| firefox.settings.services.mozilla.com/v1/ | 143.204.55.115 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.115:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashb593eb39329cfe060d55be5e4a5405e2 78e46c1028e9f94f8569303ad2d90d7df13a059a 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 04 Sep 2022 19:44:19 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SRx36WC0xrkAtZapcHWI9fmik0RICnOFNQyZCsNUPA08MeQXKmDERQ==
Age: 932
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain | 143.204.55.49 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain IP143.204.55.49:0
File typePEM certificate\012- , ASCII text Hash742edb4038f38bc533514982f3d2e861 cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1 b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 04 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cBfvPbylOz6wCLxrbaNBAEhEn7xZig4OBcnDqBeY_ce1gztf6naOcA==
age: 67474
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd931e0142ef5ffe9cdb4c4c6bfcb9bc9 d9c4caf525e8926b042a14f38d374cc4033ed768 f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2257
Expires: Sun, 04 Sep 2022 20:37:28 GMT
Date: Sun, 04 Sep 2022 19:59:51 GMT
Connection: keep-alive
|
|
| eu.gotbstgifts.click/za/i13s22/brand/loot/?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=5a5fd104-d4f2-4417-a787-24b2c6d68a43&osv=Windows%2010.0&isp=Google%20Cloud&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjYyMzIxNTQ0IiwiaGFzaCI6IjgwYmRhODM2NmU5MWU2ZDhjZjEwMzA4OGRkZTJhZGQzMzA2Y2Y3MjcifQ==&td=ss.redirectsstm.click&bemobdata=c=74202da1-1832-4db6-ab14-1d0066c7b10d..l=5a5fd104-d4f2-4417-a787-24b2c6d68a43..a=0..b=2..r=ss.redirectsstm.click | 164.92.232.111 | 302 Found | 0 B |
URL HTTP/1.1eu.gotbstgifts.click/za/i13s22/brand/loot/?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=5a5fd104-d4f2-4417-a787-24b2c6d68a43&osv=Windows%2010.0&isp=Google%20Cloud&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjYyMzIxNTQ0IiwiaGFzaCI6IjgwYmRhODM2NmU5MWU2ZDhjZjEwMzA4OGRkZTJhZGQzMzA2Y2Y3MjcifQ==&td=ss.redirectsstm.click&bemobdata=c=74202da1-1832-4db6-ab14-1d0066c7b10d..l=5a5fd104-d4f2-4417-a787-24b2c6d68a43..a=0..b=2..r=ss.redirectsstm.click IP164.92.232.111:0 ASN#14061 DIGITALOCEAN-ASN
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /za/i13s22/brand/loot/?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=5a5fd104-d4f2-4417-a787-24b2c6d68a43&osv=Windows%2010.0&isp=Google%20Cloud&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjYyMzIxNTQ0IiwiaGFzaCI6IjgwYmRhODM2NmU5MWU2ZDhjZjEwMzA4OGRkZTJhZGQzMzA2Y2Y3MjcifQ==&td=ss.redirectsstm.click&bemobdata=c=74202da1-1832-4db6-ab14-1d0066c7b10d..l=5a5fd104-d4f2-4417-a787-24b2c6d68a43..a=0..b=2..r=ss.redirectsstm.click HTTP/1.1
Host: eu.gotbstgifts.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Sun, 04 Sep 2022 19:59:51 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Location: https://7ktpj.bemobtrcks.com/go/75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=5a5fd104-d4f2-4417-a787-24b2c6d68a43&osv=Windows%2010.0&isp=Google%20Cloud&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjYyMzIxNTQ0IiwiaGFzaCI6IjgwYmRhODM2NmU5MWU2ZDhjZjEwMzA4OGRkZTJhZGQzMzA2Y2Y3MjcifQ==&td=ss.redirectsstm.click&bemobdata=c=74202da1-1832-4db6-ab14-1d0066c7b10d..l=5a5fd104-d4f2-4417-a787-24b2c6d68a43..a=0..b=2..r=ss.redirectsstm.click
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:59:51 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash19800d9c02922e513a8544e68cd1d4c3 62abaa99f7e67fbeec39e88c8f7b3ea256e7dddf c36451e8b2cb6841c397c86c8ad3cc52d72dd8151d03fcf0116518e23789e180
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C36451E8B2CB6841C397C86C8AD3CC52D72DD8151D03FCF0116518E23789E180"
Last-Modified: Sun, 04 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11684
Expires: Sun, 04 Sep 2022 23:14:35 GMT
Date: Sun, 04 Sep 2022 19:59:51 GMT
Connection: keep-alive
|
|
| 7ktpj.bemobtrcks.com/go/75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=5a5fd104-d4f2-4417-a787-24b2c6d68a43&osv=Windows%2010.0&isp=Google%20Cloud&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjYyMzIxNTQ0IiwiaGFzaCI6IjgwYmRhODM2NmU5MWU2ZDhjZjEwMzA4OGRkZTJhZGQzMzA2Y2Y3MjcifQ==&td=ss.redirectsstm.click&bemobdata=c=74202da1-1832-4db6-ab14-1d0066c7b10d..l=5a5fd104-d4f2-4417-a787-24b2c6d68a43..a=0..b=2..r=ss.redirectsstm.click | 3.70.16.242 | 302 Found | 260 B |
URL HTTP/27ktpj.bemobtrcks.com/go/75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=5a5fd104-d4f2-4417-a787-24b2c6d68a43&osv=Windows%2010.0&isp=Google%20Cloud&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjYyMzIxNTQ0IiwiaGFzaCI6IjgwYmRhODM2NmU5MWU2ZDhjZjEwMzA4OGRkZTJhZGQzMzA2Y2Y3MjcifQ==&td=ss.redirectsstm.click&bemobdata=c=74202da1-1832-4db6-ab14-1d0066c7b10d..l=5a5fd104-d4f2-4417-a787-24b2c6d68a43..a=0..b=2..r=ss.redirectsstm.click IP3.70.16.242:0
File typeHTML document, ASCII text, with no line terminators Hashb6410d35e6974e797d19ae714b295102 16e8c3ad7f00e89a108e4060a6101351c24bfdf4 03c99c98dcaaff674bf047d84e9d3a33355bdb8110e5a796c3946eae416017ee
GET /go/75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=5a5fd104-d4f2-4417-a787-24b2c6d68a43&osv=Windows%2010.0&isp=Google%20Cloud&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjYyMzIxNTQ0IiwiaGFzaCI6IjgwYmRhODM2NmU5MWU2ZDhjZjEwMzA4OGRkZTJhZGQzMzA2Y2Y3MjcifQ==&td=ss.redirectsstm.click&bemobdata=c=74202da1-1832-4db6-ab14-1d0066c7b10d..l=5a5fd104-d4f2-4417-a787-24b2c6d68a43..a=0..b=2..r=ss.redirectsstm.click HTTP/1.1
Host: 7ktpj.bemobtrcks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: openresty
date: Sun, 04 Sep 2022 19:59:51 GMT
content-type: text/html; charset=utf-8
content-length: 260
access-control-allow-origin: *
location: https://ungroudonchan.com/4/4598789?ymid=5NaR5SGy3kdMQyUo8yVytS&var=074b5bba-80ab-4a33-86df-edbd736e35eb
set-cookie: bemob-uniq-visit:75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3=1; Domain=7ktpj.bemobtrcks.com; Path=/; Expires=Mon, 05 Sep 2022 19:59:51 GMT; HttpOnly; Secure; SameSite=None
bemob-rotation:75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3:random:bcad9fbed5d562e339b2ddf45707a26c=0-0-10; Domain=7ktpj.bemobtrcks.com; Path=/; Expires=Mon, 05 Sep 2022 19:59:51 GMT; HttpOnly; Secure; SameSite=None
bemob-click-id=5NaR5SGy3kdMQyUo8yVytS; Domain=7ktpj.bemobtrcks.com; Path=/; Expires=Mon, 05 Sep 2022 19:59:51 GMT; HttpOnly; Secure; SameSite=None
vary: Accept
x-response-time: 17.643ms
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash99349a3f0f77bf9ffb93a0dd112106de 996fdc95fc85fa871164d00ac8b5bc1c0218625a c8d656fb3e812d499978e1c4da72345fcd9ce6e666d7486c4db718405d789546
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8D656FB3E812D499978E1C4DA72345FCD9CE6E666D7486C4DB718405D789546"
Last-Modified: Fri, 02 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5625
Expires: Sun, 04 Sep 2022 21:33:37 GMT
Date: Sun, 04 Sep 2022 19:59:52 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.115 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.115:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 04 Sep 2022 19:38:16 GMT
Expires: Sun, 04 Sep 2022 20:06:12 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vXOHmAW6Z5ceDwpumk5nBMEIV23RXB3lqbfuo-pkzhUtEbTbkswAzQ==
Age: 1296
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash77d035f38a45e8a1ec30d5fe9611880b 01cf34de95257da64dac90edf5a86203f1160271 7dc687d6bb1679ba5567e58b4f8c1e78766e7ee36273ba7f62068c595d57f7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6378
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:59:52 GMT
Last-Modified: Sun, 04 Sep 2022 18:13:34 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash54654bf7822d6389fdcc475ec52b8f31 53ed44f493d59d01d4fb992da7e5f36a509835fc 1cede5f52ada1ea9830ba48b91888162a7cc7b4530abd9575821579329f3a0ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1CEDE5F52ADA1EA9830BA48B91888162A7CC7B4530ABD9575821579329F3A0EC"
Last-Modified: Sun, 04 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2389
Expires: Sun, 04 Sep 2022 20:39:41 GMT
Date: Sun, 04 Sep 2022 19:59:52 GMT
Connection: keep-alive
|
|
| ungroudonchan.com/favicon.ico | 139.45.197.238 | 204 No Content | 0 B |
URL HTTP/2ungroudonchan.com/favicon.ico IP139.45.197.238:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /favicon.ico HTTP/1.1
Host: ungroudonchan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: OAID=1cffc2c91f6746cb9cff5debbeba4f2b; oaidts=1662321592
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sun, 04 Sep 2022 19:59:52 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 471 B |
IP172.64.155.188:0
Hash41ea586f0e66dcd46f50ab3938543b12 d7a3d6a40066652fc85cdaab9e613246b6af4aab 60b133ec87e89ec28689b760f6ce265eee0e935dca93f42543885a05f8b19a79
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Sep 2022 19:59:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Sep 2022 18:25:21 GMT
Expires: Thu, 08 Sep 2022 18:25:20 GMT
Etag: "d7a3d6a40066652fc85cdaab9e613246b6af4aab"
Cache-Control: max-age=339327,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74594ee0fc30b509-OSL
|
|
| eu.can-get-so.me/pr?ids=wbwslwlvdta&hash=ea249b91a8a738ab&ext_req_id=590382150411620448&subid1=4598789&cost=0.000256&rdk=rk1 | 157.90.33.73 | 302 Found | 0 B |
URL HTTP/2eu.can-get-so.me/pr?ids=wbwslwlvdta&hash=ea249b91a8a738ab&ext_req_id=590382150411620448&subid1=4598789&cost=0.000256&rdk=rk1 IP157.90.33.73:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pr?ids=wbwslwlvdta&hash=ea249b91a8a738ab&ext_req_id=590382150411620448&subid1=4598789&cost=0.000256&rdk=rk1 HTTP/1.1
Host: eu.can-get-so.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sun, 04 Sep 2022 19:59:52 GMT
content-length: 0
referrer-policy: no-referrer
location: http://35.227.234.222/2/PU_NO_RA_CS_DT_MEGARUSH?source=643178&geo=NO&device=desktop
set-cookie: rauid=xlj9gswXSH-164AkJNajRQ; expires=Mon, 04 Sep 2023 19:59:52 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| my.rtmark.net/img.gif?f=merge&userId=1cffc2c91f6746cb9cff5debbeba4f2b | 139.45.195.8 | 200 OK | 43 B |
URL HTTP/2my.rtmark.net/img.gif?f=merge&userId=1cffc2c91f6746cb9cff5debbeba4f2b IP139.45.195.8:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashb4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=merge&userId=1cffc2c91f6746cb9cff5debbeba4f2b HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:59:52 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=1cffc2c91f6746cb9cff5debbeba4f2b; expires=Mon, 04 Sep 2023 19:59:52 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| 35.227.234.222/2/PU_NO_RA_CS_DT_MEGARUSH?source=643178&geo=NO&device=desktop | 35.227.234.222 | 302 Found | 0 B |
URL HTTP/1.135.227.234.222/2/PU_NO_RA_CS_DT_MEGARUSH?source=643178&geo=NO&device=desktop IP35.227.234.222:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2/PU_NO_RA_CS_DT_MEGARUSH?source=643178&geo=NO&device=desktop HTTP/1.1
Host: 35.227.234.222
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx/1.14.0 (Ubuntu)
Date: Sun, 04 Sep 2022 19:59:52 GMT
Content-Length: 0
Location: https://media.megarushaffiliates.com/redirect.aspx?pid=6426&bid=1575
Via: 1.1 google
|
|
| push.services.mozilla.com/ | 34.210.39.83 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.210.39.83:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2EmTiy/lpLCo6EidLLNo4Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Y0O2qTeVfGhmN3Sw5L2lxvFZlZE=
|
|
| media.megarushaffiliates.com/redirect.aspx?pid=6426&bid=1575 | 23.36.79.9 | 301 Moved Permanently | 0 B |
URL HTTP/2media.megarushaffiliates.com/redirect.aspx?pid=6426&bid=1575 IP23.36.79.9:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=6426&bid=1575 HTTP/1.1
Host: media.megarushaffiliates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 0
location: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Sun, 04 Sep 2022 19:59:52 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 04 Sep 2022 19:59:52 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a6426%2c%22BID%22%3a1575%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1662321592676)%5c%2f%22%2c%22CookieTag%22%3a%2215756426451240919C2022941959%22%7d%5d; SameSite=None;; domain=.megarushaffiliates.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%223909810%7c1%22%7d%5d; domain=.megarushaffiliates.com; expires=Tue, 04-Sep-3021 19:59:52 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=20, origin; dur=38
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash235c4bb933ade16156207503dcdcab19 087f903014ee1f8cb496def428d9f4af3193f837 9be2b685097586b699a5b3f7b7f6f6a3ec939c316f5ae82bf22c5e41753460d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:59:52 GMT
Server: ECS (amb/6BA7)
Content-Length: 279
|
|
| www.megarush.com/fonts/Inter-ExtraBold.woff2 | 104.22.31.168 | 200 OK | 10 kB |
URL HTTP/2www.megarush.com/fonts/Inter-ExtraBold.woff2 IP104.22.31.168:0
File typeWeb Open Font Format (Version 2), TrueType, length 10484, version 3.1245\012- data Hashd23da8f3e4e37a17c1d3ed7a1a11d429 9dda69da77b703d438db74468375685f6983625d a936dafc61b666c42182807bb1c5e564ec73c07f8b6fb7352d15090db9165a7c
GET /fonts/Inter-ExtraBold.woff2 HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:52 GMT
content-type: font/woff2
content-length: 10484
last-modified: Thu, 25 Aug 2022 14:33:43 GMT
etag: "63078847-28f4"
access-control-allow-origin: *
cache-control: max-age=7200
cf-cache-status: HIT
age: 7129
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594ee378e5b4fa-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/fonts/Inter-Bold.woff2 | 104.22.31.168 | 200 OK | 10 kB |
URL HTTP/2www.megarush.com/fonts/Inter-Bold.woff2 IP104.22.31.168:0
File typeWeb Open Font Format (Version 2), TrueType, length 10508, version 3.1245\012- data Hasha2517956b299e0c02bfc2a92eb05f623 ae4c129ebfe3aec739aac5662d2ef9fcaa4d80db 412a6a99c5283c71838322a7f25e7a0bc4dd324e013f88a202b56af736b13d37
GET /fonts/Inter-Bold.woff2 HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:52 GMT
content-type: font/woff2
content-length: 10508
last-modified: Thu, 25 Aug 2022 14:33:43 GMT
etag: "63078847-290c"
access-control-allow-origin: *
cache-control: max-age=7200
cf-cache-status: HIT
age: 7129
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594ee388eeb4fa-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D | 104.22.31.168 | 200 OK | 13 kB |
URL HTTP/2www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D IP104.22.31.168:0
Hash08fdb67261dbe2dbfe17d0c6d1d21b9b c777ede28b38e6115614b3d2020dd0f0e26ed5b0 9c4dddbdc60f4a3698001238adedb83bd51c270f1b53ec512ab88dda42e3c9cc
GET /nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:52 GMT
content-type: text/html
last-modified: Thu, 25 Aug 2022 14:33:43 GMT
vary: Accept-Encoding
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
set-cookie: geoip_country=no; Path=/;
webserver=megarush-prd-58d9bc46b7-gnph4; Domain=www.megarush.com; Path=/;
geoip_country=no; Domain=www.megarush.com; Path=/;
LanguageCode=nb-no; Domain=www.megarush.com; Path=/;
73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; path=/; HttpOnly; Secure; SameSite=None
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74594ee2eff2b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/fonts/DS-Digital.woff2 | 104.22.31.168 | 200 OK | 776 B |
URL HTTP/2www.megarush.com/fonts/DS-Digital.woff2 IP104.22.31.168:0
File typeWeb Open Font Format (Version 2), TrueType, length 776, version 1.0\012- data Hash789f060683abdb5574a93bf59c7dd2e2 17b677d648dfdc9e290a25e8c137ebb0448c069b 375c5411d43daa0ccc1234d8bf20effba17a231408ab44fa17c96b2f9a995248
GET /fonts/DS-Digital.woff2 HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:52 GMT
content-type: font/woff2
content-length: 776
last-modified: Thu, 25 Aug 2022 14:33:43 GMT
etag: "63078847-308"
access-control-allow-origin: *
cache-control: max-age=7200
cf-cache-status: HIT
age: 5847
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594ee388f6b4fa-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashcc6ea3e01d1d6b8c4b28ff64d3b795a7 017457c6f5a63157102485a956c667aad36d33ef e6fe903f67363d3e92b929e274f0de7c2f6a15b6df1806198199440ed0fe221e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:59:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtm.js?id=GTM-K4GPX49 | 142.250.74.72 | 200 OK | 50 kB |
URL HTTP/2www.googletagmanager.com/gtm.js?id=GTM-K4GPX49 IP142.250.74.72:0
File typeASCII text, with very long lines (24751) Hash9b63571bca855b221d6583dc50574222 143a3aaced534deff04a7f643111f7ad1b7d362f 25e82920878867dd5c846bcceb9655e22a6fe38c7a8a0282ecd60822be7011a1
GET /gtm.js?id=GTM-K4GPX49 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Sep 2022 19:59:52 GMT
expires: Sun, 04 Sep 2022 19:59:52 GMT
cache-control: private, max-age=900
last-modified: Sun, 04 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 50460
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashcc6ea3e01d1d6b8c4b28ff64d3b795a7 017457c6f5a63157102485a956c667aad36d33ef e6fe903f67363d3e92b929e274f0de7c2f6a15b6df1806198199440ed0fe221e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:59:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.megarush.com/favicons/favicon-194x194.png | 104.22.31.168 | 200 OK | 12 kB |
URL HTTP/2www.megarush.com/favicons/favicon-194x194.png IP104.22.31.168:0
File typePNG image data, 194 x 194, 8-bit/color RGBA, non-interlaced\012- data Hash3bc9ecb2b8d9e78d83d49da52c0292fc b13fda2aa7ff6d2d185a90dbe6446ad52f63d244 9b35e254d53d3c4b6f0ce1185de9463355d340808f64b0e831162fb03cf5b39c
GET /favicons/favicon-194x194.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:53 GMT
content-type: image/png
content-length: 11668
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: "6123a103-2d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 32531736
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594ee64d66b4fa-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/base.css | 104.22.31.168 | 200 OK | 1.8 kB |
URL HTTP/2www.megarush.com/base.css IP104.22.31.168:0
Hash4c1acc9cf9b5a55e113a033df95eabee 666671fd203e2b6cfb2f7c8dbd7d7bb4481301f3 39df773bc3f8c6ebbf1880531ea707aff1966faec7d4153e4939a5a9fb79e938
GET /base.css HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:52 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=3913
access-control-allow-origin: *
cache-control: max-age=7200
etag: W/"63078847-f49"
expires: Sun, 28 Aug 2022 07:31:03 GMT
last-modified: Thu, 25 Aug 2022 14:33:43 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 447
server: cloudflare
cf-ray: 74594ee388f7b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| d3mi6d1ao3fzsg.cloudfront.net/webpush/1/webpush.min.js | 54.230.245.158 | 200 OK | 16 kB |
URL HTTP/1.1d3mi6d1ao3fzsg.cloudfront.net/webpush/1/webpush.min.js IP54.230.245.158:0
File typeASCII text, with very long lines (16536) Hash9f2263de140cc78c0737d17051307016 0174dfe38c88f9e7043b002fb9131c7a71399d77 17ada4aeba85fbedca030d812ae829162ed2ad5d7a96d5c05b2b288e801a1b3a
GET /webpush/1/webpush.min.js HTTP/1.1
Host: d3mi6d1ao3fzsg.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 16537
Connection: keep-alive
Last-Modified: Thu, 27 May 2021 15:02:08 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 04 Sep 2022 19:53:22 GMT
ETag: "9f2263de140cc78c0737d17051307016"
X-Cache: Hit from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: J0Qa0PsrUYvPYhDEeCv1LL8rai5P-JW6-2c-eneeVTDCI4Q-5ZgBTg==
Age: 392
|
|
| megalotto-api.gigmagic.io/v2?key=5c7e3e9c1c62609cee83f960&isDesktopDevice=true&sid=631503b52d6fe9c0e1808a17 | 104.18.38.157 | 101 Switching Protocols | 0 B |
URL HTTP/1.1megalotto-api.gigmagic.io/v2?key=5c7e3e9c1c62609cee83f960&isDesktopDevice=true&sid=631503b52d6fe9c0e1808a17 IP104.18.38.157:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2?key=5c7e3e9c1c62609cee83f960&isDesktopDevice=true&sid=631503b52d6fe9c0e1808a17 HTTP/1.1
Host: megalotto-api.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.megarush.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qDG6JMJplyJFpKKiTlSEXg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 04 Sep 2022 19:59:53 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: eKx+rpJbVyEtYY/N5aERCD1KYTM=
set-cookie: e9ef0023e1df886bed2d1501b6b20a23=5e4e526b31225b8d4c9bbe34aedc534e; path=/; HttpOnly; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74594ee6be370b65-OSL
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 344 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashe6f21e6dcc82640fa73c24c68bbef9f7 4ea1f99b09786bdb62f10d2f56df917bd389ef7c e5805724b1da7b1458a913b52ff1f16a9e0560407784da836f70b60223f73dc6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "E5805724B1DA7B1458A913B52FF1F16A9E0560407784DA836F70B60223F73DC6"
Last-Modified: Sat, 03 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3657
Expires: Sun, 04 Sep 2022 21:00:50 GMT
Date: Sun, 04 Sep 2022 19:59:53 GMT
Connection: keep-alive
|
|
| megalotto-static.gigmagic.io/translations/no.json | 172.64.149.99 | 200 OK | 75 kB |
URL HTTP/2megalotto-static.gigmagic.io/translations/no.json IP172.64.149.99:0
File typeJSON data\012- , Unicode text, UTF-8 text, with very long lines (65298), with no line terminators Hashbf20063ff80611f4c90722ee80079cc7 33b4e13c5ecdd4dd17d1da7cc62d7c2c6bfdb9a6 cd6c2e943ba34649dc851021827f2950cf3b346d74ad9c87fc7d5d8e40cdd448
GET /translations/no.json HTTP/1.1
Host: megalotto-static.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/
Origin: https://www.megarush.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:53 GMT
content-type: application/json; charset=utf-8
content-length: 75144
access-control-allow-origin: *
access-control-allow-methods: GET, POST
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Wed, 31 Aug 2022 11:28:51 GMT
etag: "bf20063ff80611f4c90722ee80079cc7"
content-encoding: gzip
accept-ranges: bytes
set-cookie: e242caeacb7729c5149f03e087bd04c7=1b3a24f4123fe071faad6589460b775b; path=/; HttpOnly; Secure; SameSite=None
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74594ee77b671c16-OSL
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 344 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashe6f21e6dcc82640fa73c24c68bbef9f7 4ea1f99b09786bdb62f10d2f56df917bd389ef7c e5805724b1da7b1458a913b52ff1f16a9e0560407784da836f70b60223f73dc6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "E5805724B1DA7B1458A913B52FF1F16A9E0560407784DA836F70B60223F73DC6"
Last-Modified: Sat, 03 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3657
Expires: Sun, 04 Sep 2022 21:00:50 GMT
Date: Sun, 04 Sep 2022 19:59:53 GMT
Connection: keep-alive
|
|
| www.google-analytics.com/analytics.js | 142.250.74.174 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.174:0
File typeASCII text, with very long lines (1325) Hash56f5d7f608e25d64207135f045f988cb 901eb59372ae330ae85e1384da93479b21ae1082 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Sun, 04 Sep 2022 18:41:12 GMT
expires: Sun, 04 Sep 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 4721
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1d4/nGJjDlG2mg8 | 142.250.74.3 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/nGJjDlG2mg8 IP142.250.74.3:0
Hash493548bc95a75a7bc16dee3596d34e35 ab0daf8b08984e874e83ed2cfaf89fc2cc141d5a 32aa23d459fd0464e8b88ba55e5b59a8e8a57fa3cc9ac58fb9081a856ad44204
POST /s/gts1d4/nGJjDlG2mg8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:59:53 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash3243dfc012e2a0d78449f18d6e790214 29c974ac4a38dd9a282f45d3d22f585d3b9f3189 8f01731fc64f40a78777e348140b2a731483469c48503fc0428522a5a716f387
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3782
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:59:53 GMT
Last-Modified: Sun, 04 Sep 2022 18:56:51 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
|
|
| scripts.mediamathrdrt.com/scripts/b_megarush.js | 104.21.39.149 | 200 OK | 63 kB |
URL HTTP/2scripts.mediamathrdrt.com/scripts/b_megarush.js IP104.21.39.149:0
Hash098b43f637d29bcff965170a2f00715f 4f5e3e75ebd5794fdedbf9572f9d28fb90789280 9edb0c10d1fa7ea5d54431920c53c0974f387bd4bea941cab0c9bd62594e1cd1
GET /scripts/b_megarush.js HTTP/1.1
Host: scripts.mediamathrdrt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:53 GMT
content-type: text/javascript; charset=utf-8
status: 200 OK
cache-control: max-age=0, public
access-control-allow-origin: *
x-request-id: a61b8e72-549c-4973-af76-74753555785e
etag: W/"b89528e21d6f85cc11459c7b6ec733cb"
x-runtime: 0.004441
expires: 2022-08-05 19:59:53 UTC
x-powered-by: Phusion Passenger(R) 6.0.11
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZKQm6ySLOxQ62UxubJB4gbuhYXzPx2i6IA33Lyv2XaJ6u7iI9%2BawvLfHNbFI%2BxuFdmdJYyvxF%2BOsXEoNdzTqWMGGzUv2akQIOeNES1vA5pIJSh4suXhJHrmdJL3TxIsR4jxwZ903miwqH8dM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74594ee78ab8b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1d4/nGJjDlG2mg8 | 142.250.74.3 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1d4/nGJjDlG2mg8 IP142.250.74.3:0
Hash493548bc95a75a7bc16dee3596d34e35 ab0daf8b08984e874e83ed2cfaf89fc2cc141d5a 32aa23d459fd0464e8b88ba55e5b59a8e8a57fa3cc9ac58fb9081a856ad44204
POST /s/gts1d4/nGJjDlG2mg8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:59:53 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb15f3f14bd92b7a544ec2347e6810c7b dd55fd8396d796082edabb5ab6e2d7fb3b51b731 87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7581
Expires: Sun, 04 Sep 2022 22:06:14 GMT
Date: Sun, 04 Sep 2022 19:59:53 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash561aa641faf9aacdc3a40ba61667ccf5 99d4b6b3a01c983350459931cecca79b3c4f25cc bef258348432bda5f64c1f6485fb39775dc8faa7c2d0764ebec2df8cd4bbf254
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5056
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:59:53 GMT
Last-Modified: Sun, 04 Sep 2022 18:35:37 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb15f3f14bd92b7a544ec2347e6810c7b dd55fd8396d796082edabb5ab6e2d7fb3b51b731 87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7581
Expires: Sun, 04 Sep 2022 22:06:14 GMT
Date: Sun, 04 Sep 2022 19:59:53 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb15f3f14bd92b7a544ec2347e6810c7b dd55fd8396d796082edabb5ab6e2d7fb3b51b731 87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7581
Expires: Sun, 04 Sep 2022 22:06:14 GMT
Date: Sun, 04 Sep 2022 19:59:53 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png | 34.120.237.76 | 200 OK | 8.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6bb4b1d74f1443bc3328301ab3ae6464 2768253dacaaad6cb498c6b2eb7694208b0ce0a6 07dcc95dab7757402998a5a61b540c965ce95c8bd51a814a09438981693b563a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8688
x-amzn-requestid: 1c5fbc89-8ce8-4792-b713-f2c0ceeab737
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wifFJYoAMFi0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7a9-214311e155c661ff77d89906;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wd9SF3txQNTVUaSPcKQ_nQfPt1pBjFbuHzSZiQjfbGBSb-i7J8Rgjg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:44:29 GMT
age: 80124
etag: "2768253dacaaad6cb498c6b2eb7694208b0ce0a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| s2.adform.net/banners/scripts/st/trackpoint-async.js | 37.157.5.72 | 200 OK | 41 kB |
URL HTTP/2s2.adform.net/banners/scripts/st/trackpoint-async.js IP37.157.5.72:0
Hash17bbb237d596efbf7f88917366b4c7d5 0c51bf324c48aa58a15e4a4a5313ac9fd5dab119 e6c0e43ba7a155306d682afcc6c9c4d30176b1e62772a8e3ebd75ed9caf84c64
GET /banners/scripts/st/trackpoint-async.js HTTP/1.1
Host: s2.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:59:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 25 May 2022 11:34:23 GMT
etag: W/"552eeb5f0620fb6f56733d625b5e719e"
x-amz-request-id: tx000000000000094f6583b-006314ee25-32334d62-default
access-control-allow-origin: *
cache-control: public, max-age=604800
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd43481e-3c33-4c05-9216-2cc734e840b4.jpeg | 34.120.237.76 | 200 OK | 9.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd43481e-3c33-4c05-9216-2cc734e840b4.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1bdfdf7e36f78f2f0e4d7ede9fdb76a8 babb88202741bbf2d4fd25e0731a4a7a6fcc28f8 949ea108642789e1014150909060f11d99608f082760d0e868a90282f2768d43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd43481e-3c33-4c05-9216-2cc734e840b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9690
x-amzn-requestid: 614c99f8-116a-4603-bcde-3fbd5bfa14d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wx1HInIAMFiYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c80b-25c09c3227d72395408782f0;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5_jCLvdAC-XR-ax3RUbbx9275KPwACOPtAMxSbmv-aP-Lra4sC5zvw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:51:41 GMT
age: 79692
etag: "babb88202741bbf2d4fd25e0731a4a7a6fcc28f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfc4ceb10dd9fcaab21ae58dcf10c401f 6ce530af682094dc5413db9de02565691fab4da7 84ad58e126cce2ab6b1568ffe89a116bc1de0310bb72d4530eead2fb8191572c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11380
x-amzn-requestid: 61f37e21-33a8-49e6-b384-4ca1fcfbffa5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8TLFA3oAMFQjg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117414-42de5c4128eb9e011d848356;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: s0voKdiDdj0mq8-VRFSWcYcQXaWti7929bpdKSQMWDoVCmOAPepuDg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 03:48:57 GMT
age: 58256
etag: "6ce530af682094dc5413db9de02565691fab4da7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg | 34.120.237.76 | 200 OK | 5.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash10318189f33f071dda64249ab9c8c5bb e5b5b649a243e5c004d9923d19d4421d1ea96d23 3e775a1990e4d185024faf2fdff7a5eb9063f7ee19784f32fb4f7f10643c8102
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5652
x-amzn-requestid: 05fffcb2-43c0-4acf-81b2-1b914459e1e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wwHErUIAMFmNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c800-47fe166763992ab271a87aa4;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oU-qOKW_Jy8MV0HLQWofKsOi_qseUcyZRoP5LoyLsCclpCgf6NHiBA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 22:02:43 GMT
age: 79030
etag: "e5b5b649a243e5c004d9923d19d4421d1ea96d23"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash561aa641faf9aacdc3a40ba61667ccf5 99d4b6b3a01c983350459931cecca79b3c4f25cc bef258348432bda5f64c1f6485fb39775dc8faa7c2d0764ebec2df8cd4bbf254
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5057
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:59:54 GMT
Last-Modified: Sun, 04 Sep 2022 18:35:37 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg | 34.120.237.76 | 200 OK | 15 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashca50f9c56ff869b0b63ca71b1a9f8170 13b16ca74113dfd52ccf23e6bb39307fc713f984 76b85dd7e018ab4b3d4b2610f90dbca61d0f05d38a3b905fee789af131ae7538
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14855
x-amzn-requestid: 65cf850b-227a-4318-a00e-d7cd4ef81489
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wjuGtpoAMFvvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7b1-54bc36741984491b0509d173;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: M9Y8U9vqVs1ATiPP9jLPybTJ-xwC--5oiRUpj9-imTWfh6_rmtL5Kw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 13:17:52 GMT
etag: "13b16ca74113dfd52ccf23e6bb39307fc713f984"
content-type: image/jpeg
age: 24122
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| open.spotify.com/embed-legacy/playlist/2ucixR5s50chGr0o0pm4Pi | 35.186.224.25 | 200 OK | 26 kB |
URL HTTP/2open.spotify.com/embed-legacy/playlist/2ucixR5s50chGr0o0pm4Pi IP35.186.224.25:0
Hash934f4add53201bfa0a1c555d43e370ec 40cbb5c2c4c8f9afa5365d58a8e80b0f5826652c 5051df82596f21fc0b7cea89e3ac9fabb0fd954a62cf5faa0050ba1359221e8f
GET /embed-legacy/playlist/2ucixR5s50chGr0o0pm4Pi HTTP/1.1
Host: open.spotify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/
Connection: keep-alive
Cookie: sp_t=18c231fdb4cad86e6cbf1fccd63f42a0; sp_landing=https%3A%2F%2Fopen.spotify.com%2Fembed%2Fplaylist%2F2ucixR5s50chGr0o0pm4Pi%3Fsp_cid%3D18c231fdb4cad86e6cbf1fccd63f42a0%26device%3Ddesktop
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding,Accept-Encoding
set-cookie: sp_t=18c231fdb4cad86e6cbf1fccd63f42a0; path=/; expires=Mon, 04 Sep 2023 19:59:54 GMT; domain=.spotify.com; samesite=none; secure
content-encoding: gzip
sp-trace-id: 52aa2966336120bd
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
server: envoy
via: HTTP/2 edgeproxy, 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/relaxGaming.svg | 104.22.31.168 | 200 OK | 5.3 kB |
URL HTTP/2www.megarush.com/img/icons/relaxGaming.svg IP104.22.31.168:0
Hash5dffb76721fce9756fcbba8a2c50d1ad 4c3b6abfcaa3a309aa08562e7dd4b39178049cfc 8867657d9a5cc1ab03fd17fe396cda46bcb40e013b2dc3c5acb4b6693c984a86
GET /img/icons/relaxGaming.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-22fa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 5364216
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eecff3db4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/home-page/coin-3-3.png | 104.22.31.168 | 200 OK | 1.8 kB |
URL HTTP/2www.megarush.com/img/home-page/coin-3-3.png IP104.22.31.168:0
File typePNG image data, 64 x 71, 8-bit colormap, non-interlaced\012- data Hashfbdad22b02cf9a7a23c2f0553b1459e7 b64101b18924eba076f35318cce3e8a8bdec28b0 7aab4f9003ad7bd6b60fc361b6f2a0d2ddda28b35ea8ef6b0eff0f9a2cb81680
GET /img/home-page/coin-3-3.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/png
content-length: 1807
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: "629daa4a-70f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7767979
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eee6990b4fa-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/home-page/mega-jackpots.png | 104.22.31.168 | 200 OK | 65 kB |
URL HTTP/2www.megarush.com/img/home-page/mega-jackpots.png IP104.22.31.168:0
Hash9ba088f11efacf0a3b791b8d5c2f1a88 65dfe7a7148d8234c548cff588a77d1c3a8797a5 7332353864e8ae9c1934eb440be745324705a5f8fd99ba2b6ce81d2168ba7718
GET /img/home-page/mega-jackpots.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/png
content-length: 63747
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: "629daa4a-f903"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7761520
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eee6992b4fa-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/home-page/coin-1-1.png | 104.22.31.168 | 200 OK | 4.3 kB |
URL HTTP/2www.megarush.com/img/home-page/coin-1-1.png IP104.22.31.168:0
File typePNG image data, 106 x 105, 8-bit colormap, non-interlaced\012- data Hash214e2f889379dcba70bace5878068150 d6873dae324b9fd44a70e73f20dc9eb81253a7ae bb731b067cd838fadedeab50866dc81f725b8f6e49f4dc2e3b4332eae36c9ef0
GET /img/home-page/coin-1-1.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/png
content-length: 4257
last-modified: Thu, 30 Sep 2021 14:59:04 GMT
etag: "6155d0b8-10a1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 29306990
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eee799db4fa-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/pragmaticPlay.svg | 104.22.31.168 | 200 OK | 5.9 kB |
URL HTTP/2www.megarush.com/img/icons/pragmaticPlay.svg IP104.22.31.168:0
Hash2422692147d50a696c92f9d82c6fb15c 61d528acd5702ae0be2ee7119121447965927fc2 de152766b6dceb7399deda7c7152eb5e0b00a4bea81c7b032e0117278a44cc9f
GET /img/icons/pragmaticPlay.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-1799"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7600613
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eecff42b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/live-casino--yellow.svg | 104.22.31.168 | 200 OK | 4.2 kB |
URL HTTP/2www.megarush.com/img/icons/live-casino--yellow.svg IP104.22.31.168:0
Hash8e51c76c2051e43d070d2cf59f50e523 449943837bda04e70f27f96450af0df1aba47425 4f6895a5789fefb276d1b0f89bc1ac85650b774dc211adbb51481d6e2b23783a
GET /img/icons/live-casino--yellow.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 28 Feb 2022 16:02:10 GMT
etag: W/"621cf202-9b1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 16257289
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed0f49b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/payments.svg | 104.22.31.168 | 200 OK | 22 kB |
URL HTTP/2www.megarush.com/img/icons/payments.svg IP104.22.31.168:0
Hashac50181ce481802b8c86571558e3b917 7c4376194eea0c496934b046738cdce2d115c54b 1a416452487bee48fb58de01623a120e3c6ec421e59cfd42a70db07f065adc8c
GET /img/icons/payments.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-429"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7767979
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed0f53b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/promotions--flat.svg | 104.22.31.168 | 200 OK | 9.9 kB |
URL HTTP/2www.megarush.com/img/icons/promotions--flat.svg IP104.22.31.168:0
Hashca23f1a06ab5f873142327d6bf4548ff c98d9045c73fbe85c92b8ab387e109aa042e588b 3d41cb687984523d91f30673fcce3b6fa7aaafb5654b1472725961f7c23bd41c
GET /img/icons/promotions--flat.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 28 Feb 2022 16:02:10 GMT
etag: W/"621cf202-1d7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 16257289
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed0f5eb4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/promotions--updated.svg | 104.22.31.168 | 200 OK | 4.9 kB |
URL HTTP/2www.megarush.com/img/icons/promotions--updated.svg IP104.22.31.168:0
Hash3472b53cd0c498eb348ef9a75a772c5c c54ef16cd66db54086c39c31cd8ccbe89acfdf02 078eb398ac044f215ef9f765b0ca8e4eb0e583fee5e0c66952b9660e890fb2e1
GET /img/icons/promotions--updated.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-306"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7763822
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed0f51b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/live-casino--flat.svg | 104.22.31.168 | 200 OK | 50 kB |
URL HTTP/2www.megarush.com/img/icons/live-casino--flat.svg IP104.22.31.168:0
Hash49f350e89987a9df7ca09898d0f1cb5d 4f9c85c079b333c69d6f0b9057180f87684ab853 38b5e8bcc8049afc6f7b2920cef34c821d9bbd5d94584e04c8138c548aaf5918
GET /img/icons/live-casino--flat.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-f78"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 32532417
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed0f5db4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/help-round.svg | 104.22.31.168 | 200 OK | 11 kB |
URL HTTP/2www.megarush.com/img/icons/help-round.svg IP104.22.31.168:0
Hashb58251c3c2e4edf1f801c3759df74b80 521af9c8a5528f354070026a1c2c62d78b43ec32 a57184a312b77d62e63eb86e9e805b88f8af26bd495e4578e156f3241a53aadd
GET /img/icons/help-round.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-5e8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 32532417
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed0f59b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/mga.svg | 104.22.31.168 | 200 OK | 5.2 kB |
URL HTTP/2www.megarush.com/img/icons/mga.svg IP104.22.31.168:0
Hash388cdb4f35a69b25bf9cda46f69d21a5 a2afa8163f3b767483f7a3964d894d0ca49c25d2 8f1da559e913e0740b24d9b736658d1e7df99edd6174e8a690325654fab9e9cf
GET /img/icons/mga.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-74d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7767978
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed4fc6b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/search.svg | 104.22.31.168 | 200 OK | 14 kB |
URL HTTP/2www.megarush.com/img/icons/search.svg IP104.22.31.168:0
Hasheb7c25286defe0f6bbe155b08b9bc63f ebe06c7c48179b485776b69d6ae0bf8471449790 6eff5f5649173ed9ce55065e139326b5192652daed3e1a5ecc02d31921da28aa
GET /img/icons/search.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-212"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 32532417
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed1f5fb4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/js/chunk-vendors.8490e2f1.js | 104.22.31.168 | 200 OK | 118 kB |
URL HTTP/2www.megarush.com/js/chunk-vendors.8490e2f1.js IP104.22.31.168:0
Size118 kB (118415 bytes) Hash3409956f6e73a084481f283e0c8d1dc3 5ffb32d3f476ff4afb734fd9d2c94c38891564a5 32d5acf0b7f22c4662817984f9734e72e5b9798307f4aa78d6ab7863144379d1
GET /js/chunk-vendors.8490e2f1.js HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:52 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=326117
access-control-allow-origin: *
cache-control: max-age=7200
etag: W/"63078847-4f9e5"
expires: Thu, 25 Aug 2022 14:39:00 GMT
last-modified: Thu, 25 Aug 2022 14:33:43 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2341
server: cloudflare
cf-ray: 74594ee39904b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/mega-bolt-badge-new.svg | 104.22.31.168 | 200 OK | 76 kB |
URL HTTP/2www.megarush.com/img/icons/mega-bolt-badge-new.svg IP104.22.31.168:0
Hasha349eb5962ad7bfac86f0e25d41780ec eaa30fac47b10c88283e86698a0148eb17292a66 fc98acce598ce6560ed8d19ef00a50bdab4acd99ed9d8de76c98427386ae99ba
GET /img/icons/mega-bolt-badge-new.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Tue, 16 Aug 2022 12:19:34 GMT
etag: W/"62fb8b56-655"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 1031294
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed2f8fb4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/trustly--white.svg | 104.22.31.168 | 200 OK | 36 kB |
URL HTTP/2www.megarush.com/img/icons/trustly--white.svg IP104.22.31.168:0
Hashd4e7256d6d6beca95b46d31875a2247e a8c3da14d3708af06419048db49e0a2e0ca64471 bc598326281951d2466ce82f1d836792ecd5d1708ade37e53e85118cd078f8d4
GET /img/icons/trustly--white.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-772"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7769260
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed1f74b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/question-mark-1.d872b1da.png | 104.22.31.168 | 200 OK | 54 kB |
URL HTTP/2www.megarush.com/img/question-mark-1.d872b1da.png IP104.22.31.168:0
File typePNG image data, 632 x 820, 8-bit colormap, non-interlaced\012- data Hashd872b1daeb19c1afe87b87c10de4343d 40c2dbf4eea216df495b10b6c039356432b41c4f 56d454faccb635efca719d35f33cd06b0131c75ee321a7f1fb6914099ebdcf96
GET /img/question-mark-1.d872b1da.png HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.megarush.com/index.30053c2cd5717880348c.css
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/png
content-length: 53566
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: "629daa4a-d13e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 6899931
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eeeba22b4fa-OSL
X-Firefox-Spdy: h2
|
|
| megalotto-api.gigmagic.io/igc/megalotto/games/jackpots | 172.64.149.99 | 200 OK | 2 B |
URL HTTP/2megalotto-api.gigmagic.io/igc/megalotto/games/jackpots IP172.64.149.99:0
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /igc/megalotto/games/jackpots HTTP/1.1
Host: megalotto-api.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-api-key,x-api-session-id
Referer: https://www.megarush.com/
Origin: https://www.megarush.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-length: 2
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With, Content-Type, Accept, X-API-Key, X-API-Session-Id, x-api-sid, X-Request-ID
set-cookie: e9ef0023e1df886bed2d1501b6b20a23=5e4e526b31225b8d4c9bbe34aedc534e; path=/; HttpOnly; Secure; SameSite=None
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74594eeeabb11c16-OSL
X-Firefox-Spdy: h2
|
|
| megalotto-api.gigmagic.io/igc/megalotto/promotions/filter | 172.64.149.99 | 200 OK | 2 B |
URL HTTP/2megalotto-api.gigmagic.io/igc/megalotto/promotions/filter IP172.64.149.99:0
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /igc/megalotto/promotions/filter HTTP/1.1
Host: megalotto-api.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-api-key,x-api-session-id
Referer: https://www.megarush.com/
Origin: https://www.megarush.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-length: 2
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With, Content-Type, Accept, X-API-Key, X-API-Session-Id, x-api-sid, X-Request-ID
set-cookie: e9ef0023e1df886bed2d1501b6b20a23=5e4e526b31225b8d4c9bbe34aedc534e; path=/; HttpOnly; Secure; SameSite=None
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74594eeeabb61c16-OSL
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/menu.svg | 104.22.31.168 | 200 OK | 31 kB |
URL HTTP/2www.megarush.com/img/icons/menu.svg IP104.22.31.168:0
Hash70158d7a81b9d41004625ad769161190 1345d034ce19ed90dcf5052fbff47947e2ead102 54f181c80c5dd2abca0c93c273aa1c8f5f32c353515536de8a33dc3d8d0642a8
GET /img/icons/menu.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Thu, 17 Mar 2022 09:55:04 GMT
etag: W/"62330578-22f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 14539176
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed1f60b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/astropaycard--white.svg | 104.22.31.168 | 200 OK | 85 kB |
URL HTTP/2www.megarush.com/img/icons/astropaycard--white.svg IP104.22.31.168:0
Hash50266b7354b96c1ceecc9c7ca781015e 5580b91937354de276bf61eec4dcd3e79caf64bb 7e1628dfa3100b35507792ec27028fbbe58c1969ec00f7c22dc7a2df06bf8add
GET /img/icons/astropaycard--white.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-e1f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 5364791
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed1f69b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| open.spotifycdn.com/cdn/build/embed-legacy/embed-legacy.831fa035.css | 151.101.86.249 | 200 OK | 3.5 kB |
URL HTTP/1.1open.spotifycdn.com/cdn/build/embed-legacy/embed-legacy.831fa035.css IP151.101.86.249:0
File typeASCII text, with very long lines (23516), with no line terminators Hash9d04a5c053836e9cdaaed792e0e6a744 95a0d88c66706407a87daf0b82296ef68ea01444 7977dfdb15f2ab9ea2d9c3822a180b63428e43b5d199617d7a4d3e5fa741341c
GET /cdn/build/embed-legacy/embed-legacy.831fa035.css HTTP/1.1
Host: open.spotifycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.spotify.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3509
Last-Modified: Mon, 25 Jul 2022 10:32:22 GMT
ETag: "9d04a5c053836e9cdaaed792e0e6a744"
x-goog-generation: 1658745142507438
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3509
Content-Type: text/css
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Sun, 04 Sep 2022 19:59:54 GMT
Age: 3576239
X-Served-By: cache-chi-kigq8000063-CHI, cache-bma1681-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 54421
Access-Control-Allow-Origin: https://open.spotify.com
Cache-Control: public, max-age=31536000
|
|
| www.megarush.com/video/arcade-game.webm | 104.22.31.168 | 206 Partial Content | 61 kB |
URL HTTP/2www.megarush.com/video/arcade-game.webm IP104.22.31.168:0
File typeWebM\012- EBML file, creator webmB\20\012- data Hash9aaef915ba1a5046a92ef8dfcc58cdba c25acbf957571a53c4ca7cc5a910757e4cfffd66 565d4805821948f9740cd260a8da41b19189a2f3658867815af960a5a31f035a
GET /video/arcade-game.webm HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Range: bytes=0-
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
TE: trailers
HTTP/2 206 Partial Content
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: video/webm
content-length: 61172
last-modified: Thu, 25 Aug 2022 14:33:43 GMT
etag: "63078847-eef4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-range: bytes 0-61171/61172
cf-cache-status: BYPASS
set-cookie: geoip_country=no; Path=/;
webserver=megarush-prd-58d9bc46b7-gnph4; Domain=www.megarush.com; Path=/;
geoip_country=no; Domain=www.megarush.com; Path=/;
LanguageCode=nb-no; Domain=www.megarush.com; Path=/;
app_uid=CoEFGmMVA7qhIAArBeY0Ag==; expires=Tue, 04-Oct-22 19:59:54 GMT; domain=$host; path=/
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eeeca43b4fa-OSL
X-Firefox-Spdy: h2
|
|
| open.spotifycdn.com/cdn/build/embed-legacy/embed-legacy.bd2140b3.js | 151.101.86.249 | 200 OK | 130 kB |
URL HTTP/1.1open.spotifycdn.com/cdn/build/embed-legacy/embed-legacy.bd2140b3.js IP151.101.86.249:0
File typeASCII text, with very long lines (65536), with no line terminators Size130 kB (129922 bytes) Hashf693d50d07b270581daef1c0ce4e7e14 90d4d1bdc17fdc4c09501e19795a3d58ab3fbc03 f864ac3f771cdba4ab80f8d6ffb1e23d9f3019dd6706e99e67024dcdaff8840b
GET /cdn/build/embed-legacy/embed-legacy.bd2140b3.js HTTP/1.1
Host: open.spotifycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.spotify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 129922
Last-Modified: Sun, 04 Sep 2022 05:48:30 GMT
ETag: "f693d50d07b270581daef1c0ce4e7e14"
x-goog-generation: 1662270510740217
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 129922
Content-Type: application/javascript
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Sun, 04 Sep 2022 19:59:54 GMT
Age: 50849
X-Served-By: cache-chi-kigq8000040-CHI, cache-bma1675-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 116
Access-Control-Allow-Origin: https://open.spotify.com
Cache-Control: public, max-age=31536000
|
|
| open.spotifycdn.com/cdn/build/embed-legacy/vendor~embed-legacy.2e7fdd93.js | 151.101.86.249 | 200 OK | 216 kB |
URL HTTP/1.1open.spotifycdn.com/cdn/build/embed-legacy/vendor~embed-legacy.2e7fdd93.js IP151.101.86.249:0
File typeASCII text, with very long lines (65536), with no line terminators Size216 kB (216089 bytes) Hash75b8438935c376525e7c8effa7d4a320 603e052823b8fe31ee697b65f905918a76744119 98e1bfca6cdd811c9f3dd042e378d2d7183c00e40f319e81d5ff847ce3fe3441
GET /cdn/build/embed-legacy/vendor~embed-legacy.2e7fdd93.js HTTP/1.1
Host: open.spotifycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.spotify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 216089
Last-Modified: Tue, 30 Aug 2022 10:15:49 GMT
ETag: "75b8438935c376525e7c8effa7d4a320"
x-goog-generation: 1661854549503301
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 216089
Content-Type: application/javascript
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Sun, 04 Sep 2022 19:59:54 GMT
Age: 466823
X-Served-By: cache-chi-klot8100098-CHI, cache-bma1621-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 18
Access-Control-Allow-Origin: https://open.spotify.com
Cache-Control: public, max-age=31536000
|
|
| www.megarush.com/img/icons/playAndGo.svg | 104.22.31.168 | 200 OK | 718 kB |
URL HTTP/2www.megarush.com/img/icons/playAndGo.svg IP104.22.31.168:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (55172) Size718 kB (717637 bytes) Hash86c7ddca2818b3536ff9b1f36119fed3 935d3fe37c26cbd22b3fb3ed2f3287c4f81841f6 ce0fa9bff8ef6bcf4e7c98e165f635ece93b22250a0f7fb8e024073ed0e160b7
GET /img/icons/playAndGo.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Thu, 30 Sep 2021 14:59:04 GMT
etag: W/"6155d0b8-dfe"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 29306821
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eecff39b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| encore.scdn.co/fonts/CircularSp-Book-4eaffdf96f4c6f984686e93d5d9cb325.woff2 | 151.101.86.248 | 200 OK | 84 kB |
URL HTTP/1.1encore.scdn.co/fonts/CircularSp-Book-4eaffdf96f4c6f984686e93d5d9cb325.woff2 IP151.101.86.248:0
Hash4eaffdf96f4c6f984686e93d5d9cb325 8c576f620ae00a66282d8eb10dc2eb580888aaf1 9b7413f945c8b8bb3f75eb10513c7ad79d386e98494d541e5f1fa9301ffbddd6
GET /fonts/CircularSp-Book-4eaffdf96f4c6f984686e93d5d9cb325.woff2 HTTP/1.1
Host: encore.scdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://open.spotify.com
Connection: keep-alive
Referer: https://open.spotifycdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 84088
Last-Modified: Fri, 13 May 2022 11:38:51 GMT
ETag: W/"f7b12903dd7a2d536ceb2b7cd1dba2c1"
x-goog-generation: 1652441931211351
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 84027
Content-Type: font/woff2
X-GUploader-Response-Body-Transformations: gunzipped
Warning: 214 UploadServer gunzipped
Accept-Ranges: bytes
Date: Sun, 04 Sep 2022 19:59:55 GMT
Age: 1001481
X-Served-By: cache-chi-klot8100167-CHI, cache-bma1673-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 4
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31536000
|
|
| www.megarush.com/img/home-page/grid-new-2.svg | 104.22.31.168 | 200 OK | 5.3 kB |
URL HTTP/2www.megarush.com/img/home-page/grid-new-2.svg IP104.22.31.168:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (12224) Hash58481b316831e66fb91672a9b04721ed fa1a4068c4834d783f27d531862d3abd75f5265d 668c663219f1b80b24e67195ee61473062c00e6ec2755f9b835d2e4c66241cc1
GET /img/home-page/grid-new-2.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.megarush.com/index.30053c2cd5717880348c.css
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 18 Oct 2021 10:20:15 GMT
etag: W/"616d4a5f-3194"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 27768926
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eeeba28b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| encore.scdn.co/fonts/CircularSp-Bold-fe1cfc14b7498b187c78fa72fb72d148.woff2 | 151.101.86.248 | 200 OK | 90 kB |
URL HTTP/1.1encore.scdn.co/fonts/CircularSp-Bold-fe1cfc14b7498b187c78fa72fb72d148.woff2 IP151.101.86.248:0
Hashfe1cfc14b7498b187c78fa72fb72d148 6bec8ce832951162e0ebc4b257e3ee850fe7aade 039130d456855a745451bff40707bee5512bc4466373224b2258f67cc6c6d879
GET /fonts/CircularSp-Bold-fe1cfc14b7498b187c78fa72fb72d148.woff2 HTTP/1.1
Host: encore.scdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://open.spotify.com
Connection: keep-alive
Referer: https://open.spotifycdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 89536
Last-Modified: Fri, 13 May 2022 11:38:50 GMT
ETag: W/"216b12b5a9657850b1b324e158454f8e"
x-goog-generation: 1652441930609707
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 89529
Content-Type: font/woff2
X-GUploader-Response-Body-Transformations: gunzipped
Warning: 214 UploadServer gunzipped
Accept-Ranges: bytes
Date: Sun, 04 Sep 2022 19:59:55 GMT
Age: 2320202
X-Served-By: cache-ord1728-ORD, cache-chi-kigq8000035-CHI, cache-bma1673-BMA
X-Cache: MISS, HIT, HIT
X-Cache-Hits: 0, 1, 4
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31536000
|
|
| i.scdn.co/image/ab67706c0000bebb2e3693913b1f8fbc514da7c8 | 151.101.86.248 | 200 OK | 131 kB |
URL HTTP/1.1i.scdn.co/image/ab67706c0000bebb2e3693913b1f8fbc514da7c8 IP151.101.86.248:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data Size131 kB (130780 bytes) Hashccb11204819dd6617e4e1fba9eeb5a84 3f5233f01c8ce71ffddde8694d269ee834964b93 f3fa391ba021ceb98c27ff44f743db4d6a4073c0faf83ebf9f030d82bf4e6111
GET /image/ab67706c0000bebb2e3693913b1f8fbc514da7c8 HTTP/1.1
Host: i.scdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.spotify.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 130780
Last-Modified: Fri, 30 Apr 2021 15:10:01 GMT
ETag: "ccb11204819dd6617e4e1fba9eeb5a84"
x-goog-generation: 1619795401707780
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 130780
Content-Type: image/jpeg
Accept-Ranges: bytes
Date: Sun, 04 Sep 2022 19:59:55 GMT
Age: 1081121
Timing-Allow-Origin: *
X-Served-By: cache-chi-kigq8000120-CHI, cache-bma1623-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
Access-Control-Allow-Origin: *
Cache-Control: max-age=315360000
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash92f0240d71925afbb2ff77223bf04355 9fb9a6cfd27552c2bec0bd7b7fa2bf6414d701d3 8c16dee0025062c07eefb25e501df0e81173683945bc56805fd70651dd6b7435
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8C16DEE0025062C07EEFB25E501DF0E81173683945BC56805FD70651DD6B7435"
Last-Modified: Fri, 02 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14545
Expires: Mon, 05 Sep 2022 00:02:20 GMT
Date: Sun, 04 Sep 2022 19:59:55 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 346 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7ffc4ef7f364d6ff4b6eb951f109bc48 7dcefc758fdf8b9b6046680eb2f7c9b955e2661a 698483b3698fd47ff94d2f79c8b0b66d2d4e489e2eaa465d3bf2876075c51f25
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "698483B3698FD47FF94D2F79C8B0B66D2D4E489E2EAA465D3BF2876075C51F25"
Last-Modified: Fri, 02 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7573
Expires: Sun, 04 Sep 2022 22:06:08 GMT
Date: Sun, 04 Sep 2022 19:59:55 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 346 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7ffc4ef7f364d6ff4b6eb951f109bc48 7dcefc758fdf8b9b6046680eb2f7c9b955e2661a 698483b3698fd47ff94d2f79c8b0b66d2d4e489e2eaa465d3bf2876075c51f25
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "698483B3698FD47FF94D2F79C8B0B66D2D4E489E2EAA465D3BF2876075C51F25"
Last-Modified: Fri, 02 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7573
Expires: Sun, 04 Sep 2022 22:06:08 GMT
Date: Sun, 04 Sep 2022 19:59:55 GMT
Connection: keep-alive
|
|
| graphql.datocms.com/ | 104.22.3.238 | 200 OK | 0 B |
IP104.22.3.238:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: graphql.datocms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://www.megarush.com/
Origin: https://www.megarush.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:55 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.megarush.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: authorization, content-type, x-environment, x-include-drafts, x-exclude-invalid
access-control-allow-methods: GET, POST
access-control-expose-headers: x-ratelimit-limit, x-ratelimit-remaining, x-ratelimit-reset, x-entities
access-control-max-age: 1728000
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74594ef5da3cb4f4-OSL
X-Firefox-Spdy: h2
|
|
| gew4-spclient.spotify.com/gabo-receiver-service/public/v3/events | 35.186.224.17 | 200 OK | 0 B |
URL HTTP/2gew4-spclient.spotify.com/gabo-receiver-service/public/v3/events IP35.186.224.17:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /gabo-receiver-service/public/v3/events HTTP/1.1
Host: gew4-spclient.spotify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://open.spotify.com/
Origin: https://open.spotify.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://open.spotify.com
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,PATCH,POST,PUT,OPTIONS
access-control-allow-headers: Accept,Authorization,Origin,Content-Type,Spotify-App-Version,App-Platform,X-Spotify-Connection-Id,X-Client-Id,X-Spotify-Quicksilver-Uri,client-token,content-access-token,x-cloud-trace-context
access-control-max-age: 604800
vary: Accept-Encoding
date: Sun, 04 Sep 2022 19:59:55 GMT
server: envoy
content-length: 0
via: HTTP/2 edgeproxy, 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| gew4-spclient.spotify.com/gabo-receiver-service/public/v3/events | 35.186.224.17 | 200 OK | 0 B |
URL HTTP/2gew4-spclient.spotify.com/gabo-receiver-service/public/v3/events IP35.186.224.17:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /gabo-receiver-service/public/v3/events HTTP/1.1
Host: gew4-spclient.spotify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://open.spotify.com/
Origin: https://open.spotify.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://open.spotify.com
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,PATCH,POST,PUT,OPTIONS
access-control-allow-headers: Accept,Authorization,Origin,Content-Type,Spotify-App-Version,App-Platform,X-Spotify-Connection-Id,X-Client-Id,X-Spotify-Quicksilver-Uri,client-token,content-access-token,x-cloud-trace-context
access-control-max-age: 604800
vary: Accept-Encoding
date: Sun, 04 Sep 2022 19:59:55 GMT
server: envoy
content-length: 0
via: HTTP/2 edgeproxy, 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| sentry.io/api/265628/envelope/?sentry_key=db1eaaeafb9044828c39cd41f9805164&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.11.1 | 35.188.42.15 | 200 OK | 2 B |
URL HTTP/1.1sentry.io/api/265628/envelope/?sentry_key=db1eaaeafb9044828c39cd41f9805164&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.11.1 IP35.188.42.15:0
File typeJSON data\012- , ASCII text, with no line terminators Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/265628/envelope/?sentry_key=db1eaaeafb9044828c39cd41f9805164&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.11.1 HTTP/1.1
Host: sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://open.spotify.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://open.spotify.com
Content-Length: 427
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 19:59:55 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
access-control-allow-origin: https://open.spotify.com
access-control-expose-headers: x-sentry-rate-limits, x-sentry-error, retry-after
vary: Origin
x-envoy-upstream-service-time: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
|
|
| rs.fullstory.com/rec/page | 35.186.194.58 | 202 Accepted | 49 B |
URL HTTP/2rs.fullstory.com/rec/page IP35.186.194.58:0
File typeJSON data\012- , ASCII text Hashc2d1b73bed772b2225954d302cea4c22 3118c449fbd379661710e6e03395152673b0a835 316f11bc05cdbfa020520469236dbc4c85c1583cb049c1ac61d43b1672d4840d
POST /rec/page HTTP/1.1
Host: rs.fullstory.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 351
Origin: https://www.megarush.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.megarush.com/
Connection: keep-alive
HTTP/2 202 Accepted
access-control-allow-credentials: true
access-control-allow-origin: https://www.megarush.com
content-type: text/plain; charset=utf-8
x-content-type-options: nosniff
date: Sun, 04 Sep 2022 19:59:55 GMT
content-length: 49
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| graphql.datocms.com/ | 104.22.3.238 | 200 OK | 1.2 kB |
IP104.22.3.238:0
Hash8bd115b87ca09b907c60d99de6b58bb4 47e63e6665fe84d7f63b535dfac2845b9053c592 245b284e9e05ee7241c08281fbdda7f667e629f9526e4010eb74df5f4c54d089
POST / HTTP/1.1
Host: graphql.datocms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 151
Origin: https://www.megarush.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
authorization: Bearer 35d777e787abbc619166a62135c433
Referer: https://www.megarush.com/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:55 GMT
content-type: application/json; charset=utf-8
cf-ray: 74594ef5fa51b4f4-OSL
accept-ranges: bytes
access-control-allow-origin: https://www.megarush.com
age: 2300825
cache-control: no-store
content-encoding: gzip
etag: W/"8a069ed1bdcb8517251ab69433826adb"
expires: 0
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Authorization, Accept-Encoding, X-Environment, X-Include-Drafts, X-Exclude-Invalid, Origin
via: 1.1 vegur, 1.1 varnish, 1.1 varnish
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: authorization, content-type, x-environment, x-include-drafts, x-exclude-invalid
access-control-allow-methods: GET, POST
access-control-expose-headers: x-ratelimit-limit, x-ratelimit-remaining, x-ratelimit-reset, x-entities
access-control-max-age: 1728000
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
x-cache: HIT, HIT
x-cache-hits: 1, 1043
x-cacheable-on-cdn: true
x-cacheable-on-cdn-query-length-limit: 203/8192
x-complexity: 92
x-content-type-options: nosniff
x-download-options: noopen
x-environment: main
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-queue-time: 0ms
x-request-id: 0f274e57-e572-4252-8a11-69b9b51533b0
x-runtime: 0.073587
x-served-by: cache-dub4335-DUB, cache-bma1660-BMA
x-timer: S1662321596.871419,VS0,VE0
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
|
|
| gew4-spclient.spotify.com/gabo-receiver-service/public/v3/events | 35.186.224.17 | 200 OK | 39 B |
URL HTTP/2gew4-spclient.spotify.com/gabo-receiver-service/public/v3/events IP35.186.224.17:0
File typeJSON data\012- , ASCII text, with no line terminators Hashf204785b49c504e43101096fd3a80e31 e92466090f918c8f9c11268c9d0027fe269a90b6 873696e689e27bcfa5259ade21ceefea69203ec493901b0f4634b4f255981b29
POST /gabo-receiver-service/public/v3/events HTTP/1.1
Host: gew4-spclient.spotify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://open.spotify.com/
content-type: application/json
Origin: https://open.spotify.com
Content-Length: 846
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
cache-control: private, max-age=0
access-control-allow-origin: https://open.spotify.com
content-encoding: gzip
content-length: 39
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-credentials: true
date: Sun, 04 Sep 2022 19:59:55 GMT
server: envoy
via: HTTP/2 edgeproxy, 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| gew4-spclient.spotify.com/gabo-receiver-service/public/v3/events | 35.186.224.17 | 200 OK | 39 B |
URL HTTP/2gew4-spclient.spotify.com/gabo-receiver-service/public/v3/events IP35.186.224.17:0
File typeJSON data\012- , ASCII text, with no line terminators Hashf204785b49c504e43101096fd3a80e31 e92466090f918c8f9c11268c9d0027fe269a90b6 873696e689e27bcfa5259ade21ceefea69203ec493901b0f4634b4f255981b29
POST /gabo-receiver-service/public/v3/events HTTP/1.1
Host: gew4-spclient.spotify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://open.spotify.com/
content-type: application/json
Origin: https://open.spotify.com
Content-Length: 697
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
cache-control: private, max-age=0
access-control-allow-origin: https://open.spotify.com
access-control-allow-headers: Accept, Authorization, Origin, Content-Type, Spotify-App-Version, App-Platform, X-Spotify-Connection-Id, X-Client-Id, X-Spotify-Quicksilver-Uri, client-token, content-access-token, x-cloud-trace-context
access-control-allow-methods: GET, POST, OPTIONS, PUT, DELETE, PATCH
access-control-allow-credentials: true
access-control-max-age: 604800
content-encoding: gzip
content-length: 39
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
date: Sun, 04 Sep 2022 19:59:55 GMT
server: envoy
via: HTTP/2 edgeproxy, 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| track.adform.net/Serving/TrackPoint/?CC=1&pm=2381934&ADFdivider=%7C&ord=760498113913&Set1=en-US%7Cen-US%7C1280x1024%7C24&ADFtpmode=2&loc=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_8E5AD5C0B7C74BABBA64A450394C835D | 37.157.3.30 | 200 OK | 389 B |
URL HTTP/2track.adform.net/Serving/TrackPoint/?CC=1&pm=2381934&ADFdivider=%7C&ord=760498113913&Set1=en-US%7Cen-US%7C1280x1024%7C24&ADFtpmode=2&loc=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_8E5AD5C0B7C74BABBA64A450394C835D IP37.157.3.30:0
File typeASCII text, with CRLF line terminators Hashc17aab297a7a111eacccd4334aab2e9a d1177226213cf56746e25b1b0e98b903dfc19c73 e1d9029e6f47028c066af9a0e8943a8d79b51466c5db6de28651043d6d2e86fc
GET /Serving/TrackPoint/?CC=1&pm=2381934&ADFdivider=%7C&ord=760498113913&Set1=en-US%7Cen-US%7C1280x1024%7C24&ADFtpmode=2&loc=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_8E5AD5C0B7C74BABBA64A450394C835D HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:59:55 GMT
content-type: text/javascript; charset=utf-8
content-length: 389
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
|
|
| megalotto-static.gigmagic.io/video/header-video-720p.webm | 172.64.149.99 | 206 Partial Content | 1.3 MB |
URL HTTP/2megalotto-static.gigmagic.io/video/header-video-720p.webm IP172.64.149.99:0
File typeWebM\012- EBML file, creator webmB\20\012- data Size1.3 MB (1336865 bytes) Hash63177b286fe4cb8a5431377710ad3715 e762daea246c011e634a226f6062a9a27a344f80 ef3410a95d2b7bea43ca9dffb3e26c92db871a1ab9c2600dedf40847050cf817
GET /video/header-video-720p.webm HTTP/1.1
Host: megalotto-static.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.megarush.com
Sec-Fetch-Dest: video
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Range: bytes=0-
Referer: https://www.megarush.com/
Connection: keep-alive
TE: trailers
HTTP/2 206 Partial Content
date: Sun, 04 Sep 2022 19:59:55 GMT
content-type: video/webm
content-length: 1336865
access-control-allow-origin: *
access-control-allow-methods: GET, POST
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 27 Oct 2021 09:33:10 GMT
etag: "63177b286fe4cb8a5431377710ad3715"
cache-control: public, max-age=14400
cf-cache-status: MISS
expires: Sun, 04 Sep 2022 23:59:55 GMT
content-range: bytes 0-1336864/1336865
server: cloudflare
cf-ray: 74594ef59c5b1c16-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashc845476c9d7d8869c982526e5e64631b 9686f37b6bb1e7d345fe8a1ea81168c9529a90e1 58fa98fb6e0fb4bc6b61ccd2ec160a21dba205f74cd4b86e7af42b22dae18e1c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1212
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 19:59:56 GMT
Last-Modified: Sun, 04 Sep 2022 19:39:45 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
|
|
| secure.quantserve.com/quant.js | 91.228.74.159 | 200 OK | 10 kB |
URL HTTP/2secure.quantserve.com/quant.js IP91.228.74.159:0
Hash8155477d5a1cd2686746ef153ab0277e 2041df1aa1a02f56860e6dc4f97214d807c47539 c94ea70918868966d95b6cde63fa5d324cc8be2baa969b4394147608e8621228
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://track.adform.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:56 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "3K3nn1ChiYCKxJYFUmbsHw=="
expires: Sun, 11 Sep 2022 19:59:56 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| pxl.qccerttest.com/pixel?r=1008727255;fpan=1;fpa=P0-1797099207-1662321592579;pbc=;ns=1;ce=0;qjs=1;qv=087c24cc-20220902090643;ref=https%3A%2F%2Fwww.megarush.com%2F;cm=;gdpr=0;d=track.adform.net;dst=0;et=1662321592579;tzo=0;url=https%3A%2F%2Ftrack.adform.net%2Fserving%2Fcontainer%2F%3Fpm%3D2381934%26lid%3D95292615%26ctype%3D0%26media%3D0%26PageName%3Dmegarush.com%252fnb-no%26rnd%3D1959016920%26cpref%3D%26loc%3Dhttps%253a%252f%252fwww.megarush.com%252fnb-no%253fbtag%253d656126_8E5AD5C0B7C74BABBA64A450394C835D;ogl= | 143.204.55.81 | 200 OK | 35 B |
URL HTTP/2pxl.qccerttest.com/pixel?r=1008727255;fpan=1;fpa=P0-1797099207-1662321592579;pbc=;ns=1;ce=0;qjs=1;qv=087c24cc-20220902090643;ref=https%3A%2F%2Fwww.megarush.com%2F;cm=;gdpr=0;d=track.adform.net;dst=0;et=1662321592579;tzo=0;url=https%3A%2F%2Ftrack.adform.net%2Fserving%2Fcontainer%2F%3Fpm%3D2381934%26lid%3D95292615%26ctype%3D0%26media%3D0%26PageName%3Dmegarush.com%252fnb-no%26rnd%3D1959016920%26cpref%3D%26loc%3Dhttps%253a%252f%252fwww.megarush.com%252fnb-no%253fbtag%253d656126_8E5AD5C0B7C74BABBA64A450394C835D;ogl= IP143.204.55.81:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash55d25e9dc950d5db4d53a3b195c046c6 75e91ae3e549dab12ed1c9787ade9131aef1c981 a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel?r=1008727255;fpan=1;fpa=P0-1797099207-1662321592579;pbc=;ns=1;ce=0;qjs=1;qv=087c24cc-20220902090643;ref=https%3A%2F%2Fwww.megarush.com%2F;cm=;gdpr=0;d=track.adform.net;dst=0;et=1662321592579;tzo=0;url=https%3A%2F%2Ftrack.adform.net%2Fserving%2Fcontainer%2F%3Fpm%3D2381934%26lid%3D95292615%26ctype%3D0%26media%3D0%26PageName%3Dmegarush.com%252fnb-no%26rnd%3D1959016920%26cpref%3D%26loc%3Dhttps%253a%252f%252fwww.megarush.com%252fnb-no%253fbtag%253d656126_8E5AD5C0B7C74BABBA64A450394C835D;ogl= HTTP/1.1
Host: pxl.qccerttest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://track.adform.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 35
date: Sun, 04 Sep 2022 02:29:19 GMT
last-modified: Thu, 04 Aug 2022 16:01:04 GMT
etag: "55d25e9dc950d5db4d53a3b195c046c6"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bUTRAREkM9lVs6eHSDuZSyCzwdBS9NslwWas0ScwgFmk_KMrY7bybQ==
age: 63038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
vary: Origin
X-Firefox-Spdy: h2
|
|
| pixel.quantserve.com/pixel;r=451377641;labels=_fp.event.PageView;rf=0;a=p--B_1AZ6v1_YDr;url=https%3A%2F%2Ftrack.adform.net%2Fserving%2Fcontainer%2F%3Fpm%3D2381934%26lid%3D95292615%26ctype%3D0%26media%3D0%26PageName%3Dmegarush.com%252fnb-no%26rnd%3D1959016920%26cpref%3D%26loc%3Dhttps%253a%252f%252fwww.megarush.com%252fnb-no%253fbtag%253d656126_8E5AD5C0B7C74BABBA64A450394C835D;ref=https%3A%2F%2Fwww.megarush.com%2F;uht=2;fpan=0;fpa=P0-1797099207-1662321592579;pbc=;ns=1;ce=0;qjs=1;qv=087c24cc-20220902090643;cm=;gdpr=0;d=track.adform.net;dst=0;et=1662321592581;tzo=0;ogl=;ses=bb9b66a1-238e-412b-be9d-90f1ff4c3a7e | 91.228.74.159 | 200 OK | 35 B |
URL HTTP/2pixel.quantserve.com/pixel;r=451377641;labels=_fp.event.PageView;rf=0;a=p--B_1AZ6v1_YDr;url=https%3A%2F%2Ftrack.adform.net%2Fserving%2Fcontainer%2F%3Fpm%3D2381934%26lid%3D95292615%26ctype%3D0%26media%3D0%26PageName%3Dmegarush.com%252fnb-no%26rnd%3D1959016920%26cpref%3D%26loc%3Dhttps%253a%252f%252fwww.megarush.com%252fnb-no%253fbtag%253d656126_8E5AD5C0B7C74BABBA64A450394C835D;ref=https%3A%2F%2Fwww.megarush.com%2F;uht=2;fpan=0;fpa=P0-1797099207-1662321592579;pbc=;ns=1;ce=0;qjs=1;qv=087c24cc-20220902090643;cm=;gdpr=0;d=track.adform.net;dst=0;et=1662321592581;tzo=0;ogl=;ses=bb9b66a1-238e-412b-be9d-90f1ff4c3a7e IP91.228.74.159:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash55d25e9dc950d5db4d53a3b195c046c6 75e91ae3e549dab12ed1c9787ade9131aef1c981 a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=451377641;labels=_fp.event.PageView;rf=0;a=p--B_1AZ6v1_YDr;url=https%3A%2F%2Ftrack.adform.net%2Fserving%2Fcontainer%2F%3Fpm%3D2381934%26lid%3D95292615%26ctype%3D0%26media%3D0%26PageName%3Dmegarush.com%252fnb-no%26rnd%3D1959016920%26cpref%3D%26loc%3Dhttps%253a%252f%252fwww.megarush.com%252fnb-no%253fbtag%253d656126_8E5AD5C0B7C74BABBA64A450394C835D;ref=https%3A%2F%2Fwww.megarush.com%2F;uht=2;fpan=0;fpa=P0-1797099207-1662321592579;pbc=;ns=1;ce=0;qjs=1;qv=087c24cc-20220902090643;cm=;gdpr=0;d=track.adform.net;dst=0;et=1662321592581;tzo=0;ogl=;ses=bb9b66a1-238e-412b-be9d-90f1ff4c3a7e HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://track.adform.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:56 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=631503bc-50875-53c22-a27af; expires=Thu, 05-Oct-2023 19:59:56 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
|
|
| apresolve.spotify.com/?type=dealer&type=spclient | 34.98.74.57 | 200 OK | 111 B |
URL HTTP/2apresolve.spotify.com/?type=dealer&type=spclient IP34.98.74.57:0
File typeJSON data\012- , ASCII text, with no line terminators Hashd43c34330eaad44c3580d912c0ff6bb8 4d85e1a9e4c3cd414891cd7cc8f463a9239cac29 0ea20177fc7fe5de7ae8efb58909ad7730d0db87cc48ceabd43a87bb65584137
GET /?type=dealer&type=spclient HTTP/1.1
Host: apresolve.spotify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://open.spotify.com/
Origin: https://open.spotify.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
cache-control: private, max-age=0
access-control-allow-origin: *
content-encoding: gzip
content-length: 111
date: Sun, 04 Sep 2022 20:00:00 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/mega-checked-badge-new.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/mega-checked-badge-new.svg IP104.22.31.168:0
GET /img/icons/mega-checked-badge-new.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 18 Oct 2021 10:01:21 GMT
etag: W/"616d45f1-66f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 27769836
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed2f93b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/mega-clock-badge-new.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/mega-clock-badge-new.svg IP104.22.31.168:0
GET /img/icons/mega-clock-badge-new.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-670"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7757303
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed3fa1b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| megalotto-api.gigmagic.io/igc/megalotto/promotions/filter | 172.64.149.99 | 200 OK | 0 B |
URL HTTP/2megalotto-api.gigmagic.io/igc/megalotto/promotions/filter IP172.64.149.99:0
POST /igc/megalotto/promotions/filter HTTP/1.1
Host: megalotto-api.gigmagic.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 47
X-API-Key: 5c7e3e9c1c62609cee83f960
X-API-Session-Id: 631503b52d6fe9c0e1808a17
Origin: https://www.megarush.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.megarush.com/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With, Content-Type, Accept, X-API-Key, X-API-Session-Id, x-api-sid, X-Request-ID
set-cookie: e9ef0023e1df886bed2d1501b6b20a23=5e4e526b31225b8d4c9bbe34aedc534e; path=/; HttpOnly; Secure; SameSite=None
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74594eef4cd61c16-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| open.spotify.com/embed/playlist/2ucixR5s50chGr0o0pm4Pi | 35.186.224.25 | 302 Found | 0 B |
URL HTTP/2open.spotify.com/embed/playlist/2ucixR5s50chGr0o0pm4Pi IP35.186.224.25:0
GET /embed/playlist/2ucixR5s50chGr0o0pm4Pi HTTP/1.1
Host: open.spotify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 04 Sep 2022 19:59:53 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: sp_t=18c231fdb4cad86e6cbf1fccd63f42a0; path=/; expires=Mon, 04 Sep 2023 19:59:53 GMT; domain=.spotify.com; samesite=none; secure
sp_landing=https%3A%2F%2Fopen.spotify.com%2Fembed%2Fplaylist%2F2ucixR5s50chGr0o0pm4Pi%3Fsp_cid%3D18c231fdb4cad86e6cbf1fccd63f42a0%26device%3Ddesktop; path=/; expires=Mon, 05 Sep 2022 19:59:53 GMT; domain=.spotify.com; samesite=none; secure; httponly
location: /embed-legacy/playlist/2ucixR5s50chGr0o0pm4Pi
sp-trace-id: 6fe15692a55d3fc8
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-encoding: gzip
server: envoy
via: HTTP/2 edgeproxy, 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/megaclub--updated.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/megaclub--updated.svg IP104.22.31.168:0
GET /img/icons/megaclub--updated.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-2ed"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7769568
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed0f4fb4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/home-page/grid-new-1.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/home-page/grid-new-1.svg IP104.22.31.168:0
GET /img/home-page/grid-new-1.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.megarush.com/index.30053c2cd5717880348c.css
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-31bb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7767979
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eee99fab4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ungroudonchan.com/4/4598789?ymid=5NaR5SGy3kdMQyUo8yVytS&var=074b5bba-80ab-4a33-86df-edbd736e35eb | 139.45.197.238 | 200 OK | 0 B |
URL HTTP/2ungroudonchan.com/4/4598789?ymid=5NaR5SGy3kdMQyUo8yVytS&var=074b5bba-80ab-4a33-86df-edbd736e35eb IP139.45.197.238:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /4/4598789?ymid=5NaR5SGy3kdMQyUo8yVytS&var=074b5bba-80ab-4a33-86df-edbd736e35eb HTTP/1.1
Host: ungroudonchan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:59:52 GMT
content-type: text/html; charset=utf8
x-trace-id: e853d2f53454d18a1905def9b21f021e
link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://eu.can-get-so.me>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-credentials: true
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=1cffc2c91f6746cb9cff5debbeba4f2b; expires=Mon, 04 Sep 2023 19:59:52 GMT; path=/; secure; SameSite=None
oaidts=1662321592; expires=Mon, 04 Sep 2023 19:59:52 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *, *
access-control-allow-methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Accept, Content-Type, Content-Length, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/casino--side-nav.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/casino--side-nav.svg IP104.22.31.168:0
GET /img/icons/casino--side-nav.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 28 Feb 2022 09:33:37 GMT
etag: W/"621c96f1-9ef"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 16280015
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed0f47b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/visa--white.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/visa--white.svg IP104.22.31.168:0
GET /img/icons/visa--white.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-279"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 32532417
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed1f63b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/jeton--white.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/jeton--white.svg IP104.22.31.168:0
GET /img/icons/jeton--white.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-1f4b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7767979
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed2f8ab4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/gambleaware18.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/gambleaware18.svg IP104.22.31.168:0
GET /img/icons/gambleaware18.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-537"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7761679
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed681cb4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/service-worker.js | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/service-worker.js IP104.22.31.168:0
GET /service-worker.js HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:53 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 14:33:43 GMT
vary: Accept-Encoding
etag: W/"63078847-64d2"
expires: Sun, 04 Sep 2022 20:00:23 GMT
cache-control: max-age=30
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74594ee73ea1b4fa-OSL
X-Firefox-Spdy: h2
|
|
| track.adform.net/Serving/TrackPoint/?pm=2381934&ADFdivider=%7C&ord=760498113913&Set1=en-US%7Cen-US%7C1280x1024%7C24&ADFtpmode=2&loc=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_8E5AD5C0B7C74BABBA64A450394C835D | 37.157.3.30 | 302 Found | 0 B |
URL HTTP/2track.adform.net/Serving/TrackPoint/?pm=2381934&ADFdivider=%7C&ord=760498113913&Set1=en-US%7Cen-US%7C1280x1024%7C24&ADFtpmode=2&loc=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_8E5AD5C0B7C74BABBA64A450394C835D IP37.157.3.30:0
GET /Serving/TrackPoint/?pm=2381934&ADFdivider=%7C&ord=760498113913&Set1=en-US%7Cen-US%7C1280x1024%7C24&ADFtpmode=2&loc=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_8E5AD5C0B7C74BABBA64A450394C835D HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.megarush.com/
Connection: keep-alive
HTTP/2 302 Found
server: nginx
date: Sun, 04 Sep 2022 19:59:55 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=2381934&ADFdivider=%7C&ord=760498113913&Set1=en-US%7Cen-US%7C1280x1024%7C24&ADFtpmode=2&loc=https%3A%2F%2Fwww.megarush.com%2Fnb-no%3Fbtag%3D656126_8E5AD5C0B7C74BABBA64A450394C835D
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Tue, 04-Oct-2022 19:59:55 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/mastercard--white.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/mastercard--white.svg IP104.22.31.168:0
GET /img/icons/mastercard--white.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-939"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 32532417
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed1f64b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/mega-phone-badge-new.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/mega-phone-badge-new.svg IP104.22.31.168:0
GET /img/icons/mega-phone-badge-new.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 18 Oct 2021 10:01:21 GMT
etag: W/"616d45f1-6b0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 27769836
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed2f90b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/gamcare.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/gamcare.svg IP104.22.31.168:0
GET /img/icons/gamcare.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-dd1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 32532417
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed5ff6b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/askgamblers.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/askgamblers.svg IP104.22.31.168:0
GET /img/icons/askgamblers.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-126e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7763822
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed7836b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/index.30053c2cd5717880348c.css | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/index.30053c2cd5717880348c.css IP104.22.31.168:0
GET /index.30053c2cd5717880348c.css HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:52 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=228336
access-control-allow-origin: *
cache-control: max-age=7200
etag: W/"63078847-37bf0"
expires: Sun, 04 Sep 2022 05:57:50 GMT
last-modified: Thu, 25 Aug 2022 14:33:43 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 103
server: cloudflare
cf-ray: 74594ee398fcb4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/js/index.f6004837.js | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/js/index.f6004837.js IP104.22.31.168:0
GET /js/index.f6004837.js HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:52 GMT
content-type: application/javascript
cf-bgj: minify
access-control-allow-origin: *
cache-control: max-age=7200
etag: W/"63078847-160eb4"
expires: Sun, 04 Sep 2022 05:40:38 GMT
last-modified: Thu, 25 Aug 2022 14:33:43 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1120
server: cloudflare
cf-ray: 74594ee39906b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/iso.fc5b238b.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/iso.fc5b238b.svg IP104.22.31.168:0
GET /img/iso.fc5b238b.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.megarush.com/index.30053c2cd5717880348c.css
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-363"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 32532417
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eeeba31b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/logo.4c52d90d.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/logo.4c52d90d.svg IP104.22.31.168:0
GET /img/logo.4c52d90d.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.megarush.com/index.30053c2cd5717880348c.css
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-931"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7763822
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eeeba32b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| track.adform.net/serving/container/?pm=2381934&lid=95292615&ctype=0&media=0&PageName=megarush.com%2fnb-no&rnd=1959016920&cpref=&loc=https%3a%2f%2fwww.megarush.com%2fnb-no%3fbtag%3d656126_8E5AD5C0B7C74BABBA64A450394C835D | 37.157.3.30 | 200 OK | 0 B |
URL HTTP/2track.adform.net/serving/container/?pm=2381934&lid=95292615&ctype=0&media=0&PageName=megarush.com%2fnb-no&rnd=1959016920&cpref=&loc=https%3a%2f%2fwww.megarush.com%2fnb-no%3fbtag%3d656126_8E5AD5C0B7C74BABBA64A450394C835D IP37.157.3.30:0
GET /serving/container/?pm=2381934&lid=95292615&ctype=0&media=0&PageName=megarush.com%2fnb-no&rnd=1959016920&cpref=&loc=https%3a%2f%2fwww.megarush.com%2fnb-no%3fbtag%3d656126_8E5AD5C0B7C74BABBA64A450394C835D HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 19:59:56 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/ibas.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/ibas.svg IP104.22.31.168:0
GET /img/icons/ibas.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-f8e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 32532417
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed5fedb4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/loader.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/loader.svg IP104.22.31.168:0
GET /img/icons/loader.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-a6b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 32531310
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed8853b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/palms.1f322dbc.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/palms.1f322dbc.svg IP104.22.31.168:0
GET /img/palms.1f322dbc.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.megarush.com/index.30053c2cd5717880348c.css
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-33a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 5364790
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eeeba27b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/begambleaware.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/begambleaware.svg IP104.22.31.168:0
GET /img/icons/begambleaware.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Aug 2021 13:22:11 GMT
etag: W/"6123a103-18df"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 32532417
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed5ff0b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/gamblersanonymous.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/gamblersanonymous.svg IP104.22.31.168:0
GET /img/icons/gamblersanonymous.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-171"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 5364791
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eed6803b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/chunk-vendors.76e8e4d0.css | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/chunk-vendors.76e8e4d0.css IP104.22.31.168:0
GET /chunk-vendors.76e8e4d0.css HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:52 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=1523
access-control-allow-origin: *
cache-control: max-age=7200
etag: W/"63078847-5f3"
expires: Thu, 25 Aug 2022 15:25:15 GMT
last-modified: Thu, 25 Aug 2022 14:33:43 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 6081
server: cloudflare
cf-ray: 74594ee388f8b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.megarush.com/img/icons/netent.svg | 104.22.31.168 | 200 OK | 0 B |
URL HTTP/2www.megarush.com/img/icons/netent.svg IP104.22.31.168:0
GET /img/icons/netent.svg HTTP/1.1
Host: www.megarush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.megarush.com/nb-no?btag=656126_8E5AD5C0B7C74BABBA64A450394C835D
Connection: keep-alive
Cookie: geoip_country=no; webserver=megarush-prd-58d9bc46b7-gnph4; geoip_country=no; LanguageCode=nb-no; 73284d4086c9c5cd43ecdef7e2965d52=a402177d99f25f9b8746fdfd835b96e8; btag=656126_8E5AD5C0B7C74BABBA64A450394C835D; _ga=GA1.2.1857017261.1662321591; _gid=GA1.2.985876604.1662321591; _gat_UA-143790984-2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 19:59:54 GMT
content-type: image/svg+xml
last-modified: Mon, 06 Jun 2022 07:18:34 GMT
etag: W/"629daa4a-519"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 7769260
vary: Accept-Encoding
server: cloudflare
cf-ray: 74594eecff40b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|