r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b7407cc102d62a5acd5e61f8a79bed36
c2f4890a62454e514962b55b7fc14228339c8e90
be282de92da261128a7c8471f3067466aa9930fd0ab2a2cdda8cd2d6ce2bbd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE282DE92DA261128A7C8471F3067466AA9930FD0AB2A2CDDA8CD2D6CE2BBD74"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9164
Expires: Wed, 08 Feb 2023 21:57:20 GMT
Date: Wed, 08 Feb 2023 19:24:36 GMT
Connection: keep-alive
ak.hauchiwu.com/4/5662782
95.101.10.48200 OK 9.3 kB URL HTTP/1.1 ak.hauchiwu.com/4/5662782
IP 95.101.10.48:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (12966)
Hash cd89545dbfa0b5f8313691c4528e8f51
f4d75c3fc2dd9702cbb6a5a66a95f1f6aa1302c7
bcc3457ed930cc3b36e590d81bbeb1d4ec2c7f89a4a6bf337646ca7203b32f13
Analyzer Verdict Alert quad9 Sinkholed
GET /4/5662782 HTTP/1.1
Host: ak.hauchiwu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf8
X-Trace-Id: bbd17800ddddb26be60154fcac42eebf
Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch"
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 86400
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *, *
Access-Control-Allow-Methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, Accept, Content-Type, Content-Length, Accept-Encoding
Content-Encoding: gzip
Expires: Wed, 08 Feb 2023 19:24:36 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 08 Feb 2023 19:24:36 GMT
Content-Length: 9255
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: OAID=1ea89669a57d46c68fb17c5e30a43567; expires=Thu, 08 Feb 2024 19:24:36 GMT; path=/
oaidts=1675884276; expires=Thu, 08 Feb 2024 19:24:36 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16597
Expires: Thu, 09 Feb 2023 00:01:13 GMT
Date: Wed, 08 Feb 2023 19:24:36 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 18:34:13 GMT
content-type: application/json
age: 3023
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4923
Expires: Wed, 08 Feb 2023 20:46:39 GMT
Date: Wed, 08 Feb 2023 19:24:36 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: SwRnyYm/VWbAiwfFdsFLirr3pgREjZhigoTRzB1oKtWZjns2cgRUWYt8syukRHhgXppKXp7RcaY=
x-amz-request-id: K8M92AB026ES4KS7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 18:36:02 GMT
age: 2914
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 19:24:36 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c870022f76a19ae661adbbe5ebac68c1
91479e99e109e7cf5b2506f90aac6e89c4bf60d3
fd061980d6e4498c5c5529702297f81194ac5ce7a13bd04fd51d38e56a202177
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FD061980D6E4498C5C5529702297F81194AC5CE7A13BD04FD51D38E56A202177"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6076
Expires: Wed, 08 Feb 2023 21:05:52 GMT
Date: Wed, 08 Feb 2023 19:24:36 GMT
Connection: keep-alive
my.rtmark.net/img.gif?f=merge&userId=1ea89669a57d46c68fb17c5e30a43567
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=merge&userId=1ea89669a57d46c68fb17c5e30a43567
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=merge&userId=1ea89669a57d46c68fb17c5e30a43567 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ak.hauchiwu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 19:24:36 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=1ea89669a57d46c68fb17c5e30a43567; expires=Thu, 08 Feb 2024 19:24:36 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ak.hauchiwu.com/?z=5662782&syncedCookie=true&rhd=false
95.101.10.48302 Moved Temporarily 0 B URL HTTP/1.1 ak.hauchiwu.com/?z=5662782&syncedCookie=true&rhd=false
IP 95.101.10.48:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
NIDS Severity Alert suricata medium ET ADWARE_PUP Win32/Adware.Agent.NSU CnC Activity M2
POST /?z=5662782&syncedCookie=true&rhd=false HTTP/1.1
Host: ak.hauchiwu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 439
Origin: http://ak.hauchiwu.com
Connection: keep-alive
Referer: http://ak.hauchiwu.com/afu.php?zoneid=5662782&var=5662782&rid=IUzYL-eT4VvoQwPRHmPGTA%3D%3D&rhd=false
Cookie: OAID=1ea89669a57d46c68fb17c5e30a43567; oaidts=1675884276
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Content-Length: 0
X-Trace-Id: a29a19a327a1e4c195f5cca0284675aa
Link: <https://record.ibetaffiliates.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Referrer-Policy: no-referrer
Location: https://record.ibetaffiliates.com/_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5662782&rdk=rk3
Access-Control-Allow-Origin: http://ak.hauchiwu.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Expires: Wed, 08 Feb 2023 19:24:36 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 08 Feb 2023 19:24:36 GMT
Connection: keep-alive
Set-Cookie: OAID=1ea89669a57d46c68fb17c5e30a43567; expires=Thu, 08 Feb 2024 19:24:36 GMT; path=/
oaidts=1675884276; expires=Thu, 08 Feb 2024 19:24:36 GMT; path=/
syncedCookie=true; expires=Wed, 15 Feb 2023 19:24:36 GMT; path=/
ocsp.pki.goog/s/gts1p5/DPv2Tv_7RGg
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/DPv2Tv_7RGg
IP 142.250.74.163:0
Hash 1ff276fd2257f4a7d8313fd3b7a28451
22d92c612eecb151b6736a40fbfc3bc1e257bb2d
193d811cc60600413b9d420f4f31f9a9d4bb34788a219920d4939847fa9e692c
POST /s/gts1p5/DPv2Tv_7RGg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:36 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 18:51:20 GMT
age: 1996
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash b1b7fddaac6ae3be8490606a0b940281
c067b3dedcb3b4efde29e702d3f3178294d3eb97
00a82f093040742bfd6d73d00c2a4e98a5fa28b914533691e0a586fb2e26bec8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:36 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 06 Feb 2023 02:07:09 GMT
Expires: Mon, 13 Feb 2023 02:07:08 GMT
Etag: "c067b3dedcb3b4efde29e702d3f3178294d3eb97"
Cache-Control: max-age=369151,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf1878a50b61-OSL
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7286
Expires: Wed, 08 Feb 2023 21:26:03 GMT
Date: Wed, 08 Feb 2023 19:24:37 GMT
Connection: keep-alive
record.ibetaffiliates.com/_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5662782&rdk=rk3
104.18.193.136301 Moved Permanently 8.7 kB URL HTTP/2 record.ibetaffiliates.com/_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5662782&rdk=rk3
IP 104.18.193.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8669), with no line terminators
Hash a99e25ec16fbda3fddd9ed02490bf1dc
5ef3756734f0779d4095d684d84ae9d2d6aafe04
acc019c5d38e1826c3998e6381f3f5d4ef2f950fbbaab99ba21b3daf75c56f0e
GET /_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5662782&rdk=rk3 HTTP/1.1
Host: record.ibetaffiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Wed, 08 Feb 2023 19:24:36 GMT
content-type: text/html; charset=utf-8
location: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
cache-control: private, no-cache, must-revalidate, Cache-Control: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
set-cookie: VID1=KCwzYFAtIyRULEMoYApgCg%3D%3D; expires=Thu, 08-Feb-2024 19:24:36 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=None
ZBan=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk; expires=Thu, 08-Feb-2024 19:24:36 GMT; Max-Age=31536000; path=/; domain=.ibetaffiliates.com; secure; HttpOnly; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7966bf199ddab4eb-OSL
X-Firefox-Spdy: h2
www.ibet.com/static/js/main.69a72cfe.chunk.js
108.157.214.4200 OK 1.7 MB URL HTTP/2 www.ibet.com/static/js/main.69a72cfe.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.7 MB (1736627 bytes)
Hash e9deafb699b02035dd31eb23b68f28c8
4b5044404a3da14e257494f134c18503bc0b32d7
19f12d7e67d04f2c09d40040e368df920f2831bcf2a41787796589c19ddd9dc2
GET /static/js/main.69a72cfe.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1736627
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:38 GMT
etag: "e9deafb699b02035dd31eb23b68f28c8"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: l3OApqmeskRkFlzwLgfVC4yVRHnx-KYdWfo0bCY7boy0v5deDNvRRw==
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-Regular.ttf
108.157.214.4200 OK 97 kB URL HTTP/2 www.ibet.com/fonts/OpenSans-Regular.ttf
IP 108.157.214.4:0
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Hash 3ed9575dcc488c3e3a5bd66620bdf5a4
babe8dce93a3e48b6c3c79720a0c048e88dd1fe7
037236ed4bf58a85f67074c165d308260fd6be01c86d7df4e79ea16eb273f8c5
GET /fonts/OpenSans-Regular.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/ttf
content-length: 96932
last-modified: Tue, 07 Feb 2023 10:26:35 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:38 GMT
etag: "3ed9575dcc488c3e3a5bd66620bdf5a4"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: ke_G83FqFGlmQHIuRxyrEE-AX_XtCfftV_2SfOSrDWqz2OMcpJIxkQ==
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.39.62.124101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.62.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0chraRFtiPi9pQZispJwaQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uR3J31QnRGouIifWlj2FZEi3MNw=
www.ibet.com/static/css/main.ffaef866.chunk.css
108.157.214.4200 OK 40 kB URL HTTP/2 www.ibet.com/static/css/main.ffaef866.chunk.css
IP 108.157.214.4:0
File type ASCII text, with very long lines (28227)
Hash 568adce164a7b04006746005ef521498
4f0d9d32c86794cfe39cf0ea72a5933a8f218bab
922e17ec445bca19cff6530657e1f4a2942575357ec2637045c9892da1b8929d
GET /static/css/main.ffaef866.chunk.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 39629
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:38 GMT
etag: "568adce164a7b04006746005ef521498"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: szHI7UeO5cMxWVkFNlL4x8a0vHnZCL872TgxTOXXk98AYCo8o73nmQ==
X-Firefox-Spdy: h2
www.ibet.com/static/css/59.07bf056b.chunk.css
108.157.214.4200 OK 2.0 kB URL HTTP/2 www.ibet.com/static/css/59.07bf056b.chunk.css
IP 108.157.214.4:0
File type ASCII text, with very long lines (2049), with no line terminators
Hash 36b2f8ea1e16e9f607c1701f688c13da
bbcf0e61433d91d8ccf793fddaf638b0326f254d
2ce59990e026b2074cb274798dd1ee8b536bf4e628d481003e015ece685c00da
GET /static/css/59.07bf056b.chunk.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 2049
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:38 GMT
etag: "36b2f8ea1e16e9f607c1701f688c13da"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: p5-F5I1iJgdxyGbQtS-3eTgitOHVRuzPhLWCwtzuvg_NKdqzmhTnlg==
X-Firefox-Spdy: h2
www.ibet.com/static/js/59.9127f409.chunk.js
108.157.214.4200 OK 1.4 MB URL HTTP/2 www.ibet.com/static/js/59.9127f409.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (65461)
Size 1.4 MB (1412041 bytes)
Hash 317ca390390d5e7c4c60ef810e00a327
a76b16dcc5cf34e8927587a6ebd88e0e7b6fb768
9da7ddb8f74b75e0976e4d41ab6168cee31980ecaab63dc550f179ad83ea6841
GET /static/js/59.9127f409.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1412041
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:38 GMT
etag: "317ca390390d5e7c4c60ef810e00a327"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: FqLUzSbc9FZHGApU3HqCADukX5z0T97j8bcNYws4Es7ZxneI70E6rg==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c3a60afedecbc9be0a6c0c398cfe21c3
4c4b2e882503ce456cb6e66cc60df26714d3c65b
814c0dbc38dc84f347f06c1d89a77e011c6b312bda6aef69eb00653394866bea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "814C0DBC38DC84F347F06C1D89A77E011C6B312BDA6AEF69EB00653394866BEA"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7777
Expires: Wed, 08 Feb 2023 21:34:14 GMT
Date: Wed, 08 Feb 2023 19:24:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c3a60afedecbc9be0a6c0c398cfe21c3
4c4b2e882503ce456cb6e66cc60df26714d3c65b
814c0dbc38dc84f347f06c1d89a77e011c6b312bda6aef69eb00653394866bea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "814C0DBC38DC84F347F06C1D89A77E011C6B312BDA6AEF69EB00653394866BEA"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7777
Expires: Wed, 08 Feb 2023 21:34:14 GMT
Date: Wed, 08 Feb 2023 19:24:37 GMT
Connection: keep-alive
o4504321123680256.ingest.sentry.io/api/4504609037680640/envelope/?sentry_key=b4194d5fa1814d9d91f1a2d7b90535af&sentry_version=7&sentry_client=sentry.javascript.react%2F7.26.0
34.120.195.249200 OK 2 B URL HTTP/2 o4504321123680256.ingest.sentry.io/api/4504609037680640/envelope/?sentry_key=b4194d5fa1814d9d91f1a2d7b90535af&sentry_version=7&sentry_client=sentry.javascript.react%2F7.26.0
IP 34.120.195.249:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/4504609037680640/envelope/?sentry_key=b4194d5fa1814d9d91f1a2d7b90535af&sentry_version=7&sentry_client=sentry.javascript.react%2F7.26.0 HTTP/1.1
Host: o4504321123680256.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.ibet.com
Content-Length: 459
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 19:24:37 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: x-sentry-error, retry-after, x-sentry-rate-limits
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
o4504321123680256.ingest.sentry.io/api/4504609037680640/envelope/?sentry_key=b4194d5fa1814d9d91f1a2d7b90535af&sentry_version=7&sentry_client=sentry.javascript.react%2F7.26.0
34.120.195.249200 OK 2 B URL HTTP/2 o4504321123680256.ingest.sentry.io/api/4504609037680640/envelope/?sentry_key=b4194d5fa1814d9d91f1a2d7b90535af&sentry_version=7&sentry_client=sentry.javascript.react%2F7.26.0
IP 34.120.195.249:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/4504609037680640/envelope/?sentry_key=b4194d5fa1814d9d91f1a2d7b90535af&sentry_version=7&sentry_client=sentry.javascript.react%2F7.26.0 HTTP/1.1
Host: o4504321123680256.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.ibet.com
Content-Length: 460
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 19:24:37 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: x-sentry-error, retry-after, x-sentry-rate-limits
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
o4504321123680256.ingest.sentry.io/api/4504609037680640/envelope/?sentry_key=b4194d5fa1814d9d91f1a2d7b90535af&sentry_version=7&sentry_client=sentry.javascript.react%2F7.26.0
34.120.195.249200 OK 41 B URL HTTP/2 o4504321123680256.ingest.sentry.io/api/4504609037680640/envelope/?sentry_key=b4194d5fa1814d9d91f1a2d7b90535af&sentry_version=7&sentry_client=sentry.javascript.react%2F7.26.0
IP 34.120.195.249:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 051c0f7a9e8890e58a2e9e23ab0334c3
ec79260b245c062f544111827af593999577310f
492d6922cfac5917ba1d174446be390f007333c5b7902b66f2d83053f930bd4b
POST /api/4504609037680640/envelope/?sentry_key=b4194d5fa1814d9d91f1a2d7b90535af&sentry_version=7&sentry_client=sentry.javascript.react%2F7.26.0 HTTP/1.1
Host: o4504321123680256.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.ibet.com
Content-Length: 10136
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 19:24:37 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: x-sentry-error, retry-after, x-sentry-rate-limits
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
d1w3v8ahdm9uzk.cloudfront.net/prod/api/v1/player/access/context
54.230.245.70200 OK 359 B URL HTTP/2 d1w3v8ahdm9uzk.cloudfront.net/prod/api/v1/player/access/context
IP 54.230.245.70:0
File type JSON data\012- , ASCII text
Hash 002df70a1ed3999e8a52fcdf2f84fcf5
ed2f369ebc14271e6461c087d5fdfe782197d59c
ee019ba2c63630949a141bd8358c83445dfc75a3ab778eb8a8fd77c6ceafc910
GET /prod/api/v1/player/access/context HTTP/1.1
Host: d1w3v8ahdm9uzk.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 359
date: Wed, 08 Feb 2023 19:24:37 GMT
x-amzn-requestid: e4a02ef6-0a7c-4135-951a-536e7e28f13e
access-control-allow-origin: *
x-amz-apigw-id: ACOGeHinDoEFfwQ=
x-amzn-trace-id: Root=1-63e3f6f5-358bb8f23bfe7e203b4ae65b
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ip5NW3l5pPTcrdDecmvRdh0cNVSH7JHZt_5zqajjgmhqSxdpQti-eA==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c3a60afedecbc9be0a6c0c398cfe21c3
4c4b2e882503ce456cb6e66cc60df26714d3c65b
814c0dbc38dc84f347f06c1d89a77e011c6b312bda6aef69eb00653394866bea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "814C0DBC38DC84F347F06C1D89A77E011C6B312BDA6AEF69EB00653394866BEA"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7777
Expires: Wed, 08 Feb 2023 21:34:14 GMT
Date: Wed, 08 Feb 2023 19:24:37 GMT
Connection: keep-alive
www.ibet.com/fonts/OpenSans-Bold.ttf
108.157.214.4200 OK 104 kB URL HTTP/2 www.ibet.com/fonts/OpenSans-Bold.ttf
IP 108.157.214.4:0
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansBold1.10;1ASC;OpenSans-Bold\012- data
Size 104 kB (104120 bytes)
Hash 1025a6e0fb0fa86f17f57cc82a6b9756
1e3704ee48b5ff7e582488ead87b05249f14dc1c
f7916a37377e38527d4306303cfe89b653b49b0a6b0b05c6b7593f7ab0248da8
GET /fonts/OpenSans-Bold.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/ttf
content-length: 104120
last-modified: Tue, 07 Feb 2023 10:26:35 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "1025a6e0fb0fa86f17f57cc82a6b9756"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 9-h8FuvB_hmj9rxxj1lrpoZmN-3p-bAERqUWoQsW9PZoHk8xFVP7kw==
X-Firefox-Spdy: h2
www.ibet.com/favicon.ico
108.157.214.4200 OK 104 kB IP 108.157.214.4:0
File type MS Windows icon resource - 6 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size 104 kB (103505 bytes)
Hash c4ec29ec7a9b51ab3672ad4235022800
3b38d99e09a5935441eeb46a7ff6325ff253a243
852384ec427a20845c6be9329635438d03e9ce66712989c2b03a653b8c0169a3
GET /favicon.ico HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 103505
last-modified: Tue, 07 Feb 2023 10:26:35 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "c4ec29ec7a9b51ab3672ad4235022800"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: fQHHffea3sl2i2Ga1zEfiAr12kEDfz_tS8qZ_Hn7iyzcSqjYj6UqeQ==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 33d6d9954a3c659baf6fc6b51acc805b
27cf588f6843a7f99d19cf2c40335f97012b04aa
6bead19864332101f194a9eac766606fb0d492d17e973bfe919e6d5e40e0a157
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 06 Feb 2023 04:56:12 GMT
Expires: Mon, 13 Feb 2023 04:56:11 GMT
Etag: "27cf588f6843a7f99d19cf2c40335f97012b04aa"
Cache-Control: max-age=379292,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf220c3e0b61-OSL
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D
34.102.211.197200 OK 28 kB URL HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D
IP 34.102.211.197:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65221), with no line terminators
Hash 4b5f8854dfbf49a40de879c5abb118e4
eefb75e17eaa89e463a4a7693bfb42807d4f60a7
f00556f880896a2b4a95a9083e0e3f0e1d5d4e55bc94a5911896960e74b4b41d
GET /v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Wed, 08 Feb 2023 19:20:47 GMT
server-timing: api;dur=531
x-sanity-shard: gcp-eu-w1-01-prod-1013
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
content-encoding: br
x-sanity-age: 230
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 28188
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 33d6d9954a3c659baf6fc6b51acc805b
27cf588f6843a7f99d19cf2c40335f97012b04aa
6bead19864332101f194a9eac766606fb0d492d17e973bfe919e6d5e40e0a157
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 06 Feb 2023 04:56:12 GMT
Expires: Mon, 13 Feb 2023 04:56:11 GMT
Etag: "27cf588f6843a7f99d19cf2c40335f97012b04aa"
Cache-Control: max-age=379292,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf23ef040b61-OSL
www.ibet.com/static/js/ToastNotification.c39e971d.chunk.js
108.157.214.4200 OK 2.7 kB URL HTTP/2 www.ibet.com/static/js/ToastNotification.c39e971d.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (2715), with no line terminators
Hash 5e7201c278b25080af6e624ce4e8994d
3c4eb305ef15b0ea0b69aedef76087253bb507b8
616033182fa28af8d40be545ebe9373792b68e7fdb8522274ecac2af1c783973
GET /static/js/ToastNotification.c39e971d.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 2715
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "5e7201c278b25080af6e624ce4e8994d"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: tuJv0o8nvIbRmk4jb3LWMEefpsn2CKKtYCLuLirgAr0utYfZd7uPPw==
X-Firefox-Spdy: h2
www.ibet.com/static/js/AffiliateId.f8ccf339.chunk.js
108.157.214.4200 OK 382 B URL HTTP/2 www.ibet.com/static/js/AffiliateId.f8ccf339.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (382), with no line terminators
Hash fbf45b41548948d922e43a5660cf14c3
ed8962feba6eb88b33f6920aef2dd5f0c4e6d20e
5985b87b11becffff1f167581cb10ca65369256e8f881414930eb306b61534e5
GET /static/js/AffiliateId.f8ccf339.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 382
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "fbf45b41548948d922e43a5660cf14c3"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: lq8NXrOKuSj0EAbATwMYgKo_YAxbkc22j2gxQuUqDohyCTIdprLc6Q==
X-Firefox-Spdy: h2
www.ibet.com/static/js/ScrollToTopOnRouteChange.32d98cda.chunk.js
108.157.214.4200 OK 280 B URL HTTP/2 www.ibet.com/static/js/ScrollToTopOnRouteChange.32d98cda.chunk.js
IP 108.157.214.4:0
File type ASCII text, with no line terminators
Hash 083b8bfb7bbb69a570a890be57b73d54
c91654d60d70994e5746a16fdc7e19eaa1a3d73e
ed620f978c5658adf3fcabfd5987cc666cecd4185d42390d55d425d707003657
GET /static/js/ScrollToTopOnRouteChange.32d98cda.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 280
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "083b8bfb7bbb69a570a890be57b73d54"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 81ts8nWzpJSEvUkhgI7V-E3V-9IbBg7sMxzMmMLrJIYtJG_kI21Lyg==
X-Firefox-Spdy: h2
www.ibet.com/static/js/64.e8871200.chunk.js
108.157.214.4200 OK 22 kB URL HTTP/2 www.ibet.com/static/js/64.e8871200.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (22146), with no line terminators
Hash 96d51fdf9e155b61461f99901fa4b11b
9c5d15dcf5c887653f822605b7ab57a5782bdc2d
a1b2773c4af7158b3c062cb634402ad938e30b27994cfe35e660dbb9f5604c8a
GET /static/js/64.e8871200.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 22146
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "96d51fdf9e155b61461f99901fa4b11b"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: MoC5pxrUe4-D0JSVdry2iyuskyBPD59nJMj5emRTh4mgxA4g-XVuIw==
X-Firefox-Spdy: h2
www.ibet.com/static/js/4.33d2eac2.chunk.js
108.157.214.4200 OK 13 kB URL HTTP/2 www.ibet.com/static/js/4.33d2eac2.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (13401), with no line terminators
Hash 3c911ef5d4921b1eafd000adf55d7eda
c64179dff32e840609413ed129038f84c19b3e70
ba1ec9293c5e5822e79dae827d25f0f61dcd6c06a1a156a84d421bcef0406dbf
GET /static/js/4.33d2eac2.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 13401
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "3c911ef5d4921b1eafd000adf55d7eda"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: CnA-qA3Eiir-Q61HDym7qJu7bodvdEyKQicrvUWX3YdFBLuZe9yuhQ==
X-Firefox-Spdy: h2
www.ibet.com/static/js/GoogleTagManager.31286229.chunk.js
108.157.214.4200 OK 6.2 kB URL HTTP/2 www.ibet.com/static/js/GoogleTagManager.31286229.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (6241), with no line terminators
Hash dffe6a06cade7b098e106fc1f5d31649
2e7f6ce85d6d64682bba862998368a759130fe0d
bede44db6beb2b98c1e764d66f2685f75cdde6330844237af05b591b0cf9437b
GET /static/js/GoogleTagManager.31286229.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 6241
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "dffe6a06cade7b098e106fc1f5d31649"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: JlClTEtPDGyzuhPmw0mCbp6IsE2NXMxxp1vpidZ_JgOifrksWFKYyQ==
X-Firefox-Spdy: h2
www.ibet.com/static/js/AppRoutes.8b5424e7.chunk.js
108.157.214.4200 OK 20 kB URL HTTP/2 www.ibet.com/static/js/AppRoutes.8b5424e7.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (19988), with no line terminators
Hash 0d5c331505f33afd892e38dd6a3ee036
3f99fc35333b9d4a8a619822cce3afd4444de236
29df18a812f555672e7fd69769a44610f60f5e343ae627526d98dd7fc64f2f6d
GET /static/js/AppRoutes.8b5424e7.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 19988
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "0d5c331505f33afd892e38dd6a3ee036"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: TpZCl9j8oDKK9vALWvRDpflcIVz1dgPFGH543L-XmvzmZPp2RZtypA==
X-Firefox-Spdy: h2
www.ibet.com/static/js/66.859dcde0.chunk.js
108.157.214.4200 OK 28 kB URL HTTP/2 www.ibet.com/static/js/66.859dcde0.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (27857), with no line terminators
Hash c59f5607c0d71c267c398c8fa34a352e
b0f606c4dee370294f8d7584f7da67feed14846f
9902c1b6cf7bea5a88eae6d9dbdfadb17c4e07aba1423a61a838fffaadbd8d1a
GET /static/js/66.859dcde0.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 27857
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "c59f5607c0d71c267c398c8fa34a352e"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 82ZcFa9CWF94YXs2B9AV9QlZ_yHrEy-_VdhCM8C8CyX-DfwEnH0pLA==
X-Firefox-Spdy: h2
www.ibet.com/static/js/MaxAttemptsModal.8fc041a5.chunk.js
108.157.214.4200 OK 1.5 kB URL HTTP/2 www.ibet.com/static/js/MaxAttemptsModal.8fc041a5.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (1455), with no line terminators
Hash 9dfe5f28b3b7abf2140d1465c5e74e9f
14db506413dba3e38608ad468996ad9f97bc533a
90450eeda018e5879984fde2cebfce9bd7a1d467a673a76d57d58170f50bef9d
GET /static/js/MaxAttemptsModal.8fc041a5.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1455
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "9dfe5f28b3b7abf2140d1465c5e74e9f"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: qejwmJKekmgPUBKJ0g9QlKmVBUx6isPtG1GDEqq3hlKY76vmel4FTw==
X-Firefox-Spdy: h2
www.ibet.com/static/js/5.9c540e50.chunk.js
108.157.214.4200 OK 9.2 kB URL HTTP/2 www.ibet.com/static/js/5.9c540e50.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (9241), with no line terminators
Hash e71446790a55b8c4826d359e9ced9ef2
a5282aec30c3e056e6d86244b8f9eb487a9c5b38
445461325b325b51a8f4b954c5e8150b6bc33a1526a5fb0866015876d4e155a9
GET /static/js/5.9c540e50.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 9241
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "e71446790a55b8c4826d359e9ced9ef2"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: xI-PUa_zdIOB9D6js3TXGzNV3xqL8cvvmoYMi4YsdqV_5ciHeQFBMw==
X-Firefox-Spdy: h2
www.ibet.com/static/js/FEReload.5fef9321.chunk.js
108.157.214.4200 OK 1.5 kB URL HTTP/2 www.ibet.com/static/js/FEReload.5fef9321.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (1470), with no line terminators
Hash b3afabe5c3a0aae4f09fbae6b9ffa28b
e0cd1065d01496eadfe8bd0561e350c8861d8c6c
0cd188f5360070b751464f65c5dc6ca4a21279cbd1fb68db624374836c87ff2f
GET /static/js/FEReload.5fef9321.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1470
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "b3afabe5c3a0aae4f09fbae6b9ffa28b"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: QQg7G_r8jIONIDoMwQW_2Z6E4rDAIKvGOqdGnejmVppMnMOXbQLjnA==
X-Firefox-Spdy: h2
www.ibet.com/static/js/CookiesNotification.85120962.chunk.js
108.157.214.4200 OK 17 kB URL HTTP/2 www.ibet.com/static/js/CookiesNotification.85120962.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (17254), with no line terminators
Hash 170fd5cad6269c3e12f7067ae0803ccf
96784191eabb81b1e7bae524406509152369f6c3
064a13d9a1fe8681285ef81792b65f987944868815608d8ed3a8672f23bef52e
GET /static/js/CookiesNotification.85120962.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 17254
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "170fd5cad6269c3e12f7067ae0803ccf"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: aVUybIY2Gk66b-eb6Kk-gIttiqBjygHv9bI-4zKDLpEgMIAmgbW_ZA==
X-Firefox-Spdy: h2
www.ibet.com/js/iovation/loader.js
108.157.214.4200 OK 3.7 kB URL HTTP/2 www.ibet.com/js/iovation/loader.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (566)
Hash 345143e355b88a10dd5e7e47b83f2348
d53b59af90bba7818c705ad9cc3ef813a44bf9b0
834949bd4e4b0149dc8655578cfab9ef4e66af0989de0ded9d9e4cd0da97fd06
GET /js/iovation/loader.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3655
last-modified: Tue, 07 Feb 2023 10:26:35 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "345143e355b88a10dd5e7e47b83f2348"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: h974kscNny5pBPJdJ777f1vafc2hSrLbvo3mJ4ce7SIBjHMRbPiztQ==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16527
Expires: Thu, 09 Feb 2023 00:00:05 GMT
Date: Wed, 08 Feb 2023 19:24:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16527
Expires: Thu, 09 Feb 2023 00:00:05 GMT
Date: Wed, 08 Feb 2023 19:24:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16527
Expires: Thu, 09 Feb 2023 00:00:05 GMT
Date: Wed, 08 Feb 2023 19:24:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16527
Expires: Thu, 09 Feb 2023 00:00:05 GMT
Date: Wed, 08 Feb 2023 19:24:38 GMT
Connection: keep-alive
www.ibet.com/static/js/61.662f19b1.chunk.js
108.157.214.4200 OK 64 kB URL HTTP/2 www.ibet.com/static/js/61.662f19b1.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (64232), with no line terminators
Hash 0ab1c14c3b0b8c7650afd0bcbbd2caf5
5184d6fdbc7baf8d7ee55774f618c973f04cd20d
cad5314bd0c5cc2d6f38d64e19cccb4907c7a3ce6a1576db0c7a1fb18335fcb1
GET /static/js/61.662f19b1.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 64232
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "0ab1c14c3b0b8c7650afd0bcbbd2caf5"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 3d3jcpnI6u4LYXpxP3PmtexCqXIlP9D8ZPGq8mFZUEOkQZgFcdNHfw==
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbee0b552-d236-4fa2-b702-1571b09d3fd6.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbee0b552-d236-4fa2-b702-1571b09d3fd6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db6e81972b8835dc48a0dae751ffde5f
826e2195cc52905cfed0bc4f01646290261113b6
720e6105b2ccc9cbc8fd005d53873ced5467a852c7a5041ce2ef96785c0d92f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbee0b552-d236-4fa2-b702-1571b09d3fd6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6060
x-amzn-requestid: 80cbc454-e1b4-4e53-a3b6-3a5ac11920c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PPQEPNIAMFkqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c594-4539ebb17f27d88a47100a82;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:41:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WvujLqUMXZ4VAF2OePAIOdk96p6-GwwVcWEGORS2NKZ3XxgGIZHAww==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:55:15 GMT
age: 77363
etag: "826e2195cc52905cfed0bc4f01646290261113b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ibet.com/static/js/Home.2176f9ec.chunk.js
108.157.214.4200 OK 48 kB URL HTTP/2 www.ibet.com/static/js/Home.2176f9ec.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (47552), with no line terminators
Hash 9d9fdf0e0a2035dc7dae285cfd25c30d
078a51d3802bf6508d6d574fd4873314d701bdb4
ba0b6bff63b83f784c4ce38dd33cdd3d9f5b6775940751ee59edb25c0cc6c9f2
GET /static/js/Home.2176f9ec.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 47552
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "9d9fdf0e0a2035dc7dae285cfd25c30d"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: Mj4ac3lHRp4hntfRbiHUWlb1QkpDJCXuzSYsZxB09FlsLOZtk6X7qA==
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8a3fa4f1ec82d501942f9db3de2cb7d
b91c2aea7f2fb26131c8929b254c5596a1bb25ff
9d246eeab8ba04c775a03fd960c8859934a0accb737e845e89aba40bc573fdaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6342
x-amzn-requestid: b2b61a71-5326-4fc6-baba-7baad29cf7c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkbHfDIAMF5AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c482-5cc4028d01d05305637af317;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ladt7WYN7SIJ42nshsT0ewNBre8_C8DHi_-JbR37KM57MA9lkq5Anw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 18:40:42 GMT
age: 2636
etag: "b91c2aea7f2fb26131c8929b254c5596a1bb25ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash cb132215be71b611020ad334aef784ce
ca4aae65b6b01b70225150b55d87d9ff074f4c91
780a5be0d8f11849c31c38144abbfd0726b2754c8bf0976b9f724520cd109c74
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 06:36:59 GMT
Expires: Tue, 14 Feb 2023 06:36:58 GMT
Etag: "ca4aae65b6b01b70225150b55d87d9ff074f4c91"
Cache-Control: max-age=471739,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf249fd80b61-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc93fe33d-3033-473c-8315-95eb00ba319e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc93fe33d-3033-473c-8315-95eb00ba319e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed10868ea9554510e43f77dfb8c43877
df0d86c2c53bdec7b8935912e42dc7f82f87aa61
751e95e7dd20802cc4e0b6f208bf5559b0b73efd3ca22a9abafd86cf83ab6420
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc93fe33d-3033-473c-8315-95eb00ba319e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12401
x-amzn-requestid: 7bfa8a84-c348-4f55-8e8e-befcdd24f026
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OjPG-eIAMFccA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c47a-06eedb3c7396825f77360755;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i1abBvjQY4dXbxTHyy0Wxxn9PCvTO0YkAO8PS8kKA9Zl5TeiUEtErw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:49:59 GMT
age: 77679
etag: "df0d86c2c53bdec7b8935912e42dc7f82f87aa61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ibet.com/static/js/FooterImageContainer.f2e29ae6.chunk.js
108.157.214.4200 OK 1.6 kB URL HTTP/2 www.ibet.com/static/js/FooterImageContainer.f2e29ae6.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (1584), with no line terminators
Hash 118bfc20e466253864e7b0b667d35db8
9b8dd33e9c1a762f47e41d5d25758466c975a6d8
f590bb8b5e9e80d3fb3699b9794801153b856ba9e244ce129f414c50333d12e1
GET /static/js/FooterImageContainer.f2e29ae6.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1584
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "118bfc20e466253864e7b0b667d35db8"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 3r8i3qRNC9_L9JZc91kVRTiLfFIjUBNfJ22yz18rX2OcZ1qu75CHGw==
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 544181f4aba24fc687a14522dd20f720
2b117270563b8c466ec774acce55271c38f6135b
607c45cc5b4726b92c8507988bbb90ac6a44a3cf22b290030d440266350099a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4961
x-amzn-requestid: c3b9db99-726f-4473-a6b6-9cff0dceb949
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fswe1GeRoAMFiAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db612b-17b52fcd74e374f1104af709;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 07:07:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dSxTM3mmYK8cLOy5_x4o-lew1goEgwT4fBHi0pM-HSK_qBC6rDAlzg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 05:47:57 GMT
age: 49001
etag: "2b117270563b8c466ec774acce55271c38f6135b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9c2a9eee923b84d4e06438a8b2acaff
520b122e3ce52220af153fee26bb7067283f9075
9ff4236fdcd05210a9c8bb48ea68179e142b1b05c8b19dd66282590dff69fa22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10058
x-amzn-requestid: 94374454-1e89-4c43-895b-0a90f39b851d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O5vEgcoAMFctg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c50a-0bf11cad4b0818c36188ba91;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qYXu_I4vL00EOopA1nQcxCTMKf4nObKFk9XQozhw6FezKsfTDem3Mw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 18:24:47 GMT
etag: "520b122e3ce52220af153fee26bb7067283f9075"
content-type: image/jpeg
age: 3591
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 33b061f03be149fea0df63b42a8ec226
e5e491c6ef8b6234450a34ee5df28b9a58a8ad43
a5970bbb40be173878cd2e920bd1a6ed27775fbdc222bb66ccbc5969984882f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4269
x-amzn-requestid: df152b3a-fa15-4dac-96f9-41b9ea8e5136
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkQH5PoAMFl1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c481-63636a42419209fb0c17eceb;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0hu3nATq26ngjS5942rJgt7AcT4wjG0mFfNrtsajSN2PpdAOYhTjFg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:43:42 GMT
age: 78056
etag: "e5e491c6ef8b6234450a34ee5df28b9a58a8ad43"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash c99599d6628f41d54430edaa40f5c533
4bbd35fd1097784ae5e1e046ba35595eb49ac57f
3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
salesiq.zoho.eu/widget
185.230.212.28200 35 kB IP 185.230.212.28:0
ASN #205111 ZOHO Corporation B.V
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4bbb258f0ad879dc12c93ec2b4d08be9
25ebf18a6b434d43aea9f7cca072980d97d8d9c5
0988cec8597f476128fd6ba4c2372951de7ecd1e52f63a3218717d1689885d18
GET /widget HTTP/1.1
Host: salesiq.zoho.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: ZGS
Date: Wed, 08 Feb 2023 19:24:38 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: b3e783bb62=8cbb5519cdbffc0e2282ba8c8b4d43a5; Path=/
Access-Control-Allow-Origin: *
Cache-Control: must-revalidate
Pragma:
Expires: Wed, 08 Feb 2023 19:29:38 GMT
ETag: W/d957c0be68dd90cdf899f4fce58c0a011226888ca2bd550d5d4b2ebea277ae0b
vary: accept-encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20
34.102.211.197200 OK 661 B URL HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20
IP 34.102.211.197:0
File type JSON data\012- , ASCII text, with very long lines (1673), with no line terminators
Hash e7590f921ab7fb04349aeebf352e8f6b
1e99a9c634e24e74c6c89fd4d31a82b1cac9d8cb
3e20da9a318abc274798e052396bfb754173334a5bf755bc5c0203ac58d57b56
GET /v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20 HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Wed, 08 Feb 2023 19:18:03 GMT
server-timing: api;dur=24
x-sanity-shard: gcp-eu-w1-01-prod-1013
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
content-encoding: br
x-sanity-age: 395
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 661
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D
34.102.211.197200 OK 1.3 kB URL HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D
IP 34.102.211.197:0
File type JSON data\012- , ASCII text, with very long lines (5109), with no line terminators
Hash dc2ee26b1e40e009e792f1df958b5267
ecbbc911c25dfd47c40bb45cd9f18c8d08fb75f3
48114682384a4a32499799520b1741eab8107be8c1442b322d48ee592b987102
GET /v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Wed, 08 Feb 2023 19:19:11 GMT
server-timing: api;dur=60
x-sanity-shard: gcp-eu-w1-01-prod-1013
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
content-encoding: br
x-sanity-age: 327
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 1286
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-PCVT5ZK
216.58.207.200200 OK 74 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PCVT5ZK
IP 216.58.207.200:0
File type Unicode text, UTF-8 text, with very long lines (27763)
Hash 460621781d06d265df302c46952bae68
1adbcb0d713328c872f04714e2a3e04a8a4473f3
1e236df9b9c2adf72c13ab3f350ebac0cbef26dd7a487a877e4dccaaa175a6d1
GET /gtm.js?id=GTM-PCVT5ZK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 Feb 2023 19:24:38 GMT
expires: Wed, 08 Feb 2023 19:24:38 GMT
cache-control: private, max-age=900
last-modified: Wed, 08 Feb 2023 18:39:10 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74000
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/static/css/Home.c7d5bb57.chunk.css
108.157.214.4200 OK 63 B URL HTTP/2 www.ibet.com/static/css/Home.c7d5bb57.chunk.css
IP 108.157.214.4:0
File type ASCII text, with no line terminators
Hash 813b17a6690bbfb32d877fbda442ef4c
c7f56f22b32af8454a849639dea6745008535859
7e4269e3372452b4d9a3ab8c989d084c3fa9fd43c963f558637a1ffdf7d25f88
GET /static/css/Home.c7d5bb57.chunk.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 63
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "813b17a6690bbfb32d877fbda442ef4c"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: OMLuWFOylLY9Qv-UNM6zcEB0OyIIxLD9rH0qb4eD9TKZ5M_NwR5Ucw==
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D
34.102.211.197200 OK 1.3 kB URL HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D
IP 34.102.211.197:0
File type JSON data\012- , ASCII text, with very long lines (5109), with no line terminators
Hash 48288f2165456e26c7c21524888b762b
3ddf7e1be6ccd620b521b444e9ed1dfcdfa64b64
a97d24f9a5509f9a8936880fbc25dd7aa71971add2552f47655013feb2639e9f
GET /v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Wed, 08 Feb 2023 19:18:03 GMT
server-timing: api;dur=54
x-sanity-shard: gcp-eu-w1-01-prod-1013
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
content-encoding: br
x-sanity-age: 395
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 1286
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 8d5417d247d259e3c0186136b83d9f75
49fbcf99a352669aee2559579ef73fa60f46d38d
3c013921158ec27e44d5e80a5108557de80a27f38089ac3a52c6c1cf5636f585
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ibet.com/asset-manifest.json?rand=81325
108.157.214.4200 OK 14 kB URL HTTP/2 www.ibet.com/asset-manifest.json?rand=81325
IP 108.157.214.4:0
File type JSON data\012- , ASCII text
Hash 0fc58737ac0a42f3c373ea4000c40b36
fb4576069ef112b8149a1cb910bf6715c249066d
8ac62ace773aefddf3749db5218109e0c52dcef0b050d0824f8b8f81841ccd2d
GET /asset-manifest.json?rand=81325 HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
sentry-trace: d494eb17df2447a2af14c7c154d714dc-9c6514b2e72d0898-1
baggage: sentry-environment=production,sentry-release=b7fd6dd6b5d8aded52b86f9eb3ba50919b664504,sentry-public_key=b4194d5fa1814d9d91f1a2d7b90535af,sentry-trace_id=d494eb17df2447a2af14c7c154d714dc,sentry-sample_rate=1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 14236
last-modified: Tue, 07 Feb 2023 10:26:35 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "0fc58737ac0a42f3c373ea4000c40b36"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: ju05VEtXeXlfP0JwSlI7c2_SJyfjv5twtdsF7U8ZBOmmwmvZCSNvHQ==
X-Firefox-Spdy: h2
www.ibet.com/static/media/IntegralCF-Regular.2bead141.woff2
108.157.214.4200 OK 18 kB URL HTTP/2 www.ibet.com/static/media/IntegralCF-Regular.2bead141.woff2
IP 108.157.214.4:0
File type Web Open Font Format (Version 2), TrueType, length 18484, version 1.6553\012- data
Hash 2bead14105eb2526e9547d6dd69ed86c
23601938b7bbb0631b6a33f7f6c7e73700241dea
07839fe34039d0bf261f3cb68b299f96f43705a4c8a0bce5063d6376a311c4d6
GET /static/media/IntegralCF-Regular.2bead141.woff2 HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
content-length: 18484
date: Wed, 08 Feb 2023 19:24:39 GMT
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
etag: "2bead14105eb2526e9547d6dd69ed86c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: cs8EggVZbPLit-383DPkavo_jNhnv0E8a1s8mcqbIpi2MIa92JmLvw==
X-Firefox-Spdy: h2
www.ibet.com/static/js/MenuIcon.7c7e8327.chunk.js
108.157.214.4200 OK 81 kB URL HTTP/2 www.ibet.com/static/js/MenuIcon.7c7e8327.chunk.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e0b92fb181b319fe73093a4e729ac219
8582bb0bc7b07de00d21d87685163ec30bc5ebc8
b6517fad82f073116af2106ae674c3dfc29d75d1f1f58c23b4008e27ec8e9dd4
GET /static/js/MenuIcon.7c7e8327.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 81074
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:40 GMT
etag: "e0b92fb181b319fe73093a4e729ac219"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: cdS4hkGipXwK_BRQxjmoXb_TxEntSQiaF12EMc_C5Fk_x9AA3gYHag==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash e135eb1c1e01f3bc7ed64d3065608504
8314abb69a8a825f7d050ca5f0fae38c4a6d2a32
19b408e58985813a088450c5c60c35376c00c73c2608290272c7db8a1652d91e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 01:59:51 GMT
Expires: Wed, 15 Feb 2023 01:59:50 GMT
Etag: "8314abb69a8a825f7d050ca5f0fae38c4a6d2a32"
Cache-Control: max-age=541510,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf2868581bfe-OSL
www.ibet.com/iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
108.157.214.4200 OK 1.4 kB URL HTTP/2 www.ibet.com/iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP 108.157.214.4:0
File type ASCII text, with very long lines (985)
Hash 940f02f4b21015c8a0b25f1d6d6c1834
d3682323afb72ffbfbf3d13ee4fb1e31e3986e4c
653a0d3eec33aa00874159baa0a85024c54521c78d057098b93cd31343352606
GET /iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 1399
date: 2023-Feb-08 19:24:39
cache-control: no-cache, private
pragma: no-cache
expires: 0
p3p: CP="NON DSP COR CURa"
accept-ch: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: i6noz6PG-ZxkkTiSALcPKOh71lp8oUwQJJnv1hExfU3FTybsZ2aghw==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash e135eb1c1e01f3bc7ed64d3065608504
8314abb69a8a825f7d050ca5f0fae38c4a6d2a32
19b408e58985813a088450c5c60c35376c00c73c2608290272c7db8a1652d91e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 01:59:51 GMT
Expires: Wed, 15 Feb 2023 01:59:50 GMT
Etag: "8314abb69a8a825f7d050ca5f0fae38c4a6d2a32"
Cache-Control: max-age=541510,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf287ae2b4fa-OSL
cdn.sanity.io/images/w9lc5y04/production/417d814c6c80a9400e9b057707dbb54c08cfefd4-897x497.png
35.190.70.79200 OK 19 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/417d814c6c80a9400e9b057707dbb54c08cfefd4-897x497.png
IP 35.190.70.79:0
File type PNG image data, 897 x 497, 8-bit/color RGBA, non-interlaced\012- data
Hash 7f9d14d17f40f7e7ee9a226a905b08bd
417d814c6c80a9400e9b057707dbb54c08cfefd4
ed8b6c84dbbf53d89846770b7765d9c33ca294cb5c7cddd73a8e7cb3fc102d48
GET /images/w9lc5y04/production/417d814c6c80a9400e9b057707dbb54c08cfefd4-897x497.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 18989
x-b3-traceid: 3f3623992e92747bdc7a3bf70b564a96
x-b3-parentspanid: 970f68825c3a7113
x-b3-spanid: f5f69f2744df68e1
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Mon, 06 Feb 2023 17:29:16 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 29 Sep 2022 08:53:29 GMT
content-type: image/png
age: 179723
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
108.157.214.4200 OK 18 kB URL HTTP/2 www.ibet.com/iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP 108.157.214.4:0
Hash ddf3162bf6e0237c3562f79c0add9e08
e20917a7d6c154164711e36e1791d9e641643d99
1626ff1e6c8c3283e9bc874debe757f347d05f935393b4af71aa6c60204c9f60
GET /iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Wed, 08 Feb 2023 19:24:38 GMT
last-modified: Tue, 06 May 2014 00:01:40 GMT
expires: Fri, 10 Mar 2023 19:24:38 GMT
cache-control: private
p3p: CP="NON DSP COR CURa"
accept-ch: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: PH-KwJxqVMg3rl9fjCcz5Vwj0nAJemINRyxVtNS1TOAAmpg0ZMKinw==
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/9baabec764476ca445f88710f67677b633a54b95-430x100.png
35.190.70.79200 OK 3.6 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/9baabec764476ca445f88710f67677b633a54b95-430x100.png
IP 35.190.70.79:0
File type PNG image data, 430 x 100, 8-bit colormap, non-interlaced\012- data
Hash b3af83174bcd7c3365106aec05ceabc1
9baabec764476ca445f88710f67677b633a54b95
42fae6932054cb4d37203480d9e5c6cf8787934f3b5ac09176da4f1867a992de
GET /images/w9lc5y04/production/9baabec764476ca445f88710f67677b633a54b95-430x100.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3612
x-b3-traceid: 39da3c5845b08cf34995f21a619eba47
x-b3-parentspanid: 4b7edcecd83fb530
x-b3-spanid: 4ac4a90cabd014f2
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 11654
accept-ranges: bytes
via: 1.1 google
date: Tue, 07 Feb 2023 13:41:14 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:37:46 GMT
content-type: image/png
age: 107005
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/bc900fced5d5b640bf862dee4f6f672c336eb059-395x97.png
35.190.70.79200 OK 3.1 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/bc900fced5d5b640bf862dee4f6f672c336eb059-395x97.png
IP 35.190.70.79:0
File type PNG image data, 395 x 97, 8-bit colormap, non-interlaced\012- data
Hash bae88acf6501b95d744ac42753fd154e
bc900fced5d5b640bf862dee4f6f672c336eb059
a9b8a511c5a65723741f141c52a491e45a6d1d47d4cdc57c8b29f39e2ca0fe41
GET /images/w9lc5y04/production/bc900fced5d5b640bf862dee4f6f672c336eb059-395x97.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3072
x-b3-traceid: b147e828b1c351e4acc42fca131c08b0
x-b3-parentspanid: 8c08bd49005e7310
x-b3-spanid: fab7073899b8658e
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 4020
accept-ranges: bytes
via: 1.1 google
date: Sun, 29 Jan 2023 11:42:50 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:38:03 GMT
content-type: image/png
age: 891709
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png
35.190.70.79200 OK 3.3 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png
IP 35.190.70.79:0
File type PNG image data, 560 x 107, 8-bit colormap, non-interlaced\012- data
Hash e83e505077311e5f9cd28570d22b274c
d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f
f0571891d0bb64899275389561c72cf12622f87bc6921910c0fea86108c13fae
GET /images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3304
x-b3-traceid: 7461f171b153f3c8368a63661c7ddd43
x-b3-parentspanid: 7a7456c7997eeb09
x-b3-spanid: a0ccdbcc7ed7f1ed
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Mon, 16 Jan 2023 16:07:49 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:37:21 GMT
content-type: image/png
age: 1999010
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3-256x90.png
35.190.70.79200 OK 2.3 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3-256x90.png
IP 35.190.70.79:0
File type PNG image data, 256 x 90, 8-bit colormap, non-interlaced\012- data
Hash 3cc63e63d23d84e22251a97cae156b43
261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3
a24220152c92cc21497f600a6ec7abe14875485a719e1ef2841919188681d803
GET /images/w9lc5y04/production/261e1d6a2c26e8e34b81f82d20cdbb39e524d7e3-256x90.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 2272
x-b3-traceid: 89b50c2590c4bc1062f18c100fe9e32a
x-b3-parentspanid: 55ecef5e374ef206
x-b3-spanid: 6bbcce4e2a098d91
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Wed, 18 Jan 2023 03:39:40 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:35:44 GMT
content-type: image/png
age: 1871099
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/98a1fe10a380461fda22a3baccc6031744fef4fb-991x225.png
35.190.70.79200 OK 23 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/98a1fe10a380461fda22a3baccc6031744fef4fb-991x225.png
IP 35.190.70.79:0
File type PNG image data, 991 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash ded03dbc96554750e94cb0f5b1b780ff
98a1fe10a380461fda22a3baccc6031744fef4fb
e001ab0ed5f5808d34f62add059289fc8fa6ccb6a347a610b7e0a668d810cf0b
GET /images/w9lc5y04/production/98a1fe10a380461fda22a3baccc6031744fef4fb-991x225.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 22817
x-b3-traceid: 26ee3e60b6abc00eb80c1538a848cd35
x-b3-parentspanid: 3bc6057992e812b4
x-b3-spanid: 15778d8707e2255e
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Wed, 08 Feb 2023 18:27:04 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 28 Apr 2022 12:46:16 GMT
content-type: image/png
age: 3455
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash e135eb1c1e01f3bc7ed64d3065608504
8314abb69a8a825f7d050ca5f0fae38c4a6d2a32
19b408e58985813a088450c5c60c35376c00c73c2608290272c7db8a1652d91e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 01:59:51 GMT
Expires: Wed, 15 Feb 2023 01:59:50 GMT
Etag: "8314abb69a8a825f7d050ca5f0fae38c4a6d2a32"
Cache-Control: max-age=541510,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf288a57b4eb-OSL
cdn.sanity.io/images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg
35.190.70.79200 OK 1.5 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg
IP 35.190.70.79:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2523)
Hash 2ad526f14821d156aa6ce0121aa08ce7
8593c593a45edaaee6f643cfb1721ad99e9ab3d8
c8b2ebb7f2ac2a8d902463ff865937d7136396cb72d0693d5505cffd15b7ac64
GET /images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding, origin, accept-encoding
x-b3-traceid: 7c02707013b6a74d12e0ac558c7a63f6
x-b3-parentspanid: 6dac6917b568e37d
x-b3-spanid: 399c54fbb746121b
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
content-encoding: br
x-varnish-age: 36154
accept-ranges: bytes
content-length: 1454
via: 1.1 google
date: Mon, 30 Jan 2023 14:49:31 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 20 Jul 2022 10:00:20 GMT
content-type: image/svg+xml
age: 794108
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/6eaf3f7de1d528ed78b8688cefbec35445c8ff36-1645x431.png
35.190.70.79200 OK 36 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/6eaf3f7de1d528ed78b8688cefbec35445c8ff36-1645x431.png
IP 35.190.70.79:0
File type PNG image data, 1645 x 431, 8-bit/color RGBA, non-interlaced\012- data
Hash a57ec28bccc522d198b3598e4eb13e59
1d65ef967d8721e57f3b00dac541abea1f0b1abe
100cd0aece050389896c5c55e1e935e31769844a6041c58d8c172a3f29458ca1
GET /images/w9lc5y04/production/6eaf3f7de1d528ed78b8688cefbec35445c8ff36-1645x431.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 35674
x-b3-traceid: f08dbc286a76576b452566086326c349
x-b3-parentspanid: 5c3ecc8762684983
x-b3-spanid: 3502cf4a9992d438
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-4
x-varnish-age: 23734
accept-ranges: bytes
via: 1.1 google
date: Mon, 30 Jan 2023 12:08:54 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Fri, 15 Jul 2022 13:13:15 GMT
content-type: image/png
age: 803745
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
salesiq.zoho.eu/visitor/v2/channels/website?widgetcode=429c68585fd2941a35c4c0726de2afe5f3c8164b72b4840747ca2e980e0011f9&internal_channel_req=true&language_api=true&browser_language=en¤t_domain=https%3A%2F%2Fibet.com&pagetitle=iBet.com&include_fields=avuid
185.230.212.28200 8.9 kB URL HTTP/1.1 salesiq.zoho.eu/visitor/v2/channels/website?widgetcode=429c68585fd2941a35c4c0726de2afe5f3c8164b72b4840747ca2e980e0011f9&internal_channel_req=true&language_api=true&browser_language=en¤t_domain=https%3A%2F%2Fibet.com&pagetitle=iBet.com&include_fields=avuid
IP 185.230.212.28:0
ASN #205111 ZOHO Corporation B.V
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (22612), with no line terminators
Hash 3a0a51203cb4fc26c9079ac77191b68a
eab38590ec6c672806f259c016abb8b9b04b0225
62b64040e986d552882a24eb37abbe6b3fd83ae464b1eb67290707d3aa7e22db
GET /visitor/v2/channels/website?widgetcode=429c68585fd2941a35c4c0726de2afe5f3c8164b72b4840747ca2e980e0011f9&internal_channel_req=true&language_api=true&browser_language=en¤t_domain=https%3A%2F%2Fibet.com&pagetitle=iBet.com&include_fields=avuid HTTP/1.1
Host: salesiq.zoho.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: ZGS
Date: Wed, 08 Feb 2023 19:24:39 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Content-Type-Options: nosniff
Encoding: UTF-8
X-XSS-Protection: 1
Set-Cookie: b3e783bb62=f12e0a71780f1e8684e68d76a060037b; Path=/
LS_CSRF_TOKEN=b479e5b9-58c2-46ba-8076-38e6a2a8a440;path=/;SameSite=None;Secure;priority=high
_zcsr_tmp=b479e5b9-58c2-46ba-8076-38e6a2a8a440;path=/;SameSite=Strict;Secure;priority=high
uesign=f81318819540da9f8eafa0e7bca34adca2f1d6d9e7c8333e991a413d83c482ef8fb857a9ef29d87f857d86d3129de730;Max-Age=2592000;Path=/;Secure;SameSite=None;priority=high
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Headers: Content-Type,x-siq-internal-channel
Access-Control-Allow-Origin: https://www.ibet.com
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Content-Language: en-US
Strict-Transport-Security: max-age=63072000
Content-Encoding: gzip
js.adsrvr.org/up_loader.1.1.0.js
54.230.241.118200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 54.230.241.118:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 08 Feb 2023 07:31:39 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: c1wqceAL7plfJjqHWHKCC9M3usSvE4pg9XAlDtBI4MXBhbuC3k6p8g==
Age: 42781
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5243db5a1dc4221c4ccb8a80ada5b2b2
cef347292ec37a9c01243e1ab89347d94c9cbb6b
eaf51c56bde417dc56124f59605478e3b165b46cd8a5006b2475acb4ae8ed91a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1430
Cache-Control: max-age=100086
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:39 GMT
Etag: "63e2d557-117"
Expires: Thu, 09 Feb 2023 23:12:45 GMT
Last-Modified: Tue, 07 Feb 2023 22:48:55 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash e135eb1c1e01f3bc7ed64d3065608504
8314abb69a8a825f7d050ca5f0fae38c4a6d2a32
19b408e58985813a088450c5c60c35376c00c73c2608290272c7db8a1652d91e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 01:59:51 GMT
Expires: Wed, 15 Feb 2023 01:59:50 GMT
Etag: "8314abb69a8a825f7d050ca5f0fae38c4a6d2a32"
Cache-Control: max-age=541510,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf285c8e0b61-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash e135eb1c1e01f3bc7ed64d3065608504
8314abb69a8a825f7d050ca5f0fae38c4a6d2a32
19b408e58985813a088450c5c60c35376c00c73c2608290272c7db8a1652d91e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 01:59:51 GMT
Expires: Wed, 15 Feb 2023 01:59:50 GMT
Etag: "8314abb69a8a825f7d050ca5f0fae38c4a6d2a32"
Cache-Control: max-age=541510,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf286aa7b4fa-OSL
cdn.sanity.io/images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png
35.190.70.79200 OK 1.0 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png
IP 35.190.70.79:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash c54b1baea0fee1c28f161b98caca9b6f
73b98cda447fa00944f7922509f1c40435f9a2c3
84ae01ad9032bb57c873dac068aaad998c5b813259b1a0b200cede6061d9044f
GET /images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 1009
x-b3-traceid: 534ac352808132bba1a7919a1ff589a4
x-b3-parentspanid: b4039d28eb7ef0d7
x-b3-spanid: 4d54b32893a80699
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-8
x-varnish-age: 21625
accept-ranges: bytes
via: 1.1 google
date: Wed, 18 Jan 2023 23:16:44 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 28 Feb 2022 12:12:47 GMT
content-type: image/png
age: 1800475
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 22ed2bbdf18bbfeefc1cfab942139c16
151e95d7af4bac0f1dad9720dc5dc04e6446b23b
d325f8d214c5426f2cc2a2ff3e1c0db97a59cc5d84733d4f48d98036626da8f4
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 12 Feb 2023 16:17:53 GMT
ETag: "151e95d7af4bac0f1dad9720dc5dc04e6446b23b"
Last-Modified: Wed, 08 Feb 2023 16:17:54 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1629
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966bf299e7e0b59-OSL
tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAUT
95.101.10.99200 OK 37 kB URL HTTP/2 tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAUT
IP 95.101.10.99:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (61814)
Hash 7a4c7084a1cc66299069cae286e77ae9
69e0d50e779ea14bf86e8da3791c0ac246317499
08a9e9ea264c09e8bbed7876e604711eaa12870ead3a524324bc429b415032a0
GET /dist/tag-manager.js?id=STM-AAAAUT HTTP/1.1
Host: tm.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
apigw-requestid: ACKi6g7gjoEEPPA=
vary: Accept-Encoding
content-encoding: gzip
content-length: 37374
date: Wed, 08 Feb 2023 19:24:39 GMT
cache-control: max-age=900, public
x-n: S
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png
35.190.70.79200 OK 5.2 kB URL HTTP/2 cdn.sanity.io/images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png
IP 35.190.70.79:0
File type PNG image data, 318 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash 54f08de44053ac484ef92bd1b2490323
fbfd97517c2b1e30611014c9938e5ac6f75e3315
68d588a5d493dc1ad73240aa42bbf23a7b522f8ab1c42b8718ce05a027293ac7
GET /images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 5240
x-b3-traceid: cb76cb5a66cd58fdbfb36ee5c92127fc
x-b3-parentspanid: 51abd732c6ac907f
x-b3-spanid: a9f1261833ad6f88
x-b3-sampled: 0
vary: origin
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Wed, 08 Feb 2023 18:27:09 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Fri, 25 Nov 2022 13:38:56 GMT
content-type: image/png
age: 3450
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 22ed2bbdf18bbfeefc1cfab942139c16
151e95d7af4bac0f1dad9720dc5dc04e6446b23b
d325f8d214c5426f2cc2a2ff3e1c0db97a59cc5d84733d4f48d98036626da8f4
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 12 Feb 2023 16:17:53 GMT
ETag: "151e95d7af4bac0f1dad9720dc5dc04e6446b23b"
Last-Modified: Wed, 08 Feb 2023 16:17:54 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1629
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966bf29bea80b59-OSL
imagesrv.adition.com/js/aut.js
217.79.188.11200 OK 3.6 kB URL HTTP/2 imagesrv.adition.com/js/aut.js
IP 217.79.188.11:0
ASN #24961 myLoc managed IT AG
File type C source, ASCII text, with very long lines (575)
Hash 20bcb89e1593d0791dc1e75cddc1651d
d696cd7a407d3d95f197c44cf1d8e47312242e1b
453f86a616db4a42e5dd92fc00a580d769a6275c0adb56700b134290c8302971
GET /js/aut.js HTTP/1.1
Host: imagesrv.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
etag: "2397954584-br"
last-modified: Wed, 11 Jan 2023 08:47:11 GMT
content-length: 3634
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: br
date: Wed, 08 Feb 2023 19:24:39 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bf2147c2a13280b66bf3b07667e039b0
b826e010f28f1c05666965206f11bcc0f8073633
b2e37e867dd5c12e15bee15b120fe20fcc161099bbbcad0146118b6b342cb994
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1225
Cache-Control: max-age=154214
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:39 GMT
Etag: "63e3a994-1d7"
Expires: Fri, 10 Feb 2023 14:14:53 GMT
Last-Modified: Wed, 08 Feb 2023 13:54:28 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash e135eb1c1e01f3bc7ed64d3065608504
8314abb69a8a825f7d050ca5f0fae38c4a6d2a32
19b408e58985813a088450c5c60c35376c00c73c2608290272c7db8a1652d91e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 01:59:51 GMT
Expires: Wed, 15 Feb 2023 01:59:50 GMT
Etag: "8314abb69a8a825f7d050ca5f0fae38c4a6d2a32"
Cache-Control: max-age=541510,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf2909341bfe-OSL
www.ibet.com/iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
108.157.214.4200 OK 505 B URL HTTP/2 www.ibet.com/iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
IP 108.157.214.4:0
File type ASCII text, with very long lines (377)
Hash fc28ac1e351d3914f149709c5414f544
fc758ca6e0ba9ff743d84a43c150e03a7673642b
d0411851c305636d357f92a78c040e8c4c32e3fd232493fd9f37b9923cc0bddc
GET /iojs/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Cookie: isiframeenabled=true; _gcl_au=1.1.1911523954.1675884335
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 505
date: Wed, 08 Feb 2023 19:24:39 GMT
last-modified: Tue, 06 May 2014 00:01:40 GMT
expires: Thu, 08 Feb 2024 19:24:39 GMT
cache-control: private
p3p: CP="NON DSP COR CURa"
accept-ch: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
x-cache: Miss from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: dieNlf_F2QV5zxnh2d8aLRnn80uC78mVwPPz-iMcq2fKuq_pz_-AaQ==
X-Firefox-Spdy: h2
mpsnare.iesnare.com/star
54.195.39.4101 Switching Protocols 0 B IP 54.195.39.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XreuAxTnl/OKbB8GILEJCQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Wed, 08 Feb 2023 19:24:39 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: dpS3JH10w56j2wNFN1gSUIw+izI=
Upgrade: WebSocket
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5243db5a1dc4221c4ccb8a80ada5b2b2
cef347292ec37a9c01243e1ab89347d94c9cbb6b
eaf51c56bde417dc56124f59605478e3b165b46cd8a5006b2475acb4ae8ed91a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1430
Cache-Control: max-age=100086
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:39 GMT
Etag: "63e2d557-117"
Expires: Thu, 09 Feb 2023 23:12:45 GMT
Last-Modified: Tue, 07 Feb 2023 22:48:55 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279
adfarm1.adition.com/i?raw=1&ts=701527527
217.79.188.8200 OK 19 B URL HTTP/2 adfarm1.adition.com/i?raw=1&ts=701527527
IP 217.79.188.8:0
ASN #24961 myLoc managed IT AG
File type ASCII text, with no line terminators
Hash da3e03611f036728602b4b1c7bdc29df
66bb8cb033a7bc7e3c43379c07457ffe9236683c
78fcc8a3c7294f104911db51d78b459141c1bfcc1d08456615e6e5c6f8655e4d
GET /i?raw=1&ts=701527527 HTTP/1.1
Host: adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
content-length: 19
server: ADITIONSERVER v1.0
date: Wed, 08 Feb 2023 20:24:39 +0100
access-control-allow-credentials: true
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: set-cookie
cache-control: max-age=31536000,private
p3p: policyref="https://imagesrv.adition.com/w3c/p3p-ssl.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
set-cookie: UserID1=7197868170194782985; expires=Tue, 09-May-2023 20:24:39 GMT; path=/; domain=.adfarm1.adition.com; SameSite=None; Secure
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist/tracker.js
95.101.10.99200 OK 12 kB URL HTTP/2 tracker.ads.sportradar.com/dist/tracker.js
IP 95.101.10.99:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (34755)
Hash b34b13d85152f71b7fd15289c78c0583
0bb20191b022bbd0e75f2bbce7f6332886079c2c
7a3fc57394ecc6745eb6e18745aa1e5e5d05cb2237c4d0d754ab43d33863a84c
GET /dist/tracker.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "5ff82a1c468a89919e9437d33e0402cb"
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: xxy24jTmXvVX0pZDc4mQqOEbDdBZu0yd_clnp0StuyGWfF7ogQHfyg==
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 08 Feb 2023 19:24:39 GMT
content-length: 11553
cache-control: max-age=900, public
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash f65ba226e8a0c6b9ba1565bbca9d79da
009b16330f7f558ca6030355b570feeb92eb775a
b2e6df5d4113ebcd8ec3b05442c9463cac74ed7f5aa68fda6f2a93a98207639b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 06 Feb 2023 15:09:29 GMT
Expires: Mon, 13 Feb 2023 15:09:28 GMT
Etag: "009b16330f7f558ca6030355b570feeb92eb775a"
Cache-Control: max-age=416088,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf2a8e4ab4fa-OSL
api.fouanalytics.com/api/init-2315cm3nkx3pemx84qeo.js
172.64.168.33200 OK 90 kB URL HTTP/2 api.fouanalytics.com/api/init-2315cm3nkx3pemx84qeo.js
IP 172.64.168.33:0
File type ASCII text, with very long lines (460)
Hash 0f8f87dcadd32303df75ff0724590328
9fe66816b691788eecda4a499b031cbe2424027b
5192a6a27f65ef6327cae75e2e8816758a28b561a9bef8f1f14c0c19664d3583
GET /api/init-2315cm3nkx3pemx84qeo.js HTTP/1.1
Host: api.fouanalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:24:39 GMT
content-type: text/javascript
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
expires: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=abNjPmLsc2lDvfEB3Yq7XDwu%2FZlEvIVSjHwYGlCfJOXHFgGerKxt2i5pksTPmcm1gyJkJtd7adIAagzsi7LcclySnC1kjuF29SqQx19P%2FOziJc9JxI2ja1NXDnnBczhIhulAEipn9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7966bf29bb22719e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash f65ba226e8a0c6b9ba1565bbca9d79da
009b16330f7f558ca6030355b570feeb92eb775a
b2e6df5d4113ebcd8ec3b05442c9463cac74ed7f5aa68fda6f2a93a98207639b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 06 Feb 2023 15:09:29 GMT
Expires: Mon, 13 Feb 2023 15:09:28 GMT
Etag: "009b16330f7f558ca6030355b570feeb92eb775a"
Cache-Control: max-age=416088,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf2a9f0bb4eb-OSL
www.ibet.com/static/media/desk-mobile.fd96eee3.png
108.157.214.4200 OK 501 kB URL HTTP/2 www.ibet.com/static/media/desk-mobile.fd96eee3.png
IP 108.157.214.4:0
File type PNG image data, 920 x 868, 8-bit/color RGBA, non-interlaced\012- data
Size 501 kB (500572 bytes)
Hash fd96eee35b390dfd08f545b75d939ac6
6921b711e1a4eb122f1c7805a6e1a51a96402330
255eeaeea7d72c03eb622eb824940135801f903f45f1dce5a206ead783ec2dd8
GET /static/media/desk-mobile.fd96eee3.png HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Cookie: isiframeenabled=true; _gcl_au=1.1.1911523954.1675884335; _ga_QMJ93CW4C3=GS1.1.1675884335.1.0.1675884335.0.0.0; _ga=GA1.1.444679155.1675884335; _autuserid2=7197868170194782985
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 500572
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:40 GMT
etag: "fd96eee35b390dfd08f545b75d939ac6"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: vIx10ElfEjlRPVjvt8CK_OIHnoMdi98JUWzr-x2r_7bPGjO2bWfHTw==
X-Firefox-Spdy: h2
css.zohocdn.com/salesiq/styles/floatbutton1_bd045c29766df2806787522c13149e23_.css
185.20.209.147200 OK 5.1 kB URL HTTP/2 css.zohocdn.com/salesiq/styles/floatbutton1_bd045c29766df2806787522c13149e23_.css
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (22576), with no line terminators
Hash 9674bdea22120177e94ec071e3dfbe6c
206b3ab605f3409b8f33e7e4b1b464c02d6831b0
63f3b43a7dfed48774b53a6432331e78e98bd86549e2916cfc0e9eb8fc530c12
GET /salesiq/styles/floatbutton1_bd045c29766df2806787522c13149e23_.css HTTP/1.1
Host: css.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Wed, 08 Feb 2023 19:24:39 GMT
content-type: text/css;charset=UTF-8
content-length: 5141
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "9674bdea22120177e94ec071e3dfbe6c"
content-language: en-US
last-modified: Mon, 09 Jan 2023 12:41:16 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 695040b0f8cfdaf0ff9cc35008284736
z-origin-id: ex1-73e732296ef6409fa7927cc3d9693220
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ibet.com/static/media/online-casino.09f50f31.svg
108.157.214.4200 OK 3.7 kB URL HTTP/2 www.ibet.com/static/media/online-casino.09f50f31.svg
IP 108.157.214.4:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1055)
Hash 09f50f31ee12cbbf106822919d865a1a
5e3ec838232bc547b76ee3b5b66f17dd22904dcf
84d3974268493211be5b646dd17c1f6cdd6e427cc8d34364434d9ec5f99f392e
GET /static/media/online-casino.09f50f31.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Cookie: isiframeenabled=true; _gcl_au=1.1.1911523954.1675884335; _ga_QMJ93CW4C3=GS1.1.1675884335.1.0.1675884335.0.0.0; _ga=GA1.1.444679155.1675884335; _autuserid2=7197868170194782985
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 3676
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:40 GMT
etag: "09f50f31ee12cbbf106822919d865a1a"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: qU9r3RKLB09LkHSenntiKxNrPrOpG1Ri1cq8MTw1dP-cIJw9wYfZFA==
X-Firefox-Spdy: h2
www.ibet.com/static/media/red-bg-mob.b4fab880.png
108.157.214.4200 OK 335 kB URL HTTP/2 www.ibet.com/static/media/red-bg-mob.b4fab880.png
IP 108.157.214.4:0
File type JPEG image data, baseline, precision 8, 1060x1186, components 3\012- data
Size 335 kB (335236 bytes)
Hash b4fab880fcb4f77672ea9137447fb844
2253421b22961954592a9b8502ce811e5b66d0f2
11275b361a1372299e54affce15080d5ae42e29982638bc0028e7424a2e13b74
GET /static/media/red-bg-mob.b4fab880.png HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Cookie: isiframeenabled=true; _gcl_au=1.1.1911523954.1675884335; _ga_QMJ93CW4C3=GS1.1.1675884335.1.0.1675884335.0.0.0; _ga=GA1.1.444679155.1675884335; _autuserid2=7197868170194782985
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 335236
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:40 GMT
etag: "b4fab880fcb4f77672ea9137447fb844"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: PQ8Ix-EiWfzGwHN0IJsSIbqHVaLIMQ8eLfaCSirV1PKMYDCG52rFew==
X-Firefox-Spdy: h2
www.ibet.com/static/media/money-comes.789ceb0c.svg
108.157.214.4200 OK 4.5 kB URL HTTP/2 www.ibet.com/static/media/money-comes.789ceb0c.svg
IP 108.157.214.4:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (847)
Hash 789ceb0c85dafd8d24f2b66daf6057ba
11a33e5d71f1b277fc7d8bc4ee49f961ff140a17
f69b01fbec5d4b2679b1a6b5c3f7d297ccb045bb87d40bf581a606a97d110346
GET /static/media/money-comes.789ceb0c.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Cookie: isiframeenabled=true; _gcl_au=1.1.1911523954.1675884335; _ga_QMJ93CW4C3=GS1.1.1675884335.1.0.1675884335.0.0.0; _ga=GA1.1.444679155.1675884335; _autuserid2=7197868170194782985
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 4527
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:40 GMT
etag: "789ceb0c85dafd8d24f2b66daf6057ba"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 9juQ__WMLu-nRgTukZqicKeQurj46NS_P22JiMwUF1u36MQtPWCQ4w==
X-Firefox-Spdy: h2
www.ibet.com/static/media/arrow-icon.6fc363a8.svg
108.157.214.4200 OK 224 B URL HTTP/2 www.ibet.com/static/media/arrow-icon.6fc363a8.svg
IP 108.157.214.4:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 6fc363a8879cd29635e49f9c88e4b688
9909fc3d18310518614d6443a323306a73d55688
98999300be9d6fdd47c0db074e8e7e966c6ded407184cc6d8369d156ef00ae3a
GET /static/media/arrow-icon.6fc363a8.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Cookie: isiframeenabled=true; _gcl_au=1.1.1911523954.1675884335; _ga_QMJ93CW4C3=GS1.1.1675884335.1.0.1675884335.0.0.0; _ga=GA1.1.444679155.1675884335; _autuserid2=7197868170194782985
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 224
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:40 GMT
etag: "6fc363a8879cd29635e49f9c88e4b688"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: v_LIOH340-sLgRudZHiEGIPWy5MgeE84mrr72qDExlrBhJx-fL8X9Q==
X-Firefox-Spdy: h2
www.ibet.com/static/media/red-arrow-icon.6e6ced8e.svg
108.157.214.4200 OK 211 B URL HTTP/2 www.ibet.com/static/media/red-arrow-icon.6e6ced8e.svg
IP 108.157.214.4:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 6e6ced8ea34274f7493b4b58b951f9e1
bd975570f829526ab8fb770af5932504166abaea
12f65a396e79c4a782411e4c89709d983607e157ba7e0198f50a9b1d2fa4699d
GET /static/media/red-arrow-icon.6e6ced8e.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Cookie: isiframeenabled=true; _gcl_au=1.1.1911523954.1675884335; _ga_QMJ93CW4C3=GS1.1.1675884335.1.0.1675884335.0.0.0; _ga=GA1.1.444679155.1675884335; _autuserid2=7197868170194782985
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 211
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:40 GMT
etag: "6e6ced8ea34274f7493b4b58b951f9e1"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: cgKo7TOoV0U7jtp60ifGKevP5h48asijXlcRCBTmB3zdiz5x9RbRmw==
X-Firefox-Spdy: h2
www.ibet.com/static/media/document-search.339ba49c.svg
108.157.214.4200 OK 3.4 kB URL HTTP/2 www.ibet.com/static/media/document-search.339ba49c.svg
IP 108.157.214.4:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (624)
Hash 339ba49cc8f0f5837ce0363adfd0df6f
ced950cfaac412ca382bc9782db62094301ca3fb
4855df34f763be51bba0b39b0c0800f38fea4f4f166a95dac6b2184acae53496
GET /static/media/document-search.339ba49c.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Cookie: isiframeenabled=true; _gcl_au=1.1.1911523954.1675884335; _ga_QMJ93CW4C3=GS1.1.1675884335.1.0.1675884335.0.0.0; _ga=GA1.1.444679155.1675884335; _autuserid2=7197868170194782985
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 3389
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:40 GMT
etag: "339ba49cc8f0f5837ce0363adfd0df6f"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: Skuo35rkLswBFHPXCnwp8Ssy28O9_hT_YvSFMQa0kx7oHOdT5bnmqg==
X-Firefox-Spdy: h2
js.zohocdn.com/salesiq/js/floatbutton1_f95186579c1592e418ad6f3b746b2a0b_.js
185.20.209.147200 OK 12 kB URL HTTP/2 js.zohocdn.com/salesiq/js/floatbutton1_f95186579c1592e418ad6f3b746b2a0b_.js
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (36945), with no line terminators
Hash cdfc1c323785d3c7ca2e8ea28e356a70
7c6b6a7ecd7730a09423d8173fa6c88346725289
eda43348fad7dbc422816344753065b4127c7d78245173003cf0c72b75cc2cbc
GET /salesiq/js/floatbutton1_f95186579c1592e418ad6f3b746b2a0b_.js HTTP/1.1
Host: js.zohocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Wed, 08 Feb 2023 19:24:39 GMT
content-type: application/javascript;charset=UTF-8
content-length: 12546
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "cdfc1c323785d3c7ca2e8ea28e356a70"
content-language: en-US
last-modified: Fri, 03 Feb 2023 09:35:49 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 2de88a675e4e5777fcb3ae32363a5ffb
z-origin-id: ex1-f03cda27b4f14d85803221ee84c9afb6
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.ibet.com/static/media/red-bg-desktop.87239eec.png
108.157.214.4200 OK 1.9 MB URL HTTP/2 www.ibet.com/static/media/red-bg-desktop.87239eec.png
IP 108.157.214.4:0
File type PNG image data, 2880 x 1100, 8-bit/color RGBA, non-interlaced\012- data
Size 1.9 MB (1865669 bytes)
Hash 87239eec12f918ba6c8b112e743f7c1b
89e69d386e949092caef144f7d864bc7e73c341a
da827fb13a7defb7ae8677cdfebdb92a2cdfd5735dc5ace7cff18e29c1735ff5
GET /static/media/red-bg-desktop.87239eec.png HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Cookie: isiframeenabled=true; _gcl_au=1.1.1911523954.1675884335; _ga_QMJ93CW4C3=GS1.1.1675884335.1.0.1675884335.0.0.0; _ga=GA1.1.444679155.1675884335; _autuserid2=7197868170194782985
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1865669
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:40 GMT
etag: "87239eec12f918ba6c8b112e743f7c1b"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: ZbfZeBwOJzWd-zJKODV6FUzWGlr4kA317WEzPNa-_JjAV7nFyKdt9A==
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist//sp-2.14.0.js
95.101.10.99200 OK 30 kB URL HTTP/2 tracker.ads.sportradar.com/dist//sp-2.14.0.js
IP 95.101.10.99:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (64903)
Hash 44f237857b8d03f32b53fe551e83c95a
91536fe6c60d947d29dfcb5f04d09b752b5ccf03
a5e10dc2f3c729300afe8fe24aa430f57d91fdefa8112c0b35dd424ba612caa7
GET /dist//sp-2.14.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 20 Jan 2021 14:51:32 GMT
accept-ranges: bytes
server: AmazonS3
etag: "8dba669b94e3865c9205ef8fd15ee4d1"
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: dvubTwXiRCjiJB7wCHMomvWFLhrbYyzD7rIO_O4yfnHhyBM3lf2JMA==
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 08 Feb 2023 19:24:40 GMT
content-length: 30370
cache-control: max-age=900, public
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash ae0f440cfa73ee4c1e8442f755acf789
b32df9aadcbd3c32f74b715553c3d4997275fc62
6ba8a6c4f9524a29f6b53dcb6bed2b3b3ef930be4d731ceb18908ab91b7dae76
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "6BA8A6C4F9524A29F6B53DCB6BED2B3B3EF930BE4D731CEB18908AB91B7DAE76"
Last-Modified: Wed, 08 Feb 2023 06:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1525
Expires: Wed, 08 Feb 2023 19:50:05 GMT
Date: Wed, 08 Feb 2023 19:24:40 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash ae0f440cfa73ee4c1e8442f755acf789
b32df9aadcbd3c32f74b715553c3d4997275fc62
6ba8a6c4f9524a29f6b53dcb6bed2b3b3ef930be4d731ceb18908ab91b7dae76
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "6BA8A6C4F9524A29F6B53DCB6BED2B3B3EF930BE4D731CEB18908AB91B7DAE76"
Last-Modified: Wed, 08 Feb 2023 06:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1466
Expires: Wed, 08 Feb 2023 19:49:06 GMT
Date: Wed, 08 Feb 2023 19:24:40 GMT
Connection: keep-alive
region1.google-analytics.com/g/collect?v=2&tid=G-QMJ93CW4C3>m=45je3260&_p=1633325176&cid=444679155.1675884335&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675884335&sct=1&seg=0&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&dt=iBet.com&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-QMJ93CW4C3>m=45je3260&_p=1633325176&cid=444679155.1675884335&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675884335&sct=1&seg=0&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&dt=iBet.com&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-QMJ93CW4C3>m=45je3260&_p=1633325176&cid=444679155.1675884335&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675884335&sct=1&seg=0&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&dt=iBet.com&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.ibet.com
date: Wed, 08 Feb 2023 19:24:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
18.193.49.80302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP 18.193.49.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 08 Feb 2023 19:24:40 GMT
Location: https://a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
Set-Cookie: zuuid=e0f06a98-190c-4eaf-970b-f40a1c96d120; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675884280; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675884280; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/pixel?type=js&aid=1622&id=7046
18.193.49.80302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/pixel?type=js&aid=1622&id=7046
IP 18.193.49.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?type=js&aid=1622&id=7046 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 08 Feb 2023 19:24:40 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
Set-Cookie: zuuid=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
c=1675884280; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675884280; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
18.193.49.80302 Moved Temporarily 0 B URL HTTP/1.1 a.sportradarserving.com/ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId=
IP 18.193.49.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?source=sr&redirect=//echoback.ads.sportradar.com/echoBack/_adsCookieSyncCallback?userId= HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Cookie: zuuid=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1; c=1675884280; zuuid_lu=1675884280
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 08 Feb 2023 19:24:40 GMT
Location: https://x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D7ebe6e3e-58b4-4372-a81d-ea0b75600bf1
Set-Cookie: zuuid=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675884280; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675884280; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
18.193.49.80200 OK 1.5 kB URL HTTP/1.1 a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
IP 18.193.49.80:0
File type ASCII text, with very long lines (1527), with no line terminators
Hash f6a2e2806cca032ff12443a91293d966
8768f46343b7384e5ad57ef4addba506798ca7bb
81d0acfe477e4dc9ff5ab87b1623d03b5cd02c113a7dbee335e542579fda8d91
GET /ul_cb/pixel?type=js&aid=1622&id=7046 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Cookie: zuuid=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1; c=1675884280; zuuid_lu=1675884280
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Wed, 08 Feb 2023 19:24:40 GMT
Set-Cookie: zuuid=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1675884280; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1675884280; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
cm4=!bidswitch,445213480; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,445141480; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 1527
Connection: keep-alive
amplify.outbrain.com/cp/obtp.js
2.18.173.74200 OK 5.9 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 2.18.173.74:0
File type ASCII text, with very long lines (17769), with no line terminators
Hash 939f95ffc91ae8a9eacb6998ec5a635f
e122fe07195821f6abf871cc65f315c6b9e27f4a
49462b3c223095ac3fc223f11a29e4bceed96feba62e167d444e9a082626fc17
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "b07048fb19f7c325242e254218118e14:1675339769.124179"
Last-Modified: Thu, 02 Feb 2023 09:48:30 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Wed, 08 Feb 2023 19:44:40 GMT
Date: Wed, 08 Feb 2023 19:24:40 GMT
Content-Length: 5911
Connection: keep-alive
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 08 Feb 2023 17:44:05 GMT
expires: Wed, 08 Feb 2023 19:44:05 GMT
cache-control: public, max-age=7200
age: 6035
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
origin.acuityplatform.com/event/v2/pixel.js
104.88.22.250200 OK 2.4 kB URL HTTP/1.1 origin.acuityplatform.com/event/v2/pixel.js
IP 104.88.22.250:0
File type HTML document, ASCII text, with very long lines (2423)
Hash c1e398d8cc65cd9241cc3f1840add2cb
316b1005d23d838c83e8bc65d3c2679b8c098df6
89cf66cb9de8da20fc15e9953845dd4d1de2c0fb465c827a09d818449222c533
GET /event/v2/pixel.js HTTP/1.1
Host: origin.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.0
Content-Type: application/javascript
Content-Length: 2424
Last-Modified: Wed, 04 Jan 2023 18:57:40 GMT
ETag: "63b5cc24-978"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Wed, 08 Feb 2023 19:24:40 GMT
Connection: keep-alive
cdn.taboola.com/libtrc/unip/1504263/tfa.js
151.101.129.44200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1504263/tfa.js
IP 151.101.129.44:0
File type ASCII text, with very long lines (59751)
Hash eaaa55ecd0df9f3d15025fe31067d6e2
41d2ff206533e0a0591830006eeb0d23ad4067e4
523a64e22feeba57088890ef903114b51e99be9c234cc67584fd503885b50221
GET /libtrc/unip/1504263/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cmNtPkcZtY3+uEeEEogQYuoRdRB7r0lPYzLb/2TuzDXDJkYE8Boj67gyzLA3pETK32ILppyU2Gs=
x-amz-request-id: MBWVW52ZRDMFEWS5
x-amz-replication-status: COMPLETED
last-modified: Sun, 05 Feb 2023 11:37:23 GMT
etag: "301611c7eae6b8e6feeec85b501e908d"
x-amz-version-id: _ThGk74OaON4eTUIKCvsct5EpXcGSKOg
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 19:24:40 GMT
via: 1.1 varnish
age: 59
x-served-by: cache-bma1646-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1675884281.712380,VS0,VE0
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 99
content-length: 18376
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d286fc8b6547d9e27ae9dd77abbc3cf7
131c08a8c94269be62ff98b0399845d8d6d88d7a
61ac23297d444db1c94330a592206a853a53e738ce08e4f4293d4a682fbd1003
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5315
Cache-Control: max-age=87069
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:40 GMT
Etag: "63e29352-1d7"
Expires: Thu, 09 Feb 2023 19:35:49 GMT
Last-Modified: Tue, 07 Feb 2023 18:07:14 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d4749a51dd329695e7a07525096f5e31
508690298abdb7381ca8144aea2f36f629420779
b3f1c4d57a89e234b9823e5f789ccc3223fd7b0e7b5cc2322b80e429eff96ee9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6068
Cache-Control: max-age=93895
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:40 GMT
Etag: "63e2ab0b-1d7"
Expires: Thu, 09 Feb 2023 21:29:35 GMT
Last-Modified: Tue, 07 Feb 2023 19:48:27 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash ecc04dbf668d50a8aa8ab98214b6b6ca
7408d1b6c65016f5d69a55e8d3a82cbaba608349
4bfabf596be27a4e2f8883862f1d90e1e5eb0cc33e529f77ef245df7fe99693b
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 12 Feb 2023 16:38:48 GMT
ETag: "7408d1b6c65016f5d69a55e8d3a82cbaba608349"
Last-Modified: Wed, 08 Feb 2023 16:38:49 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1164
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966bf331fa31c02-OSL
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash ecc04dbf668d50a8aa8ab98214b6b6ca
7408d1b6c65016f5d69a55e8d3a82cbaba608349
4bfabf596be27a4e2f8883862f1d90e1e5eb0cc33e529f77ef245df7fe99693b
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 12 Feb 2023 16:38:48 GMT
ETag: "7408d1b6c65016f5d69a55e8d3a82cbaba608349"
Last-Modified: Wed, 08 Feb 2023 16:38:49 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1164
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7966bf3319580b59-OSL
www.google-analytics.com/j/collect?v=1&_v=j99&a=1633325176&t=pageview&_s=1&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&ul=en-us&de=UTF-8&dt=iBet.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=1272289033&gjid=1316307327&cid=444679155.1675884335&tid=UA-160917518-1&_gid=2065379196.1675884336&_r=1&_slc=1>m=45He3260n81PCVT5ZK&z=173054096
142.250.74.110200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1633325176&t=pageview&_s=1&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&ul=en-us&de=UTF-8&dt=iBet.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=1272289033&gjid=1316307327&cid=444679155.1675884335&tid=UA-160917518-1&_gid=2065379196.1675884336&_r=1&_slc=1>m=45He3260n81PCVT5ZK&z=173054096
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=1633325176&t=pageview&_s=1&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&ul=en-us&de=UTF-8&dt=iBet.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=1272289033&gjid=1316307327&cid=444679155.1675884335&tid=UA-160917518-1&_gid=2065379196.1675884336&_r=1&_slc=1>m=45He3260n81PCVT5ZK&z=173054096 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.ibet.com
date: Wed, 08 Feb 2023 19:24:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5eecee8746b80be9e0c125cd1a6fbe62
6bb07051e8d9ef26d47f7df9846f589178d77cbb
adc26481b4eb6697f772d1d79de38769c179963e7e9df9b093d368f031472345
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:40 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 13:56:50 GMT
Expires: Tue, 14 Feb 2023 13:56:49 GMT
Etag: "6bb07051e8d9ef26d47f7df9846f589178d77cbb"
Cache-Control: max-age=498128,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf330d51b4fa-OSL
mpsnare.iesnare.com/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
54.195.39.4200 OK 19 kB URL HTTP/1.1 mpsnare.iesnare.com/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP 54.195.39.4:0
File type ASCII text, with very long lines (1056)
Hash f803d8220d2089c5f92b95bcf93fe9ea
7d922367ea689bd888c344fe0ef9eab933382a49
706ff3271c9cdc3d757bb948f5824b8263efb2891de4b3a85753961e80cfb22a
GET /general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:24:40 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: io_token_7c6a6574-f011-4c9a-abdd-9894a102ccef=MQ5SuaKCMl+aNMZlEa9fEoKTgiFb7940NcwHt6MTRPY=;Path=/;Expires=Thu, 08-Feb-2024 19:24:40 GMT;Max-Age=31536000;Secure;HttpOnly;SameSite=None
Cache-Control: no-cache, private
Pragma: no-cache
Expires: 0
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
mpsnare.iesnare.com/time.mp3?nocache=0.014573896996070368
54.195.39.4206 Partial Content 504 B URL HTTP/1.1 mpsnare.iesnare.com/time.mp3?nocache=0.014573896996070368
IP 54.195.39.4:0
File type MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Hash cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.014573896996070368 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Server: nginx
Date: Wed, 08 Feb 2023 19:24:40 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
www.google-analytics.com/collect?v=1&_v=j99&a=1633325176&t=timing&_s=2&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&ul=en-us&de=UTF-8&dt=iBet.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&plt=1332&pdt=0&dns=14&rrt=265&srt=223&tcp=42&dit=1294&clt=1331&_gst=2587&_gbt=4183&_u=YADAAEABAAAAACAAI~&jid=&gjid=&cid=444679155.1675884335&tid=UA-160917518-1&_gid=2065379196.1675884336>m=45He3260n81PCVT5ZK&z=911023559
142.250.74.110200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j99&a=1633325176&t=timing&_s=2&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&ul=en-us&de=UTF-8&dt=iBet.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&plt=1332&pdt=0&dns=14&rrt=265&srt=223&tcp=42&dit=1294&clt=1331&_gst=2587&_gbt=4183&_u=YADAAEABAAAAACAAI~&jid=&gjid=&cid=444679155.1675884335&tid=UA-160917518-1&_gid=2065379196.1675884336>m=45He3260n81PCVT5ZK&z=911023559
IP 142.250.74.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j99&a=1633325176&t=timing&_s=2&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&ul=en-us&de=UTF-8&dt=iBet.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&plt=1332&pdt=0&dns=14&rrt=265&srt=223&tcp=42&dit=1294&clt=1331&_gst=2587&_gbt=4183&_u=YADAAEABAAAAACAAI~&jid=&gjid=&cid=444679155.1675884335&tid=UA-160917518-1&_gid=2065379196.1675884336>m=45He3260n81PCVT5ZK&z=911023559 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Tue, 07 Feb 2023 23:07:10 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 73050
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
script.hotjar.com/modules.14cb8958c3e3566a4606.js
54.230.111.73200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.14cb8958c3e3566a4606.js
IP 54.230.111.73:0
File type Unicode text, UTF-8 text, with very long lines (48770)
Hash 5331176444d8700436c501005f6a0731
d0f73de83bc0720ec98240ab04878a317491d640
07c3a5946b698fa789f6f4f6924761ffbc6808e145cba46c657092f9b36fee8a
GET /modules.14cb8958c3e3566a4606.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68072
date: Wed, 08 Feb 2023 15:48:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5331176444d8700436c501005f6a0731"
last-modified: Wed, 08 Feb 2023 15:47:26 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1RRl9POJuI7pMycfU3DmaCTR-2HSeDNMvJY9w0RLX8WJgs-f9YeE6g==
age: 12994
X-Firefox-Spdy: h2
x.bidswitch.net/syncd?dsp_id=409&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
52.59.47.198302 Found 0 B URL HTTP/2 x.bidswitch.net/syncd?dsp_id=409&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP 52.59.47.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /syncd?dsp_id=409&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:24:40 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=67e14f99-f721-49ee-a401-293f79c0202c; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675884280; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675884280; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675884280; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=0c4b92c7-2543-4bff-bf20-51d03fec34ea
52.59.47.198302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=0c4b92c7-2543-4bff-bf20-51d03fec34ea
IP 52.59.47.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=0c4b92c7-2543-4bff-bf20-51d03fec34ea HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:24:40 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=0c4b92c7-2543-4bff-bf20-51d03fec34ea
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=5f36a536-bf13-4495-ad0d-5142901ec768; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675884280; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675884280; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675884280; path=/; expires=Thu, 08-Feb-2024 19:24:40 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160917518-1&cid=444679155.1675884335&jid=1272289033&gjid=1316307327&_gid=2065379196.1675884336&_u=YADAAEAAAAAAACAAI~&z=129185765
64.233.162.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160917518-1&cid=444679155.1675884335&jid=1272289033&gjid=1316307327&_gid=2065379196.1675884336&_u=YADAAEAAAAAAACAAI~&z=129185765
IP 64.233.162.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160917518-1&cid=444679155.1675884335&jid=1272289033&gjid=1316307327&_gid=2065379196.1675884336&_u=YADAAEAAAAAAACAAI~&z=129185765 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.ibet.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 08 Feb 2023 19:24:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
imagesrv.adition.com/1x1.gif
217.79.188.11200 OK 68 B URL HTTP/2 imagesrv.adition.com/1x1.gif
IP 217.79.188.11:0
ASN #24961 myLoc managed IT AG
File type GIF image data, version 89a, 1 x 1\012- data
Hash 93e65182fe45341563c2f18f13987dc9
2dfd85967b0ac77f85697b05de2c1aca1b31e934
5fb3bdb7f966c852579fb6b0574517445d5b2d171c804d66227ee67b1bffca9c
GET /1x1.gif HTTP/1.1
Host: imagesrv.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
accept-ranges: bytes
etag: "3122740758"
last-modified: Fri, 24 Jul 2009 13:46:10 GMT
content-length: 68
access-control-allow-origin: *
date: Wed, 08 Feb 2023 19:24:40 GMT
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
52.59.47.198200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/syncd?dsp_id=409&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D
IP 52.59.47.198:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/syncd?dsp_id=409&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&user_group=3&redir=%2F%2Feu.sportradarserving.com%2Fbsw_sync%3Fbsw_uid%3D%24%7BBSW_UID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:24:40 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
mpsnare.iesnare.com/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
54.195.39.4200 OK 419 B URL HTTP/1.1 mpsnare.iesnare.com/5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
IP 54.195.39.4:0
File type ASCII text, with very long lines (377)
Hash 83c839d4aec3e01c36429c5e2432bd2c
8ebc181069dc7390e08147ce55455c9cf2bc1bd5
eb7c1c95399a20dd0fd39802cdd3394c58d83c14b0835045e0d678bf6092eb19
GET /5.5.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:24:40 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 May 2014 00:01:40 GMT
Expires: Thu, 08 Feb 2024 19:24:40 GMT
Cache-Control: private
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
mpsnare.iesnare.com/time.mp3?nocache=0.3108021173361927
54.195.39.4206 Partial Content 504 B URL HTTP/1.1 mpsnare.iesnare.com/time.mp3?nocache=0.3108021173361927
IP 54.195.39.4:0
File type MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Hash cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.3108021173361927 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Server: nginx
Date: Wed, 08 Feb 2023 19:24:40 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
rules.quantcount.com/rules-p-SJDus0aEB8nDE.js
54.230.111.33200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-SJDus0aEB8nDE.js
IP 54.230.111.33:0
Hash 2c7ec77dcb085abc40e3ff98738bfef5
2be6000c8124f67c59a84558ba19702b4fc3efd5
b29a1754d555695ef6044793dc63e4614cdbaf4dc19aa1e1dec711f42ff9d916
GET /rules-p-SJDus0aEB8nDE.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Fri, 14 Oct 2022 00:21:05 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Wed, 08 Feb 2023 19:22:42 GMT
cache-control: max-age=3600
etag: "2c7ec77dcb085abc40e3ff98738bfef5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cjgvkv-FbnDMHla-_jN33AZKoyokAl376LbB91Bd3CUxoC9j1xFb5A==
age: 120
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 4beff625beff415a1120fff1f0837a61
247e839e061de57f3cf07fcefeaf31997e6de994
ad02abd7151bbf420d0a8710c7f84c4312060f3b302f9a8557b4af302fa4f503
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 08 Feb 2023 19:24:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 07 Feb 2023 22:19:45 GMT
Expires: Wed, 08 Feb 2023 22:19:45 GMT
ETag: "247e839e061de57f3cf07fcefeaf31997e6de994"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5eecee8746b80be9e0c125cd1a6fbe62
6bb07051e8d9ef26d47f7df9846f589178d77cbb
adc26481b4eb6697f772d1d79de38769c179963e7e9df9b093d368f031472345
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:41 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 13:56:50 GMT
Expires: Tue, 14 Feb 2023 13:56:49 GMT
Etag: "6bb07051e8d9ef26d47f7df9846f589178d77cbb"
Cache-Control: max-age=498128,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf3278d40b61-OSL
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=26c2af41-e2c7-46a5-b162-418200c0834e
52.59.47.198302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=26c2af41-e2c7-46a5-b162-418200c0834e
IP 52.59.47.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=26c2af41-e2c7-46a5-b162-418200c0834e HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:24:41 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=26c2af41-e2c7-46a5-b162-418200c0834e
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=13518f33-495c-43bb-adff-0042553a26a4; path=/; expires=Thu, 08-Feb-2024 19:24:41 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675884281; path=/; expires=Thu, 08-Feb-2024 19:24:41 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675884281; path=/; expires=Thu, 08-Feb-2024 19:24:41 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675884281; path=/; expires=Thu, 08-Feb-2024 19:24:41 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=0c4b92c7-2543-4bff-bf20-51d03fec34ea
52.59.47.198302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=0c4b92c7-2543-4bff-bf20-51d03fec34ea
IP 52.59.47.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=0c4b92c7-2543-4bff-bf20-51d03fec34ea HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:24:41 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=daaae401-dfb2-478c-b0e5-294e973ded63
52.59.47.198302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=daaae401-dfb2-478c-b0e5-294e973ded63
IP 52.59.47.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=daaae401-dfb2-478c-b0e5-294e973ded63 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:24:41 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=daaae401-dfb2-478c-b0e5-294e973ded63
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=ca5f7934-9426-41a4-a8cc-b5ff5d8f7784; path=/; expires=Thu, 08-Feb-2024 19:24:41 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675884281; path=/; expires=Thu, 08-Feb-2024 19:24:41 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675884281; path=/; expires=Thu, 08-Feb-2024 19:24:41 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675884281; path=/; expires=Thu, 08-Feb-2024 19:24:41 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D7ebe6e3e-58b4-4372-a81d-ea0b75600bf1
52.59.47.198200 OK 43 B URL HTTP/2 x.bidswitch.net/syncd?dsp_id=409&user_group=1&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D7ebe6e3e-58b4-4372-a81d-ea0b75600bf1
IP 52.59.47.198:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /syncd?dsp_id=409&user_group=1&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&redir=https%3A%2F%2Fechoback.ads.sportradar.com%2FechoBack%2F_adsCookieSyncCallback%3FuserId%3D7ebe6e3e-58b4-4372-a81d-ea0b75600bf1 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:24:41 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
e.acuityplatform.com/pj?pk=1371925522788786818&pu=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&pixelKey=1371925522788786818
154.59.122.94200 OK 1.2 kB URL HTTP/1.1 e.acuityplatform.com/pj?pk=1371925522788786818&pu=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&pixelKey=1371925522788786818
IP 154.59.122.94:0
File type ASCII text, with very long lines (1192), with no line terminators
Hash 7cd9f4ac1b0d0efac42868fb4187ddfc
1d57cc65d8a29ccfd4d12cc2e96948018e5e92db
e93e3c793718f0ca64a9ab069c89445aff46483669c87ec27bdb8365575a644b
GET /pj?pk=1371925522788786818&pu=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&pixelKey=1371925522788786818 HTTP/1.1
Host: e.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 1192
Set-Cookie: aum=OikKAfqbdXNlck1hdGNoQnlVc2VyTWF0Y2hpbmdJZE1hcPqBNjT6jXVzZXJNYXRjaGluZ0lkJAKAkWxhc3REcm9wVGltZU1pbGxpcyUBQwxPS2a+mGxhc3RTdWNjZXNzZnVsTWF0Y2hNaWxsaXMhj3RoaXJkUGFydHlVc2VySWQh+4IxMjj6QiQEgEMlAUMMT0tmvkQhRSH7gTQ5+kIkAaJDJQFDDE9LZr5EIUUh+4ExN/pCJKJDJQFDDE9LZr5EIUUh+4EzNPpCJAGEQyUBQwxPS2a+RCFFIfuANPpCyEMlAUMMT0tmvkQhRSH7gjExN/pCJAOqQyUBQwxPS2a+RCFFIfuCMTM1+kIkBI5DJQFDDE9LZr5EIUUh+4A4+kLQQyUBQwxPS2a+RCFFIfuBMTD6QtRDJQFDDE9LZr5EIUUh+/uGdmVyc2lvbsL7; Domain=.acuityplatform.com; Expires=Thu, 08-Feb-2024 19:24:41 GMT; Path=/; SameSite=None; Secure
auid=740880719621; Domain=acuityplatform.com; Expires=Thu, 08-Feb-2024 19:24:41 GMT; Path=/; SameSite=None; Secure
Access-Control-Allow-Origin: *
mpsnare.iesnare.com/star
54.195.39.4101 Switching Protocols 0 B IP 54.195.39.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NvNY/7jLmekLpOFGUmgVRQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Wed, 08 Feb 2023 19:24:41 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: VyXI9wlhSoH0bWmOD+E4e1mE+1E=
Upgrade: WebSocket
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=26c2af41-e2c7-46a5-b162-418200c0834e
52.59.47.198302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=26c2af41-e2c7-46a5-b162-418200c0834e
IP 52.59.47.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=26c2af41-e2c7-46a5-b162-418200c0834e HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:24:41 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
54.230.111.94200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 54.230.111.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: h6rcpUHh0xeGy21UuZwuYBcRNNpXga4hM6yQ66pD1e55TjmgPRkmBA==
age: 454475
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3070584.js?sv=7
54.230.111.113200 OK 3.8 kB URL HTTP/2 static.hotjar.com/c/hotjar-3070584.js?sv=7
IP 54.230.111.113:0
File type ASCII text, with very long lines (7460)
Hash 5faa9ee89b1faab8610e2f0b7e078c42
8ee1f1d3f3df1b04146192d3585fc057c89614af
aa9f2454280837a66e3223247f32408577da7d610e299c8f87d42a5e1e9531ba
GET /c/hotjar-3070584.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 08 Feb 2023 19:23:58 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/e87b1a0fb890d7840b909763269b581b
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jwil5JUtY1sDLQQts9BFXlgZyo3gd4Lzj18NIIp_9NnlS2jIZl3f3A==
age: 42
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=daaae401-dfb2-478c-b0e5-294e973ded63
52.59.47.198302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=daaae401-dfb2-478c-b0e5-294e973ded63
IP 52.59.47.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=409&expires=14&user_group=3&user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&cb=daaae401-dfb2-478c-b0e5-294e973ded63 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:24:41 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=480796552;source=gtm;rf=0;a=p-SJDus0aEB8nDE;url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk;uh=82244417f956ac7c599f191593f7e441a4fafa20a4158fd52e154f1dc4c8ed92;uht=2;fpan=1;fpa=P0-454274403-1675884336551;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=ibet.com;dst=0;et=1675884336709;tzo=0;ogl=;ses=fb41db94-78a6-4639-85d9-8c2583a6d8bf
91.228.74.168200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=480796552;source=gtm;rf=0;a=p-SJDus0aEB8nDE;url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk;uh=82244417f956ac7c599f191593f7e441a4fafa20a4158fd52e154f1dc4c8ed92;uht=2;fpan=1;fpa=P0-454274403-1675884336551;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=ibet.com;dst=0;et=1675884336709;tzo=0;ogl=;ses=fb41db94-78a6-4639-85d9-8c2583a6d8bf
IP 91.228.74.168:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=480796552;source=gtm;rf=0;a=p-SJDus0aEB8nDE;url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk;uh=82244417f956ac7c599f191593f7e441a4fafa20a4158fd52e154f1dc4c8ed92;uht=2;fpan=1;fpa=P0-454274403-1675884336551;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=ibet.com;dst=0;et=1675884336709;tzo=0;ogl=;ses=fb41db94-78a6-4639-85d9-8c2583a6d8bf HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:24:41 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=63e3f6f9-16444-da7a6-5cb8d; expires=Sun, 10-Mar-2024 19:24:41 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=236&user_id=740880719621&expires=30&user_group=1
52.59.47.198302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=236&user_id=740880719621&expires=30&user_group=1
IP 52.59.47.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=236&user_id=740880719621&expires=30&user_group=1 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:24:41 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=236&user_id=740880719621&expires=30&user_group=1
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=40bf8a27-2ea6-403f-abcf-423608194583; path=/; expires=Thu, 08-Feb-2024 19:24:41 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675884281; path=/; expires=Thu, 08-Feb-2024 19:24:41 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675884281; path=/; expires=Thu, 08-Feb-2024 19:24:41 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675884281; path=/; expires=Thu, 08-Feb-2024 19:24:41 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1b6c056263886967273066241af9c4bf
24477c07a55c5b9df2a0417d84c78c8ea539aec0
a8bf7bdbe3acf2207fbed86e8fcbe8912de3a642d4387f372e1070be4d3e8f50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4687
Cache-Control: max-age=122400
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:41 GMT
Etag: "63e31fca-1d7"
Expires: Fri, 10 Feb 2023 05:24:41 GMT
Last-Modified: Wed, 08 Feb 2023 04:06:34 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
x.bidswitch.net/ul_cb/sync?dsp_id=236&user_id=740880719621&expires=30&user_group=1
52.59.47.198302 Found 0 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=236&user_id=740880719621&expires=30&user_group=1
IP 52.59.47.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ul_cb/sync?dsp_id=236&user_id=740880719621&expires=30&user_group=1 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:24:41 GMT
content-length: 0
cache-control: no-cache, no-store, must-revalidate
location: //match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=740880719621&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tr.outbrain.com/cachedClickId?marketerId=undefined
70.42.32.127200 OK 35 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=undefined
IP 70.42.32.127:0
File type ASCII text, with no line terminators
Hash 75c843c7b717e7b722777907475c67a3
983d1c9a05b315288039b9d4694ce3b402259240
1d348f9f803c95305f63def9d75fd50e79e54a375e1a4a888edbbea366845580
GET /cachedClickId?marketerId=undefined HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:41 GMT
Content-Type: application/javascript
Content-Length: 35
X-TraceId: 71a2c926ae2b855c3ea93cdab8090cac
cm.g.doubleclick.net/pixel?google_nid=acuity&google_hm=740880719621
142.250.74.66302 Found 291 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=acuity&google_hm=740880719621
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 0fa508deccaf3072213295a36687c8a2
2389f6ab05117bcca39416646dc943b1d207000b
ee0fedcc81ad18c40592861b1c802464125feb53abe57151da3c839a37c946dc
GET /pixel?google_nid=acuity&google_hm=740880719621 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=acuity&google_hm=740880719621&google_tc=
date: Wed, 08 Feb 2023 19:24:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 291
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 08-Feb-2023 19:39:41 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.168200 OK 10 kB URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.168:0
File type ASCII text, with very long lines (25892)
Hash fe505b3bd9b6b0202990132e752cab66
7cea558342a670498b779f39577c58bd9a9bc307
13e321b4746ef2a5eb0a193a3fefcce83880852acacbdd91c55f7760e3f6eb88
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:24:40 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "u+riIbpeWSVolXo4r+dT2g=="
expires: Wed, 15 Feb 2023 19:24:40 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
secure.adnxs.com/getuid?https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D10%26auid%3D740880719621%26uid%3D%24UID
185.89.210.122307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuid?https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D10%26auid%3D740880719621%26uid%3D%24UID
IP 185.89.210.122:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D10%26auid%3D740880719621%26uid%3D%24UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Wed, 08 Feb 2023 19:24:41 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D740880719621%2526uid%253D%2524UID
AN-X-Request-Uuid: 19f74bfa-f07b-41f6-a131-8e251cf59e14
Set-Cookie: uuid2=5004417706883386294; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 09-May-2023 19:24:41 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 954.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 297bc65c49d69adf06bb81e5f61af373
92c640748ad77b6e75bd3ddf09fae0df8d9bc248
cf3fcdfb7668814a58e51e4fa2c7cddf187ba3750d58596cdb56013c14ce6f2b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:41 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 01:55:53 GMT
Expires: Wed, 15 Feb 2023 01:55:52 GMT
Etag: "92c640748ad77b6e75bd3ddf09fae0df8d9bc248"
Cache-Control: max-age=541270,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7966bf35698cb4fa-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1b6c056263886967273066241af9c4bf
24477c07a55c5b9df2a0417d84c78c8ea539aec0
a8bf7bdbe3acf2207fbed86e8fcbe8912de3a642d4387f372e1070be4d3e8f50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4687
Cache-Control: max-age=122400
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:41 GMT
Etag: "63e31fca-1d7"
Expires: Fri, 10 Feb 2023 05:24:41 GMT
Last-Modified: Wed, 08 Feb 2023 04:06:34 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
cm.g.doubleclick.net/pixel?google_nid=acuity&google_hm=740880719621&google_tc=
142.250.74.66200 OK 170 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=acuity&google_hm=740880719621&google_tc=
IP 142.250.74.66:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash e7673c60af825466f83d46da72ca1635
fc0fcbee0835709ba2d28798a612bfd687903fb5
0b8a20373c6dd04e091902226d922b3688143a8938afb9d283d889de7b55ceb5
GET /pixel?google_nid=acuity&google_hm=740880719621&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
date: Wed, 08 Feb 2023 19:24:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 170
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 0d370f8d9239374cd2f765340e2e67c8
5fb8bca1d2934da69871d3c006d78d54daea052d
d269ec25d619da1dd10a65e160936701d8bf86796018bfc0432f02017f12eebc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 19:24:41 GMT
Last-Modified: Wed, 08 Feb 2023 18:33:23 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ntndjafNOyG5D7hminYFi-RAnJiDEcPiPan93eAkfXDGAl6dt2Dohg==
Age: 3078
pixel.tapad.com/idsync/ex/receive/check?partner_id=3150&partner_device_id=740880719621&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D740880719621%26uid%3D%24%7BTA_DEVICE_ID%7D
35.227.248.159302 Found 0 B URL HTTP/2 pixel.tapad.com/idsync/ex/receive/check?partner_id=3150&partner_device_id=740880719621&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D740880719621%26uid%3D%24%7BTA_DEVICE_ID%7D
IP 35.227.248.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /idsync/ex/receive/check?partner_id=3150&partner_device_id=740880719621&partner_url=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D64%26auid%3D740880719621%26uid%3D%24%7BTA_DEVICE_ID%7D HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:24:41 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1675884281235;Expires=Sun, 09 Apr 2023 19:24:41 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=729ad555-0e2b-4525-b9ba-de4cb3f74fc0;Expires=Sun, 09 Apr 2023 19:24:41 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_3WAY_SYNCS=;Expires=Sun, 09 Apr 2023 19:24:41 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://ums.acuityplatform.com/sum?umid=64&auid=740880719621&uid=729ad555-0e2b-4525-b9ba-de4cb3f74fc0
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D740880719621%2526uid%253D%2524UID
185.89.210.122302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D740880719621%2526uid%253D%2524UID
IP 185.89.210.122:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fums.acuityplatform.com%252Fsum%253Fumid%253D10%2526auid%253D740880719621%2526uid%253D%2524UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Wed, 08 Feb 2023 19:24:41 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ums.acuityplatform.com/sum?umid=10&auid=740880719621&uid=0
AN-X-Request-Uuid: a61e2432-caed-4e7d-b63b-3b8bd037c98b
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 954.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
sync.1rx.io/usersync/acuityads/740880719621
213.19.147.44204 No Content 0 B URL HTTP/2 sync.1rx.io/usersync/acuityads/740880719621
IP 213.19.147.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync/acuityads/740880719621 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:24:41 GMT
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 47d5d2c13e0d930328ae3ff166919175
06ac77ab3f2c9f6c82b4a4f45cf380a15066e022
2fc5f5eecbcad1e173a5bb29ea26ae20b59c55ac0c865bea206d7ac36bf078bc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2868
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 19:24:41 GMT
Last-Modified: Wed, 08 Feb 2023 18:36:53 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ad1.adfarm1.adition.com/track?tid=26000&sid=55435&type=image&orderid=&itemno=&descr=&quantity=&price=0.00&total=0.00&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&parm1=&parm2=&parm3=&parm4=
217.79.188.2302 Found 0 B URL HTTP/2 ad1.adfarm1.adition.com/track?tid=26000&sid=55435&type=image&orderid=&itemno=&descr=&quantity=&price=0.00&total=0.00&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&parm1=&parm2=&parm3=&parm4=
IP 217.79.188.2:0
ASN #24961 myLoc managed IT AG
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?tid=26000&sid=55435&type=image&orderid=&itemno=&descr=&quantity=&price=0.00&total=0.00&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&parm1=&parm2=&parm3=&parm4= HTTP/1.1
Host: ad1.adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/plain
location: https://imagesrv.adition.com/1x1.gif
server: ADITIONSERVER v1.0
date: Wed, 08 Feb 2023 20:24:40 +0100
access-control-allow-origin: *
cache-control: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
p3p: policyref="https://imagesrv.adition.com/w3c/p3p-ssl.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
pragma: no-cache
set-cookie: UserID1=7197868174527562961; expires=Tue, 09-May-2023 20:24:40 GMT; path=/; domain=.adfarm1.adition.com; SameSite=None; Secure
X-Firefox-Spdy: h2
ad1.adfarm1.adition.com/tagging?type=image&network=834&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&tag[iBet_Retargeting.iBet_Ret_Site_Visit]&userid=7197868170194782985
217.79.188.2302 Found 355 B URL HTTP/2 ad1.adfarm1.adition.com/tagging?type=image&network=834&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&tag[iBet_Retargeting.iBet_Ret_Site_Visit]&userid=7197868170194782985
IP 217.79.188.2:0
ASN #24961 myLoc managed IT AG
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash a279e6a440b992dca33e83a67d31d3c5
71aed1888f86a10a00c16f50988c55b8806de665
06532a069e5d1315e6e47e1d076f3e2a1288cb95f6fccec17845306d09da7403
GET /tagging?type=image&network=834&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_39}&tag[iBet_Retargeting.iBet_Ret_Site_Visit]&userid=7197868170194782985 HTTP/1.1
Host: ad1.adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/plain
location: https://imagesrv.adition.com/1x1.gif
server: ADITIONSERVER v1.0
date: Wed, 08 Feb 2023 20:24:40 +0100
access-control-allow-origin: *
p3p: policyref="https://imagesrv.adition.com/w3c/p3p-ssl.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
set-cookie: UserID1=7197868170194782985; expires=Tue, 09-May-2023 20:24:39 GMT; path=/; domain=.adfarm1.adition.com; SameSite=None; Secure
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
18.184.225.82204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 18.184.225.82:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:24:41 GMT
X-Firefox-Spdy: h2
tr.outbrain.com/unifiedPixel?marketerId=0015ef2fd363de31fda729e1cf9b43cc1b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&g=1&optOut=false&bust=05403076096575504&referrer=
70.42.32.127200 OK 53 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=0015ef2fd363de31fda729e1cf9b43cc1b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&g=1&optOut=false&bust=05403076096575504&referrer=
IP 70.42.32.127:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 414bd2a5161db03fdd910327b42c6daa
65d4cf50496813c5f1a34eddd5c50dc67d44ff47
b51f3497b0a65f1e1e87e75f5e7e823d871c23bcf76a5ee4101783c8f939e553
GET /unifiedPixel?marketerId=0015ef2fd363de31fda729e1cf9b43cc1b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&g=1&optOut=false&bust=05403076096575504&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:41 GMT
Content-Type: image/gif;
Content-Length: 53
Cache-Control: no-cache
X-TraceId: 765bb33cdf4b22bd92a4a505fe8232e1
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 0d370f8d9239374cd2f765340e2e67c8
5fb8bca1d2934da69871d3c006d78d54daea052d
d269ec25d619da1dd10a65e160936701d8bf86796018bfc0432f02017f12eebc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 19:24:41 GMT
Last-Modified: Wed, 08 Feb 2023 18:33:23 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zwR0PziTlPBaOSOr6-KtUdkKWlG32Nty_mPCb0Mt079nn901N0lKLA==
Age: 3078
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
18.184.225.82204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 18.184.225.82:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=7ebe6e3e-58b4-4372-a81d-ea0b75600bf1&seat_key=409&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:24:41 GMT
X-Firefox-Spdy: h2
ums.acuityplatform.com/sum?umid=10&auid=740880719621&uid=0
154.59.122.79204 No Content 0 B URL HTTP/1.1 ums.acuityplatform.com/sum?umid=10&auid=740880719621&uid=0
IP 154.59.122.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sum?umid=10&auid=740880719621&uid=0 HTTP/1.1
Host: ums.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
ums.acuityplatform.com/sum?umid=64&auid=740880719621&uid=729ad555-0e2b-4525-b9ba-de4cb3f74fc0
154.59.122.79204 No Content 0 B URL HTTP/1.1 ums.acuityplatform.com/sum?umid=64&auid=740880719621&uid=729ad555-0e2b-4525-b9ba-de4cb3f74fc0
IP 154.59.122.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sum?umid=64&auid=740880719621&uid=729ad555-0e2b-4525-b9ba-de4cb3f74fc0 HTTP/1.1
Host: ums.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
access-control-allow-origin: *
set-cookie: auid=740902704378; Domain=.acuityplatform.com; Expires=Thu, 08-Feb-2024 19:24:41 GMT; Path=/; SameSite=None; Secure
aum="OikKAfqbdXNlck1hdGNoQnlVc2VyTWF0Y2hpbmdJZE1hcPqBNjT6jXVzZXJNYXRjaGluZ0lkJAKAkWxhc3REcm9wVGltZU1pbGxpcyUBQwxPS3CQmGxhc3RTdWNjZXNzZnVsTWF0Y2hNaWxsaXMlAUMMT0twkI90aGlyZFBhcnR5VXNlcklkYzcyOWFkNTU1LTBlMmItNDUyNS1iOWJhLWRlNGNiM2Y3NGZjMPv7hnZlcnNpb27C+w=="; Version=1; Domain=.acuityplatform.com; Max-Age=31536000; Expires=Thu, 08-Feb-2024 19:24:41 GMT; Path=/; SameSite=None; Secure
x-acuity-userid: 740902704378
access-control-expose-headers: X-Acuity-UserID
match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=740880719621&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
18.184.225.82204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=740880719621&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy=
IP 18.184.225.82:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=bf2b131f1f7eff9d8892972c&source_user_id=&seat_user_id=740880719621&seat_key=236&gdpr=&gdpr_consent=&gdpr_pd=&usprivacy= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:24:41 GMT
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/55950/sync?uid=740880719621&_origin=1
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/55950/sync?uid=740880719621&_origin=1
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/55950/sync?uid=740880719621&_origin=1 HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:24:41 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/55950/sync?uid=740880719621&_origin=1&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBPn242MCEN3o2dq3yk4wubEJ-JhabyoFEgEBAQFI5WPtYwAAAAAA_eMAAA&S=AQAAAtS353CWmXoScqQoGHnLjls; Expires=Fri, 9 Feb 2024 01:24:41 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/55950/sync?uid=740880719621&_origin=1&verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/55950/sync?uid=740880719621&_origin=1&verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/55950/sync?uid=740880719621&_origin=1&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 08 Feb 2023 19:24:41 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBPn242MCEA-E2OysBUSp0K4IOJ0QTUsFEgEBAQFI5WPtYwAAAAAA_eMAAA&S=AQAAAukcRrUswUVyU2c2_fiRz1M; Expires=Fri, 9 Feb 2024 01:24:41 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
tags.bluekai.com/site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D740880719621%26uid%3D%24_BK_UUID
184.24.45.23302 Found 0 B URL HTTP/2 tags.bluekai.com/site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D740880719621%26uid%3D%24_BK_UUID
IP 184.24.45.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/37592?id=123456&limit=0&redir=https%3A%2F%2Fums.acuityplatform.com%2Fsum%3Fumid%3D49%26auid%3D740880719621%26uid%3D%24_BK_UUID HTTP/1.1
Host: tags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://ums.acuityplatform.com/sum?umid=49&auid=740880719621&uid=$_BK_UUID
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Wed, 08 Feb 2023 19:24:41 GMT
set-cookie: bku=tJ/99w7tTtw2SlW3; Path=/; Domain=.bluekai.com; Expires=Tue, 08 Aug 2023 19:24:41 GMT; Secure; SameSite=None
bkpa=KJyA01r3Qp9x9BYFsjzIJMWhilY8HxvkS2zuMvDeeAG0V4EFYIlrznoYL74vMQfdvwAOkH8BzhYEInfJKbnLU0JU94Dws9Oe85nsgjvXg0wvXXpzqizeCk/jPvC1Y5uLcSYJ2VrgIt73fK91eGeZkTObFElVjq7w7yW9oo97LQ==; Path=/; Domain=.bluekai.com; Expires=Tue, 08 Aug 2023 19:24:41 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
ums.acuityplatform.com/sum?umid=49&auid=740880719621&uid=$_BK_UUID
154.59.122.79204 No Content 0 B URL HTTP/1.1 ums.acuityplatform.com/sum?umid=49&auid=740880719621&uid=$_BK_UUID
IP 154.59.122.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sum?umid=49&auid=740880719621&uid=$_BK_UUID HTTP/1.1
Host: ums.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 7e85e007afeb22901ec224031a66292d
308bee7dabf99c9608ae0dcde00c35c3529e4dc0
1f75876a64f72597a16ca30c73c7ed9a34332d7b45df851b6a9c6eb27059df85
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 08 Feb 2023 19:24:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 03:30:17 GMT
Expires: Thu, 09 Feb 2023 03:30:17 GMT
ETag: "308bee7dabf99c9608ae0dcde00c35c3529e4dc0"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
dsum-sec.casalemedia.com/rum?cm_dsp_id=10&external_user_id=740880719621
185.80.36.245302 Found 0 B URL HTTP/1.1 dsum-sec.casalemedia.com/rum?cm_dsp_id=10&external_user_id=740880719621
IP 185.80.36.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=10&external_user_id=740880719621 HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 08 Feb 2023 19:24:42 GMT
Server: Apache
Cache-Control: no-cache
Expires: 0
Location: /rum?cm_dsp_id=10&external_user_id=740880719621&C=1
P3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Pragma: no-cache
Content-Length: 0
Set-Cookie: CMID=Y.P2.hpJMTc6MVyjHvwxSwAA; Path=/; Domain=casalemedia.com; Expires=Thu, 08 Feb 2024 19:24:42 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4352; Path=/; Domain=casalemedia.com; Expires=Tue, 09 May 2023 19:24:42 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4352; Path=/; Domain=casalemedia.com; Expires=Tue, 09 May 2023 19:24:42 GMT; Max-Age=7776000; Secure; SameSite=None
Keep-Alive: timeout=1, max=500
Connection: Keep-Alive
o4504321123680256.ingest.sentry.io/api/4504609037680640/envelope/?sentry_key=b4194d5fa1814d9d91f1a2d7b90535af&sentry_version=7&sentry_client=sentry.javascript.react%2F7.26.0
34.120.195.249429 Too Many Requests 198 B URL HTTP/2 o4504321123680256.ingest.sentry.io/api/4504609037680640/envelope/?sentry_key=b4194d5fa1814d9d91f1a2d7b90535af&sentry_version=7&sentry_client=sentry.javascript.react%2F7.26.0
IP 34.120.195.249:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 478b411c59eb87249bea32cf7c7be5d2
023907c62eb55758905bb3c0e640b5b204ae0652
bac10d17440dcd6f6c6c4e0bd7eca2e1a7eec030ef3b1143d4be3791dcf91263
POST /api/4504609037680640/envelope/?sentry_key=b4194d5fa1814d9d91f1a2d7b90535af&sentry_version=7&sentry_client=sentry.javascript.react%2F7.26.0 HTTP/1.1
Host: o4504321123680256.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.ibet.com
Content-Length: 176732
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 429 Too Many Requests
server: nginx
date: Wed, 08 Feb 2023 19:24:42 GMT
content-type: application/json
content-length: 198
retry-after: 33
x-sentry-rate-limits: 33:transaction:organization:transaction_usage_exceeded
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: x-sentry-rate-limits, retry-after, x-sentry-error
vary: Origin
x-envoy-upstream-service-time: 1
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dsum-sec.casalemedia.com/rum?cm_dsp_id=10&external_user_id=740880719621&C=1
185.80.36.245200 OK 43 B URL HTTP/1.1 dsum-sec.casalemedia.com/rum?cm_dsp_id=10&external_user_id=740880719621&C=1
IP 185.80.36.245:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=10&external_user_id=740880719621&C=1 HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 19:24:42 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=499
Connection: Keep-Alive
trc.taboola.com/1504263/log/3/unip?en=all_pages&tim=1675884336502&vi=1675884336468&ri=894830f19e035406b207acd7c325039b&ref=null&cv=20230205-12-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&tos=1371&ssd=1&scd=0
151.101.129.44204 No Content 0 B URL HTTP/2 trc.taboola.com/1504263/log/3/unip?en=all_pages&tim=1675884336502&vi=1675884336468&ri=894830f19e035406b207acd7c325039b&ref=null&cv=20230205-12-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&tos=1371&ssd=1&scd=0
IP 151.101.129.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1504263/log/3/unip?en=all_pages&tim=1675884336502&vi=1675884336468&ri=894830f19e035406b207acd7c325039b&ref=null&cv=20230205-12-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&tos=1371&ssd=1&scd=0 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.ibet.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Wed, 08 Feb 2023 19:24:42 GMT
via: 1.1 varnish
x-served-by: cache-bma1646-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675884282.174645,VS0,VE89
x-vcl-time-ms: 89
X-Firefox-Spdy: h2
trc-events.taboola.com/1504263/log/3/unip?en=pre_d_eng_tb&tos=1558&scd=0&ssd=1&est=1675884336472&ver=36&isls=true&src=i&invt=1500&msa=2929&rv=1&tim=1675884338034&vi=1675884336468&ri=894830f19e035406b207acd7c325039b&ref=null&cv=20230205-12-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1504263/log/3/unip?en=pre_d_eng_tb&tos=1558&scd=0&ssd=1&est=1675884336472&ver=36&isls=true&src=i&invt=1500&msa=2929&rv=1&tim=1675884338034&vi=1675884336468&ri=894830f19e035406b207acd7c325039b&ref=null&cv=20230205-12-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1504263/log/3/unip?en=pre_d_eng_tb&tos=1558&scd=0&ssd=1&est=1675884336472&ver=36&isls=true&src=i&invt=1500&msa=2929&rv=1&tim=1675884338034&vi=1675884336468&ri=894830f19e035406b207acd7c325039b&ref=null&cv=20230205-12-RELEASE&item-url=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 08 Feb 2023 19:24:42 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.ibet.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=275811703971&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.6.248302 Found 0 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=275811703971&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.6.248:0
GET /Serving/TrackPoint/?pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=275811703971&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 08 Feb 2023 19:24:41 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=2836286&ADFPageName=Page%20View&ADFdivider=%7C&ord=275811703971&ADFtpmode=2&loc=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Wed, 08-Mar-2023 19:24:41 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.ibet.com/static/js/SiteFooter.65a4bf32.chunk.js
108.157.214.4200 OK 0 B URL HTTP/2 www.ibet.com/static/js/SiteFooter.65a4bf32.chunk.js
IP 108.157.214.4:0
GET /static/js/SiteFooter.65a4bf32.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 111320
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "ff555f91bb97ae99e223c3a8160c685b"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: PSiQ0UnF3wQEtOsOBMmMBwyDj6i5d6hT387WDCGnzFGoJ3vS6kqATw==
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
3.33.220.150302 Found 0 B URL HTTP/2 insight.adsrvr.org/track/up?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
IP 3.33.220.150:0
GET /track/up?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 08 Feb 2023 19:24:40 GMT
content-type: text/html; charset=utf-8
location: https://match.adsrvr.org/track/upb/?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
set-cookie: TDID=998fbfbd-69d8-4fa4-8732-f1212f9e2b2d; domain=.adsrvr.org; expires=Thu, 08-Feb-2024 19:24:40 GMT; path=/; secure; SameSite=None
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
trc.taboola.com/1504263/trc/3/json?tim=1675884336482&data=%7B%22id%22%3A27%2C%22ii%22%3A%22%2Fno-no%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675884336468%2C%22cv%22%3A%2220230205-12-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Datomikibetsam-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675884336481%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk%22%2C%22tos%22%3A6%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
151.101.129.44200 OK 0 B URL HTTP/2 trc.taboola.com/1504263/trc/3/json?tim=1675884336482&data=%7B%22id%22%3A27%2C%22ii%22%3A%22%2Fno-no%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675884336468%2C%22cv%22%3A%2220230205-12-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Datomikibetsam-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675884336481%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk%22%2C%22tos%22%3A6%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP 151.101.129.44:0
GET /1504263/trc/3/json?tim=1675884336482&data=%7B%22id%22%3A27%2C%22ii%22%3A%22%2Fno-no%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1675884336468%2C%22cv%22%3A%2220230205-12-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Datomikibetsam-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1675884336481%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk%22%2C%22tos%22%3A6%2C%22ssd%22%3A1%2C%22scd%22%3A0%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 19:24:42 GMT
via: 1.1 varnish
x-served-by: cache-bma1646-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675884282.041316,VS0,VE90
vary: Accept-Encoding
x-vcl-time-ms: 90
X-Firefox-Spdy: h2
s2.adform.net/banners/scripts/st/trackpoint-async.js
37.157.5.72200 OK 0 B URL HTTP/2 s2.adform.net/banners/scripts/st/trackpoint-async.js
IP 37.157.5.72:0
GET /banners/scripts/st/trackpoint-async.js HTTP/1.1
Host: s2.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 19:24:40 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 29 Nov 2022 10:23:25 GMT
x-rgw-object-type: Normal
etag: W/"83eb5fafaa212c785f7393188ff817aa"
x-amz-request-id: tx000000e32f6eeaf17bca7-006385e0d4-32941e2b-default
access-control-allow-origin: *
cache-control: public, max-age=604800
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.ibet.com/static/js/SiteHeader.8d727500.chunk.js
108.157.214.4200 OK 0 B URL HTTP/2 www.ibet.com/static/js/SiteHeader.8d727500.chunk.js
IP 108.157.214.4:0
GET /static/js/SiteHeader.8d727500.chunk.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 126633
last-modified: Tue, 07 Feb 2023 10:26:36 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:24:39 GMT
etag: "6b6d47b88f20105db060a759c34bb9ac"
x-cache: RefreshHit from cloudfront
via: 1.1 4ded1750dc7e0bef188a5520fb9fef28.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: rj8EOSKSlNFJhuJK_SkuYBtSsy_ZSALAdgI6mrOKgpjDc9RCYI7Oog==
X-Firefox-Spdy: h2
match.adsrvr.org/track/upb/?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
3.33.220.150200 OK 0 B URL HTTP/2 match.adsrvr.org/track/upb/?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0
IP 3.33.220.150:0
GET /track/upb/?adv=zi4n276&ref=https%3A%2F%2Fwww.ibet.com%2Fno-NO%2F%3Faff%3D6HBPB42OA6n19SI50_kOFGNd7ZgqdRLk&upid=6g98c3e&upv=1.1.0 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:24:40 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2