| www.novibet.mx/apuestas-deportivas?token=register&btag=2000136_138221033&utm_source=2000136_rt.novibet.partners&utm_medium=affiliate&utm_campaign=HOMEPAGEMX |  104.18.3.202 | 301 Moved Permanently | 0 B |
URL HTTP/1.1www.novibet.mx/apuestas-deportivas?token=register&btag=2000136_138221033&utm_source=2000136_rt.novibet.partners&utm_medium=affiliate&utm_campaign=HOMEPAGEMX IP104.18.3.202:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /apuestas-deportivas?token=register&btag=2000136_138221033&utm_source=2000136_rt.novibet.partners&utm_medium=affiliate&utm_campaign=HOMEPAGEMX HTTP/1.1
Host: www.novibet.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Dec 2022 07:41:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 21 Dec 2022 08:41:10 GMT
Location: https://www.novibet.mx/apuestas-deportivas?token=register&btag=2000136_138221033&utm_source=2000136_rt.novibet.partners&utm_medium=affiliate&utm_campaign=HOMEPAGEMX
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77cef94a5c7c0af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| r3.o.lencr.org/ |  23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash048cda18c6dbe7c4e4b106f5e1104b0a 1bd6f3367ccf446263b00ad8c1ece15a4164730b 66a680d9b8e454db94e14d2c4a466891e538b2d83ccee0dc65be62163992b4e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66A680D9B8E454DB94E14D2C4A466891E538B2D83CCEE0DC65BE62163992B4E0"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5740
Expires: Wed, 21 Dec 2022 09:16:50 GMT
Date: Wed, 21 Dec 2022 07:41:10 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb8fbcd7ca1a893d05677318a8a198e7a 0851654c21f6e3741887e7deab8098c1dc56f33c edbade5913ace2fcbb932922e9af69acb2e8759474a2eeaec216307247fea361
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDBADE5913ACE2FCBB932922E9AF69ACB2E8759474A2EEAEC216307247FEA361"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6925
Expires: Wed, 21 Dec 2022 09:36:35 GMT
Date: Wed, 21 Dec 2022 07:41:10 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 21 Dec 2022 06:45:54 GMT
content-type: application/json
age: 3316
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf4b32de26d9af2cba6afcdcf716d3fb8 644ead4436a8f2fc1f0dd25e4484b64f6ed63347 525123034cb53d750d5ebd487015911452d2cd3c34301e6628f2f52f3f0bfc88
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "525123034CB53D750D5EBD487015911452D2CD3C34301E6628F2F52F3F0BFC88"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4985
Expires: Wed, 21 Dec 2022 09:04:15 GMT
Date: Wed, 21 Dec 2022 07:41:10 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: omLuB6cXQhV1hou9QGEK8bqTByZ1/td19zYF4ui2MSZPdgb+KyhGgKzJoih09xeRblverzQGero=
x-amz-request-id: YNR8WND9PXAVEMMH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 21 Dec 2022 06:55:17 GMT
age: 2753
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Dec 2022 07:41:10 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash13da956e9f7f5707c460f445a65fd6bf a7622bb797c81a199d16c5dee776900f1e56572c 0e171d48b6a32b963fdef9ef6a505b4905efbf9b4c3d93ea3632d9bca54b017c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0E171D48B6A32B963FDEF9EF6A505B4905EFBF9B4C3D93EA3632D9BCA54B017C"
Last-Modified: Tue, 20 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 21 Dec 2022 13:41:10 GMT
Date: Wed, 21 Dec 2022 07:41:10 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash13da956e9f7f5707c460f445a65fd6bf a7622bb797c81a199d16c5dee776900f1e56572c 0e171d48b6a32b963fdef9ef6a505b4905efbf9b4c3d93ea3632d9bca54b017c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0E171D48B6A32B963FDEF9EF6A505B4905EFBF9B4C3D93EA3632D9BCA54B017C"
Last-Modified: Tue, 20 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 21 Dec 2022 13:41:10 GMT
Date: Wed, 21 Dec 2022 07:41:10 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash9d5518b05926e5fc608ad00c4abf3e01 273178a68589773d7c28a2360e64685937a5caa6 c0401c937edee3f05e3e41ab2b09af061962bcfa8471f2d0a0d91c3fe732843d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash9d5518b05926e5fc608ad00c4abf3e01 273178a68589773d7c28a2360e64685937a5caa6 c0401c937edee3f05e3e41ab2b09af061962bcfa8471f2d0a0d91c3fe732843d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hasheadadfec0a65bce69128230cfa49f936 1ae7fbb4969315fc2d13cf0a63d1909c499147db bbd8831dd832214747d09faca8a7092b1e72dbaec35ee513bf6663caaea3e488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 45 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Hash565ce506190ad3af920b40baf1794cec ad3cba5d06100e09449a864d3b5e58403b478b3d 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.novibet.mx
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Dec 2022 18:52:41 GMT
expires: Tue, 19 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 132509
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Last-Modified, Retry-After, Content-Type, Alert, Pragma, ETag, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 21 Dec 2022 07:33:24 GMT
age: 467
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hasheadadfec0a65bce69128230cfa49f936 1ae7fbb4969315fc2d13cf0a63d1909c499147db bbd8831dd832214747d09faca8a7092b1e72dbaec35ee513bf6663caaea3e488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashd0c2b6760f2b58f445446dd2276d5af4 aeedf417b1ebde86ce837ca02ba934abb938b1a4 8fe72d0ce839150559da5ddf46bf87d26b6b9cbe34d09641b29a53be24997c81
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4683
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:11 GMT
Etag: "63a17b2b-1d7"
Last-Modified: Wed, 21 Dec 2022 06:23:08 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash5883f02c8bcb203c4890679eecbc3455 96851d450547c21a3929d26abecc94ce2bb417b6 57bef0bc758bb07d9b1d500e69f36a496b2c3359d810cfcc702be3e2d6023d17
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "57BEF0BC758BB07D9B1D500E69F36A496B2C3359D810CFCC702BE3E2D6023D17"
Last-Modified: Tue, 20 Dec 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7405
Expires: Wed, 21 Dec 2022 09:44:36 GMT
Date: Wed, 21 Dec 2022 07:41:11 GMT
Connection: keep-alive
|
|
| o429133.ingest.sentry.io/api/6618374/envelope/?sentry_key=8b21d8ef80cd43ac963534f92af29279&sentry_version=7&sentry_client=sentry.javascript.angular%2F7.9.0 | 34.120.195.249 | 403 Forbidden | 56 B |
URL HTTP/2o429133.ingest.sentry.io/api/6618374/envelope/?sentry_key=8b21d8ef80cd43ac963534f92af29279&sentry_version=7&sentry_client=sentry.javascript.angular%2F7.9.0 IP34.120.195.249:0
File typeJSON data\012- , ASCII text, with no line terminators Hash6e5a3e5ff236fe99535092d7096ceddc 92a5db65cbedf687ee76693e9b89b9d6ca417b61 7c1e2d0f6a27b6701cbfc14d4b2c6863a2de1753603e0eafaf1a1c42a4e22b65
POST /api/6618374/envelope/?sentry_key=8b21d8ef80cd43ac963534f92af29279&sentry_version=7&sentry_client=sentry.javascript.angular%2F7.9.0 HTTP/1.1
Host: o429133.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.novibet.mx/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.novibet.mx
Content-Length: 435
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: nginx
date: Wed, 21 Dec 2022 07:41:11 GMT
content-type: application/json
content-length: 56
access-control-allow-origin: https://www.novibet.mx
access-control-expose-headers: x-sentry-error, retry-after, x-sentry-rate-limits
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash5883f02c8bcb203c4890679eecbc3455 96851d450547c21a3929d26abecc94ce2bb417b6 57bef0bc758bb07d9b1d500e69f36a496b2c3359d810cfcc702be3e2d6023d17
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "57BEF0BC758BB07D9B1D500E69F36A496B2C3359D810CFCC702BE3E2D6023D17"
Last-Modified: Tue, 20 Dec 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7405
Expires: Wed, 21 Dec 2022 09:44:36 GMT
Date: Wed, 21 Dec 2022 07:41:11 GMT
Connection: keep-alive
|
|
| sdk.optimove.net/websdk/?tenant_id=544 | 107.154.132.121 | 200 OK | 25 kB |
URL HTTP/2sdk.optimove.net/websdk/?tenant_id=544 IP107.154.132.121:0
File typeASCII text, with very long lines (65536), with no line terminators Hash33677eda19a26484d224bcecd8a6de98 b2a561a68699eee1a586b3f6769d30b360218a52 a17e549c34b91011d86f169cb084db484ed8ee3870d24940b8296acccb9cf9c5
GET /websdk/?tenant_id=544 HTTP/1.1
Host: sdk.optimove.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: W/"27624-9jXzZpwOpTLb5TLrStXwQd0YYuM"
content-type: application/javascript; charset=utf-8
content-length: 25381
content-encoding: gzip
cache-control: max-age=37291, public, no-transform
expires: Wed, 21 Dec 2022 18:02:41 GMT
date: Wed, 21 Dec 2022 07:41:10 GMT
set-cookie: visid_incap_2859791=Q32y0XGcRHm9Uj/+hWNBqJa4omMAAAAAQUIPAAAAAAAN+n75fSUDMtksO4uOvN6s; expires=Wed, 20 Dec 2023 22:33:56 GMT; HttpOnly; path=/; Domain=.optimove.net
incap_ses_721_2859791=mkqLGtZKmDoIgx3384EBCpa4omMAAAAA3k/65jEbykahBduYirZLbA==; path=/; Domain=.optimove.net
x-cdn: Imperva
x-iinfo: 14-157669494-157665622 2CNN RT(1671608470925 28) q(0 0 0 0) r(0 0)
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashc92a63593449265941bccd2401ec3927 09bd5c279a11c5067d75300053d70e4e678d7140 a137e34a2d19637a6fe63ba801ce97be1ded72584f8a90798b4c0910526a4429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 52.35.190.173 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.35.190.173:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2w7iS+Fvr2Op6WAcb1vjFg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ghkAJNrOt1hPT/l1ojsgC7CweG4=
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashc92a63593449265941bccd2401ec3927 09bd5c279a11c5067d75300053d70e4e678d7140 a137e34a2d19637a6fe63ba801ce97be1ded72584f8a90798b4c0910526a4429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtm.js?id=GTM-W5W2DN | 142.250.74.168 | 200 OK | 93 kB |
URL HTTP/2www.googletagmanager.com/gtm.js?id=GTM-W5W2DN IP142.250.74.168:0
File typeUnicode text, UTF-8 text, with very long lines (52401) Hash5777708c210e5e6ad50c2c5d141ffa59 2592c5004e5163c533cb960603a3d7840eb8f0c8 5bfd56c82eb7a468a3dac28ac358102cfabc47275461837dcf042fdeb570dfe2
GET /gtm.js?id=GTM-W5W2DN HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Dec 2022 07:41:11 GMT
expires: Wed, 21 Dec 2022 07:41:11 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Dec 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93097
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashc92a63593449265941bccd2401ec3927 09bd5c279a11c5067d75300053d70e4e678d7140 a137e34a2d19637a6fe63ba801ce97be1ded72584f8a90798b4c0910526a4429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| sdkuaservice.optimove.net/ | 34.102.240.186 | 200 OK | 361 B |
URL HTTP/2sdkuaservice.optimove.net/ IP34.102.240.186:0
File typeJSON data\012- , ASCII text Hash3083d0e97d9681d8731856bcc2d38dc0 0d962f0c4fd88ef4e6613e5ea47e5998f13ac636 eb902e82d3845ac4d70e6edd86509b810996391fce4434547483a457b34f0e1f
GET / HTTP/1.1
Host: sdkuaservice.optimove.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Origin: https://www.novibet.mx
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-powered-by: Express
access-control-allow-origin: *
content-type: application/json
date: Wed, 21 Dec 2022 07:41:11 GMT
content-length: 361
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| stream-544.optimove.net/ | 107.154.132.121 | 204 No Content | 0 B |
IP107.154.132.121:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: stream-544.optimove.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-request-id
Referer: https://www.novibet.mx/
Origin: https://www.novibet.mx
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: content-type,x-request-id
access-control-max-age: 86400
content-length: 0
date: Wed, 21 Dec 2022 07:41:11 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
set-cookie: visid_incap_2816538=JHr8FpHITyqycrVl0ycYj5e4omMAAAAAQUIPAAAAAAAHnZQdTLpaq2ScoHj47IUT; expires=Wed, 20 Dec 2023 22:34:04 GMT; HttpOnly; path=/; Domain=.optimove.net
incap_ses_721_2816538=/aHSQFCV5lgagx3384EBCpe4omMAAAAALCi+3SzbCZ26H/F7rOADbA==; path=/; Domain=.optimove.net
x-cdn: Imperva
x-iinfo: 1007-48886932-48886940 NNNN CT(2 4 0) RT(1671608471174 72) q(0 0 0 0) r(0 0) U6
X-Firefox-Spdy: h2
|
|
| ob.cheqzone.com/clicktrue_invocation.js?id=10386 | 54.230.111.58 | 200 OK | 30 kB |
URL HTTP/2ob.cheqzone.com/clicktrue_invocation.js?id=10386 IP54.230.111.58:0
File typeUnicode text, UTF-8 text, with very long lines (65530), with no line terminators Hash1cea5b192168956e433aa9a0a160bd5a 55f178a7481dfd1de4b9e181002b730763ff15b1 7f324324e68dc1f7e5194ff186a4a096e555fcbd1bfb8bef365e42ab0aa0fa18
GET /clicktrue_invocation.js?id=10386 HTTP/1.1
Host: ob.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 30208
content-encoding: gzip
server: Caddy
date: Tue, 20 Dec 2022 22:42:18 GMT
cache-control: max-age=43200
expires: Wed, 21 Dec 2022 10:41:34 GMT
etag: "1433b-wQODVntTTswxm38Qpk2hSRWVgGo"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: x0Y2SmIcpPV1NFy6HPV35Osqyh36LcaNG3z1ASZ8A15fSFPouMUYdQ==
age: 32377
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 472 B |
IP104.18.32.68:0
Hash0e43d2a777eb97c303e1ba5fab7104c9 aab6a0cbae3a4d88028e5f13875638f4a73adf8e 84586a08d9ccb3edf3581da67dd999fe4aa766dece68da424c5caacae54bbe37
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 07:41:11 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 18 Dec 2022 15:29:14 GMT
Expires: Sun, 25 Dec 2022 15:29:13 GMT
Etag: "aab6a0cbae3a4d88028e5f13875638f4a73adf8e"
Cache-Control: max-age=373081,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77cef9549a76b51d-OSL
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashbb120a816fcf4f6afe7a3aeab18e7bbd 1f15e81595a0b524a2401d5566beaa0b8d4f61e6 cca2f14595c5ba6446c4e522883036fa07e31599909870ad42bc678587b1a91d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3398
Cache-Control: max-age=104632
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:12 GMT
Etag: "63a1a10a-1d7"
Expires: Thu, 22 Dec 2022 12:45:04 GMT
Last-Modified: Tue, 20 Dec 2022 11:48:26 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 1.0 kB |
IP216.58.211.3:0
Hashd1d2e015700e49c8705eea0bddc690bb b2ab81e0ff4ef1e8eb7e313b0ad55c3013a6ed07 c910c758170282796f0c2df688116ca8f56f6a5d29c16055c23518cc4e55c7b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| connect.facebook.net/en_US/fbevents.js |  31.13.72.12 | 200 OK | 27 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP31.13.72.12:0
File typeASCII text, with very long lines (64348) Hash8b26cd4609e2025e51e90573a0fbd6f7 efc2006ae5297ad5ae5e064188b9fba73f6b868f e288b6a1e220f5fb781cfbb0b739b36c6acfdceccff8f0278fc151c241b0b50b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: xNbXldkmRr2EpwCahZljrYYSF+Lj0iNSlrgFvdmX6Vb58ymHTG/dl3yl/59NYW8iqcyYDZY2VQV70M49svdTlw==
content-length: 27298
x-fb-trip-id: 1904183273
date: Wed, 21 Dec 2022 07:41:12 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bat.bing.com/bat.js | 13.107.21.200 | 200 OK | 12 kB |
IP13.107.21.200:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
File typeUnicode text, UTF-8 text, with very long lines (39124), with no line terminators Hashb77f77f4f821a11c0a501be8d6a19659 7bba3d65db27d7c0e050bbf2294021433221de5d e80b6b1a2f792de4681310088abf8d9172a81ee10a54965c8eb602fae2d92319
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11472
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=08872EE39CBF635C26383C629D4A626D; domain=.bing.com; expires=Mon, 15-Jan-2024 07:41:12 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0E761147B61345FAB02E4A1DCE59425C Ref B: OSL30EDGE0218 Ref C: 2022-12-21T07:41:12Z
date: Wed, 21 Dec 2022 07:41:11 GMT
X-Firefox-Spdy: h2
|
|
| googleads.g.doubleclick.net/pagead/viewthroughconversion/806423829/?random=1671608491414&cv=11&fst=1671608491414&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&tiba=Novibet&auid=1622803985.1671608491&rfmt=3&fmt=4 | 216.58.207.226 | 200 OK | 938 B |
URL HTTP/2googleads.g.doubleclick.net/pagead/viewthroughconversion/806423829/?random=1671608491414&cv=11&fst=1671608491414&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&tiba=Novibet&auid=1622803985.1671608491&rfmt=3&fmt=4 IP216.58.207.226:0
File typeASCII text, with very long lines (2071), with no line terminators Hashe65eaaa53c47fe9716f06e6938224bbb d296fe3f6cfee27537968e5a4625889501f277c7 c05b2e84cb9d431f2fea2848a5df5d921faa8d0285dcf94cc5cd951a2624253b
GET /pagead/viewthroughconversion/806423829/?random=1671608491414&cv=11&fst=1671608491414&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&tiba=Novibet&auid=1622803985.1671608491&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 07:41:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 938
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Dec-2022 07:56:12 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashbb120a816fcf4f6afe7a3aeab18e7bbd 1f15e81595a0b524a2401d5566beaa0b8d4f61e6 cca2f14595c5ba6446c4e522883036fa07e31599909870ad42bc678587b1a91d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3398
Cache-Control: max-age=104632
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:12 GMT
Etag: "63a1a10a-1d7"
Expires: Thu, 22 Dec 2022 12:45:04 GMT
Last-Modified: Tue, 20 Dec 2022 11:48:26 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 5.0 kB |
IP216.58.211.3:0
Hash98b86fa6dc52b1a99d3c14fc9ea5aac3 2bfffea2b53921c64205a1c50798ad5e3e619968 8ad75c5fdb2cc5642280b1b515979c513cfedb24525057993c05ea4165878c7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html | 143.204.55.20 | 200 OK | 28 kB |
URL HTTP/2vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html IP143.204.55.20:0
File typeASCII text, with very long lines (65536), with no line terminators Hash6b3682ad63efdd3167898c9b66481e43 e7bb1a03efc4381801f7706c24002f283651d49b 6fac38738d12acc6358c9dccb7acc4619f6618fd4ac342df9d9a34115dc6b6ff
GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eLfVZVqAGtsDeKt0QGy2StpvWzu8HkrZFACRNp1qqSzgsPa9kfiECw==
age: 2399466
X-Firefox-Spdy: h2
|
|
| obs.cheqzone.com/ct?id=10386&url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX%26cq_aff%3D2000136_rt.novibet.partners&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1671608491591&hl=1&op=0&ag=1317291471&rand=742227921126052288621182971987785292026011059909166090598256755925608610951&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=HTqZzvZULs&pto=1914&ver=48&gac=-&mei=&ap=&duid=1.1671608491.opAg4LHFBYBv3VJQ&suid=1.1671608491.OP0zN0W73xT9invw&tuid=1.1671608491.EUBeK5o7HF5nYEDo&fbc=->m=W10%3D&it=58%2C1735%2C52&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 | 35.172.245.152 | 200 OK | 1.0 kB |
URL HTTP/2obs.cheqzone.com/ct?id=10386&url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX%26cq_aff%3D2000136_rt.novibet.partners&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1671608491591&hl=1&op=0&ag=1317291471&rand=742227921126052288621182971987785292026011059909166090598256755925608610951&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=HTqZzvZULs&pto=1914&ver=48&gac=-&mei=&ap=&duid=1.1671608491.opAg4LHFBYBv3VJQ&suid=1.1671608491.OP0zN0W73xT9invw&tuid=1.1671608491.EUBeK5o7HF5nYEDo&fbc=->m=W10%3D&it=58%2C1735%2C52&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 IP35.172.245.152:0
File typeASCII text, with very long lines (3150), with no line terminators Hashb972a063e3a3a7dc80d3e159f63a275a 33d19e752b3654846676547f84b5a74f8653fb5f a244f581e76bf17a9326830c6c1185994f36695b8734cf17e81a28250bf0a5be
GET /ct?id=10386&url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX%26cq_aff%3D2000136_rt.novibet.partners&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1671608491591&hl=1&op=0&ag=1317291471&rand=742227921126052288621182971987785292026011059909166090598256755925608610951&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=HTqZzvZULs&pto=1914&ver=48&gac=-&mei=&ap=&duid=1.1671608491.opAg4LHFBYBv3VJQ&suid=1.1671608491.OP0zN0W73xT9invw&tuid=1.1671608491.EUBeK5o7HF5nYEDo&fbc=->m=W10%3D&it=58%2C1735%2C52&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Wed, 21 Dec 2022 07:41:12 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=3575e6f9d6c99522604f9b57ed5b50c5; Max-Age=29030400; Path=/; Expires=Wed, 22 Nov 2023 07:41:12 GMT; HttpOnly; Secure; SameSite=None
content-length: 1004
X-Firefox-Spdy: h2
|
|
| obs.cheqzone.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136defc135e2438d9f9225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5f118e652117071a10acf9f29f674a87848c522a6912aa7e240d8e3edd60c10434532ac157070a61010dc3be384a77be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c2b43725209a48b2d367451a4ac40798caca32799b25c74492dfea5a59c9973e8cfc248b5038e523963c9f488f0b46882d6f033d3774e92f3d6335f51b07f31f7d64d36bb9ce529c719ae06f7d15b861e88d22b91786ad4dd7e9e34d3ddacacd4babd1468a378eff8be7c1322ee9732c7b940b3454600d45b3584d3d99891afd761996ec788bab569e36b6b3583277bc6c6c31d7684d563bd4deb9e599d77a86b0e5957dc20b30accd6ea68ae8805c81be184cbd4388d5d4066f3551745790d69d1a35eb546dbde842fa0923ad7bd03fdb0cadb5aa08aa35e75438bed5a1b8be55b0851a5b8df24e024c4b51ab6b27bf662e060d7178a4195eb2edb0873b1bc9867232d22567b480349b8eb8f6dd11ea5165c493b86cb5dc38a4a1ef4bac3a8f93dd0e7e0e094bafaa71e0d7eae0594bc4b7c9f513643c5694f2234a33aab365991f9dd71d431917cdcfa6894e7538b711d7f321e6e44cdb3b882692511e34c579fc1c4a9acd80557edece428c88b0a2fcad800217be5839b0a33bd4c86439c1be0238614dbc80fe5b934e6f694c0cc023bbbf231718368a78bb7aa109c64301f048a370321e6a723f79a66a3ebddcb32b7e6952f1c7402e769b90fb854ac806f91334521493e747eff25ee81792bb908c7a4bd51d09613ca3361b3033869c6bcc30048ef6ff48817db0131084eb53a32f7caa53db052619dfd65a481b48af41dc841476055a4652f39f18c1e1efe65f5f4c1319d8aaf771d0efe3573535d914042eccfbf4452c52f&cri=HTqZzvZULs&ts=480&cb=1671608492071 | 35.172.245.152 | 200 OK | 43 B |
URL HTTP/2obs.cheqzone.com/tracker/tc_imp.gif?e=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&cri=HTqZzvZULs&ts=480&cb=1671608492071 IP35.172.245.152:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdb04c7b378cb2db912c3ba8a5a774ee3 dee34bd86c3484d31002182aa2b7caa4699126b8 98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=HTqZzvZULs&ts=480&cb=1671608492071 HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Cookie: cg_uuid=3575e6f9d6c99522604f9b57ed5b50c5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Wed, 21 Dec 2022 07:41:12 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
|
|
| realtime-544.optimove.net/reportEvent | 107.154.132.121 | 204 No Content | 0 B |
URL HTTP/2realtime-544.optimove.net/reportEvent IP107.154.132.121:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /reportEvent HTTP/1.1
Host: realtime-544.optimove.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-request-id
Referer: https://www.novibet.mx/
Origin: https://www.novibet.mx
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: content-type,x-request-id
access-control-max-age: 86400
content-length: 0
date: Wed, 21 Dec 2022 07:41:12 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
set-cookie: visid_incap_2819049=81KUlzNbQKm6cFPukjTKhZe4omMAAAAAQUIPAAAAAACli5Eg4SShAuEgOS2spJ52; expires=Wed, 20 Dec 2023 22:34:04 GMT; HttpOnly; path=/; Domain=.optimove.net
incap_ses_721_2819049=jwSJX7y5vwxLgx3384EBCpi4omMAAAAA5bpngBF6MImlbXBuI2oYBg==; path=/; Domain=.optimove.net
x-cdn: Imperva
x-iinfo: 1007-48886932-48886981 NNNN CT(1 4 0) RT(1671608471174 789) q(0 0 0 0) r(1 1) U6
X-Firefox-Spdy: h2
|
|
| realtime-544.optimove.net/reportEvent | 107.154.132.121 | 200 OK | 87 B |
URL HTTP/2realtime-544.optimove.net/reportEvent IP107.154.132.121:0
File typeJSON data\012- , ASCII text, with no line terminators Hashe0b90ae27fae83762ef117c3f73e958c 9004b37de436cf4a11a7e74be4abf69a28cc6a03 ceaa54ccdf908e3f50b6cb490a9896bdeacc77ecfb47f91dfdcfcbc6797e549b
POST /reportEvent HTTP/1.1
Host: realtime-544.optimove.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.novibet.mx/
Content-Type: application/json
X-Request-ID: f1705c7a-f118-4a2b-97f6-5eaf15dfcdd1
Origin: https://www.novibet.mx
Content-Length: 597
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With,Content-Type
content-type: application/json
date: Wed, 21 Dec 2022 07:41:12 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
set-cookie: visid_incap_2819049=81KUlzNbQKm6cFPukjTKhZe4omMAAAAAQUIPAAAAAACli5Eg4SShAuEgOS2spJ52; expires=Wed, 20 Dec 2023 22:34:04 GMT; HttpOnly; path=/; Domain=.optimove.net
incap_ses_721_2819049=V1onLRXgqT5Lgx3384EBCpi4omMAAAAAAacARgGsVu8UvId9uEA+2g==; path=/; Domain=.optimove.net
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 7-48886932-48886981 PNYN RT(1671608471174 864) q(0 0 0 1) r(0 0) U6
X-Firefox-Spdy: h2
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-N7E2VQYB23>m=2oebu0&_p=270381332&cid=635671489.1671608492&ul=en-us&sr=1280x1024&ir=1&_eu=EA&_s=1&sid=1671608491&sct=1&seg=0&dl=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&dt=Novibet&en=page_view&_fv=1&_ss=1&ep.country=Mexico&ep.web_category=web_desktop | 216.239.32.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-N7E2VQYB23>m=2oebu0&_p=270381332&cid=635671489.1671608492&ul=en-us&sr=1280x1024&ir=1&_eu=EA&_s=1&sid=1671608491&sct=1&seg=0&dl=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&dt=Novibet&en=page_view&_fv=1&_ss=1&ep.country=Mexico&ep.web_category=web_desktop IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-N7E2VQYB23>m=2oebu0&_p=270381332&cid=635671489.1671608492&ul=en-us&sr=1280x1024&ir=1&_eu=EA&_s=1&sid=1671608491&sct=1&seg=0&dl=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&dt=Novibet&en=page_view&_fv=1&_ss=1&ep.country=Mexico&ep.web_category=web_desktop HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.novibet.mx
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://www.novibet.mx
date: Wed, 21 Dec 2022 07:41:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashdb151f8790fc80bb535b13560972296a 768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1 36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3673
Expires: Wed, 21 Dec 2022 08:42:25 GMT
Date: Wed, 21 Dec 2022 07:41:12 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashdb151f8790fc80bb535b13560972296a 768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1 36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3673
Expires: Wed, 21 Dec 2022 08:42:25 GMT
Date: Wed, 21 Dec 2022 07:41:12 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashdb151f8790fc80bb535b13560972296a 768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1 36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3673
Expires: Wed, 21 Dec 2022 08:42:25 GMT
Date: Wed, 21 Dec 2022 07:41:12 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashdb151f8790fc80bb535b13560972296a 768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1 36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3673
Expires: Wed, 21 Dec 2022 08:42:25 GMT
Date: Wed, 21 Dec 2022 07:41:12 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fa8a62f-ea22-4322-aa22-949d8110171e.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fa8a62f-ea22-4322-aa22-949d8110171e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashda9b0930ee2249c6e7e1f83890414427 f064f1c66751a7fd57cc2e5bd4de7f0056280201 51f358162f132a7df1894f1f55e14a49facda33efa4339310cc4be2c30fb3bec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fa8a62f-ea22-4322-aa22-949d8110171e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7928
x-amzn-requestid: 7ac71ec7-3ebb-4564-909f-5cd431e52cde
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dBW08HOJoAMFr5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6396d1b9-3ccebae6692c2e0878bb0368;Sampled=0
x-amzn-remapped-date: Mon, 12 Dec 2022 07:01:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IawMW-biuiDSx4ywTV8rReeK0gyGWYqnknJvRbQhhCxyk0Yq2A0JmA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 08:06:56 GMT
age: 84856
etag: "f064f1c66751a7fd57cc2e5bd4de7f0056280201"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd4aa7e9e3fe28e9c401786f7415171f7 8482a47175ff105957d640269bc14ee1fbc97448 2215ff2537f927e2baf4f713fc947afefc83b416719113ce516aa00f2a4e0708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11535
x-amzn-requestid: 4fb9a698-c429-49e1-a2c5-b9388f03b044
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: daGQIEuSoAMFnBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0b733-53b8088f0d8863f813b9967e;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 19:10:43 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: axz1LSfJfBvAFuJl53Sl6Kh7r2R4FiTuDB3Xb_XI5AwXB20Gs4rg5A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2c6b5dd77f1abe60653ce0454f344b64.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:49:59 GMT
age: 35473
etag: "8482a47175ff105957d640269bc14ee1fbc97448"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg | 34.120.237.76 | 200 OK | 9.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3bd6359db3b908389343275ee839466b 9094f8e9275252a8e9d5e65fd3e87851b2f80bd7 7380590a93f8a21907c39ddce2f51c599161f219522df4099e9c1a82bcd1e40e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9069
x-amzn-requestid: 103b5caf-fa82-4d66-97e6-99c77027f759
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_DG_hoAMFoKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-1a4accb80dbf5e9f2f696c85;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: D8V_RlBCxL1RHxtCyWkX7_IsCCrOdv2o1Wdic0N_aUz0qguhANp88A==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:37:41 GMT
age: 36211
etag: "9094f8e9275252a8e9d5e65fd3e87851b2f80bd7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F755d2e29-1b21-4b5a-bf07-7e8c9b9fa5ef.jpeg | 34.120.237.76 | 200 OK | 9.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F755d2e29-1b21-4b5a-bf07-7e8c9b9fa5ef.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd412dc903a0b59ad7b621087ea0ac761 f2ea37308a210ac16412bac93b63a83a5a018c39 08afbc5941a511b6c536d33a8975fae902f5c4c814de0ed1b7f444c1c4233aad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F755d2e29-1b21-4b5a-bf07-7e8c9b9fa5ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9661
x-amzn-requestid: 7046f4e1-0f80-4ae7-9500-1b1a07839232
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dbuz0F-OoAMF9Mw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a15e7e-720525d72a8ce03b45b37d86;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 07:04:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: DFhw6VQYvJWY5-UKONEP7sH5rhw7sMPD5Z1zrEYZKDdfu6NVTt4mHA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 ea699166e6ec77aa410ff505b0a8ce18.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 07:07:39 GMT
age: 2013
etag: "f2ea37308a210ac16412bac93b63a83a5a018c39"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg | 34.120.237.76 | 200 OK | 9.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8f5b2e482a0944dfc0de3a69659fa002 64dd897d9163a6eceadc0c5460cdd135d323abb3 feb1a63a27859b88257d50c3c8723131978fd1f363a6f9e1297b91549b4aed9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9044
x-amzn-requestid: 981a0010-ec53-4659-818b-4cfa39fa8cd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dbuhqGUbIAMF_QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a15e0a-65b084547c4d2b4414236f84;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 07:02:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: -AR7jIQqHV2XWDLH1W7rybyRGcDQ4oSGQsneAScw7MHK3nwjYYkjWg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 07:02:35 GMT
age: 2317
etag: "64dd897d9163a6eceadc0c5460cdd135d323abb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31ce91c9-2f56-4bfd-bfc9-6081785436ca.jpeg | 34.120.237.76 | 200 OK | 4.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31ce91c9-2f56-4bfd-bfc9-6081785436ca.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4514b9d40760436bf655b4931fd7f16a 9847b2e222a3bd7a07d62dcdeba78d9224c041e3 c82ad7443b03e55bfe38dcb9b3960ca662ca2cc9b6ae85ddcb445acc13797d31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31ce91c9-2f56-4bfd-bfc9-6081785436ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4840
x-amzn-requestid: 85fe919f-fb74-4409-8e0d-414e5f55e551
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c6xeaHmCIAMF3qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63942f8f-68283fcb7e35aae96bd5b1a4;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 07:04:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: osD-zP73jTRraTC_WIVCNFbvjvDREyO9OtlZco-BkfZtCEIcwKrzbg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 04:27:09 GMT
age: 11643
etag: "9847b2e222a3bd7a07d62dcdeba78d9224c041e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| script.hotjar.com/modules.bc1117deb4413903e9ac.js | 143.204.55.96 | 200 OK | 72 kB |
URL HTTP/2script.hotjar.com/modules.bc1117deb4413903e9ac.js IP143.204.55.96:0
File typeASCII text, with very long lines (13661) Hash416ad12312530bbf8c5af79a99f64dfd 836151e1a6fec8599a985a18705a0f167bb5d96f 3ec62e3f6a870f16ff556e75ec2454e24b2b4a99cdb425822da9be8072465e9c
GET /modules.bc1117deb4413903e9ac.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68859
date: Fri, 16 Dec 2022 08:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "f13ff1e59c6576e6eab8ec5da41ce435"
last-modified: Fri, 16 Dec 2022 08:09:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uMqAfd0skfDNndvtHd0dLD3U2jdVQ4jrVru0F5086inB8cimbZNL5A==
age: 430266
X-Firefox-Spdy: h2
|
|
| rules.quantcount.com/rules-p-4RWbAYHudMred.js | 54.230.111.16 | 200 OK | 222 B |
URL HTTP/2rules.quantcount.com/rules-p-4RWbAYHudMred.js IP54.230.111.16:0
Hash24d1bd4b2a28765f96f6665008f4f87f a31bf893dbee506601fd249656c7a24512a8252d f401c069a443572b3141d26d8bfa2d3f759254b8e51961d388b1349741e60959
GET /rules-p-4RWbAYHudMred.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 222
last-modified: Fri, 14 Oct 2022 00:39:03 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Wed, 21 Dec 2022 07:18:45 GMT
cache-control: max-age=3600
etag: "24d1bd4b2a28765f96f6665008f4f87f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yYoSqyIo7Vw62Lwe996UG35Sh7yVnMIQ5ps1_DkSVPkelKZFFlM1yg==
age: 1771
X-Firefox-Spdy: h2
|
|
| bat.bing.com/action/0?ti=138002596&tm=gtm002&Ver=2&mid=606f65b6-4e84-46e0-9119-b9be029cf901&sid=e3281c00810211ed9d02519b6371b10a&vid=e3281570810211edab12db76ed7b9bf0&vids=1&msclkid=N>m_tag_source=1&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Novibet&p=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&r=<=1360&evt=pageLoad&sv=1&rn=756906 | 13.107.21.200 | 204 No Content | 0 B |
URL HTTP/2bat.bing.com/action/0?ti=138002596&tm=gtm002&Ver=2&mid=606f65b6-4e84-46e0-9119-b9be029cf901&sid=e3281c00810211ed9d02519b6371b10a&vid=e3281570810211edab12db76ed7b9bf0&vids=1&msclkid=N>m_tag_source=1&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Novibet&p=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&r=<=1360&evt=pageLoad&sv=1&rn=756906 IP13.107.21.200:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=138002596&tm=gtm002&Ver=2&mid=606f65b6-4e84-46e0-9119-b9be029cf901&sid=e3281c00810211ed9d02519b6371b10a&vid=e3281570810211edab12db76ed7b9bf0&vids=1&msclkid=N>m_tag_source=1&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Novibet&p=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&r=<=1360&evt=pageLoad&sv=1&rn=756906 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=175EF9F4B8656B11377BEB75B9906ADB; domain=.bing.com; expires=Mon, 15-Jan-2024 07:41:12 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 398B670F8FF94A70BEDCD29A2B96D6AE Ref B: OSL30EDGE0218 Ref C: 2022-12-21T07:41:12Z
date: Wed, 21 Dec 2022 07:41:11 GMT
X-Firefox-Spdy: h2
|
|
| bat.bing.com/p/action/138002596.js | 13.107.21.200 | 200 OK | 1.4 kB |
URL HTTP/2bat.bing.com/p/action/138002596.js IP13.107.21.200:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
File typeASCII text, with CRLF line terminators Hash4edf26ed88614d1584c4f0f28a37e18e c3d3033419f7eddb66c94eff85f0d7aca26d7aac 186e6937cc362ec3e2a09606ced880cf378de7def30bb5a79a031deb4dfefc02
GET /p/action/138002596.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=60
content-length: 1447
content-type: application/javascript; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: MUID=00AD11004A0161E1012903814BF460BB; domain=.bing.com; expires=Mon, 15-Jan-2024 07:41:12 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 31CA8412A6F949E59440C6D67DE6EA81 Ref B: OSL30EDGE0218 Ref C: 2022-12-21T07:41:12Z
date: Wed, 21 Dec 2022 07:41:11 GMT
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash0b3a38d8057f8c59aa4db5a405d1004c 3c25e79903c1854f482800c6649da26764730a90 910fbf0b154d2cb38f02f87065f7e94f0aa98a11ffd1c87b04eecf80975d4a51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash44d1b97ebc6772b76319806ff504cf27 e7e520951d9f34cfc991932a62b0bd8cf390b1f7 b30398f6056dcc04122b413d78c632ea15df7cff07471850a1603a121efba20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/pagead/1p-user-list/806423829/?random=1671608491414&cv=11&fst=1671606000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&tiba=Novibet&fmt=3&is_vtc=1&random=3924863608&rmt_tld=0&ipr=y | 142.250.74.132 | 200 OK | 42 B |
URL HTTP/2www.google.com/pagead/1p-user-list/806423829/?random=1671608491414&cv=11&fst=1671606000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&tiba=Novibet&fmt=3&is_vtc=1&random=3924863608&rmt_tld=0&ipr=y IP142.250.74.132:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/806423829/?random=1671608491414&cv=11&fst=1671606000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&tiba=Novibet&fmt=3&is_vtc=1&random=3924863608&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 07:41:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google.no/pagead/1p-user-list/806423829/?random=1671608491414&cv=11&fst=1671606000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&tiba=Novibet&fmt=3&is_vtc=1&random=3924863608&rmt_tld=1&ipr=y | 142.250.74.131 | 200 OK | 42 B |
URL HTTP/2www.google.no/pagead/1p-user-list/806423829/?random=1671608491414&cv=11&fst=1671606000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&tiba=Novibet&fmt=3&is_vtc=1&random=3924863608&rmt_tld=1&ipr=y IP142.250.74.131:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/806423829/?random=1671608491414&cv=11&fst=1671606000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&tiba=Novibet&fmt=3&is_vtc=1&random=3924863608&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 07:41:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash97216d9347c0d3c1bab297df919688d5 61eca83749fd58d5ce753bf65419435d522c2ce5 7277b81f23f6516aa706c00202e0705421837431095d5b1f7fb0f283ab5736ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash44d1b97ebc6772b76319806ff504cf27 e7e520951d9f34cfc991932a62b0bd8cf390b1f7 b30398f6056dcc04122b413d78c632ea15df7cff07471850a1603a121efba20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| pixel.quantserve.com/pixel;r=835396021;labels=_fp.event.Default;rf=0;a=p-4RWbAYHudMred;url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX;uht=2;fpan=1;fpa=P0-259729775-1671608491906;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20221215111636;cm=;gdpr=0;ref=;d=novibet.mx;dst=0;et=1671608492513;tzo=0;ogl=;ses=d1647322-e7d7-4250-95e7-acf2c8063c68 | 91.228.74.208 | 200 OK | 35 B |
URL HTTP/2pixel.quantserve.com/pixel;r=835396021;labels=_fp.event.Default;rf=0;a=p-4RWbAYHudMred;url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX;uht=2;fpan=1;fpa=P0-259729775-1671608491906;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20221215111636;cm=;gdpr=0;ref=;d=novibet.mx;dst=0;et=1671608492513;tzo=0;ogl=;ses=d1647322-e7d7-4250-95e7-acf2c8063c68 IP91.228.74.208:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash55d25e9dc950d5db4d53a3b195c046c6 75e91ae3e549dab12ed1c9787ade9131aef1c981 a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=835396021;labels=_fp.event.Default;rf=0;a=p-4RWbAYHudMred;url=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Ftoken%3Dregister%26btag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX;uht=2;fpan=1;fpa=P0-259729775-1671608491906;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20221215111636;cm=;gdpr=0;ref=;d=novibet.mx;dst=0;et=1671608492513;tzo=0;ogl=;ses=d1647322-e7d7-4250-95e7-acf2c8063c68 HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:13 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=63a2b899-02a1c-83e82-a6f25; expires=Sun, 21-Jan-2024 07:41:13 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.88 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.88:0
Hash9a50cfd84054673c0cb31fbbf3bc0213 ca637c63893ac782a0e2eaea8707cc06563acd21 68009ad838f43aad5b0e219a9cd0b2131d9c04e5cadd9280526e7eddb9dc4481
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=118489
Date: Wed, 21 Dec 2022 07:41:13 GMT
Etag: "63a1d3d8-1d7"
Expires: Thu, 22 Dec 2022 16:36:02 GMT
Last-Modified: Tue, 20 Dec 2022 15:25:12 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7dl_gPD3SkHwVq1_aI1GtNroBni9xLo0T2IzPUAIDX0pmJzX4fciSA==
Age: 4250
|
|
| in.hotjar.com/api/v2/client/sites/3268455/visit-data?sv=7 |  34.250.189.249 | 200 OK | 95 B |
URL HTTP/2in.hotjar.com/api/v2/client/sites/3268455/visit-data?sv=7 IP34.250.189.249:0
File typeJSON data\012- , ASCII text, with no line terminators Hash039d32f7359c34eee13f02bae640eff7 7550a24e404da6c533fa8597113eec17a6d55f4c 1874a3ed03bfe4289ca3a8cc3c495a498033ddb248a6fbdcdce02e70065eca54
POST /api/v2/client/sites/3268455/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 129
Origin: https://www.novibet.mx
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:13 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.110 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.110:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 21 Dec 2022 06:41:08 GMT
expires: Wed, 21 Dec 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 3605
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| o429133.ingest.sentry.io/api/6618374/envelope/?sentry_key=8b21d8ef80cd43ac963534f92af29279&sentry_version=7&sentry_client=sentry.javascript.angular%2F7.9.0 | 34.120.195.249 | 403 Forbidden | 56 B |
URL HTTP/2o429133.ingest.sentry.io/api/6618374/envelope/?sentry_key=8b21d8ef80cd43ac963534f92af29279&sentry_version=7&sentry_client=sentry.javascript.angular%2F7.9.0 IP34.120.195.249:0
File typeJSON data\012- , ASCII text, with no line terminators Hash6e5a3e5ff236fe99535092d7096ceddc 92a5db65cbedf687ee76693e9b89b9d6ca417b61 7c1e2d0f6a27b6701cbfc14d4b2c6863a2de1753603e0eafaf1a1c42a4e22b65
POST /api/6618374/envelope/?sentry_key=8b21d8ef80cd43ac963534f92af29279&sentry_version=7&sentry_client=sentry.javascript.angular%2F7.9.0 HTTP/1.1
Host: o429133.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.novibet.mx/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.novibet.mx
Content-Length: 440
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
server: nginx
date: Wed, 21 Dec 2022 07:41:13 GMT
content-type: application/json
content-length: 56
access-control-allow-origin: https://www.novibet.mx
access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| o429133.ingest.sentry.io/api/6618374/envelope/?sentry_key=8b21d8ef80cd43ac963534f92af29279&sentry_version=7&sentry_client=sentry.javascript.angular%2F7.9.0 | 34.120.195.249 | 403 Forbidden | 56 B |
URL HTTP/2o429133.ingest.sentry.io/api/6618374/envelope/?sentry_key=8b21d8ef80cd43ac963534f92af29279&sentry_version=7&sentry_client=sentry.javascript.angular%2F7.9.0 IP34.120.195.249:0
File typeJSON data\012- , ASCII text, with no line terminators Hash6e5a3e5ff236fe99535092d7096ceddc 92a5db65cbedf687ee76693e9b89b9d6ca417b61 7c1e2d0f6a27b6701cbfc14d4b2c6863a2de1753603e0eafaf1a1c42a4e22b65
POST /api/6618374/envelope/?sentry_key=8b21d8ef80cd43ac963534f92af29279&sentry_version=7&sentry_client=sentry.javascript.angular%2F7.9.0 HTTP/1.1
Host: o429133.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.novibet.mx/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.novibet.mx
Content-Length: 435
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
server: nginx
date: Wed, 21 Dec 2022 07:41:13 GMT
content-type: application/json
content-length: 56
access-control-allow-origin: https://www.novibet.mx
access-control-expose-headers: retry-after, x-sentry-error, x-sentry-rate-limits
vary: Origin
x-envoy-upstream-service-time: 1
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-16924722-1&cid=635671489.1671608492&jid=1864592801&gjid=1734363145&_gid=1534313836.1671608494&_u=YCDAgEABAAAAAEAEK~&z=675410482 | 209.85.233.154 | 200 OK | 5.6 kB |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-16924722-1&cid=635671489.1671608492&jid=1864592801&gjid=1734363145&_gid=1534313836.1671608494&_u=YCDAgEABAAAAAEAEK~&z=675410482 IP209.85.233.154:0
Hashd700e7a8f20fd3469cf9a7f9e50f7a77 bec44571c1bccfad906636b01aba28f457376c03 d9a5c9222cf89501016c4ab68776e9dc447bdac4a4d1d363afc609d6119741a3
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-16924722-1&cid=635671489.1671608492&jid=1864592801&gjid=1734363145&_gid=1534313836.1671608494&_u=YCDAgEABAAAAAEAEK~&z=675410482 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.novibet.mx
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.novibet.mx
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 21 Dec 2022 07:41:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-16924722-3&cid=635671489.1671608492&jid=834023981&gjid=1512326666&_gid=1534313836.1671608494&_u=YCDAgEABAAAAAEAEK~&z=245363480 | 209.85.233.154 | 200 OK | 417 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-16924722-3&cid=635671489.1671608492&jid=834023981&gjid=1512326666&_gid=1534313836.1671608494&_u=YCDAgEABAAAAAEAEK~&z=245363480 IP209.85.233.154:0
Hash9a4596ea11c4a311c31fd1b52bbc8fe5 e1abc609dec9cecfd67ae7ad876820b24fb60b03 6c2994918ffb6d3e82f60c39d433f95ee35310f9bb26bcbed2221ea018c21248
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-16924722-3&cid=635671489.1671608492&jid=834023981&gjid=1512326666&_gid=1534313836.1671608494&_u=YCDAgEABAAAAAEAEK~&z=245363480 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.novibet.mx
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.novibet.mx
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 21 Dec 2022 07:41:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| obs.cheqzone.com/mon | 35.172.245.152 | 200 OK | 4.7 kB |
IP35.172.245.152:0
Hashf40e1f150d6684162fe63e5c13e1e0d9 af562d1e5c0c8bf4cf24c801c98d917992fcb000 e7f589b5484526e1422bbff188fd96f963bee0da15c09428838cf8da8859d00d
POST /mon HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1652
Origin: https://www.novibet.mx
Connection: keep-alive
Referer: https://www.novibet.mx/
Cookie: cg_uuid=3575e6f9d6c99522604f9b57ed5b50c5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.novibet.mx
content-type: application/json
date: Wed, 21 Dec 2022 07:41:14 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| obs.cheqzone.com/mon | 35.172.245.152 | 200 OK | 58 kB |
IP35.172.245.152:0
Hash6367432c5509b3c52bd739cdb30f0cdf 40fc784d51a120ef14af8173867ac2e7e12356b5 100a517aac5329f16ae5bad52e7417793cca1ec26a4b9870dc2aeb018bb0d454
POST /mon HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1657
Origin: https://www.novibet.mx
Connection: keep-alive
Referer: https://www.novibet.mx/
Cookie: cg_uuid=3575e6f9d6c99522604f9b57ed5b50c5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.novibet.mx
content-type: application/json
date: Wed, 21 Dec 2022 07:41:14 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| b.clarity.ms/collect | 20.75.32.255 | 204 No Content | 0 B |
IP20.75.32.255:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 770
Origin: https://www.novibet.mx
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.novibet.mx
access-control-allow-credentials: true
date: Wed, 21 Dec 2022 07:41:14 GMT
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 5.0 kB |
IP93.184.220.29:0
Hash9146426d4b9c16be04dc2fa24949574e c2de20189da032aefb4a109bb8716f374d31013e ffaa0e0dd64a2c9814650f8f7fc18a07e690cf5f706db0cf50d5e1de804bd709
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1980
Cache-Control: max-age=110776
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 07:41:14 GMT
Etag: "63a1be96-1d7"
Expires: Thu, 22 Dec 2022 14:27:30 GMT
Last-Modified: Tue, 20 Dec 2022 13:54:30 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
|
|
| mpsnare.iesnare.com/general5/wdp.js?loaderVer=5.1.0&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false | 54.228.71.178 | 200 OK | 211 kB |
URL HTTP/1.1mpsnare.iesnare.com/general5/wdp.js?loaderVer=5.1.0&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false IP54.228.71.178:0
Size211 kB (210929 bytes) Hash71e33d6f6cf24a0d04cde4daa9921d6a c41f5fd2026827174eaed5c2cfbfe127f5d4774e 3045dc862377f95d40ef05cd92b2b144663858b84852dae1f32e6ae6615841c5
GET /general5/wdp.js?loaderVer=5.1.0&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 21 Dec 2022 07:41:14 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: io_token_7c6a6574-f011-4c9a-abdd-9894a102ccef=qf5OXp3SbHoeWqyi204kkMgAY1EAdLcIV8ZMhL9rnQs=;Path=/;Expires=Thu, 21-Dec-2023 07:41:14 GMT;Max-Age=31536000;Secure;HttpOnly;SameSite=None
Cache-Control: no-cache, private
Pragma: no-cache
Expires: 0
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
|
|
| mpsnare.iesnare.com/5.5.0/logo.js | 54.228.71.178 | 200 OK | 420 B |
URL HTTP/1.1mpsnare.iesnare.com/5.5.0/logo.js IP54.228.71.178:0
File typeASCII text, with very long lines (377) Hashc684ca5adf8ed4cc0d1487746fbea657 6914d80eba35f96551b8af10e2b7441bc55e0f07 6d30b03d4195ccdac353250e4cae9b3e1c50ffe4bca095b62699f3c08d10b628
GET /5.5.0/logo.js HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 21 Dec 2022 07:41:14 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 May 2014 00:01:40 GMT
Expires: Thu, 21 Dec 2023 07:41:14 GMT
Cache-Control: private
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
|
|
| mpsnare.iesnare.com/star | 54.195.39.4 | 101 Switching Protocols | 2.8 kB |
IP54.195.39.4:0
Hash2bda3bfb7d836573c8ea5e39b23cf6ec ef66954ed7db6d5224618c89e06ad79444cfe802 7983525445b550fd5dd5edc0a6739e8267192c153fafc9e3bd2892e7721d52d0
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.novibet.mx
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: icqIkk8UIbR1kC03/EMvoQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Wed, 21 Dec 2022 07:41:14 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: 0rEuQJU8gDfxYUWurFEx8xR/pW0=
Upgrade: WebSocket
|
|
| mpsnare.iesnare.com/star | 54.195.39.4 | 101 Switching Protocols | 0 B |
IP54.195.39.4:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.novibet.mx
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Uq13gjiWTBRrNxGEmXd5qw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Wed, 21 Dec 2022 07:41:15 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: mHpLHrdMqv1mkeKSh+mGqc20Ug4=
Upgrade: WebSocket
|
|
| mx.staticnovi.com/media/97259/nolimits_es.jpg | 104.18.11.96 | 200 OK | 21 kB |
URL HTTP/2mx.staticnovi.com/media/97259/nolimits_es.jpg IP104.18.11.96:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 309x130, components 3\012- data Hash17f7c4b8186e804039f56fef24997d40 19af2fe48e7ea15749e0d8eae46ecad7f35e4788 eadcc7fa0b4f09d7c67f8152124426d88e579e00391314f49f000a4449e79773
GET /media/97259/nolimits_es.jpg HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/jpeg
content-length: 21251
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 35
x-f-n: 02
x-f-n-t: 02
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef9688ce5b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/97261/nooneloses_es.jpg | 104.18.11.96 | 200 OK | 24 kB |
URL HTTP/2mx.staticnovi.com/media/97261/nooneloses_es.jpg IP104.18.11.96:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 309x130, components 3\012- data Hash18311d68e115cc2875548f47ad3f0f94 30de1ddfdb115f3bafddf0a47fa2b3e84d0f4dcc f0f643f113eb891aa3264010996171336d7ac0fec1b7751fac147da9c473efe7
GET /media/97261/nooneloses_es.jpg HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/jpeg
content-length: 24206
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 35
x-f-n: 01
x-f-n-t: 02
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef9688ce4b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/97308/wb-sport-mx.jpg | 104.18.11.96 | 200 OK | 24 kB |
URL HTTP/2mx.staticnovi.com/media/97308/wb-sport-mx.jpg IP104.18.11.96:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 309x130, components 3\012- data Hashac5b269e015b58832a464a497201c770 92f1fec0197692575ccd31f6564699fc3e3fd925 b3c5d5aa63f92b87905d954e6b40d9cc40874bc766fb78748f3caa062d34597a
GET /media/97308/wb-sport-mx.jpg HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/jpeg
content-length: 23578
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 44
x-f-n: 03
x-f-n-t: 03
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef9688cd8b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/96432/sm.png | 104.18.11.96 | 200 OK | 18 kB |
URL HTTP/2mx.staticnovi.com/media/96432/sm.png IP104.18.11.96:0
File typePNG image data, 309 x 130, 8-bit colormap, non-interlaced\012- data Hashf14b593eba7419f574905bf80d410c16 7c37306ccf576a5f0fb8807bdf349674be2c4c95 303da5d17c72da505a386cfb5fdde0215976cd9b9b18ace1ee12ba3f798afde7
GET /media/96432/sm.png HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/png
content-length: 17605
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 33
x-f-n: 03
x-f-n-t: 02
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef9689ce8b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/97256/betbuilder_es.jpg | 104.18.11.96 | 200 OK | 24 kB |
URL HTTP/2mx.staticnovi.com/media/97256/betbuilder_es.jpg IP104.18.11.96:0
Hash63aa0d315d6647badf379abff56d72ff cc820e5cc8ee8bd5337e3fcf10057ebb51880357 d692678ecf415e9b827a64e256c36f7de6d014bcc624368a0ddac913f5f6cc12
GET /media/97256/betbuilder_es.jpg HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/jpeg
content-length: 22434
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 44
x-f-n: 03
x-f-n-t: 02
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef968acfcb527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/96434/pragmatic-sm.png | 104.18.11.96 | 200 OK | 16 kB |
URL HTTP/2mx.staticnovi.com/media/96434/pragmatic-sm.png IP104.18.11.96:0
File typePNG image data, 309 x 130, 8-bit colormap, non-interlaced\012- data Hash082097d83d981de7a80bb7d5e0b3cf25 9ff4083829a5f9cf7b70d95c84235ba2b90fd2fb e2822ff0d79108fb5d206913cf1becf590544b33180237cbc35ca927c8a6fdd7
GET /media/96434/pragmatic-sm.png HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/png
content-length: 15857
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 45
x-f-n: 02
x-f-n-t: 03
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef9689cedb527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/96303/right-panel-egr-awards-%CE%BC%CE%B5.jpg | 104.18.11.96 | 200 OK | 19 kB |
URL HTTP/2mx.staticnovi.com/media/96303/right-panel-egr-awards-%CE%BC%CE%B5.jpg IP104.18.11.96:0
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 309x130, components 3\012- data Hash4953a9e4938ba98fcdf050201acb3a4f 047ce5e76560b5c2701d738403cb546d93a9fe8c 428349889709964b9a9a8667929b26c8b2ce5b5494ac8a968c1bea69c7e78ac5
GET /media/96303/right-panel-egr-awards-%CE%BC%CE%B5.jpg HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/jpeg
content-length: 19324
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 44
x-f-n: 01
x-f-n-t: 03
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef968acf4b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/97255/cashout_es.jpg | 104.18.11.96 | 200 OK | 25 kB |
URL HTTP/2mx.staticnovi.com/media/97255/cashout_es.jpg IP104.18.11.96:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 309x130, components 3\012- data Hash942d5151c4a78ad40a25ce6a23602e3d 2c4bc1a2e55b0ceb9482b7350e7fe541bfc5ebd7 1495a5dcb7046267834ca81d859e7641eec794c9491fdfedb64de96f1c7bbe00
GET /media/97255/cashout_es.jpg HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/jpeg
content-length: 24870
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 45
x-f-n: 01
x-f-n-t: 03
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef9688cddb527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/97260/100payout_es.jpg | 104.18.11.96 | 200 OK | 21 kB |
URL HTTP/2mx.staticnovi.com/media/97260/100payout_es.jpg IP104.18.11.96:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 309x130, components 3\012- data Hash20fbc41a538f1d8381991a73a42fb3ac 5aa67d10d4be7871507e1832feebbca49d626070 a2ed2c7382378a45325fbca1c8a70c7b5fdc75192d7216830cd7b2690d981358
GET /media/97260/100payout_es.jpg HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/jpeg
content-length: 21137
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 45
x-f-n: 03
x-f-n-t: 03
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef9688ce2b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/97258/return_0_es.jpg | 104.18.11.96 | 200 OK | 21 kB |
URL HTTP/2mx.staticnovi.com/media/97258/return_0_es.jpg IP104.18.11.96:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 309x130, components 3\012- data Hash32f21927f5e308463f967dba75da1563 979071c273e68a7ceac39e89b5123deb1cd172ec 07e9b1baf90d5ef09416446e2d9d06c30decebe1f3f09faf44c11aba3ad1abf2
GET /media/97258/return_0_es.jpg HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/jpeg
content-length: 21311
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 35
x-f-n: 03
x-f-n-t: 03
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef9688ce3b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/101480/rpanel-mx-mx-new-terms.png | 104.18.11.96 | 200 OK | 30 kB |
URL HTTP/2mx.staticnovi.com/media/101480/rpanel-mx-mx-new-terms.png IP104.18.11.96:0
File typePNG image data, 304 x 132, 8-bit/color RGB, non-interlaced\012- data Hashfaa84bd69ac3cf4f90b79e4aa5b98b3e 40e919bc57e76c6990897ea0647f29a1ef3b1ab6 b5ea146650ff27f6126f4176e550e395306554f38de74bfcfc71688350687c3e
GET /media/101480/rpanel-mx-mx-new-terms.png HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/png
content-length: 30479
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 44
x-f-n: 02
x-f-n-t: 03
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef968acf8b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/101668/right-panel-mx.png | 104.18.11.96 | 200 OK | 47 kB |
URL HTTP/2mx.staticnovi.com/media/101668/right-panel-mx.png IP104.18.11.96:0
Hasha8525189c2cfea9fe75a0748de88f199 dde52d09a5f0e7d770a4f5320f07d40f733d123b 7e246537d56b5ea3c7f8f2b4130f7f6653a193ef8f39fd28e38e32248b7b5489
GET /media/101668/right-panel-mx.png HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/png
content-length: 30653
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 33
x-f-n: 03
x-f-n-t: 03
last-modified: Wed, 21 Dec 2022 07:41:15 GMT
cf-cache-status: MISS
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef968acffb527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/97254/earlypayout_es.jpg | 104.18.11.96 | 200 OK | 20 kB |
URL HTTP/2mx.staticnovi.com/media/97254/earlypayout_es.jpg IP104.18.11.96:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 309x130, components 3\012- data Hash6d7880326e92748c88d15a012684c8ab 3290d3ce4b48f215aa8f50e9a217499430a88eb2 a827bebc775cdde25c0e0ee49638b455f64b1a9e75412c1fabfe9244949640d5
GET /media/97254/earlypayout_es.jpg HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/jpeg
content-length: 19778
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 35
x-f-n: 01
x-f-n-t: 03
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef968ad00b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/97897/acelerador-de-parlay.jpg | 104.18.11.96 | 200 OK | 22 kB |
URL HTTP/2mx.staticnovi.com/media/97897/acelerador-de-parlay.jpg IP104.18.11.96:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 309x130, components 3\012- data Hash0d6af1c5be829c3d92e174e271adc1f3 ec561fdfeb0511ae48fa1248e51f9b15f79866d1 2289b21bff5ff6b043a7f298457b18fdd8e20372bac4f3a5f3b1b9b70772c22f
GET /media/97897/acelerador-de-parlay.jpg HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/jpeg
content-length: 21644
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 35
x-f-n: 03
x-f-n-t: 03
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef9688ce0b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/96436/crazytime-sm.png | 104.18.11.96 | 200 OK | 45 kB |
URL HTTP/2mx.staticnovi.com/media/96436/crazytime-sm.png IP104.18.11.96:0
Hashfca7e15403cd20836f07462e50f5df58 083de647f297a9615ffd0d0017677e02f3ea6268 23eb8447d0665a4319284dc189a43f8a90ce2988c14a0322d33487b5bc80df49
GET /media/96436/crazytime-sm.png HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/png
content-length: 44765
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 33
x-f-n: 01
x-f-n-t: 03
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef9689cefb527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mx.staticnovi.com/media/101186/rp-mx.jpg | 104.18.11.96 | 200 OK | 15 kB |
URL HTTP/2mx.staticnovi.com/media/101186/rp-mx.jpg IP104.18.11.96:0
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 304x132, components 3\012- data Hasha44d8575dbc5634f425cf8af1aa5fcd1 b965c0868345ab50313ba62c0e15818ccb923ade 84b240149b42a55f634e3dbaec38d2e849350c04e0a694703081f0652a71dc49
GET /media/101186/rp-mx.jpg HTTP/1.1
Host: mx.staticnovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:15 GMT
content-type: image/jpeg
content-length: 15345
cache-control: public, max-age=31536000
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-f-lo: 45
x-f-n: 03
x-f-n-t: 02
last-modified: Tue, 20 Dec 2022 19:40:55 GMT
cf-cache-status: EXPIRED
expires: Thu, 21 Dec 2023 07:41:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cef968acfdb527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mpsnare.iesnare.com/time.mp3?nocache=0.5502430673572593 | 54.228.71.178 | 206 Partial Content | 504 B |
URL HTTP/1.1mpsnare.iesnare.com/time.mp3?nocache=0.5502430673572593 IP54.228.71.178:0
File typeMPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data Hashcfe47da3367b896cf8fe9d23144e6294 5eb28e56c71ce7e851b99b4d90b4091e3090243a 2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.5502430673572593 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Server: nginx
Date: Wed, 21 Dec 2022 07:41:15 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
|
|
| mpsnare.iesnare.com/time.mp3?nocache=0.9680914203745853 | 54.195.39.4 | 206 Partial Content | 504 B |
URL HTTP/1.1mpsnare.iesnare.com/time.mp3?nocache=0.9680914203745853 IP54.195.39.4:0
File typeMPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data Hashcfe47da3367b896cf8fe9d23144e6294 5eb28e56c71ce7e851b99b4d90b4091e3090243a 2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.9680914203745853 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Server: nginx
Date: Wed, 21 Dec 2022 07:41:15 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
|
|
| c.clarity.ms/c.gif | 20.234.93.27 | 302 Found | 0 B |
IP20.234.93.27:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=2BFD91C7A9264A9D9CC5F7B3C9D224E1&RedC=c.clarity.ms&MXFR=179F3169A65C6AB52D9423E8A25C64EE
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=179F3169A65C6AB52D9423E8A25C64EE; domain=.clarity.ms; expires=Mon, 15-Jan-2024 07:41:16 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Wed, 21 Dec 2022 07:41:15 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| c.bing.com/c.gif?CtsSyncId=2BFD91C7A9264A9D9CC5F7B3C9D224E1&RedC=c.clarity.ms&MXFR=179F3169A65C6AB52D9423E8A25C64EE | 13.107.21.200 | 302 Found | 0 B |
URL HTTP/2c.bing.com/c.gif?CtsSyncId=2BFD91C7A9264A9D9CC5F7B3C9D224E1&RedC=c.clarity.ms&MXFR=179F3169A65C6AB52D9423E8A25C64EE IP13.107.21.200:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=2BFD91C7A9264A9D9CC5F7B3C9D224E1&RedC=c.clarity.ms&MXFR=179F3169A65C6AB52D9423E8A25C64EE HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.novibet.mx/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=2BFD91C7A9264A9D9CC5F7B3C9D224E1&MUID=3CD45457995E659C36F946D698AB64E8
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=3CD45457995E659C36F946D698AB64E8; domain=c.bing.com; expires=Mon, 15-Jan-2024 07:41:17 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F8E6C0375678494CA35411BA8CFEC9D9 Ref B: OSL30EDGE0218 Ref C: 2022-12-21T07:41:17Z
date: Wed, 21 Dec 2022 07:41:16 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| c.clarity.ms/c.gif?CtsSyncId=2BFD91C7A9264A9D9CC5F7B3C9D224E1&MUID=3CD45457995E659C36F946D698AB64E8 | 20.234.93.27 | 200 OK | 42 B |
URL HTTP/2c.clarity.ms/c.gif?CtsSyncId=2BFD91C7A9264A9D9CC5F7B3C9D224E1&MUID=3CD45457995E659C36F946D698AB64E8 IP20.234.93.27:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
File typeGIF image data, version 89a, 1 x 1\012- data Hash32023bb33cfb2a1990a4ef2d85b6ac16 23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1 99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=2BFD91C7A9264A9D9CC5F7B3C9D224E1&MUID=3CD45457995E659C36F946D698AB64E8 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.novibet.mx/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Mon, 12 Dec 2022 18:28:34 GMT
accept-ranges: bytes
etag: "ea79178b57ed91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Wed, 21-Dec-2022 07:51:17 GMT; path=/; SameSite=None; Secure;
date: Wed, 21 Dec 2022 07:41:16 GMT
content-length: 42
X-Firefox-Spdy: h2
|
|
| obs.cheqzone.com/mon | 35.172.245.152 | 200 OK | 0 B |
IP35.172.245.152:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1652
Origin: https://www.novibet.mx
Connection: keep-alive
Referer: https://www.novibet.mx/
Cookie: cg_uuid=3575e6f9d6c99522604f9b57ed5b50c5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.novibet.mx
content-type: application/json
date: Wed, 21 Dec 2022 07:41:17 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| p.teads.tv/teads-fellow.js | 184.24.45.54 | 200 OK | 7.1 kB |
URL HTTP/1.1p.teads.tv/teads-fellow.js IP184.24.45.54:0
File typeC source, ASCII text, with very long lines (25186), with no line terminators Hash2a55ef394f6c221e7a5c50df72009d13 9364b47cd53f3b013f44101fdf4fa89c09edb84d abb9bf5812c9d9e009db0609ba149dd5e1886256b8e04abf7ca8f4e83098b176
GET /teads-fellow.js HTTP/1.1
Host: p.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: icJ9nN5405FP4rr7bhKjlcqJ66NLvstWOsOnKwNZ8RhwkyPfTV8LS7+9riw1jzG0EWnl6BBpdtw=
x-amz-request-id: 72KB3TQH9HY00SAG
Last-Modified: Mon, 19 Dec 2022 12:48:08 GMT
ETag: "1a0e39569d27bbddfbf3c961132ea09d"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=185
Date: Wed, 21 Dec 2022 07:41:17 GMT
Content-Length: 7076
Connection: keep-alive
|
|
| obs.cheqzone.com/mon | 35.172.245.152 | 200 OK | 0 B |
IP35.172.245.152:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.cheqzone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1652
Origin: https://www.novibet.mx
Connection: keep-alive
Referer: https://www.novibet.mx/
Cookie: cg_uuid=3575e6f9d6c99522604f9b57ed5b50c5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.novibet.mx
content-type: application/json
date: Wed, 21 Dec 2022 07:41:17 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| cm.teads.tv/v2/advertiser?referer=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Fbtag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&buyer_pixel_id=3386 | 23.195.255.234 | 200 OK | 1.5 kB |
URL HTTP/1.1cm.teads.tv/v2/advertiser?referer=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Fbtag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&buyer_pixel_id=3386 IP23.195.255.234:0
Hash8f6178991157b61e8c9dd0e50036b626 ac08f64c9fb9f123f287030837382ba57cd1ccfa 472013a3c2355cf8bef61d5af674bf712afc9d4f48bb2365de803b0fefaeb6e9
GET /v2/advertiser?referer=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Fbtag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&buyer_pixel_id=3386 HTTP/1.1
Host: cm.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.novibet.mx/
Origin: https://www.novibet.mx
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 133
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.novibet.mx
Observe-Browsing-Topics: ?1
Origin-Trial: Az9xQo/imzWWuauBg0JngENQMoxulJzGzdGQ0VfUZDk7et2DJfmfUxfOWnHlwQiZRFG+Grc8bH8xWgOPW2ltjQQAAAB+eyJvcmlnaW4iOiJodHRwczovL3RlYWRzLnR2OjQ0MyIsImZlYXR1cmUiOiJQcml2YWN5U2FuZGJveEFkc0FQSXMiLCJleHBpcnkiOjE2ODA2NTI3OTksImlzU3ViZG9tYWluIjp0cnVlLCJpc1RoaXJkUGFydHkiOnRydWV9
Expires: Wed, 21 Dec 2022 07:41:17 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 21 Dec 2022 07:41:17 GMT
Connection: keep-alive
Set-Cookie: ar_debug=1; Path=/; HttpOnly; Secure; SameSite=None
|
|
| t.teads.tv/track?action=pageView&env=js-web&tag_version=6.10.1_df8028e&buyer_pixel_id=3386&referer=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Fbtag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&user_session_id=f14056fa-80b4-4ec8-bc30-fadbfb910f8c | 23.38.201.50 | 200 OK | 23 B |
URL HTTP/2t.teads.tv/track?action=pageView&env=js-web&tag_version=6.10.1_df8028e&buyer_pixel_id=3386&referer=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Fbtag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&user_session_id=f14056fa-80b4-4ec8-bc30-fadbfb910f8c IP23.38.201.50:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashda5b449fff36752a93779fa4067cd2eb 71a96eea77f21ab5f1819b96c4cedd5cd34476ca 328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /track?action=pageView&env=js-web&tag_version=6.10.1_df8028e&buyer_pixel_id=3386&referer=https%3A%2F%2Fwww.novibet.mx%2Fapuestas-deportivas%3Fbtag%3D2000136_138221033%26utm_source%3D2000136_rt.novibet.partners%26utm_medium%3Daffiliate%26utm_campaign%3DHOMEPAGEMX&user_session_id=f14056fa-80b4-4ec8-bc30-fadbfb910f8c HTTP/1.1
Host: t.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 23
cache-control: max-age=0, no-cache, no-store
expires: Sat, 26 Jul 1997 05:00:00 GMT
date: Wed, 21 Dec 2022 07:41:17 GMT
X-Firefox-Spdy: h2
|
|
| www.novibet.mx/signalr/connect?transport=webSockets&clientProtocol=2.1&connectionToken=hWN1ucmuSz6x%2Fz4AsgAkqGZUZAARG8oNA93o6njvTl2%2F82cNnYMAHBBF%2Bl5Cd0o5E4f8NIglusBqDDk1CtRrkegoymE6C%2BlTbA2NaNBD4UBp5qFrxz9aNoz8kXvlTaLf&connectionData=%5B%7B%22name%22%3A%22accountnotifications%22%7D%2C%7B%22name%22%3A%22cachenotifications%22%7D%5D&tid=9 | 104.18.3.202 | 101 Switching Protocols | 13 kB |
URL HTTP/1.1www.novibet.mx/signalr/connect?transport=webSockets&clientProtocol=2.1&connectionToken=hWN1ucmuSz6x%2Fz4AsgAkqGZUZAARG8oNA93o6njvTl2%2F82cNnYMAHBBF%2Bl5Cd0o5E4f8NIglusBqDDk1CtRrkegoymE6C%2BlTbA2NaNBD4UBp5qFrxz9aNoz8kXvlTaLf&connectionData=%5B%7B%22name%22%3A%22accountnotifications%22%7D%2C%7B%22name%22%3A%22cachenotifications%22%7D%5D&tid=9 IP104.18.3.202:0
Hashf8949bc5cecaaa19e71fd8353efbdd59 be0447c368dd26ec10206755a708c1ce842f8840 ac3eee788bd69e9bd7fcfde38873fdcb72658adfb284ea83d9686d1545389782
GET /signalr/connect?transport=webSockets&clientProtocol=2.1&connectionToken=hWN1ucmuSz6x%2Fz4AsgAkqGZUZAARG8oNA93o6njvTl2%2F82cNnYMAHBBF%2Bl5Cd0o5E4f8NIglusBqDDk1CtRrkegoymE6C%2BlTbA2NaNBD4UBp5qFrxz9aNoz8kXvlTaLf&connectionData=%5B%7B%22name%22%3A%22accountnotifications%22%7D%2C%7B%22name%22%3A%22cachenotifications%22%7D%5D&tid=9 HTTP/1.1
Host: www.novibet.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.novibet.mx
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0fdU5Vsvfpf/DFcOw3f6cw==
Connection: keep-alive, Upgrade
Cookie: srv_id=4647dbdb9b9a090dd5676f55f73ecebf; ASP.NET_SessionId=ayjp4z5uvpwfxg12ryktppbs; affUrlC=value%3dhttps%3a%2f%2fwww.novibet.mx%2fapuestas-deportivas; BBPreferences=lang%3des-MX%3btimeZone%3dCentral+Standard+Time+(Mexico)%3bcountry%3dMX; btagC=value%3d2000136_138221033; _gcl_au=1.1.1622803985.1671608491; _cq_duid=1.1671608491.opAg4LHFBYBv3VJQ; _cq_suid=1.1671608491.OP0zN0W73xT9invw; _ga_NWLQ3RSLR7=GS1.1.1671608491.1.1.1671608494.0.0.0; _ga=GA1.2.635671489.1671608492; _ga_N7E2VQYB23=GS1.1.1671608491.1.1.1671608494.0.0.0; _uetsid=e3281c00810211ed9d02519b6371b10a; _uetvid=e3281570810211edab12db76ed7b9bf0; _hjSessionUser_3268455=eyJpZCI6ImE0MTY4MWE1LTEyNzctNTg5Ny05N2Y4LWFmNGZjNmUxMDNiNiIsImNyZWF0ZWQiOjE2NzE2MDg0OTI1NjksImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_3268455=eyJpZCI6ImZmNDcyZTExLTIyMWYtNDllMi1iOTUyLTFjMDMyOGU4ZTgzZiIsImNyZWF0ZWQiOjE2NzE2MDg0OTI2MjYsImluU2FtcGxlIjpmYWxzZX0=; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; __qca=P0-259729775-1671608491906; _fbp=fb.1.1671608492726.502019048; HomePagePreference=sports; _clck=g4juje|1|f7l|0; _gid=GA1.2.1534313836.1671608494; _dc_gtm_UA-16924722-1=1; _dc_gtm_UA-16924722-3=1; _clsk=8knh3a|1671608495751|1|0|b.clarity.ms/collect; tfpsi=f14056fa-80b4-4ec8-bc30-fadbfb910f8c
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 21 Dec 2022 07:41:17 GMT
Connection: upgrade
Set-Cookie: srv_id=4647dbdb9b9a090dd5676f55f73ecebf; httponly; samesite=lax; path=/
Upgrade: websocket
Vary: Origin
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: https://www.novibet.mx
Access-Control-Allow-Credentials: true
Sec-WebSocket-Accept: bDDd999T4CvljWzlNZNuY+GnQa0=
X-Powered-By: ASP.NET
x-f-lo: 35
x-f-n: 03
x-f-n-t: 02
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77cef97acf50b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Open+Sans+Condensed:300,300i,700|Open+Sans:400,600,700&subset=greek-ext | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Open+Sans+Condensed:300,300i,700|Open+Sans:400,600,700&subset=greek-ext IP142.250.74.106:0
GET /css?family=Open+Sans+Condensed:300,300i,700|Open+Sans:400,600,700&subset=greek-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 21 Dec 2022 07:41:10 GMT
date: Wed, 21 Dec 2022 07:41:10 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| stream-544.optimove.net/ | 107.154.132.121 | 200 OK | 0 B |
IP107.154.132.121:0
POST / HTTP/1.1
Host: stream-544.optimove.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.novibet.mx/
Content-Type: application/json
X-Request-ID: d5caed5b-9c53-4683-bfb5-72d24607ff91
Origin: https://www.novibet.mx
Content-Length: 597
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-powered-by: Express
access-control-allow-origin: *
content-type: application/json; charset=utf-8
etag: W/"31-D0BkyXoMaxRiybROZp4l8baA0Bc"
date: Wed, 21 Dec 2022 07:41:11 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
set-cookie: visid_incap_2816538=JHr8FpHITyqycrVl0ycYj5e4omMAAAAAQUIPAAAAAAAHnZQdTLpaq2ScoHj47IUT; expires=Wed, 20 Dec 2023 22:34:04 GMT; HttpOnly; path=/; Domain=.optimove.net
incap_ses_721_2816538=JrWCSCULbW8agx3384EBCpe4omMAAAAAtm2Wnw5afCBdMmZtSdn5fA==; path=/; Domain=.optimove.net
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 7-48886932-48886940 PNYN RT(1671608471174 126) q(0 0 0 2) r(0 0) U6
X-Firefox-Spdy: h2
|
|
| secure.quantserve.com/quant.js | 91.228.74.208 | 200 OK | 0 B |
URL HTTP/2secure.quantserve.com/quant.js IP91.228.74.208:0
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:12 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "StHfV9prSwQMxjKWocWEFw=="
expires: Wed, 28 Dec 2022 07:41:12 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| www.clarity.ms/tag/uet/138002596 | 13.107.213.53 | 200 OK | 0 B |
URL HTTP/2www.clarity.ms/tag/uet/138002596 IP13.107.213.53:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /tag/uet/138002596 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=3d949dac459446c3bc0fb3b3d185ab36.20221221.20231221; expires=Thu, 21 Dec 2023 07:41:13 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:593e4080-f032-4d00-a652-e17f01252a9d
x-cache: CONFIG_NOCACHE
x-azure-ref: 0mbiiYwAAAACbuMjNUEyUS6nmQ37lGx6DU1ZHMjBFREdFMDYyMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 21 Dec 2022 07:41:12 GMT
X-Firefox-Spdy: h2
|
|
| in.hotjar.com/api/v2/client/sites/3268455/visit-data?sv=7 | 34.250.189.249 | 200 OK | 0 B |
URL HTTP/2in.hotjar.com/api/v2/client/sites/3268455/visit-data?sv=7 IP34.250.189.249:0
POST /api/v2/client/sites/3268455/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 129
Origin: https://www.novibet.mx
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:13 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
|
|
| stream-544.optimove.net/ | 107.154.132.121 | 200 OK | 0 B |
IP107.154.132.121:0
POST / HTTP/1.1
Host: stream-544.optimove.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.novibet.mx/
Content-Type: application/json
X-Request-ID: 244ddbc9-0389-4950-a1e3-206c6b35de00
Origin: https://www.novibet.mx
Content-Length: 679
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-powered-by: Express
access-control-allow-origin: *
content-type: application/json; charset=utf-8
etag: W/"31-xV+bToclQ+b4zTAWCpuL/FYIz9w"
date: Wed, 21 Dec 2022 07:41:17 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
set-cookie: visid_incap_2816538=JHr8FpHITyqycrVl0ycYj5e4omMAAAAAQUIPAAAAAAAHnZQdTLpaq2ScoHj47IUT; expires=Wed, 20 Dec 2023 22:34:04 GMT; HttpOnly; path=/; Domain=.optimove.net
incap_ses_721_2816538=by1PWNb3Nlsagx3384EBCpy4omMAAAAAF/coQGLmPQhNpK/WJi62+A==; path=/; Domain=.optimove.net
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 7-48886932-48886940 PNYN RT(1671608471174 5383) q(0 0 0 1) r(1 1) U6
X-Firefox-Spdy: h2
|
|
| www.novibet.mx/apuestas-deportivas?token=register&btag=2000136_138221033&utm_source=2000136_rt.novibet.partners&utm_medium=affiliate&utm_campaign=HOMEPAGEMX | 104.18.3.202 | 200 OK | 0 B |
URL HTTP/2www.novibet.mx/apuestas-deportivas?token=register&btag=2000136_138221033&utm_source=2000136_rt.novibet.partners&utm_medium=affiliate&utm_campaign=HOMEPAGEMX IP104.18.3.202:0
GET /apuestas-deportivas?token=register&btag=2000136_138221033&utm_source=2000136_rt.novibet.partners&utm_medium=affiliate&utm_campaign=HOMEPAGEMX HTTP/1.1
Host: www.novibet.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 21 Dec 2022 07:41:10 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cache-control: no-cache
last-modified: Fri, 16 Dec 2022 14:43:42 GMT
x-powered-by: ASP.NET
x-f-lo: 35
x-f-n: 01
x-f-n-t: 02
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77cef94d3fce0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-N3X5RLF | 142.250.74.168 | 200 OK | 0 B |
URL HTTP/2www.googletagmanager.com/gtm.js?id=GTM-N3X5RLF IP142.250.74.168:0
GET /gtm.js?id=GTM-N3X5RLF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Dec 2022 07:41:11 GMT
expires: Wed, 21 Dec 2022 07:41:11 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Dec 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79282
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| static.hotjar.com/c/hotjar-3268455.js?sv=7 | 54.230.111.66 | 200 OK | 0 B |
URL HTTP/2static.hotjar.com/c/hotjar-3268455.js?sv=7 IP54.230.111.66:0
GET /c/hotjar-3268455.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 21 Dec 2022 07:41:12 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/5f4842ca5a617d12945c750a83fbc8bb
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UBIBmR76xjX0DwlOCBnnWxTrbgiMSkHz6un6px_VJzsXJMEPrmB0fw==
X-Firefox-Spdy: h2
|
|
| www.clarity.ms/eus2/s/0.7.1/clarity.js | 13.107.213.53 | 200 OK | 0 B |
URL HTTP/2www.clarity.ms/eus2/s/0.7.1/clarity.js IP13.107.213.53:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /eus2/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.novibet.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d913c18f6c839e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-azure-ref-originshield: 0oGaiYwAAAABPwXi2PTd9SISmJE0l8mnUQU1TMDRFREdFMTkxMwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
x-azure-ref: 0mbiiYwAAAAAWoe8x1LK2SLxfdeM6IWMkU1ZHMjBFREdFMDYyMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 21 Dec 2022 07:41:13 GMT
X-Firefox-Spdy: h2
|
|
| realtime-544.optimove.net/reportEvent | 107.154.132.121 | 200 OK | 0 B |
URL HTTP/2realtime-544.optimove.net/reportEvent IP107.154.132.121:0
POST /reportEvent HTTP/1.1
Host: realtime-544.optimove.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.novibet.mx/
Content-Type: application/json
X-Request-ID: 0d97c405-3c5b-4044-8ba6-4f131ea0f553
Origin: https://www.novibet.mx
Content-Length: 679
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With,Content-Type
content-type: application/json
date: Wed, 21 Dec 2022 07:41:17 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
set-cookie: visid_incap_2819049=81KUlzNbQKm6cFPukjTKhZe4omMAAAAAQUIPAAAAAACli5Eg4SShAuEgOS2spJ52; expires=Wed, 20 Dec 2023 22:34:04 GMT; HttpOnly; path=/; Domain=.optimove.net
incap_ses_721_2819049=OjvMUL7q5GpLgx3384EBCpy4omMAAAAAIuYm8UveXAcAm7QQsNneIA==; path=/; Domain=.optimove.net
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 7-48886932-48886981 PNYN RT(1671608471174 5533) q(0 0 0 0) r(0 0) U6
X-Firefox-Spdy: h2
|
|
104.18.2.202