d52af87e496c24ca61d8d49d02
c6e8690d585331b21066b78c828a71ff51886aad
d71dadebc84e8b3ca7c83da2bddc79e2a0fd7c98b3803e8a24c1ffaac5616b31
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D71DADEBC84E8B3CA7C83DA2BDDC79E2A0FD7C98B3803E8A24C1FFAAC5616B31"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18965
Expires: Mon, 30 Jan 2023 06:54:42 GMT
Date: Mon, 30 Jan 2023 01:38:37 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 25a3fd8d12d20e278833eda2aa393174
e2269288c67ae86ab98b40ee8ee2820c77bd915a
cae23251c08f65a2b85b2bd749de43fdf057e017e769cb7bd3c6fabab8eccc55
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 01:38:37 GMT
Last-Modified: Mon, 30 Jan 2023 00:14:03 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VQV2TWt7pQtBJ9_6CZ4jngRSlijixR9nB4ptoC6IGnP9lbQhMvJj8Q==
Age: 5075
pbjs.sskzlabs.com/notify
54.73.177.168200 OK 171 B IP 54.73.177.168:0
File type JSON data\012- exported SGML document, ASCII text, with no line terminators
Hash 9b5105ece3026f88cfc5a44834bf4ac0
61231de05e677dc721c76cc65f9d7e802913dc4d
c51bdb502c8a25f8ded1cc3f38d077c13db1eb86ee28741ff8b28929d03bcbfa
POST /notify HTTP/1.1
Host: pbjs.sskzlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 150
Origin: https://scuderiafans.com
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:37 GMT
content-type: application/json; charset=utf-8
content-length: 171
access-control-allow-origin: https://scuderiafans.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
etag: W/"ab-YSMd4F5nfcchx2zGX51+gCkT3E0"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5c00a6b71849e1f63887d38333830003
274723ffd4a062e1997a213ceeeab8a56ac83141
5e15ea6950fd4aa51af37519ac391c2c95cfd74ded6ac6e35432ccf68c70cb23
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:38:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 01:56:49 GMT
Expires: Sat, 04 Feb 2023 01:56:48 GMT
Etag: "274723ffd4a062e1997a213ceeeab8a56ac83141"
Cache-Control: max-age=432490,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79167d355d48fabc-OSL
map.sddan.com/MAP.d?mn=smart&pa=22959&mv=129942943170069207&gdpr=0&gdpr_consent=
212.129.3.112307 Temporary Redirect 0 B URL HTTP/1.1 map.sddan.com/MAP.d?mn=smart&pa=22959&mv=129942943170069207&gdpr=0&gdpr_consent=
IP 212.129.3.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /MAP.d?mn=smart&pa=22959&mv=129942943170069207&gdpr=0&gdpr_consent= HTTP/1.1
Host: map.sddan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scuderiafans.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.20.2
Date: Mon, 30 Jan 2023 01:38:37 GMT
Content-Length: 0
Connection: keep-alive
Expires: Tue, 01 Jan 2000 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
X-Xss-Protection: 0
Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
P3p: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Location: https://map.sddan.com/MAP.d?mn=smart&pa=22959&mv=129942943170069207&gdpr=0&gdpr_consent=&bounce=1
Set-Cookie: techcookie=1; expires=Mon, 30 Jan 2023 01:48:37 GMT; domain=.sddan.com; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
x.bidswitch.net/sync_a9/https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbidswitch.com%26id%3D%24%7BUUID%7D
35.156.218.117302 Found 0 B URL HTTP/2 x.bidswitch.net/sync_a9/https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbidswitch.com%26id%3D%24%7BUUID%7D
IP 35.156.218.117:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync_a9/https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbidswitch.com%26id%3D%24%7BUUID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 30 Jan 2023 01:38:37 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync_a9/https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbidswitch.com%26id%3D%24%7BUUID%7D
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=b592cc2a-356e-4a5d-9bbc-be8f58d50afe; path=/; expires=Tue, 30-Jan-2024 01:38:37 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675042717; path=/; expires=Tue, 30-Jan-2024 01:38:37 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675042717; path=/; expires=Tue, 30-Jan-2024 01:38:37 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675042717; path=/; expires=Tue, 30-Jan-2024 01:38:37 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
map.sddan.com/MAP.d?mn=smart&pa=22959&mv=129942943170069207&gdpr=0&gdpr_consent=&bounce=1
212.129.3.112200 OK 42 B URL HTTP/1.1 map.sddan.com/MAP.d?mn=smart&pa=22959&mv=129942943170069207&gdpr=0&gdpr_consent=&bounce=1
IP 212.129.3.112:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /MAP.d?mn=smart&pa=22959&mv=129942943170069207&gdpr=0&gdpr_consent=&bounce=1 HTTP/1.1
Host: map.sddan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scuderiafans.com/
Connection: keep-alive
Cookie: techcookie=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Mon, 30 Jan 2023 01:38:37 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Expires: Tue, 01 Jan 2000 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
X-Xss-Protection: 0
Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
P3p: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: newu=1; expires=Mon, 30 Jan 2023 01:58:37 GMT; domain=.sddan.com; path=/; secure; SameSite=None
SDDAN=20230130_e04646dc0ab8a3bcf01b97beda91392e; expires=Tue, 30 Jan 2024 01:38:37 GMT; domain=.sddan.com; path=/; secure; SameSite=None
map_smart=129942943170069207; expires=Tue, 14 Feb 2023 01:38:37 GMT; domain=.sddan.com; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
x.bidswitch.net/ul_cb/sync_a9/https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbidswitch.com%26id%3D%24%7BUUID%7D
35.156.218.117200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync_a9/https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbidswitch.com%26id%3D%24%7BUUID%7D
IP 35.156.218.117:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync_a9/https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbidswitch.com%26id%3D%24%7BUUID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scuderiafans.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:37 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d82a90ac553bdf3f3d630fa7f0040395
2e5e0e5ecfade9ea6f0502768395bbe1114f8521
58fde8895b500d31e7439cb737d3a887396d9a01a9660c187f26965a25a4cdbe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4079
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:37 GMT
Last-Modified: Mon, 30 Jan 2023 00:30:38 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
pixel-eu.rubiconproject.com/exchange/sync.php?p=smartadserver
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel-eu.rubiconproject.com/exchange/sync.php?p=smartadserver
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=smartadserver HTTP/1.1
Host: pixel-eu.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 54ab5e55007c9747024b4f039df5ce6b
Content-Type: image/gif
cm.g.doubleclick.net/pixel?google_nid=rubicon&google_cm&google_sc
142.250.74.162302 Found 295 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=rubicon&google_cm&google_sc
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash d351a54e6fea94972b95c8719be0dbb3
6424de15817cddfb627c824dc22cab864126f4de
3b0b2e461988f20a8cf9708bb322f65030782172eadf9ddf3237da1f036839a1
GET /pixel?google_nid=rubicon&google_cm&google_sc HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=rubicon&google_cm=&google_sc=&google_tc=
date: Mon, 30 Jan 2023 01:38:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 295
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 30-Jan-2023 01:53:37 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=rubicon&google_cm=&google_sc=&google_tc=
142.250.74.162200 OK 170 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=rubicon&google_cm=&google_sc=&google_tc=
IP 142.250.74.162:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash e7673c60af825466f83d46da72ca1635
fc0fcbee0835709ba2d28798a612bfd687903fb5
0b8a20373c6dd04e091902226d922b3688143a8938afb9d283d889de7b55ceb5
GET /pixel?google_nid=rubicon&google_cm=&google_sc=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
date: Mon, 30 Jan 2023 01:38:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 170
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
id.rlcdn.com/709414.gif
35.244.174.68451 Unavailable For Legal Reasons 44 B IP 35.244.174.68:0
Hash 1d4156a8bc0243e4c1e8363710764e8d
3b7dab0958df1213a5043f9e9a263006c0925a8a
da45962a1fb4a049c9367ebe9b1b628f071d7a4c9997ee807c01d23f4866e19c
GET /709414.gif HTTP/1.1
Host: id.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
content-type: text/plain; charset=utf-8
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 01:38:37 GMT
content-length: 44
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7c0c50fcbc7d92843f6b77e57a7fdf6b
18ec9d83cf0dd47c048b5b71e540f3a52dc9d743
8479db61777f843867bcebf8510a161cb18c87c5cf670d86890c409e2882540c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6335
Cache-Control: max-age=158126
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 01:38:37 GMT
Etag: "63d6cd8c-1d7"
Expires: Tue, 31 Jan 2023 21:34:03 GMT
Last-Modified: Sun, 29 Jan 2023 19:48:28 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
c1.adform.net/serving/cookie/match?party=1164
37.157.3.30302 Found 0 B URL HTTP/2 c1.adform.net/serving/cookie/match?party=1164
IP 37.157.3.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /serving/cookie/match?party=1164 HTTP/1.1
Host: c1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Mon, 30 Jan 2023 01:38:37 GMT
content-length: 0
location: https://c1.adform.net/serving/cookie/match?CC=1&party=1164
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
set-cookie: C=1; expires=Tue, 28 Feb 2023 01:38:37 GMT; domain=adform.net; path=/
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
gu.dyntrk.com/adx/rbcn/us.php?dynk=r1b32c0n
162.19.80.91302 Found 0 B URL HTTP/1.1 gu.dyntrk.com/adx/rbcn/us.php?dynk=r1b32c0n
IP 162.19.80.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /adx/rbcn/us.php?dynk=r1b32c0n HTTP/1.1
Host: gu.dyntrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
server: nginx
date: Mon, 30 Jan 2023 01:38:37 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
keep-alive: timeout=10
p3p: CP="NOI DEV OUR BUS UNI"
cache-control: no-cache
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-headers: Origin
location: https://gu.dyntrk.com/adx/rbcn/us.php?dynk=r1b32c0n&prevuid=&knw=
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 8ef1dbe04ff3834735b0659e7ae82c62
56d86283c8861f679162e92c70bbea59f819b8dc
a41623bee3b144f94362b7351bf88236e4291f113068361be33209f550fb3373
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 01:38:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 01:42:55 GMT
Expires: Sun, 05 Feb 2023 01:42:54 GMT
Etag: "56d86283c8861f679162e92c70bbea59f819b8dc"
Cache-Control: max-age=518056,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79167d3a599bb506-OSL
token.rubiconproject.com/token?pid=2249&pt=n
69.173.144.165302 Found 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=2249&pt=n
IP 69.173.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=2249&pt=n HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 08fc1f390a6968c5983b6715b2a92536
Location: https://cm.g.doubleclick.net/pixel?google_nid=rubicon&google_hm=
content-length: 0
token.rubiconproject.com/token?pid=36584
69.173.144.165204 No Content 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=36584
IP 69.173.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=36584 HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 08fc1f390a6968c5983b6715b2a92536
gu.dyntrk.com/adx/rbcn/us.php?dynk=r1b32c0n&prevuid=&knw=
162.19.80.91302 Found 0 B URL HTTP/1.1 gu.dyntrk.com/adx/rbcn/us.php?dynk=r1b32c0n&prevuid=&knw=
IP 162.19.80.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /adx/rbcn/us.php?dynk=r1b32c0n&prevuid=&knw= HTTP/1.1
Host: gu.dyntrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
server: nginx
date: Mon, 30 Jan 2023 01:38:37 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
keep-alive: timeout=10
p3p: CP="NOI DEV OUR BUS UNI"
cache-control: no-cache
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-headers: Origin
location: https://pixel.rubiconproject.com/tap.php?v=333994&nid=4804&put=&expires=365&gdpr=1&gdpr_consent=
pixel.rubiconproject.com/tap.php?v=333994&nid=4804&put=&expires=365&gdpr=1&gdpr_consent=
69.173.144.138204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=333994&nid=4804&put=&expires=365&gdpr=1&gdpr_consent=
IP 69.173.144.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=333994&nid=4804&put=&expires=365&gdpr=1&gdpr_consent= HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 08fc1f390a6968c5983b6715b2a92536
Content-Type: image/gif
s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=
52.46.155.104302 Found 0 B URL HTTP/1.1 s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=
IP 52.46.155.104:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id= HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Mon, 30 Jan 2023 01:38:38 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: 67YYRQWZ07J9406M5GT7
Set-Cookie: ad-id=A9DRn-tVz0EHjKK49MG0MN4|t; Domain=.amazon-adsystem.com; Expires=Sun, 01-Oct-2023 01:38:38 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&dcc=t
52.46.155.104200 OK 43 B URL HTTP/1.1 s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&dcc=t
IP 52.46.155.104:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6851dbf491ae442da3314f19e8aff085
ecfec27263608c4ae7cd4f8e0cebb1b061df2ac3
c21e2c1246fe45a6750ae6208db2b5965ff6ed63eb80d2ecec3be9c83813428e
GET /dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Mon, 30 Jan 2023 01:38:38 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: 05AC48KDHSRT5QV62813
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 32f55884dcba870257bf3f6a1fb29dde
bf855275d13a3234911a9fff739ad1208d575f01
637352fb219f560f6422144319cdb7fc320f3784990b0034e96cd24f5bdb034d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "637352FB219F560F6422144319CDB7FC320F3784990B0034E96CD24F5BDB034D"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6548
Expires: Mon, 30 Jan 2023 03:27:46 GMT
Date: Mon, 30 Jan 2023 01:38:38 GMT
Connection: keep-alive
rcp.c.appier.net/rbcm
139.162.117.143302 Found 131 B IP 139.162.117.143:0
File type HTML document, ASCII text
Hash aab72fafc39e63858378f060d4c32ab2
4379cfc3423fa5bd982baf7c4f0ff497e384e424
69a2da24864c1264b39cf1b1579961b35b72b4ff111c25cd73cb325c747beb06
GET /rbcm HTTP/1.1
Host: rcp.c.appier.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Mon, 30 Jan 2023 01:38:38 GMT
content-type: text/html; charset=utf-8
content-length: 131
cache-control: no-store
location: https://pixel.rubiconproject.com/tap.php?v=70596&nid=3632&put=phQbBeZPDUCW6eitnh_XYw&expires=365
p3p: CP="CUR ADM DEV TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
set-cookie: _auid=phQbBeZPDUCW6eitnh_XYw; Path=/; Domain=c.appier.net; Expires=Tue, 30 Jan 2024 01:38:38 GMT; Max-Age=31536000; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=70596&nid=3632&put=phQbBeZPDUCW6eitnh_XYw&expires=365
69.173.144.138204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=70596&nid=3632&put=phQbBeZPDUCW6eitnh_XYw&expires=365
IP 69.173.144.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=70596&nid=3632&put=phQbBeZPDUCW6eitnh_XYw&expires=365 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 08fc1f390a6968c5983b6715b2a92536
Content-Type: image/gif
antenna.ayads.co/?device=d&et=9160&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=10&src=pb&suid=s997295506278318723&t=1675042725213&tfz=6700&tse=1675042731911&ver=20230127155355&z=37421&e=ul
18.200.182.178204 No Content 0 B URL HTTP/2 antenna.ayads.co/?device=d&et=9160&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=10&src=pb&suid=s997295506278318723&t=1675042725213&tfz=6700&tse=1675042731911&ver=20230127155355&z=37421&e=ul
IP 18.200.182.178:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?device=d&et=9160&ga=0&gc=1&gm=1&gs=2&gv=2&puid=p4268031961919010101&sqid=10&src=pb&suid=s997295506278318723&t=1675042725213&tfz=6700&tse=1675042731911&ver=20230127155355&z=37421&e=ul HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 30 Jan 2023 01:38:42 GMT
X-Firefox-Spdy: h2
ats.rlcdn.com/ats.js
54.230.111.92200 OK 0 B IP 54.230.111.92:0
GET /ats.js HTTP/1.1
Host: ats.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 19 Jan 2023 10:03:36 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-codebuild-content-sha256: 3efbae2e7f7f574316dfc685479946d213531c0b483ab4a61e653a0088f0cae8
x-amz-version-id: FdZQKnEndO3mqmnRp7XQ3uMfeJERmMlw
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:eu-west-1:469675294282:build/ATSLibrary-prod:96f94076-69de-4a4b-8bd0-6fb739c06860
x-amz-meta-codebuild-content-md5: e16bd58aa55fcc98af3b10870aad5974
server: AmazonS3
content-encoding: gzip
date: Sun, 29 Jan 2023 13:55:46 GMT
cache-control: must-revalidate,public,max-age=86400
etag: W/"0820c3a8da5dbe428619a7328c53b95f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: i1GznhRu2YGbMlc1dQNuAgKBNoiGPxkKGiv9sWkSLnZwGM9kO451UQ==
age: 42169
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy2-mobile.svg?v=3
104.18.24.246200 OK 0 B URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy2-mobile.svg?v=3
IP 104.18.24.246:0
GET /bet365/no/sports/grp1/imgs/copy2-mobile.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01117931
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: image/svg+xml
x-amz-id-2: auEL+zAu86NqbtPVHAhc2QoJV/4VgBXbjxMPyOCTF06BSuan9AcXC4OzEcmiJl1CvuXoJTP2VAg=
x-amz-request-id: Z9W1MMG0X25THJ7F
last-modified: Wed, 25 Jan 2023 14:34:49 GMT
etag: W/"915ff7e7b16f76b97c7b4b9790bf5b67"
cf-cache-status: HIT
age: 1595
expires: Mon, 30 Jan 2023 02:08:35 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 79167d2b3bce0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
quantcast.mgr.consensu.org/tcfv2/cmp2.js?referer=scuderiafans.com
54.230.111.39200 OK 0 B URL HTTP/2 quantcast.mgr.consensu.org/tcfv2/cmp2.js?referer=scuderiafans.com
IP 54.230.111.39:0
GET /tcfv2/cmp2.js?referer=scuderiafans.com HTTP/1.1
Host: quantcast.mgr.consensu.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Thu, 10 Nov 2022 18:23:42 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-qc-ineu: True
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
cache-control: max-age=3600
date: Mon, 30 Jan 2023 01:17:13 GMT
etag: W/"37fdfbac0c6ef64496f7d86258c934a8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5wBZM_RptNLwOEdX9zwem4xZpdBuT9ealtPN_f6ZSIWltE9h0gINAg==
age: 1283
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C700
IP 142.250.74.106:0
GET /css?family=Open+Sans%3A300%2C400%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 01:38:33 GMT
date: Mon, 30 Jan 2023 01:38:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn-header-bidding.snack-media.com/assets/js/prebid-7.24.0_v2.js?v=20220315
194.242.11.186200 OK 0 B URL HTTP/2 cdn-header-bidding.snack-media.com/assets/js/prebid-7.24.0_v2.js?v=20220315
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/js/prebid-7.24.0_v2.js?v=20220315 HTTP/1.1
Host: cdn-header-bidding.snack-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 145563
cdn-uid: cf85643b-ef61-4e40-8871-e5ff38046499
cdn-requestcountrycode: NO
vary: Accept-Encoding
cache-control: max-age=1209600
content-encoding: br
etag: W/"699a4-5f29edc67b767"
expires: Mon, 06 Feb 2023 12:47:09 GMT
last-modified: Thu, 19 Jan 2023 14:36:40 GMT
cdn-cachedat: 01/23/2023 12:59:42
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 5906f27b852628b76823bafda45b1098
cdn-cache: HIT
X-Firefox-Spdy: h2
s.cdnmpro.com/674711093/content/austria/favicon.ico
185.181.100.89200 OK 0 B URL HTTP/2 s.cdnmpro.com/674711093/content/austria/favicon.ico
IP 185.181.100.89:0
GET /674711093/content/austria/favicon.ico HTTP/1.1
Host: s.cdnmpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: image/x-icon
last-modified: Tue, 08 Jan 2019 10:06:56 GMT
vary: Accept-Encoding
etag: W/"5c347640-3aee"
expires: Wed, 01 Mar 2023 01:38:34 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
sender.clevernt.com/transporter/50280.php?id=514078&ref=aHR0cHM6Ly9zY3VkZXJpYWZhbnMuY29tLw%3D%3D&ruri=&r=885419216&tok=33419711310201791433&t=1675042714&cmpId=&fb=0&wl=1&iv=-1&ctr=NO&sz=939&landing=1&hei=281.7px&ts=0.124
148.69.64.76302 Found 0 B URL HTTP/2 sender.clevernt.com/transporter/50280.php?id=514078&ref=aHR0cHM6Ly9zY3VkZXJpYWZhbnMuY29tLw%3D%3D&ruri=&r=885419216&tok=33419711310201791433&t=1675042714&cmpId=&fb=0&wl=1&iv=-1&ctr=NO&sz=939&landing=1&hei=281.7px&ts=0.124
IP 148.69.64.76:0
ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A.
GET /transporter/50280.php?id=514078&ref=aHR0cHM6Ly9zY3VkZXJpYWZhbnMuY29tLw%3D%3D&ruri=&r=885419216&tok=33419711310201791433&t=1675042714&cmpId=&fb=0&wl=1&iv=-1&ctr=NO&sz=939&landing=1&hei=281.7px&ts=0.124 HTTP/1.1
Host: sender.clevernt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: text/html; charset=UTF-8
location: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01117931
expires: Fri, 27 Jun 1986 23:00:00 GMT
last-modified: Mon, 30 Jan 2023 01:38:35 GMT
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy3.svg?v=3
104.18.24.246200 OK 0 B URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy3.svg?v=3
IP 104.18.24.246:0
GET /bet365/no/sports/grp1/imgs/copy3.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01117931
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: image/svg+xml
x-amz-id-2: MWRaKWsRI/lRS9g+a2QJPATGTaNvPzh+3stHZIe/Vyi3McImhZUD0beU4/Rqlj7aqXyKKdAGHFk=
x-amz-request-id: JM61RJ35NYF8GYH1
last-modified: Fri, 27 Jan 2023 17:02:25 GMT
etag: W/"f174f812dacf714566b5f71cc08b8ef5"
cf-cache-status: HIT
age: 1321
expires: Mon, 30 Jan 2023 02:08:35 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 79167d2b3bd30b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
scuderiafans.com/
89.42.218.99200 OK 0 B IP 89.42.218.99:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: scuderiafans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://scuderiafans.com/wp-json/>; rel="https://api.w.org/", <https://scuderiafans.com/>; rel=shortlink
etag: "402867-1675034827;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 01:38:32 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/logo.svg?v=3
104.18.24.246200 OK 0 B URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/logo.svg?v=3
IP 104.18.24.246:0
GET /bet365/no/sports/grp1/imgs/logo.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01117931
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: image/svg+xml
x-amz-id-2: jfo7A34DWO0sdYkFdPgrj1THmed9KmfVdwr1WBcgysvySvImmaPWEo+jf10G/1qSWthm8of2klw=
x-amz-request-id: FF3MBSEG0ECPJPE3
last-modified: Thu, 26 Jan 2023 17:58:46 GMT
etag: W/"1eab7ef515be2c77eef2348999d42b7e"
cf-cache-status: HIT
age: 1321
expires: Mon, 30 Jan 2023 02:08:35 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 79167d2b3bc70b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy2-push.svg?v=3
104.18.24.246200 OK 0 B URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy2-push.svg?v=3
IP 104.18.24.246:0
GET /bet365/no/sports/grp1/imgs/copy2-push.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01117931
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: image/svg+xml
x-amz-id-2: 0HIippLU5hcjRdwGGd+wjUyIJOD3zXaOQxkUQyQwws78FF7uukGcc8iVe944KcJrKho7eW1wtUo=
x-amz-request-id: 9ZF1QB03A4RYKHXX
last-modified: Fri, 27 Jan 2023 17:02:25 GMT
etag: W/"2e4ec772622ddb8919c14017c7f2e770"
cf-cache-status: HIT
age: 573
expires: Mon, 30 Jan 2023 02:08:35 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 79167d2b3bd10b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
cmp.quantcast.com/choice/0Q_T1ja8r-Dkk/scuderiafans.com/choice.js
54.230.111.39200 OK 0 B URL HTTP/2 cmp.quantcast.com/choice/0Q_T1ja8r-Dkk/scuderiafans.com/choice.js
IP 54.230.111.39:0
GET /choice/0Q_T1ja8r-Dkk/scuderiafans.com/choice.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 31 Oct 2022 10:41:48 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: gzip
cache-control: max-age=3600
date: Mon, 30 Jan 2023 01:38:36 GMT
etag: W/"da1276c5c7ce1bd2f225f05c0a856c18"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nnFxsxqna_Q5wcpQqY1_x5Ba6TqmgPzfBnEElR_OtM6QplqJ_bLytw==
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy2-interstitial.svg?v=3
104.18.24.246200 OK 0 B URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy2-interstitial.svg?v=3
IP 104.18.24.246:0
GET /bet365/no/sports/grp1/imgs/copy2-interstitial.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01117931
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: image/svg+xml
x-amz-id-2: +HbIvlN7YeBZQD0TrpkJ2c5nUAaFZKOIB+rMYnUe0/8NzrM8CVTfGRPU2RqEAzfyAD3gPM+6ypI=
x-amz-request-id: ZYFCRQ8627PANB2Z
last-modified: Fri, 27 Jan 2023 17:02:25 GMT
etag: W/"3a7d3558a41367668f8bbaa7dca23007"
cf-cache-status: HIT
age: 1321
expires: Mon, 30 Jan 2023 02:08:35 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 79167d2b3bd20b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy1-mobile.svg?v=3
104.18.24.246200 OK 0 B URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy1-mobile.svg?v=3
IP 104.18.24.246:0
GET /bet365/no/sports/grp1/imgs/copy1-mobile.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01117931
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: image/svg+xml
x-amz-id-2: 1GwUtaNQgxVoIL9reZgB6T+1BgrS54uFo4lqR0a4e2onSexxuGuuumefFx8ftxzUyFgw1ww//ZY=
x-amz-request-id: 9EC0ZWAPXFH7RDV6
last-modified: Wed, 25 Jan 2023 14:34:49 GMT
etag: W/"a51a2c21e682faf24c79d033763e780e"
cf-cache-status: HIT
age: 1321
expires: Mon, 30 Jan 2023 02:08:35 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 79167d2b3bc90b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
c1.adform.net/serving/cookie/match?CC=1&party=1164
37.157.3.30200 OK 0 B URL HTTP/2 c1.adform.net/serving/cookie/match?CC=1&party=1164
IP 37.157.3.30:0
GET /serving/cookie/match?CC=1&party=1164 HTTP/1.1
Host: c1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 01:38:37 GMT
content-type: image/gif
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/45/cmp2ui-en.js
54.230.111.39200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/45/cmp2ui-en.js
IP 54.230.111.39:0
GET /tcfv2/45/cmp2ui-en.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 604800
last-modified: Thu, 10 Nov 2022 18:23:24 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Sun, 29 Jan 2023 07:25:46 GMT
cache-control: max-age=172800
etag: W/"39d0cac7e548f81f1e1e1c36db3c775e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rjeY8wOrWp1KUCSgAUzmcRHdRgDkG3FZwk9jtdRA4K5LQjE_f--abw==
age: 126710
X-Firefox-Spdy: h2
widgets.snack-projects.co.uk/gdpr/snack-cmp_v2.min.js
194.242.11.186200 OK 0 B URL HTTP/2 widgets.snack-projects.co.uk/gdpr/snack-cmp_v2.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /gdpr/snack-cmp_v2.min.js HTTP/1.1
Host: widgets.snack-projects.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:33 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 851110
cdn-uid: cf85643b-ef61-4e40-8871-e5ff38046499
cdn-requestcountrycode: NO
vary: Accept-Encoding
cache-control: public, max-age=2592000
content-encoding: br
etag: W/"62cd3dcc-69d"
last-modified: Tue, 12 Jul 2022 09:24:28 GMT
cdn-cachedat: 11/09/2022 11:27:43
cdn-storageserver: DE-167
cdn-fileserver: 382
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 3a96c8b37b36c68c203295b1636541d1
cdn-cache: HIT
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/cta.svg?v=3
104.18.24.246200 OK 0 B URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/cta.svg?v=3
IP 104.18.24.246:0
GET /bet365/no/sports/grp1/imgs/cta.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01117931
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: image/svg+xml
x-amz-id-2: usmqxMxE+OiLh+QlQ7r+/suvSZpvu3tjLv+Yb8pZnT01ImiOFw8dLMAXkcwMn3igt9hOTarrkjY=
x-amz-request-id: RMHVZ1GMKVNKM1XE
last-modified: Wed, 25 Jan 2023 14:34:49 GMT
etag: W/"f25a49c0565fb424102c080616aa890a"
cf-cache-status: HIT
age: 1595
expires: Mon, 30 Jan 2023 02:08:35 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 79167d2b3bd40b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
sac.ayads.co/sublime/37421/prebid?from=pbjsconf
104.20.10.37200 OK 0 B URL HTTP/2 sac.ayads.co/sublime/37421/prebid?from=pbjsconf
IP 104.20.10.37:0
GET /sublime/37421/prebid?from=pbjsconf HTTP/1.1
Host: sac.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:35 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: public, max-age=3600
pragma: public
expires: Mon, 30 Jan 2023 02:38:35 GMT
content-encoding: gzip
last-modified: Mon, 30 Jan 2023 00:25:27 GMT
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 79167d277f27b509-OSL
X-Firefox-Spdy: h2
refresh.pbstck.com/6a10f206-3490-4383-910c-3bd4424e4009.json
104.22.1.93200 OK 0 B URL HTTP/2 refresh.pbstck.com/6a10f206-3490-4383-910c-3bd4424e4009.json
IP 104.22.1.93:0
GET /6a10f206-3490-4383-910c-3bd4424e4009.json HTTP/1.1
Host: refresh.pbstck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scuderiafans.com
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: application/json
x-amz-id-2: DsWFUDwFm3MLwh88D0hBCm+HAQAafGjAMcj7d5vJm5FB8kl+Esvfgoh0caT5vPM8JXp+G5J+jP8=
x-amz-request-id: JHPM1QNFQA56H394
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 18 Jan 2023 15:34:57 GMT
etag: W/"03774d83613463286915ef603cd21122"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 79167d263c81b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.pbstck.com/index-refresh-301583c.js
104.22.1.93200 OK 0 B URL HTTP/2 cdn.pbstck.com/index-refresh-301583c.js
IP 104.22.1.93:0
GET /index-refresh-301583c.js HTTP/1.1
Host: cdn.pbstck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://scuderiafans.com
Connection: keep-alive
Referer: https://scuderiafans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 01:38:34 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdsVGBTrV5dskGRvKNDCwdMume1chPu_TyapYiwbFCbRNwS2Mncom76UqiFt4SP-kuhCmOFcqZXbFY8iScfGF3ajWg
x-goog-generation: 1670862129104500
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 41934
x-goog-hash: crc32c=krrFFQ==, md5=S/yUNDSMr1PgOgXz57Wm4w==
x-goog-storage-class: STANDARD
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Tue, 31 Jan 2023 10:18:05 GMT
cache-control: public, max-age=604800, immutable
last-modified: Mon, 12 Dec 2022 16:22:09 GMT
etag: W/"4bfc9434348caf53e03a05f3e7b5a6e3"
age: 485189
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
server: cloudflare
cf-ray: 79167d251c14b521-OSL
content-encoding: br
X-Firefox-Spdy: h2