datatechone.com/log/add?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853
2 B URL datatechone.com/log/add?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853
IP
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /log/add?cid=e7ddf874-40d2-43d7-b8fd-56541bff0853 HTTP/1.1
Host: datatechone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1636
Origin: https://cdntechone.com
DNT: 1
Connection: keep-alive
Referer: https://cdntechone.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sat, 02 Dec 2023 22:01:44 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
Access-Control-Allow-Origin: https://cdntechone.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
www.googletagmanager.com/gtag/js?id=G-F0JFDXF7TQ
200 OK 94 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-F0JFDXF7TQ
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (7711)
Hash 62ea92631c894704034ee80ee76087f2
2ef7dde14d3d6bfcf8a8e9fc13ed19af67f3fe15
daf6ab37ef5d55f05b641f8d5c5bc8b1fd204cd1e36ae91bbe2e6157a66bcf48
GET /gtag/js?id=G-F0JFDXF7TQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 02 Dec 2023 22:01:45 GMT
expires: Sat, 02 Dec 2023 22:01:45 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94057
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdntechone.com/stattag.js
200 OK 7.8 kB URL GET HTTP/2 cdntechone.com/stattag.js
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint22:B1:48:87:A8:EF:B2:9B:65:EB:D6:C6:FD:8D:EF:A7:A7:DE:52:29
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (18335)
Hash 8ec0c661780569e42736cfc20e4c69d7
0d857c9b9813975179cf323a344c934bcae598c6
38831e62c2e99f2f64b0352f13ef7daaa7c97e31dac314bb52caa89a6a7f58f5
GET /stattag.js HTTP/1.1
Host: cdntechone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:44 GMT
content-type: application/javascript
last-modified: Thu, 07 Sep 2023 08:19:46 GMT
etag: W/"64f987a2-4a29"
link: <https://datatechone.com/>; rel=preconnect; crossorigin, <https://datatechonert.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 2039
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c17U1tH8M2e0GFbdffIV1FXTTXVyO49szwhJVpQ5ALakWb9B%2FYAtzqeBykTyFc8nerUMs8gdpqlKKL4Fpossx0j89Hur2LflMH6yrcmd41nmKsalPVhkgp0t1I%2FFa13QxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f6d9a7eedd7129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
i.th61.com/watch?zone=5776779&var=zd_5951427&ymid=690219906500924331&s=5
521 No Reason Phrase 6.8 kB URL POST HTTP/2 i.th61.com/watch?zone=5776779&var=zd_5951427&ymid=690219906500924331&s=5
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint80:B8:25:47:ED:82:D4:A7:46:25:E7:D0:EF:21:B6:EE:31:E1:D5:63
ValidityMon, 20 Feb 2023 00:00:00 GMT - Tue, 20 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 6f27ced2587f0ff1e14cbd0540cbd56d
a9311fb8c4999f9de22a80d62ed3e1b8a4e8af06
d9cc62bb2e9a896a0e1952d70c36de5b38c140a617b8bb9440153c2129edb520
POST /watch?zone=5776779&var=zd_5951427&ymid=690219906500924331&s=5 HTTP/1.1
Host: i.th61.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
Origin: https://rewardarium.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 521 No Reason Phrase
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: text/html; charset=UTF-8
content-length: 6797
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l2yIRu2KDx3NLIjrMaMdT8FpARJEf9WN6taV9BRxD7qjIj7wxkNxTLcNwZ%2BLH6W7sBq4mydgtGmD%2F6hj73T4%2FaiQlVEAE1aY72oyvyvtO9tXlwUrcxbY8AjUrHFG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
server: cloudflare
cf-ray: 82f6d9a84ddb5697-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
stootsou.net/zone?pub=0&zone_id=5776812&is_mobile=false&domain=rewardarium.com&var=zd_5951427&ymid=690219906500924331&var_3=&tg=0&sw=3.1.471
200 OK 880 B URL GET HTTP/2 stootsou.net/zone?pub=0&zone_id=5776812&is_mobile=false&domain=rewardarium.com&var=zd_5951427&ymid=690219906500924331&var_3=&tg=0&sw=3.1.471
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectstootsou.net
Fingerprint7B:74:99:B5:70:60:13:AA:4D:53:BA:14:89:45:5F:F7:58:7C:C9:1C
ValidityTue, 21 Nov 2023 05:14:26 GMT - Mon, 19 Feb 2024 05:14:25 GMT
File type JSON data\012- , ASCII text, with very long lines (879)
Hash ee62be1e7ae4899da9044737dd07e635
ab6cd84336e9426ef98fa450f2288f195bc6d826
44287053ad37f51c2f6145d391db985e5876c57c67a111c452cdfff440db2d68
GET /zone?pub=0&zone_id=5776812&is_mobile=false&domain=rewardarium.com&var=zd_5951427&ymid=690219906500924331&var_3=&tg=0&sw=3.1.471 HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
Origin: https://rewardarium.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: application/json; charset=utf-8
content-length: 880
x-trace-id: 7f71e81ef40197999c9a9d1803fd9420
access-control-allow-origin: https://rewardarium.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
datatechonert.com/log/add?cid=4fdc95c9-9001-4768-aac8-c1886405d3a9
200 OK 12 B URL POST HTTP/1.1 datatechonert.com/log/add?cid=4fdc95c9-9001-4768-aac8-c1886405d3a9
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerSectigo Limited
Subjectdatatechonert.com
Fingerprint6F:17:15:C2:7F:CC:16:6C:9D:C0:AD:C3:EE:DA:69:61:8C:77:0B:5B
ValiditySun, 18 Dec 2022 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /log/add?cid=4fdc95c9-9001-4768-aac8-c1886405d3a9 HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 1500
Origin: https://rewardarium.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sat, 02 Dec 2023 22:01:45 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://rewardarium.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
stootsou.net/custom
200 OK 0 B IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectstootsou.net
Fingerprint7B:74:99:B5:70:60:13:AA:4D:53:BA:14:89:45:5F:F7:58:7C:C9:1C
ValidityTue, 21 Nov 2023 05:14:26 GMT - Mon, 19 Feb 2024 05:14:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://rewardarium.com/
Origin: https://rewardarium.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://rewardarium.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
ak.glersooy.net/4/5776779/?ymid=690219906500924331&var=zd_5951427&var3=[[partner_id]]
200 OK 636 B URL GET HTTP/2 ak.glersooy.net/4/5776779/?ymid=690219906500924331&var=zd_5951427&var3=[[partner_id]]
IP
ASN #20940 Akamai International B.V.
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectak.hetaruwg.com
FingerprintC9:F5:9D:F6:D9:AC:05:68:7A:64:73:24:E7:05:EC:EB:8A:D4:88:E9
ValidityTue, 28 Nov 2023 14:24:23 GMT - Mon, 26 Feb 2024 14:24:22 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 842f43bf5c398259656ac3882dc5af10
3c209899059f4d1978bae1798140b65434a03a51
c706149c02fc2bd532e4dd7d7d0f4ef9d7e7b2a7c5a6ddb596cba3177239d087
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /4/5776779/?ymid=690219906500924331&var=zd_5951427&var3=[[partner_id]] HTTP/1.1
Host: ak.glersooy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf8
x-trace-id: dcf432e3660e1bc856a87dc7fb6fae05
link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://record.ibetaffiliates.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-credentials: true
access-control-max-age: 86400
timing-allow-origin: *
access-control-allow-origin: *, *
access-control-allow-methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, Accept, Content-Type, Content-Length, Accept-Encoding, favicon
content-encoding: gzip
expires: Sat, 02 Dec 2023 22:01:45 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 02 Dec 2023 22:01:45 GMT
content-length: 636
vary: Accept-Encoding
set-cookie: OAID=83dcba81532f42d684de0aaaf8ec6c84; expires=Sun, 01 Dec 2024 22:01:45 GMT; path=/; secure; SameSite=None
oaidts=1701554505; expires=Sun, 01 Dec 2024 22:01:45 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
X-Firefox-Spdy: h2
rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
200 OK 10 kB URL User Request GET HTTP/2 rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
IP
Certificate IssuerLet's Encrypt
Subjectrewardarium.com
Fingerprint0F:AE:B4:3C:83:1E:9D:AA:A0:4F:56:A9:16:94:9B:AA:EF:3B:61:EA
ValidityTue, 28 Nov 2023 22:57:19 GMT - Mon, 26 Feb 2024 22:57:18 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2309)
Hash a66fe87d9a0e124e96c54797562c89b1
58239ed5359148333a1aa9eaff340dd41db477d9
2fa2fbe1f6bbfb606fb517206dfd61f87a9cc128abc97a214f3d67adfa8cde4b
GET /?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357 HTTP/1.1
Host: rewardarium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdntechone.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:44 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dYgW1qPnHp%2Bx1ToG%2FmgLWHhOwo%2F5%2F4ExMoa1chTkuWNxfPgD8dc7sLUVYJhG%2FHChRUgwO6zyyc%2BsjU3CqCRKJfiKpw5MC3Xs0oM3gRLSmu8uw5A%2BQ8ZWIbVVjj%2FnWezKDHc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 82f6d9a6beafb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
niwooghu.com/400/5776801?ymid=690219906500924331&var=zd_5951427&var3=[[partner_id]]
200 OK 32 kB URL GET HTTP/2 niwooghu.com/400/5776801?ymid=690219906500924331&var=zd_5951427&var3=[[partner_id]]
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectniwooghu.com
Fingerprint3D:54:BD:F6:52:70:24:C2:E6:6B:18:3F:1F:1D:6E:34:28:B2:6C:9F
ValidityFri, 13 Oct 2023 05:12:56 GMT - Thu, 11 Jan 2024 05:12:55 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash dfb0010d50f3b29cb3288af82e283faf
18e1920e8905f73c1fa04c7d3e5c38077ed9daa8
b7012d9929645f91ea650e3edac1d84344413b8884b0e929b44a33892308ce60
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /400/5776801?ymid=690219906500924331&var=zd_5951427&var3=[[partner_id]] HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: application/javascript
x-trace-id: 6b61cf8964d31c33b84ed6c1babbb977
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=cc9d667da9104d18b9a0cbe280e9ad7c; expires=Sun, 01 Dec 2024 22:01:45 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
stootsou.net/custom
200 OK 39 B IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectstootsou.net
Fingerprint7B:74:99:B5:70:60:13:AA:4D:53:BA:14:89:45:5F:F7:58:7C:C9:1C
ValidityTue, 21 Nov 2023 05:14:26 GMT - Mon, 19 Feb 2024 05:14:25 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
Content-Type: application/json
Content-Length: 570
Origin: https://rewardarium.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: d0478b11895b435fff5deabb7edd3c16
access-control-allow-origin: https://rewardarium.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
stootsou.net/pfe/current/tag.min.js?z=5776812&ymid=690219906500924331&var=zd_5951427&var3=[[partner_id]]
200 OK 39 kB URL GET HTTP/2 stootsou.net/pfe/current/tag.min.js?z=5776812&ymid=690219906500924331&var=zd_5951427&var3=[[partner_id]]
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectstootsou.net
Fingerprint7B:74:99:B5:70:60:13:AA:4D:53:BA:14:89:45:5F:F7:58:7C:C9:1C
ValidityTue, 21 Nov 2023 05:14:26 GMT - Mon, 19 Feb 2024 05:14:25 GMT
File type C source, ASCII text, with very long lines (65536), with no line terminators
Hash 228bc7c2d38fd742580945bccc5c3421
f3850908cfa48655c00359de7ff29e7a8f66545d
c74283c098c968725661f0cec73b0d8a0f26ce82a766cb41e38b688ac4b2c6e7
GET /pfe/current/tag.min.js?z=5776812&ymid=690219906500924331&var=zd_5951427&var3=[[partner_id]] HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 17:44:23 GMT
etag: W/"6564d577-33f4"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
stootsou.net/custom
200 OK 39 B IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectstootsou.net
Fingerprint7B:74:99:B5:70:60:13:AA:4D:53:BA:14:89:45:5F:F7:58:7C:C9:1C
ValidityTue, 21 Nov 2023 05:14:26 GMT - Mon, 19 Feb 2024 05:14:25 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
Content-Type: application/json
Content-Length: 911
Origin: https://rewardarium.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: b47b036a88596ec1bb0ffc437eb6faed
access-control-allow-origin: https://rewardarium.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=merge&userId=83dcba81532f42d684de0aaaf8ec6c84
43 B URL my.rtmark.net/img.gif?f=merge&userId=83dcba81532f42d684de0aaaf8ec6c84
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=merge&userId=83dcba81532f42d684de0aaaf8ec6c84 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=83dcba81532f42d684de0aaaf8ec6c84; expires=Sun, 01 Dec 2024 22:01:45 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
my.rtmark.net/gid.js
200 OK 65 B IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT
File type JSON data\012- , ASCII text
Hash 901fb4b994a614ee728d4f9d5f63fe70
231c4700155c7ecf650a477480f5fada3e4edc68
dfc5b5a5e3712ee4209aef9968a139de9b47a558f6c129feba361bf4c4295344
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
Origin: https://rewardarium.com
DNT: 1
Connection: keep-alive
Cookie: ID=83dcba81532f42d684de0aaaf8ec6c84
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://rewardarium.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=83dcba81532f42d684de0aaaf8ec6c84; expires=Sun, 01 Dec 2024 22:01:45 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
rewardarium.com/sw.js
200 OK 2.6 kB IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectrewardarium.com
Fingerprint0F:AE:B4:3C:83:1E:9D:AA:A0:4F:56:A9:16:94:9B:AA:EF:3B:61:EA
ValidityTue, 28 Nov 2023 22:57:19 GMT - Mon, 26 Feb 2024 22:57:18 GMT
File type ASCII text, with very long lines (5235)
Hash 809c8f2863e519babd2dc405af277aa0
7a0f43bd8f81ef944627a6d83ced615d0eda962f
ecbb19ecba66133221ec0f3d6db1932b0507cc76f224b175768134f393e2033d
GET /sw.js HTTP/1.1
Host: rewardarium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
DNT: 1
Connection: keep-alive
Cookie: _ga_F0JFDXF7TQ=GS1.1.1701554510.1.0.1701554510.0.0.0; _ga=GA1.1.214449777.1701554510
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"ca2bad6cb20023661b53ea682a457ede"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EfH7uchipvUWZoYjxO1eqbTS3vRV%2BEGMmaoc%2BgN7QDtkvqPJIla2E8gQVjdDZAfgIxcxvjxXVt0pa7QMrfusW69noo%2F3EutIQQsO6ibHFtd%2BaB67PtgXYbagatXq6bycm50%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 82f6d9aa8e4c0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
niwooghu.com/500/5776801?excludes=&oaid=83dcba81532f42d684de0aaaf8ec6c84&var=zd_5951427&ymid=690219906500924331&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 0 B URL GET HTTP/2 niwooghu.com/500/5776801?excludes=&oaid=83dcba81532f42d684de0aaaf8ec6c84&var=zd_5951427&ymid=690219906500924331&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectniwooghu.com
Fingerprint3D:54:BD:F6:52:70:24:C2:E6:6B:18:3F:1F:1D:6E:34:28:B2:6C:9F
ValidityFri, 13 Oct 2023 05:12:56 GMT - Thu, 11 Jan 2024 05:12:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /500/5776801?excludes=&oaid=83dcba81532f42d684de0aaaf8ec6c84&var=zd_5951427&ymid=690219906500924331&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://rewardarium.com/
Origin: https://rewardarium.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:45 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://rewardarium.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
www.ibet.com/assets/index-60a5f78a.css
200 OK 12 kB URL GET HTTP/2 www.ibet.com/assets/index-60a5f78a.css
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Hash 05deac096551787dca12f46f0e3a3414
81c762139762a908d65ba4781570f1895e4ff5f6
60a5f78a5a5da7b098f96316ddbb5f00998180f0f8602e1433eae8733f8cc929
GET /assets/index-60a5f78a.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 08:57:16 GMT
etag: W/"05deac096551787dca12f46f0e3a3414"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xlVVG6srLBvVtwfbv0Q3eilj5IzZ_jTbYQtGNB4Pfm0W8oMlgDKkHw==
age: 55255
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
niwooghu.com/500/5776801?excludes=&oaid=83dcba81532f42d684de0aaaf8ec6c84&var=zd_5951427&ymid=690219906500924331&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 127 kB URL GET HTTP/2 niwooghu.com/500/5776801?excludes=&oaid=83dcba81532f42d684de0aaaf8ec6c84&var=zd_5951427&ymid=690219906500924331&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectniwooghu.com
Fingerprint3D:54:BD:F6:52:70:24:C2:E6:6B:18:3F:1F:1D:6E:34:28:B2:6C:9F
ValidityFri, 13 Oct 2023 05:12:56 GMT - Thu, 11 Jan 2024 05:12:55 GMT
File type gzip compressed data, max speed, from Unix\012- data
Size 127 kB (127168 bytes)
Hash 33e39245700663f1974596eda08905a1
2538518189ef0fb9d05cb3f487507e5f900e28bd
56c4e970a41c302bf854631995c4a61c22f881ea737d11e1d8d533fdaf4258a5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /500/5776801?excludes=&oaid=83dcba81532f42d684de0aaaf8ec6c84&var=zd_5951427&ymid=690219906500924331&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
Content-Type: application/json
Origin: https://rewardarium.com
DNT: 1
Connection: keep-alive
Cookie: OAID=cc9d667da9104d18b9a0cbe280e9ad7c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:46 GMT
content-type: application/javascript
x-trace-id: 6206050f7eed2c565847e31b460b536c
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: https://rewardarium.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=83dcba81532f42d684de0aaaf8ec6c84; expires=Sun, 01 Dec 2024 22:01:46 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
ekr.zdassets.com/compose/a6120dcf-e9e8-4bb6-a19e-078213479153
200 OK 1.1 kB URL GET HTTP/2 ekr.zdassets.com/compose/a6120dcf-e9e8-4bb6-a19e-078213479153
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
File type JSON data\012- , ASCII text, with very long lines (1134), with no line terminators
Hash 32fc0fe12189c89e3462db2497b03f53
011134ddb3bf6a96beb6b8b66a3301e4553d2437
991c34f960adf6799ca89393db08e39969b7eb250cdbedac0d14f29f43c5438e
GET /compose/a6120dcf-e9e8-4bb6-a19e-078213479153 HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:46 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
vary: Accept, Origin, Accept-Encoding
cache-control: max-age=300, public, stale-while-revalidate=300, stale-if-error=21600
etag: W/"991c34f960adf6799ca89393db08e399"
x-request-id: 825455910f7d33ef-SEA, 825455910f7d33ef-SEA
x-runtime: 0.010788
x-zendesk-zorg: yes
cf-cache-status: HIT
age: 37
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FinjfJSjy78eNzFQ%2BgTR1VlqOP0rx4IagumRx%2B%2FkR1TEXIvTD70WIdcxnp%2FvZJqQ4wcvJA1a7cdW%2B5B3ZUSDSg0J2FwipdFO4qniNPCGKbIDeM8JH1oz6CTZELJ%2BJz8KIeQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82f6d9b35a1a56ab-OSL
content-encoding: br
X-Firefox-Spdy: h2
rewardarium.com/favicon.ico
200 OK 11 kB URL GET HTTP/3 rewardarium.com/favicon.ico
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectrewardarium.com
Fingerprint0F:AE:B4:3C:83:1E:9D:AA:A0:4F:56:A9:16:94:9B:AA:EF:3B:61:EA
ValidityTue, 28 Nov 2023 22:57:19 GMT - Mon, 26 Feb 2024 22:57:18 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2309)
Hash a66fe87d9a0e124e96c54797562c89b1
58239ed5359148333a1aa9eaff340dd41db477d9
2fa2fbe1f6bbfb606fb517206dfd61f87a9cc128abc97a214f3d67adfa8cde4b
GET /favicon.ico HTTP/1.1
Host: rewardarium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
DNT: 1
Connection: keep-alive
Cookie: _ga_F0JFDXF7TQ=GS1.1.1701554510.1.0.1701554510.0.0.0; _ga=GA1.1.214449777.1701554510
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AB6LwgdbbfuDcj3Vl6at8JaBPyt%2FzgYijpbYi6HTCT2rfdk%2B5OjjfJyLTgRWqzf%2FHc4Y7u7gkYCivyKWkxkR2EsNUWgji%2BTsBhTSRxraRdbTJU0JUbkah%2BvkZcsPX1oWUmA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 82f6d9ae391e0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27market%27%20%26%26%20id%20%3D%3D%20%27NO%27%5D%5B0%5D%7Blicenses%5B%5D%7BlogoName%2C%22image%22%3Alogo.asset-%3Eurl%2C%22url%22%3Aurl.current%7D%7D%20%0A%20%20
200 OK 130 B URL GET HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27market%27%20%26%26%20id%20%3D%3D%20%27NO%27%5D%5B0%5D%7Blicenses%5B%5D%7BlogoName%2C%22image%22%3Alogo.asset-%3Eurl%2C%22url%22%3Aurl.current%7D%7D%20%0A%20%20
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash a7b4d14086907d7363808c0de6421ddf
acd659de6b8f365a82bdd70ee2bb962cddf21093
d7be7f54183791fef7906745415beca03b19a2e222408bf82d593028045fc10b
GET /v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27market%27%20%26%26%20id%20%3D%3D%20%27NO%27%5D%5B0%5D%7Blicenses%5B%5D%7BlogoName%2C%22image%22%3Alogo.asset-%3Eurl%2C%22url%22%3Aurl.current%7D%7D%20%0A%20%20 HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sat, 02 Dec 2023 21:46:45 GMT
server-timing: api;dur=24
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 901
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 130
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
200 OK 191 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 02 Dec 2023 11:33:07 GMT
expires: Sun, 01 Dec 2024 11:33:07 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 37719
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27staticPage%27%20%26%26%20pageCategory%20match%20%22information%22%20%26%26%20!(%22NO%22%20in%20excludedMarkets%5B%5D-%3Eid)%5D%20%7C%20order(_createdAt%20asc)%7B...%2C%22onlyShowMarkets%22%3A%20onlyShowMarkets%5B%5D%20-%3E%20id%7D%20%0A%20%20
200 OK 3.3 kB URL GET HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27staticPage%27%20%26%26%20pageCategory%20match%20%22information%22%20%26%26%20!(%22NO%22%20in%20excludedMarkets%5B%5D-%3Eid)%5D%20%7C%20order(_createdAt%20asc)%7B...%2C%22onlyShowMarkets%22%3A%20onlyShowMarkets%5B%5D%20-%3E%20id%7D%20%0A%20%20
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (13538), with no line terminators
Hash 70ac67d087e16a06d041b82ae314b25c
f87df1c825fe2d1bfb98920cada893cd967f9bab
f78f353109c0d028854649c035231e0af36675e3facd9f46afadba42051690e9
GET /v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27staticPage%27%20%26%26%20pageCategory%20match%20%22information%22%20%26%26%20!(%22NO%22%20in%20excludedMarkets%5B%5D-%3Eid)%5D%20%7C%20order(_createdAt%20asc)%7B...%2C%22onlyShowMarkets%22%3A%20onlyShowMarkets%5B%5D%20-%3E%20id%7D%20%0A%20%20 HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sat, 02 Dec 2023 21:42:04 GMT
server-timing: api;dur=24
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 1182
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 3267
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/messenger/latest/web-widget-9535-0345ad6.js
200 OK 5.7 kB URL GET HTTP/2 static.zdassets.com/web_widget/messenger/latest/web-widget-9535-0345ad6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
File type ASCII text, with very long lines (15489), with no line terminators
Hash d46547a6c79c8800ac99ed5408528a12
f38c90e20285af9249a5f89179c5c315a3665774
0349bc9b3c076b695b88acbf7ef9f770cc1975608d83c51fde327c5e9df3e391
GET /web_widget/messenger/latest/web-widget-9535-0345ad6.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:47 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 3gzpbjxrp0zMh5xDP5QRBSoLDVT/GHeUR7zZVpwqYZ9YIoJrJSGezD8waZfZRjlY5tT04SRbXds=
x-amz-request-id: Z0TNH7WR3WDJNY83
x-amz-replication-status: COMPLETED
last-modified: Mon, 06 Nov 2023 00:52:49 GMT
etag: W/"d46547a6c79c8800ac99ed5408528a12"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 05 Nov 2024 00:52:48 GMT
x-amz-version-id: Htn9g_potgdCgt0Ro1y4Ux_z.nUmgxGP
cf-cache-status: HIT
age: 489187
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LBYnReXnLsIguyxVcUsep1KXK6M%2BbOChWlH2gBYIXjAhvMzMLQeE85vbebBnpXBnMGkCz28mxu5jcUigwl0Ba4aEYsK7METkHyi1Eg2B56axML6vyfE253DNgPwIg%2Fg%2F8nYaesY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82f6d9b519cf0b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
d1w3v8ahdm9uzk.cloudfront.net/prod/api/v1/player/access/context
200 OK 370 B URL GET HTTP/2 d1w3v8ahdm9uzk.cloudfront.net/prod/api/v1/player/access/context
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type JSON data\012- , ASCII text
Hash a9058bcafaa20f452059d17d71366809
36aafe52e527968827415e32b53af7d537ac2ff9
181dd6c8374efe4830ed13c69dc30510b272911f318ab3ca6e0f1d80f421ca15
GET /prod/api/v1/player/access/context HTTP/1.1
Host: d1w3v8ahdm9uzk.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-length: 370
date: Sat, 02 Dec 2023 22:01:47 GMT
x-amzn-requestid: 407acfcb-dbeb-4566-8ecf-3c7e85377fe4
access-control-allow-origin: *
x-amz-apigw-id: PVdjzFBNjoEERjw=
x-amzn-trace-id: Root=1-656ba94b-67d9cedf3884ffbc6967b7ab
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront), 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-cache: Miss from cloudfront
x-amz-cf-pop: OSL50-C1, OSL50-C1
x-amz-cf-id: 8DdSSqnKKx7MjiACCrRx91qoYzMP5hObUOkkLtRCPGMpir2ciYVZOQ==
X-Firefox-Spdy: h2
static.zdassets.com/ekr/snippet.js?key=a6120dcf-e9e8-4bb6-a19e-078213479153
200 OK 168 kB URL GET HTTP/2 static.zdassets.com/ekr/snippet.js?key=a6120dcf-e9e8-4bb6-a19e-078213479153
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
File type ASCII text, with very long lines (10187), with no line terminators
Size 168 kB (167734 bytes)
Hash 42d94c325a0b012e41f9c3907853625a
567dbe8e0b61115deb7c33947f706d4e51c3ab49
9f22f6e9d4852f8be0706b62fbd0eba20f6cb56171def5e387b2d95fcd07df01
GET /ekr/snippet.js?key=a6120dcf-e9e8-4bb6-a19e-078213479153 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:46 GMT
content-type: application/javascript
x-amz-id-2: OdnBjVcC5xsQvyjtpPVBe21NpgZXl51NRJfLydbGvh5Gu9AdfuYJ4+/g1Hhtqo28e16NzYJZ+wk=
x-amz-request-id: SJN8N1JDMTD43WG0
x-amz-replication-status: COMPLETED
last-modified: Wed, 09 Aug 2023 01:01:02 GMT
etag: W/"42d94c325a0b012e41f9c3907853625a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: hKEbdq289Xo7bHrM.yPFOdJ37r5nFwfe
cf-cache-status: HIT
age: 48
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OK7iA%2BTf0mv%2F7fuPOh5R7vmWLuUEG73pMObkdgtaOZUjCeEUMr5VPdS1hmsxmPfDIPoAjYixt%2B7C4YSSVVYuuuElErDYFoKeIK%2BkdaZogwglwkFC4Ev%2FYmSOogYwaURzot%2BEPmk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82f6d9b2e8600b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
200 OK 191 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 02 Dec 2023 11:33:07 GMT
expires: Sun, 01 Dec 2024 11:33:07 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 37720
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=2o7g163ohbrb
200 OK 68 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=2o7g163ohbrb
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type gzip compressed data\012- data
Hash dca859bcb9b3911e2803b2f7f80d9eba
22d21aa728cc4a2ff97eade12307584f117f8198
cfd127b53308d8671a56855dcb00a7f3e75a82c1a3521674265470b3840add95
GET /recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=2o7g163ohbrb HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 02 Dec 2023 22:01:47 GMT
content-security-policy: script-src 'nonce-5lbyI5yHT43wStBDghN5HQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/index-5b3acf19.js
200 OK 206 B URL GET HTTP/2 www.ibet.com/assets/index-5b3acf19.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash 3ebca8f8aa753858a99343b5ddb5be95
bc34bae7b890d9badfd42f1f40eec33c25139d03
a52c60192a96c38871cd9d0c3ed9e3e5edc3275dbfc155eba72280faae4a3d70
GET /assets/index-5b3acf19.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 206
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:07:23 GMT
etag: "3ebca8f8aa753858a99343b5ddb5be95"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jGJdmJtSs9lL8hpOFObQHiuQ7bL4dmVAeQ-zVpExCh59LsOJzfXzdA==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/ScrollToTopOnRouteChange-b7b9872e.js
200 OK 154 B URL GET HTTP/2 www.ibet.com/assets/ScrollToTopOnRouteChange-b7b9872e.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash cb2a3a1b32fe146170d6a5b87b0f7f7f
0d2aeb9d573b0880079266a623bc09cd043f6718
ec8723b358dafee702ecc688b28bf8ec6eb775e17fc5fda87896b0b225677332
GET /assets/ScrollToTopOnRouteChange-b7b9872e.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 154
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:07:23 GMT
etag: "cb2a3a1b32fe146170d6a5b87b0f7f7f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lHiYBQ0sV80A1tL-L_96e3O8SAzj-SIAYWeJtfoNSN8mRW0ZQaULNw==
age: 39647
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/AffiliateId-c3403b19.js
200 OK 213 B URL GET HTTP/2 www.ibet.com/assets/AffiliateId-c3403b19.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash 0575a74ef921837b7cbd8a45bb00f579
31eb43089e6d420274d4018c63a3a4f0422579f0
17a9c1c162a3ba1b865de2e00b72922afa9dcc880634ec2c02c89137151200b8
GET /assets/AffiliateId-c3403b19.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 213
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:07:23 GMT
etag: "0575a74ef921837b7cbd8a45bb00f579"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9XKZK192VBKgIQdFFWyJq05nAD276neIBsmGg6C9XBwaHbOcBlpJBg==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/MaxAttemptsModal-dd620200.js
200 OK 842 B URL GET HTTP/2 www.ibet.com/assets/MaxAttemptsModal-dd620200.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (841)
Hash dc8a4b0a4f97e6de8408e2e9bc3fc5ae
73a05aa1d1d491779dd9d34bd7a076b997b650ab
cf334e8d200a09c0534e275c39ff430bb7e1fd3a140392776c9a35f788933efe
GET /assets/MaxAttemptsModal-dd620200.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 842
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:01:29 GMT
etag: "dc8a4b0a4f97e6de8408e2e9bc3fc5ae"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GYxAm9idW_isE7hq7Tw9xXSSSatYO9qh6Img_0dyG_L6ifPQ-zM9Nw==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/styles-f8a3902f.js
200 OK 332 B URL GET HTTP/2 www.ibet.com/assets/styles-f8a3902f.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (331)
Hash 334dcc6ed1956f27a3a2b6268d69ea68
67c64ba08ccc30a3b0570d193df8ce59f9b4c768
b00ee5d93c1fe3c66e8074688373526445bbead72dae0ff920e34ab7c6607804
GET /assets/styles-f8a3902f.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 332
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 08:57:18 GMT
etag: "334dcc6ed1956f27a3a2b6268d69ea68"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _EbJ8Tfl_CwlaajspXEYoDT4URvIa62jnbOWGpd30injfzQUIMMw7w==
age: 65530
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/constants-ce1ae330.js
200 OK 353 B URL GET HTTP/2 www.ibet.com/assets/constants-ce1ae330.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (352)
Hash 2297fefb1bb194fe4ea1a41702e9d025
89423abe6c45d14e2aa323cc32c05a6e1a6f0926
29a4bfacf6dc172499fd03a76caca200b712415cc029c59bb0429992912b09e8
GET /assets/constants-ce1ae330.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 353
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: "2297fefb1bb194fe4ea1a41702e9d025"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Hm_MUgdJZGtkCAveIT-fqvtwUlNSHxYaXI1RCshJcdLFmwD8feA57A==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/useLiveChat.hooks-f83ca73c.js
200 OK 100 B URL GET HTTP/2 www.ibet.com/assets/useLiveChat.hooks-f83ca73c.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash e77021857d3bbd13fee524a93ce91151
7056644d3cd5bbe173dac97df69289f5acedb546
ca74e8fd116839f1290ca08b66f3bd64197d38190322439a2734dcf5549c8747
GET /assets/useLiveChat.hooks-f83ca73c.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 100
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: "e77021857d3bbd13fee524a93ce91151"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: u7vC86-dYt2wcLVMBSNjlb3pOWPaW8xbjLCAMPj7MLjMi5ikKYCjGg==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/ButtonAuth-b5d864f6.js
200 OK 506 B URL GET HTTP/2 www.ibet.com/assets/ButtonAuth-b5d864f6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (505)
Hash 7f4b32411376323ef4e3f24630d1f916
579bb21c66986d2684ba158ee651d681a4f98084
a59474e327aaf4ed81365e8995f557868cb52e038d2ffd59cea03ab3aa09f84a
GET /assets/ButtonAuth-b5d864f6.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 506
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: "7f4b32411376323ef4e3f24630d1f916"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jpdZuzu7FJ-rsSPyI_DRyAX5LL35K4Cpw-IDSa1nFoKsvXXAhXGCNQ==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/MaxAttemptsModal-dd620200.js
200 OK 842 B URL GET HTTP/2 www.ibet.com/assets/MaxAttemptsModal-dd620200.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (841)
Hash dc8a4b0a4f97e6de8408e2e9bc3fc5ae
73a05aa1d1d491779dd9d34bd7a076b997b650ab
cf334e8d200a09c0534e275c39ff430bb7e1fd3a140392776c9a35f788933efe
GET /assets/MaxAttemptsModal-dd620200.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 842
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:01:29 GMT
etag: "dc8a4b0a4f97e6de8408e2e9bc3fc5ae"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kc_FHyh_3a11I06TIDWIy45MzbeJX0MxCbwSTwvb3UZsHsm-uI8eJA==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/index-fbfbf194.js
200 OK 30 kB URL GET HTTP/2 www.ibet.com/assets/index-fbfbf194.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (51100)
Hash 53ad023220ef0ac6b81cfdd6b3666243
b422a98c27635ccc402c28fb54702f9860722406
c8fc75f2b360aa79b79333a4351c13303c8beef55348bd26d040cd8725edbd7d
GET /assets/index-fbfbf194.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 08:57:18 GMT
etag: W/"53ad023220ef0ac6b81cfdd6b3666243"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ztUyEbqW7X5WLbaXeRtRwJGT8XwZjHuqpCnTiME21Cx5q2cuwwvWtw==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
niwooghu.com/impression/n6glPkcrZAP-afrItkcRIK1kNbXF598un61lK9wAnVQt4ZVOUB3zsLO_7Veu-30nLPerrSMcxgp0eCj7PpiNv2MVx_Nxij4Ivzck7qg2ZnsVmHV5QSegqfpcoXU_nylpDh5NqPTxrTfuG_IZ1zeoqTiAG85BhE7j7hb_XVLbyDneqRaYQljEJEKgzz9qFVHrAJezDLtFs7pmTk3qISIPuQF2PMDFAu5z5B5OVgd7cz0lczCb6hyrBJ2rLVvqFIU_FaHToI3fbCEGMtMUXm3q75arzunwQ4nGFAIGA7YeWwCUHvv25h-j4gMuTBSBtG95mpNNA-IqChp7mmIFZdMcedb3jv7_SHTRJw1ypafMEgd8tOp7rGW5yCcIdufHLp0lvQTmCCT9pU0DWbXejUAd4jI1lYIpn0CfP7CTqv_qZcOrtWeHFYyye2nGrCgIkmxbIbrd4i-aKS9cCTgkg99uOljkC72xrI01DphGn7pk1XsK76-UQ8U6quWhE8qF1TRaanzwC7HunmFtVhXwxUHZSlBQN4d2v7Rkt7wA-OlWC22-PGmGsJ3CIcZe58SR7_FwHzGgmhiAr02mZLU6wl52D-oM2JaUmKTmBAIlIQRyjvOR-vcRIHxxqHNX8M864kONdl_J_n2a5w8w1QJY_d1qkO3nc2E1o9kLYwP-vhJU1glQk3lkFfXtvkDClvjn2O05phSfHQcn6ZamR--RYOdtomLun4DgF8uUyB6MTt8GHWWM1erXMNUnzVxaniw=?_z=5776801&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 43 B URL GET HTTP/2 niwooghu.com/impression/n6glPkcrZAP-afrItkcRIK1kNbXF598un61lK9wAnVQt4ZVOUB3zsLO_7Veu-30nLPerrSMcxgp0eCj7PpiNv2MVx_Nxij4Ivzck7qg2ZnsVmHV5QSegqfpcoXU_nylpDh5NqPTxrTfuG_IZ1zeoqTiAG85BhE7j7hb_XVLbyDneqRaYQljEJEKgzz9qFVHrAJezDLtFs7pmTk3qISIPuQF2PMDFAu5z5B5OVgd7cz0lczCb6hyrBJ2rLVvqFIU_FaHToI3fbCEGMtMUXm3q75arzunwQ4nGFAIGA7YeWwCUHvv25h-j4gMuTBSBtG95mpNNA-IqChp7mmIFZdMcedb3jv7_SHTRJw1ypafMEgd8tOp7rGW5yCcIdufHLp0lvQTmCCT9pU0DWbXejUAd4jI1lYIpn0CfP7CTqv_qZcOrtWeHFYyye2nGrCgIkmxbIbrd4i-aKS9cCTgkg99uOljkC72xrI01DphGn7pk1XsK76-UQ8U6quWhE8qF1TRaanzwC7HunmFtVhXwxUHZSlBQN4d2v7Rkt7wA-OlWC22-PGmGsJ3CIcZe58SR7_FwHzGgmhiAr02mZLU6wl52D-oM2JaUmKTmBAIlIQRyjvOR-vcRIHxxqHNX8M864kONdl_J_n2a5w8w1QJY_d1qkO3nc2E1o9kLYwP-vhJU1glQk3lkFfXtvkDClvjn2O05phSfHQcn6ZamR--RYOdtomLun4DgF8uUyB6MTt8GHWWM1erXMNUnzVxaniw=?_z=5776801&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectniwooghu.com
Fingerprint3D:54:BD:F6:52:70:24:C2:E6:6B:18:3F:1F:1D:6E:34:28:B2:6C:9F
ValidityFri, 13 Oct 2023 05:12:56 GMT - Thu, 11 Jan 2024 05:12:55 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impression/n6glPkcrZAP-afrItkcRIK1kNbXF598un61lK9wAnVQt4ZVOUB3zsLO_7Veu-30nLPerrSMcxgp0eCj7PpiNv2MVx_Nxij4Ivzck7qg2ZnsVmHV5QSegqfpcoXU_nylpDh5NqPTxrTfuG_IZ1zeoqTiAG85BhE7j7hb_XVLbyDneqRaYQljEJEKgzz9qFVHrAJezDLtFs7pmTk3qISIPuQF2PMDFAu5z5B5OVgd7cz0lczCb6hyrBJ2rLVvqFIU_FaHToI3fbCEGMtMUXm3q75arzunwQ4nGFAIGA7YeWwCUHvv25h-j4gMuTBSBtG95mpNNA-IqChp7mmIFZdMcedb3jv7_SHTRJw1ypafMEgd8tOp7rGW5yCcIdufHLp0lvQTmCCT9pU0DWbXejUAd4jI1lYIpn0CfP7CTqv_qZcOrtWeHFYyye2nGrCgIkmxbIbrd4i-aKS9cCTgkg99uOljkC72xrI01DphGn7pk1XsK76-UQ8U6quWhE8qF1TRaanzwC7HunmFtVhXwxUHZSlBQN4d2v7Rkt7wA-OlWC22-PGmGsJ3CIcZe58SR7_FwHzGgmhiAr02mZLU6wl52D-oM2JaUmKTmBAIlIQRyjvOR-vcRIHxxqHNX8M864kONdl_J_n2a5w8w1QJY_d1qkO3nc2E1o9kLYwP-vhJU1glQk3lkFfXtvkDClvjn2O05phSfHQcn6ZamR--RYOdtomLun4DgF8uUyB6MTt8GHWWM1erXMNUnzVxaniw=?_z=5776801&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
DNT: 1
Connection: keep-alive
Cookie: OAID=83dcba81532f42d684de0aaaf8ec6c84
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:47 GMT
content-type: image/gif
content-length: 43
x-trace-id: c499b11aacaa73af6d401e4ca56a76b7
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=2o7g163ohbrb
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 10:04:07 GMT
expires: Fri, 29 Nov 2024 10:04:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 215860
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/assets/styles-f8a3902f.js
200 OK 332 B URL GET HTTP/2 www.ibet.com/assets/styles-f8a3902f.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (331)
Hash 334dcc6ed1956f27a3a2b6268d69ea68
67c64ba08ccc30a3b0570d193df8ce59f9b4c768
b00ee5d93c1fe3c66e8074688373526445bbead72dae0ff920e34ab7c6607804
GET /assets/styles-f8a3902f.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/MaxAttemptsModal-dd620200.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 332
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 08:57:18 GMT
etag: "334dcc6ed1956f27a3a2b6268d69ea68"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kMOMIBx5VpqShH8lgjQbSoDmcE6F9LMo-pQ2ecVXq58hjwiBwqrCfQ==
age: 65530
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/ExternalLink-a6f0c675.js
200 OK 225 B URL GET HTTP/2 www.ibet.com/assets/ExternalLink-a6f0c675.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Hash 00d93f8e5ee6bab0a74a73217a9a40d8
254d8018bea89e95c92fb1fe065a122a347cc933
1bec3afa784cd84bffe195103734e328b1ac9bab4556e195889c7e1dc924584c
GET /assets/ExternalLink-a6f0c675.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/CookiesNotification-d32d680f.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 225
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: "00d93f8e5ee6bab0a74a73217a9a40d8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GyW9qQM0KsRnK969TwgdoTeTmw0Qt2FfGiNVAHnOf7IVcsgbN0WyBA==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=2o7g163ohbrb
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 11:28:20 GMT
expires: Fri, 29 Nov 2024 11:28:20 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 210807
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/assets/HorizontalMenuScrollable-a86439a6.js
200 OK 882 B URL GET HTTP/2 www.ibet.com/assets/HorizontalMenuScrollable-a86439a6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (1261)
Hash af4d72cd148b69f003cce28c74c09ed2
cf9148b76982dccd5fc3d9a36eb4c42425aa35d8
f81f1f2b77ec69ec3b61d3640a7621ec0f1495d2b45da0c1e7f41f36dae31121
GET /assets/HorizontalMenuScrollable-a86439a6.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: W/"af4d72cd148b69f003cce28c74c09ed2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8ZJSuI5jmLoT_xe8AA7Nt7AH0ueRcvzE9boWBIfwq0ai-CLXDbZtwg==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/ExpandMore-fd96bb78.js
200 OK 1.7 kB URL GET HTTP/2 www.ibet.com/assets/ExpandMore-fd96bb78.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (3073)
Hash f02c011429b6e2c319a3b961c5f7a4cb
b745839dd46f459eb43b7fa7f3b730f440faf1a4
5d685941c134053c5f23ee341a34d77924f88ad1e5d2bb4cd3b05378caf672f3
GET /assets/ExpandMore-fd96bb78.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: W/"f02c011429b6e2c319a3b961c5f7a4cb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OjEGnZkS-OtQi1MFhmPJMNGg4ywvJ2MWnvgEueQjAV9SrTP-ltHmUQ==
age: 65530
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/ButtonAuth-b5d864f6.js
200 OK 506 B URL GET HTTP/2 www.ibet.com/assets/ButtonAuth-b5d864f6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (505)
Hash 7f4b32411376323ef4e3f24630d1f916
579bb21c66986d2684ba158ee651d681a4f98084
a59474e327aaf4ed81365e8995f557868cb52e038d2ffd59cea03ab3aa09f84a
GET /assets/ButtonAuth-b5d864f6.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-fbfbf194.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 506
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: "7f4b32411376323ef4e3f24630d1f916"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RJxA7HVzKEprzilS96jdSmi7WwTVHKZI2At4vpzPy7KPKeRoHQX0Vg==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/api2/logo_48.png
200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=2o7g163ohbrb
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:37:43 GMT
expires: Wed, 06 Dec 2023 21:37:43 GMT
cache-control: public, max-age=604800
age: 260644
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtm.js?id=GTM-PCVT5ZK
200 OK 85 kB URL GET HTTP/3 www.googletagmanager.com/gtm.js?id=GTM-PCVT5ZK
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type Unicode text, UTF-8 text, with very long lines (28803)
Hash 7a8c72116cfc9fdc52bb92242b03eca9
9ef3317ddfeb1f7abf50cd022fe1b7c2ee9b8876
bdc0999f6749c115732197c626c0266c795c27433158a1c9ba46538ca7ee0c28
GET /gtm.js?id=GTM-PCVT5ZK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 02 Dec 2023 22:01:47 GMT
expires: Sat, 02 Dec 2023 22:01:47 GMT
cache-control: private, max-age=900
last-modified: Sat, 02 Dec 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84899
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
200 OK 191 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 02 Dec 2023 11:33:07 GMT
expires: Sun, 01 Dec 2024 11:33:07 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 37720
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
niwooghu.com/500/5776801?excludes=18833904&oaid=83dcba81532f42d684de0aaaf8ec6c84&var=zd_5951427&ymid=690219906500924331&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 0 B URL GET HTTP/2 niwooghu.com/500/5776801?excludes=18833904&oaid=83dcba81532f42d684de0aaaf8ec6c84&var=zd_5951427&ymid=690219906500924331&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectniwooghu.com
Fingerprint3D:54:BD:F6:52:70:24:C2:E6:6B:18:3F:1F:1D:6E:34:28:B2:6C:9F
ValidityFri, 13 Oct 2023 05:12:56 GMT - Thu, 11 Jan 2024 05:12:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /500/5776801?excludes=18833904&oaid=83dcba81532f42d684de0aaaf8ec6c84&var=zd_5951427&ymid=690219906500924331&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://rewardarium.com/
Origin: https://rewardarium.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:47 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://rewardarium.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
offerimage.com/www/images/9e9e762a8aeda4556eb0010f07639539.jpg
200 OK 15 kB URL GET HTTP/2 offerimage.com/www/images/9e9e762a8aeda4556eb0010f07639539.jpg
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 9e9e762a8aeda4556eb0010f07639539
0bcb67a031d30b5513b5e574b4ef7de2ca2db096
32dce39ac731f9cec2f539d042bcfcd5ad867b4a4cc25ffc7d36feb6611264e4
GET /www/images/9e9e762a8aeda4556eb0010f07639539.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:47 GMT
content-type: image/jpeg
content-length: 14857
cache-control: max-age=86400
cf-bgj: h2pri
etag: "655a0954-3a09"
expires: Sun, 03 Dec 2023 00:36:06 GMT
last-modified: Sun, 19 Nov 2023 13:10:44 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 77141
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f6d9bae9b52d75-ARN
X-Firefox-Spdy: h2
www.ibet.com/iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
200 OK 17 kB URL GET HTTP/2 www.ibet.com/iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Hash 1096c460afce9844f4deb56640c78393
815b4dc050c9e4f7c9fd57f4a66a33d90009e5bd
1260fa999d0416e5dd5426e00abffd03b6fa687e8668a394b01898fcfb52e7d9
GET /iojs/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/static_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Sat, 02 Dec 2023 22:01:47 GMT
last-modified: Tue, 06 May 2014 00:01:40 GMT
expires: Mon, 01 Jan 2024 22:01:47 GMT
cache-control: private
p3p: CP="NON DSP COR CURa"
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Arch, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-WoW64, ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Qqc-ZkML6mY3hWBLbo5xtGhJTNVqW4Ui5y52e60gtozcsZj_h-5RyA==
X-Firefox-Spdy: h2
www.ibet.com/assets/trophy-e7de9f84.js
200 OK 2.8 kB URL GET HTTP/2 www.ibet.com/assets/trophy-e7de9f84.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (6129)
Hash 66e9ad54c318466c6eb0130b0867afd7
60a99e7c9efa40086d45952f64506062d35e387c
d10523abc20b9d14904050953e7350a6f1639c23f19af20b4b212460d51bbf20
GET /assets/trophy-e7de9f84.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:07:23 GMT
etag: W/"66e9ad54c318466c6eb0130b0867afd7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gEnnFWuJPWZ-wJlJDHKLLnOr63dvKjeicAwqVTdlJcTRxTM4802ySA==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
mpsnare.iesnare.com/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
200 OK 19 kB URL GET HTTP/1.1 mpsnare.iesnare.com/general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerDigiCert Inc
Subjectmpsnare.iesnare.com
Fingerprint76:12:1D:E6:DA:A3:5F:1E:E7:FC:3D:15:6F:B5:5D:0A:2E:F1:A2:D5
ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (1100)
Hash 2c6578e91563034e4983f53ce05eaa07
e267f0d6201c6bab1ba0ac8089ab85b52be6b6b3
0f1d6b6c24b6b364cafd1399c571b1199a62bfd7fb91c29fa735cb2bf78c3eda
GET /general5/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 02 Dec 2023 22:01:48 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: io_token_7c6a6574-f011-4c9a-abdd-9894a102ccef=86sYNCirhTvCEH9pitfoMzNLlYK+ax3RuF6iQEG7Um4=;Path=/;Expires=Sun, 01-Dec-2024 22:01:48 GMT;Max-Age=31536000;Secure;HttpOnly;SameSite=None
Cache-Control: no-cache, private
Pragma: no-cache
Expires: 0
p3p: CP="NON DSP COR CURa"
Accept-CH: Sec-CH-UA-Full-Version, Sec-CH-UA-Arch, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-WoW64, ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
offerimage.com/www/images/1254ddfd42baa84cea2221d2e82fa511.png
200 OK 70 kB URL GET HTTP/2 offerimage.com/www/images/1254ddfd42baa84cea2221d2e82fa511.png
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 1254ddfd42baa84cea2221d2e82fa511
84b26dfb937aa8b9746a20e52f9d1330a9a29eab
eba572a9f6836dc915e75251fed8c1e6129c7013cb380af95899e9824a82fd92
GET /www/images/1254ddfd42baa84cea2221d2e82fa511.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:48 GMT
content-type: image/png
content-length: 69506
last-modified: Mon, 28 Aug 2023 16:35:16 GMT
etag: "64ecccc4-10f82"
expires: Sun, 03 Dec 2023 07:55:39 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 50769
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f6d9bb9a602d75-ARN
X-Firefox-Spdy: h2
www.ibet.com/iojs/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
200 OK 1.5 kB URL GET HTTP/2 www.ibet.com/iojs/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (1029)
Hash 37423c1418917ca41433c1890697aca5
d883e9880f950b64181c7aa321af86c8317564cb
d4dd67d5f74009addcbbe474898714387a92a96425b5dd7a3338acf763d4c6a0
GET /iojs/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/dyn_wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 1489
date: 2023-Dec-02 22:01:48
cache-control: no-cache, private
pragma: no-cache
expires: 0
p3p: CP="NON DSP COR CURa"
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Arch, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-WoW64, ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 46uKbTO7QhI4WLJpBkXNkbSXUJOp6drxdUpMs5Fuh6geFZSBKB4j2g==
X-Firefox-Spdy: h2
www.ibet.com/assets/index-30e5ec17.js
200 OK 951 kB URL GET HTTP/2 www.ibet.com/assets/index-30e5ec17.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (37695)
Size 951 kB (950645 bytes)
Hash 97abb87b50a813947774d558cd9ba8d9
c82d4ece94fab5fa845667e94ce1b5b9eec2a853
8ebd21345a0979d5780665d8e5a695ac0714b96426b53a507648d5b25da6bbd6
GET /assets/index-30e5ec17.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 08:57:16 GMT
etag: W/"97abb87b50a813947774d558cd9ba8d9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Zlu0Xs0N8S0rALZl-ETx5ylUI6f7snsQm80oO2OWnaADT0GPHawaXw==
age: 55256
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
200 OK 424 B URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=2o7g163ohbrb
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type gzip compressed data\012- data
Hash ba3eec25892f7fcc0b1bb40ca10ab289
8a5ad7b39144e1e220d73679298805ea9aade2e1
f59349570d96636fb455670ca9423ec6050908efc7c5a6b1e26e9c690cd17f4e
GET /recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=2o7g163ohbrb
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sat, 02 Dec 2023 22:01:47 GMT
date: Sat, 02 Dec 2023 22:01:47 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20
200 OK 671 B URL GET HTTP/3 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (1673), with no line terminators
Hash e2348cc11ac3e89c8ff6ad42695fd3ec
382d2925fad665f62f51acbb47da4ced30eb0df3
b6899634a617e182577d11f5b0e6ae0a98612216d241bd952de11e325d4b8e61
GET /v1/data/query/production/?query=%0A%20%20%20%20%20%20*%5B_type%20%3D%3D%20%27paymentMethod%27%20%26%26%20markets%5B%5D-%3Eid%20match%20%22NO%22%5D%20%7C%20order(_createdAt%20desc)%20%0A%20%20%20%20%20%20%0A%7B%0A%20%20name%2C%0A%20%20%22image%22%3Aimage.asset-%3Eurl%2C%0A%20%20altTag%0A%7D%0A%0A%20%20%20%20 HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=utf-8
date: Sat, 02 Dec 2023 21:44:41 GMT
server-timing: api;dur=54
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 1026
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 671
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D
200 OK 4.6 kB URL GET HTTP/3 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (23460), with no line terminators
Hash 32cf01576e6ff44a24b9611e4490422d
e283dd4be8f7a06a5e0fee5d96759b922feb6532
a43ff86a4346f5b0a50bfe9fccdf6f189ddb52f302b0d77325e6da0c8a4e1011
GET /v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22market%22%20%26%26%20active%5D%7B%27flagUrl%27%3A%20flag.asset-%3Eurl%2C%20...%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=utf-8
date: Sat, 02 Dec 2023 21:18:07 GMT
server-timing: api;dur=28
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 2620
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 4572
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/react-router-dom-c8c3742c.js
200 OK 5.6 kB URL GET HTTP/2 www.ibet.com/assets/react-router-dom-c8c3742c.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (2204)
Hash bbecc5cde5aa37e9a7d9d57707913c8d
8a49d9de8e3c26100e7c7f1669a6e77505b96846
2aa336a7d90b79495d2e04e09eb932415719c49e024c6653eba62b8b78ea2b53
GET /assets/react-router-dom-c8c3742c.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: W/"bbecc5cde5aa37e9a7d9d57707913c8d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0uyJulWGIrG325K8f-jqpMX7XL8e8ieTvM-NU_IgbRBFxWzvex7qwQ==
age: 65530
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/messenger/latest/web-widget-5178-0345ad6.js
200 OK 7.7 kB URL GET HTTP/2 static.zdassets.com/web_widget/messenger/latest/web-widget-5178-0345ad6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
File type ASCII text, with very long lines (24491), with no line terminators
Hash 11034f049f5eef05b26ed292ac59e1fc
c8e5c3d8aabcd34b7660fedebeb1ece66c5f6850
f5936ea748776aa9d35f5e748d18c78366ef81a770699ca8765457ba8717fd92
GET /web_widget/messenger/latest/web-widget-5178-0345ad6.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:47 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: Jj5JStxWhYlfR+eKgiItTIEYuvnL7SUb9iZuTn3At0SRbZIxBx2x22m4PUWxdi3pcyuX1bEPqHA=
x-amz-request-id: 5NGEDWDDF7CRHGKQ
x-amz-replication-status: COMPLETED
last-modified: Mon, 06 Nov 2023 00:52:49 GMT
etag: W/"11034f049f5eef05b26ed292ac59e1fc"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 05 Nov 2024 00:52:48 GMT
x-amz-version-id: WUnw5FU0oRqazTz0z66hJW9BpnBWa3hS
cf-cache-status: HIT
age: 935866
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yAcD%2FNe5dAFnK6zx7MVFsKLwTsNdD2qmfSNlNk1s5W9QUcTMn5J7bRp4fDxJLbmG0DR%2FeylQsHCJ65aNjteJ5tPNpE4VhTY75b8Fx%2BX%2BbZg%2B6OmxpfUJUbSGKJC7YOI0Nrrna0w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82f6d9b519cd0b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
niwooghu.com/500/5776801?excludes=18833904&oaid=83dcba81532f42d684de0aaaf8ec6c84&var=zd_5951427&ymid=690219906500924331&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 1.6 kB URL GET HTTP/2 niwooghu.com/500/5776801?excludes=18833904&oaid=83dcba81532f42d684de0aaaf8ec6c84&var=zd_5951427&ymid=690219906500924331&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectniwooghu.com
Fingerprint3D:54:BD:F6:52:70:24:C2:E6:6B:18:3F:1F:1D:6E:34:28:B2:6C:9F
ValidityFri, 13 Oct 2023 05:12:56 GMT - Thu, 11 Jan 2024 05:12:55 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 65662ceb12459042541444920137efa3
0b51d1524db7ae88d7c55698363f4ffcba2f80fb
34505279d9bded72a5da8d7870a2dc01ca941cb0aa626357cbee76afccbf83fa
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /500/5776801?excludes=18833904&oaid=83dcba81532f42d684de0aaaf8ec6c84&var=zd_5951427&ymid=690219906500924331&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
Content-Type: application/json
Origin: https://rewardarium.com
DNT: 1
Connection: keep-alive
Cookie: OAID=83dcba81532f42d684de0aaaf8ec6c84
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:47 GMT
content-type: application/javascript
x-trace-id: f715cbf1ce2c3e7584d70d0183e903f5
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://rewardarium.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=83dcba81532f42d684de0aaaf8ec6c84; expires=Sun, 01 Dec 2024 22:01:47 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
www.ibet.com/assets/selectors-76504d5e.js
200 OK 1.5 kB URL GET HTTP/2 www.ibet.com/assets/selectors-76504d5e.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (1730)
Hash df16151a49591129f61ebdd1666da64f
8853c9efc7a7fb8fb1d2811c65ccfeeb2e3d79ae
61da57af9a0f0e74061d6d7a4d6f537691447a1b65f16e9f00583235caf9f9ad
GET /assets/selectors-76504d5e.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: W/"df16151a49591129f61ebdd1666da64f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Vr-RHuf0sv7PRNQ9AxhqjO0z8SpfZVKJFhvtGsMLi10WCM122YGpCQ==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/9f33e182639c1e9af62e0aeb241e5e974caf6ec9-363x362.svg
200 OK 1.4 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/9f33e182639c1e9af62e0aeb241e5e974caf6ec9-363x362.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1037)
Hash 4d1b911ce531e7cceb79677e8ccb322e
fbf0b3495f1d2a96324886a55db37fc989924cd3
22c928957dec51cdba02b096b7aa0a7f52bb6e0538169531ca7d581522099f16
GET /images/w9lc5y04/production/9f33e182639c1e9af62e0aeb241e5e974caf6ec9-363x362.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-b3-traceid: d5b96c08d7469fa3ca6a8553b73e696f
x-b3-parentspanid: 70a6d7084e0f2a7e
x-b3-spanid: 6ec175b3f21f22ef
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
content-encoding: br
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
content-length: 1353
date: Thu, 09 Nov 2023 21:17:57 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1989831
last-modified: Fri, 21 Apr 2023 11:17:00 GMT
content-type: image/svg+xml
vary: origin, accept-encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/assets/selectors-76504d5e.js
200 OK 2.0 kB URL GET HTTP/2 www.ibet.com/assets/selectors-76504d5e.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (1730)
Hash df16151a49591129f61ebdd1666da64f
8853c9efc7a7fb8fb1d2811c65ccfeeb2e3d79ae
61da57af9a0f0e74061d6d7a4d6f537691447a1b65f16e9f00583235caf9f9ad
GET /assets/selectors-76504d5e.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-bf854176.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: W/"df16151a49591129f61ebdd1666da64f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1_BsvVKWD4qoKPKKfIYYFePWBzHDuDesub-9wkuM6CqJaGnp5hTrJw==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png
200 OK 5.2 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 318 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash 54f08de44053ac484ef92bd1b2490323
fbfd97517c2b1e30611014c9938e5ac6f75e3315
68d588a5d493dc1ad73240aa42bbf23a7b522f8ab1c42b8718ce05a027293ac7
GET /images/w9lc5y04/production/ad7d8c466475535ca8c0a94019fe003de7e8f69a-318x78.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 5240
x-b3-traceid: 486a7f65046a51d1029bb5184c228bd5
x-b3-parentspanid: ce14120feb8e5175
x-b3-spanid: dcdecfc750bdcbf0
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 3568
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 21:07:08 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1385680
last-modified: Fri, 25 Nov 2022 13:38:56 GMT
content-type: image/png
vary: origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/assets/BlockContent-93a6cf91.js
200 OK 37 kB URL GET HTTP/2 www.ibet.com/assets/BlockContent-93a6cf91.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (5198)
Hash 1db4c2f5aa861d0026a7bbbdc169c010
50246f2d7458c060f6e143cd35c7e223c1bc8710
9fe19a83ebc72ecf1172c0fed92690137f7e9198ed58f11261e48f6638149daf
GET /assets/BlockContent-93a6cf91.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: W/"1db4c2f5aa861d0026a7bbbdc169c010"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: t_xsZGXRbmnG8zzePCTgVDV14GCjk2JMikdeK6_KxrtkK5F1c7VGiw==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/trophy-e7de9f84.js
200 OK 4.2 kB URL GET HTTP/2 www.ibet.com/assets/trophy-e7de9f84.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (6129)
Hash 66e9ad54c318466c6eb0130b0867afd7
60a99e7c9efa40086d45952f64506062d35e387c
d10523abc20b9d14904050953e7350a6f1639c23f19af20b4b212460d51bbf20
GET /assets/trophy-e7de9f84.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/MenuIcon-4d8a330c.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:07:23 GMT
etag: W/"66e9ad54c318466c6eb0130b0867afd7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wr_-uXYRmCfd34EDElxFxC0BNAFOyHBkeWj8c_v__EzVVjkmkJhlIw==
age: 55261
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/StaticPageFromCMS-efd42385.js
200 OK 21 kB URL GET HTTP/2 www.ibet.com/assets/StaticPageFromCMS-efd42385.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (24026)
Hash f2e6f01a0356297e3e8706ba00d26677
31b46d1752c7fcff34c2ecd1ded8d580e7f59a47
bfb7e45f885cb040e1089462dcc946edd6e7ab973bb5f3a7cffe1af4393aada9
GET /assets/StaticPageFromCMS-efd42385.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: W/"f2e6f01a0356297e3e8706ba00d26677"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OdLPGXo7bJXhgRkigscs1OkvghbutJQGBIp6UE0AQrJifvz0f8V6dg==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/6eaf3f7de1d528ed78b8688cefbec35445c8ff36-1645x431.png
200 OK 36 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/6eaf3f7de1d528ed78b8688cefbec35445c8ff36-1645x431.png
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 1645 x 431, 8-bit/color RGBA, non-interlaced\012- data
Hash a57ec28bccc522d198b3598e4eb13e59
1d65ef967d8721e57f3b00dac541abea1f0b1abe
100cd0aece050389896c5c55e1e935e31769844a6041c58d8c172a3f29458ca1
GET /images/w9lc5y04/production/6eaf3f7de1d528ed78b8688cefbec35445c8ff36-1645x431.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 35674
x-b3-traceid: 8933976a7d5cd694b52b3023345761d9
x-b3-parentspanid: 8d266ba9970645c8
x-b3-spanid: ca89942e9a8bffb2
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 14244
accept-ranges: bytes
via: 1.1 google
date: Thu, 09 Nov 2023 16:23:45 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 2007483
last-modified: Fri, 15 Jul 2022 13:13:15 GMT
content-type: image/png
vary: origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/f67978d0d803de85c8b792095ff232bdf21a26b5-939x123.png
200 OK 9.2 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/f67978d0d803de85c8b792095ff232bdf21a26b5-939x123.png
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 939 x 123, 8-bit/color RGBA, non-interlaced\012- data
Hash 754253bc2896000f397250c87f47b56b
c3e41cf210831a78faa0b7916b7951d546b6c874
9eaee53ffcde0da1cd985fcf81add1ed1c500936a492a1f5f216c1901e76422a
GET /images/w9lc5y04/production/f67978d0d803de85c8b792095ff232bdf21a26b5-939x123.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 9162
x-b3-traceid: f08d54402337bc243770a255f5c9d436
x-b3-parentspanid: 9ba2f75b7f0ed48d
x-b3-spanid: fd8ee08fcb6dc067
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 890
accept-ranges: bytes
via: 1.1 google
date: Sun, 12 Nov 2023 06:30:30 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1783878
last-modified: Thu, 09 Feb 2023 09:50:35 GMT
content-type: image/png
vary: origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/assets/CookiesNotification-d32d680f.js
200 OK 16 kB URL GET HTTP/2 www.ibet.com/assets/CookiesNotification-d32d680f.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (5512)
Hash 682f8094d05ef8356869e279435c7891
84d7cd5de14df38e0ba05a469ec0f34f5b60c9d9
af92d311ea9bd199b06a2b85586d787708ec295b18937b574047410603c45218
GET /assets/CookiesNotification-d32d680f.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 08:57:18 GMT
etag: W/"682f8094d05ef8356869e279435c7891"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: F80al82I3p4cHzrK8_V_69_YHBCiz7uWa1h6GWCx4DhCn-P0yhq5jA==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/iojs/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
200 OK 505 B URL GET HTTP/2 www.ibet.com/iojs/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (377)
Hash d6d52edebfbad620b41b3550cb61301e
ef119c9755fed4923d691b6674a04f7262109b87
c2202ffbd9f9579f444168f1258b47c579a4fd9eab0a9c8d85607ebc0f2ab8f2
GET /iojs/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 505
date: Sat, 02 Dec 2023 22:01:48 GMT
last-modified: Tue, 06 May 2014 00:01:40 GMT
expires: Sun, 01 Dec 2024 22:01:48 GMT
cache-control: private
p3p: CP="NON DSP COR CURa"
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Arch, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-WoW64, ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
vary: Accept-Encoding, User-Agent
x-cache: Miss from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 428y5m9jC10Me5xXln68DBInPDaElOHEHG53eiwhtvJIJ4EOMPC-LQ==
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/2a06561c7fda0de5e12139a31a92d03b36f53ca0-69x31.svg
200 OK 4.2 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/2a06561c7fda0de5e12139a31a92d03b36f53ca0-69x31.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (11605), with no line terminators
Hash c8d80689fe6dffdfde4a61fa5cf19888
691dbb0a87fd5161f36e3a535e725763646babd3
4dfe0ebf0e61cb69776fa54e74c27df9e6ad6a56e51fbe201988abbf43619d0c
GET /images/w9lc5y04/production/2a06561c7fda0de5e12139a31a92d03b36f53ca0-69x31.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-b3-traceid: cae099d388b2933de11ae94764bac18d
x-b3-parentspanid: c8c3853b0bcef1a5
x-b3-spanid: eaaaa96226dcc667
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
content-encoding: br
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
content-length: 4237
date: Thu, 16 Nov 2023 23:21:43 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1377605
last-modified: Fri, 21 Apr 2023 11:17:44 GMT
content-type: image/svg+xml
vary: origin, accept-encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/f79a900918e75cc2561144d8be61f4ab5b53f6fc-70x60.svg
200 OK 628 B URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/f79a900918e75cc2561144d8be61f4ab5b53f6fc-70x60.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 6a996fd4cd4f21b7281eae672b2132f9
ba16128797fb681a0e24a697801924f697e31531
c2e2fbf1ee4ef44a84ee1f1ad258357a577fa9dda384cce30090778ea07388a0
GET /images/w9lc5y04/production/f79a900918e75cc2561144d8be61f4ab5b53f6fc-70x60.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-b3-traceid: 0d5ea22f8fd0db21ae574415c89741be
x-b3-parentspanid: b0f3e823e54b4222
x-b3-spanid: f201b736e25901f1
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
content-encoding: br
vha6-origin: image-varnish-ssd-5
x-varnish-age: 3739
accept-ranges: bytes
content-length: 628
via: 1.1 google
date: Thu, 09 Nov 2023 20:28:44 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Fri, 21 Apr 2023 11:23:00 GMT
content-type: image/svg+xml
vary: origin, accept-encoding
age: 1992784
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/bd32d68779623aaecf1cb9a8583495a600a1e068-2171x685.svg
200 OK 616 B URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/bd32d68779623aaecf1cb9a8583495a600a1e068-2171x685.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1165), with no line terminators
Hash ed798911357481e196c5a216bccd72ea
3d62c5ae23709d8f5ebc7e227093957056981037
7a4d338b71da2d71e0f66aecce1203d5999a2ad64cb2e14d5563a077b084757e
GET /images/w9lc5y04/production/bd32d68779623aaecf1cb9a8583495a600a1e068-2171x685.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-b3-traceid: 212bbd43cd10ddc68e07953fa727cec3
x-b3-parentspanid: 7a3ccc1c74e49bed
x-b3-spanid: ebe7f2cb925f12e0
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
content-encoding: br
vha6-origin: image-varnish-ssd-6
x-varnish-age: 9937
accept-ranges: bytes
content-length: 616
via: 1.1 google
date: Thu, 16 Nov 2023 20:38:50 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Fri, 21 Apr 2023 11:18:09 GMT
content-type: image/svg+xml
vary: origin, accept-encoding
age: 1387378
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png
200 OK 1.8 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 270 x 93, 8-bit colormap, non-interlaced\012- data
Hash e4b9e11554e481b113004a5fa1bcd3ca
55d86f60b146584dbf41fcd8444f32cad91ce0ae
5bff602b52530e6bf9e7328c551a062ffb4153b63b1a22a3e2701270b24cf694
GET /images/w9lc5y04/production/55d86f60b146584dbf41fcd8444f32cad91ce0ae-270x93.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 1819
x-b3-traceid: e56197fb6f706fff0cbf8ffd87841714
x-b3-parentspanid: 692aab706f874626
x-b3-spanid: 84f1dace6b0911b3
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-2
x-varnish-age: 34181
accept-ranges: bytes
via: 1.1 google
date: Wed, 08 Nov 2023 10:59:32 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 2113336
last-modified: Wed, 14 Jul 2021 11:39:31 GMT
content-type: image/png
vary: origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/88e4d86bc5cb6dec2d8f3ddd49a6dcf20aa80bb9-134x30.png
200 OK 1.8 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/88e4d86bc5cb6dec2d8f3ddd49a6dcf20aa80bb9-134x30.png
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 134 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash bfe0f5f1695f21c5a835ec8e38369f61
c2eed378138e81b9be9f01bda31ece67f43518ea
e8bcf31b58f300e6735d0278632d2a884680db805a9e5f8c53fc865eb82745d4
GET /images/w9lc5y04/production/88e4d86bc5cb6dec2d8f3ddd49a6dcf20aa80bb9-134x30.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 1813
x-b3-traceid: 02c365ba932b90f98f67e4c946473a29
x-b3-parentspanid: ff1224d77807513a
x-b3-spanid: b39b6d3e5337faa0
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-4
x-varnish-age: 21910
accept-ranges: bytes
via: 1.1 google
date: Wed, 08 Nov 2023 15:32:27 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 09 Feb 2023 10:06:03 GMT
content-type: image/png
vary: origin
age: 2096961
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/assets/MenuIcon-4d8a330c.js
200 OK 20 kB URL GET HTTP/2 www.ibet.com/assets/MenuIcon-4d8a330c.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (47990)
Hash 7f5d09f8be0d4a9e01e7f0e66713936d
e3071c9c43e74aa102e8695cc33c8710efc4bee3
2b92c8c76ec66879f8922940ae74213317e948aa18f27d2e1ea65b78662ee033
GET /assets/MenuIcon-4d8a330c.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-fbfbf194.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 08:57:18 GMT
etag: W/"7f5d09f8be0d4a9e01e7f0e66713936d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wqVeEHaqKCMMW0P3mNVeV1rWAwEbIQHMzvqI24iCN8P_JwzlioYSXw==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png
200 OK 3.3 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 560 x 107, 8-bit colormap, non-interlaced\012- data
Hash e83e505077311e5f9cd28570d22b274c
d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f
f0571891d0bb64899275389561c72cf12622f87bc6921910c0fea86108c13fae
GET /images/w9lc5y04/production/d6a6f0ddcb6ad69046e43cbf379c27d839b47e1f-560x107.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 3304
x-b3-traceid: 7482084effc7e868480ab230d203a9ce
x-b3-parentspanid: 125ace5426288c9d
x-b3-spanid: ad7a8709f15e8620
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-6
x-varnish-age: 1414
accept-ranges: bytes
via: 1.1 google
date: Sun, 12 Nov 2023 06:22:42 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 14 Jul 2021 11:37:21 GMT
content-type: image/png
vary: origin
age: 1784346
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mpsnare.iesnare.com/star
0 B IP
Certificate IssuerDigiCert Inc
Subjectmpsnare.iesnare.com
Fingerprint76:12:1D:E6:DA:A3:5F:1E:E7:FC:3D:15:6F:B5:5D:0A:2E:F1:A2:D5
ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: j5NxKNHZObLAf4ZXeOnoQQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sat, 02 Dec 2023 22:01:48 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: p3U8pNeuSHYRI5J9ZwfSuO/ARWo=
Upgrade: WebSocket
www.googletagmanager.com/gtag/js?id=G-E0JKRGC2KE&l=dataLayer&cx=c
200 OK 90 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-E0JKRGC2KE&l=dataLayer&cx=c
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (4179)
Hash f63420eac342f93efd30c66577b7ac34
00b3da3763a1f3c95196e9399b1b5e771c25a6a5
2c7eb0831d084985340bc6bbd021a6eb082543206008a52d790b117eab9291f7
GET /gtag/js?id=G-E0JKRGC2KE&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 02 Dec 2023 22:01:48 GMT
expires: Sat, 02 Dec 2023 22:01:48 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89897
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/useWindowDimensions-232dcae8.js
200 OK 312 B URL GET HTTP/2 www.ibet.com/assets/useWindowDimensions-232dcae8.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (311)
Hash d4f90a100519dc543f547d6fb019c821
2cb5aeefb3be3c4246280ab7080de61f81a53d02
f93ab82733dc761dfe916bc396b543d59e9cd47810d05c327e3566a8396bfca0
GET /assets/useWindowDimensions-232dcae8.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-2629c06f.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 312
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:07:23 GMT
etag: "d4f90a100519dc543f547d6fb019c821"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7FnxnoNEatCuEGkHES7ZJxdIp9n1SvZXv8RGgQh9ZiPD-Q3NMtMp9g==
age: 55207
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAUT
200 OK 36 kB URL GET HTTP/2 tm.ads.sportradar.com/dist/tag-manager.js?id=STM-AAAAUT
IP
ASN #20940 Akamai International B.V.
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjecttracker.ads.sportradar.com
Fingerprint2F:44:31:30:BF:6C:CE:CE:AD:55:13:9C:95:C2:98:BB:35:19:22:5B
ValidityThu, 05 Oct 2023 12:16:46 GMT - Wed, 03 Jan 2024 12:16:45 GMT
File type ASCII text, with very long lines (62152)
Hash 1df7453898c8118279fbcc6a199d5236
908c49d36c5857beb9346071c97aa4e214325619
065a85979a620e87d0f598fe8e88dcc630308209a307cf975b9dd3a16a388188
GET /dist/tag-manager.js?id=STM-AAAAUT HTTP/1.1
Host: tm.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
apigw-requestid: PVaGCgO-DoEEPxA=
vary: Accept-Encoding
content-encoding: gzip
content-length: 36118
date: Sat, 02 Dec 2023 22:01:48 GMT
cache-control: max-age=900, public
x-n: S
X-Firefox-Spdy: h2
mpsnare.iesnare.com/star
0 B IP
Certificate IssuerDigiCert Inc
Subjectmpsnare.iesnare.com
Fingerprint76:12:1D:E6:DA:A3:5F:1E:E7:FC:3D:15:6F:B5:5D:0A:2E:F1:A2:D5
ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G65KEDd/ovn6lphTrYbrsg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sat, 02 Dec 2023 22:01:48 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: Hsh0ONVWDYiwFP4d0DZEmeCaKnE=
Upgrade: WebSocket
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22homePage%22%20%26%26%20%27NO%27%20in%20market%5B%5D-%3Eid%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%5B0%5D%7B%0A%20%20%20%20%20%22banner%22%3A%7B%0A%20%20%20%20%20%20%20%20%22list%22%3Abanners%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%20_id%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22description%22%3Adescription.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22greeting%22%3Agreeting.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22button%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22type%22%3Abutton.type%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22label%22%3Abutton.label.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22param%22%3Abutton.param%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22urlAction%22%3A%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%22slug%22%3A%20urlAction.anonymousSlug%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22absoluteUrl%22%3A%20urlAction.anonymousAbsoluteUrl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22openNewTab%22%3A%20urlAction.anonymousOpenNewTab%0A%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22img%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3Aimg.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3Aimg.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3Aimg.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%20%20%20%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%20%20%20%20%20%20%22imgPortrait%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3AimgPortrait.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3AimgPortrait.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3AimgPortrait.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20startDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20endDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20authorized%2C%0A%20%20%20%20%20%20%20%20%20%20%20isClickable%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%22options%22%3A%7B%22duration%22%3AbannersDuration%7D%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%22verticals%22%3Averticals%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%20type%2C%20authorized%2C%20%22subtitle%22%3Asubtitle.no%2C%20%22description%22%3Adescription.no%2C%20%0A%20%20%20%20%20%20%20%20%20%20items%5B%5D-%3E%7B%20%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20id%2C%20%22label%22%3Acoalesce(title.no%2Cname)%2C%20image%7B%22img1x%22%3Aimg1x.asset-%3Eurl%2C%22img2x%22%3Aimg2x.asset-%3Eurl%2C%22img3x%22%3Aimg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20lobbyGridSizes%7B%22verticalImg1x%22%3AverticalImg1x.asset-%3Eurl%2C%22verticalImg2x%22%3AverticalImg2x.asset-%3Eurl%2C%22verticalImg3x%22%3AverticalImg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22provider%22%3Acoalesce(provider-%3Eprovider.id%2Cprovider)%0A%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%7D
200 OK 12 kB URL GET HTTP/3 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22homePage%22%20%26%26%20%27NO%27%20in%20market%5B%5D-%3Eid%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%5B0%5D%7B%0A%20%20%20%20%20%22banner%22%3A%7B%0A%20%20%20%20%20%20%20%20%22list%22%3Abanners%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%20_id%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22description%22%3Adescription.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22greeting%22%3Agreeting.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22button%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22type%22%3Abutton.type%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22label%22%3Abutton.label.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22param%22%3Abutton.param%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22urlAction%22%3A%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%22slug%22%3A%20urlAction.anonymousSlug%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22absoluteUrl%22%3A%20urlAction.anonymousAbsoluteUrl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22openNewTab%22%3A%20urlAction.anonymousOpenNewTab%0A%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22img%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3Aimg.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3Aimg.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3Aimg.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%20%20%20%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%20%20%20%20%20%20%22imgPortrait%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3AimgPortrait.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3AimgPortrait.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3AimgPortrait.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20startDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20endDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20authorized%2C%0A%20%20%20%20%20%20%20%20%20%20%20isClickable%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%22options%22%3A%7B%22duration%22%3AbannersDuration%7D%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%22verticals%22%3Averticals%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%20type%2C%20authorized%2C%20%22subtitle%22%3Asubtitle.no%2C%20%22description%22%3Adescription.no%2C%20%0A%20%20%20%20%20%20%20%20%20%20items%5B%5D-%3E%7B%20%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20id%2C%20%22label%22%3Acoalesce(title.no%2Cname)%2C%20image%7B%22img1x%22%3Aimg1x.asset-%3Eurl%2C%22img2x%22%3Aimg2x.asset-%3Eurl%2C%22img3x%22%3Aimg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20lobbyGridSizes%7B%22verticalImg1x%22%3AverticalImg1x.asset-%3Eurl%2C%22verticalImg2x%22%3AverticalImg2x.asset-%3Eurl%2C%22verticalImg3x%22%3AverticalImg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22provider%22%3Acoalesce(provider-%3Eprovider.id%2Cprovider)%0A%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%7D
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (57209), with no line terminators
Hash e981b2a50b434108cdca30eb74f406b1
091b1aa6a4d179a92ed0b18675248fbb4b43a422
c8d4ffd98fb3c9e2c99a46bb15e01e26ddda30e6d4d0f65ad46ed6caf8d75df1
GET /v1/data/query/production/?query=*%5B_type%20%3D%3D%20%22homePage%22%20%26%26%20%27NO%27%20in%20market%5B%5D-%3Eid%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%5B0%5D%7B%0A%20%20%20%20%20%22banner%22%3A%7B%0A%20%20%20%20%20%20%20%20%22list%22%3Abanners%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%20_id%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22description%22%3Adescription.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22greeting%22%3Agreeting.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22button%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22type%22%3Abutton.type%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22label%22%3Abutton.label.no%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22param%22%3Abutton.param%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22urlAction%22%3A%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%22slug%22%3A%20urlAction.anonymousSlug%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22absoluteUrl%22%3A%20urlAction.anonymousAbsoluteUrl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%22openNewTab%22%3A%20urlAction.anonymousOpenNewTab%0A%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%22img%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3Aimg.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3Aimg.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3Aimg.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%20%20%20%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%20%20%20%20%20%20%22imgPortrait%22%3A%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img1x%22%3AimgPortrait.img1x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img2x%22%3AimgPortrait.img2x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%22img3x%22%3AimgPortrait.img3x.asset-%3Eurl%2C%0A%20%20%20%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20startDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20endDate%2C%0A%20%20%20%20%20%20%20%20%20%20%20authorized%2C%0A%20%20%20%20%20%20%20%20%20%20%20isClickable%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%20%20%20%22options%22%3A%7B%22duration%22%3AbannersDuration%7D%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%7D%2C%0A%20%20%20%20%20%22verticals%22%3Averticals%5B%5D-%3E%7B%0A%20%20%20%20%20%20%20%20%20%20%22title%22%3Atitle.no%2C%20type%2C%20authorized%2C%20%22subtitle%22%3Asubtitle.no%2C%20%22description%22%3Adescription.no%2C%20%0A%20%20%20%20%20%20%20%20%20%20items%5B%5D-%3E%7B%20%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20id%2C%20%22label%22%3Acoalesce(title.no%2Cname)%2C%20image%7B%22img1x%22%3Aimg1x.asset-%3Eurl%2C%22img2x%22%3Aimg2x.asset-%3Eurl%2C%22img3x%22%3Aimg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20lobbyGridSizes%7B%22verticalImg1x%22%3AverticalImg1x.asset-%3Eurl%2C%22verticalImg2x%22%3AverticalImg2x.asset-%3Eurl%2C%22verticalImg3x%22%3AverticalImg3x.asset-%3Eurl%7D%2C%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%22provider%22%3Acoalesce(provider-%3Eprovider.id%2Cprovider)%0A%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%7D%2C%0A%20%20%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=utf-8
date: Sat, 02 Dec 2023 21:05:31 GMT
server-timing: api;dur=384
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 3377
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 11714
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/331cd7dc70a89a7ba3e3cecc25dd78867a1a7861-1000x500.jpg?q=75&auto=format
200 OK 40 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/331cd7dc70a89a7ba3e3cecc25dd78867a1a7861-1000x500.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1000x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 534b4166231142a3f3f7cc526dc0d899
fd4d94e2c9c956215a36de7e63a3e57912c97e65
a29af7ab7a2e25b3e79d00a10518b67ba26d66862f8bd1071d7d15ab0ed54e00
GET /images/w9lc5y04/production/331cd7dc70a89a7ba3e3cecc25dd78867a1a7861-1000x500.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 40146
x-b3-traceid: 12e6a0388c6c9c97698d699fc9f3ce01
x-b3-parentspanid: f0a7b890d3b6bd94
x-b3-spanid: 69e529b944b2b3f3
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 07:40:14 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 06 Feb 2023 11:44:12 GMT
content-type: image/webp
vary: origin, accept
age: 742895
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/339b04379fecd02a83642bf31b3256bbd645aee3-1050x525.jpg?q=75&auto=format
200 OK 48 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/339b04379fecd02a83642bf31b3256bbd645aee3-1050x525.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1050x525, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1aa56952b33e25b6476c7924608c9c8f
70a2dc7079fdc25c7179a634cf4d46b0d04bd257
b0ad5379dc2281cb4a8991f56a7a4a7c87e0637b63c35dd18d303379b1eb466f
GET /images/w9lc5y04/production/339b04379fecd02a83642bf31b3256bbd645aee3-1050x525.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 47806
x-b3-traceid: 8f8f67e0f0be3a8a5436ad835b1f956f
x-b3-parentspanid: 6ceaf8e2951fa1cd
x-b3-spanid: 7a09ce0feb32b9e4
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 2115
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 14:52:52 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Fri, 06 Jan 2023 16:47:22 GMT
content-type: image/webp
vary: origin, accept
age: 803337
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/ae4c61489686c9a6dfee3e56408f5e0c975c1808-750x708.jpg?q=75&auto=format
200 OK 64 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/ae4c61489686c9a6dfee3e56408f5e0c975c1808-750x708.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 750x708, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a456c13732f2e73cace1b3f563f0ad91
1e8877cc2ea7ac8d09d2a920558bc12db9e2afee
0c6bcec0f8c19ef4bf3ff20c12b7519b74ef22e4fbf1c7a0250462a9b247d928
GET /images/w9lc5y04/production/ae4c61489686c9a6dfee3e56408f5e0c975c1808-750x708.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 64200
x-b3-traceid: 2334816907ac294d34b78bcc576c5c9f
x-b3-parentspanid: 5380663ba5e0a7f6
x-b3-spanid: d4647046c63afa07
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-7
x-varnish-age: 731
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 15:42:37 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 30 Nov 2023 15:41:30 GMT
content-type: image/webp
vary: origin, accept
age: 195552
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/9764c26b4b3f850db750782a1da7df9f421f0707-750x708.jpg?q=75&auto=format
200 OK 57 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/9764c26b4b3f850db750782a1da7df9f421f0707-750x708.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 750x708, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ccf172f9009825c95bece8357e5373c6
298ed9696e6d747992b55d5f0149124af1a0a52c
0555631352fac627177f7a37ce05909117ee146ea2df623373db7463bf894610
GET /images/w9lc5y04/production/9764c26b4b3f850db750782a1da7df9f421f0707-750x708.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 57330
x-b3-traceid: 16093e8c4a05a89f00b4add7a1baa204
x-b3-parentspanid: 142a0d73f60d5d37
x-b3-spanid: a897b8867a9bb03d
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 21
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 14:07:42 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 201247
last-modified: Thu, 30 Nov 2023 14:06:35 GMT
content-type: image/webp
vary: origin, accept
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/adc1de14adff5ba822aed68b93c941ca1f5ae201-1708x884.jpg?q=75&auto=format
200 OK 148 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/adc1de14adff5ba822aed68b93c941ca1f5ae201-1708x884.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1708x884, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 148 kB (147602 bytes)
Hash 219794110cb8bd45c726ae39af1fe20d
b22d66aad042bc71a2cf30b128ad7e2056b73960
17f68a7e7da7c6910368fb9d66bb11a502db58a687222eb264225e64a9b3b830
GET /images/w9lc5y04/production/adc1de14adff5ba822aed68b93c941ca1f5ae201-1708x884.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 147602
x-b3-traceid: faf5233d6edb98ffd011f79ea579ee94
x-b3-parentspanid: 0b60cc3c54a6c9c9
x-b3-spanid: 4a1bf4b19de692eb
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-0
x-varnish-age: 727
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 15:42:20 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 30 Nov 2023 15:41:15 GMT
content-type: image/webp
vary: origin, accept
age: 195569
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/d74c7dd39d54d5e0a09eeed03af125cbcf0b0af0-750x708.jpg?q=75&auto=format
200 OK 83 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/d74c7dd39d54d5e0a09eeed03af125cbcf0b0af0-750x708.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 750x708, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9044214d79b4809d79e43acb3f158065
af9b3b5dea2822790b1923140598bfd869938d41
bcce1ce87d3d54b2809dcaf901ecce48f6d25dae89ce6826e44cd0d653ddef97
GET /images/w9lc5y04/production/d74c7dd39d54d5e0a09eeed03af125cbcf0b0af0-750x708.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 83428
x-b3-traceid: 2b429dbf4fc53d8e0f7891acb876c5ef
x-b3-parentspanid: 2f565d15ec540560
x-b3-spanid: 25e3be2b5e5d2e5d
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 93
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 15:33:30 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 30 Nov 2023 15:33:14 GMT
content-type: image/webp
vary: origin, accept
age: 196099
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/b743b34d1958522ba4b21db889dff8309b780081-1708x884.jpg?q=75&auto=format
200 OK 152 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/b743b34d1958522ba4b21db889dff8309b780081-1708x884.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1708x884, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 152 kB (152040 bytes)
Hash 5c86d7ea35b5e6f5a55f7180d2190d9f
f6c767a5d59c5b9df172ec128c6754a2970cf971
6acdffcf12e8a2a3ce8945d74f16ff2e2c343f4fa9e3877de51ed3a1812fde38
GET /images/w9lc5y04/production/b743b34d1958522ba4b21db889dff8309b780081-1708x884.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 152040
x-b3-traceid: 47d0f15d7c972f292907fd52d26b5d8d
x-b3-parentspanid: 825016b5e8b8bceb
x-b3-spanid: 7a66726ffc959383
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 98
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 14:07:48 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 30 Nov 2023 14:06:16 GMT
content-type: image/webp
vary: origin, accept
age: 201241
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/d93aa39b80bc931a8aa2668467e2e6b734b7245a-750x708.jpg?q=75&auto=format
200 OK 74 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/d93aa39b80bc931a8aa2668467e2e6b734b7245a-750x708.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 750x708, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e3dccd50681b42485dacae509af0ebdb
698990551f13d9cc7fb34321e9a5a40c51cab47e
4337e926cd72b68e94298b5dc00f04cf7e3870698d55cae48d72ad61ef2f6c8e
GET /images/w9lc5y04/production/d93aa39b80bc931a8aa2668467e2e6b734b7245a-750x708.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 74236
x-b3-traceid: 77060631af0e7ab62ba53b75c9ab922c
x-b3-parentspanid: e576b54e6c6cd81f
x-b3-spanid: 5cc9c6b9d2a5be97
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 15:33:00 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 196129
last-modified: Thu, 30 Nov 2023 15:32:05 GMT
content-type: image/webp
vary: origin, accept
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/6626ea1783ba621920eb6dededa8c7fe4ee7dfca-1000x500.jpg?q=75&auto=format
200 OK 42 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/6626ea1783ba621920eb6dededa8c7fe4ee7dfca-1000x500.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1000x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 552b6be5ff8e452f59f7578fee02bbb6
587680dd11ec6973b433f70cfbf7c83ab197b72d
986c681592b53c84d445d4ae161b29aa12c04baa97703b899909eb86360e2885
GET /images/w9lc5y04/production/6626ea1783ba621920eb6dededa8c7fe4ee7dfca-1000x500.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 41708
x-b3-traceid: 68a3858677edbee29e79634221de3d50
x-b3-parentspanid: a2ebe57789105896
x-b3-spanid: 94eaf1d0dd9d9eb7
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 10:58:09 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 06 Feb 2023 11:48:35 GMT
content-type: image/webp
vary: origin, accept
age: 817420
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/1b6486db2b76134b2881d14b8bec4b629eb7b5b9-1708x884.jpg?q=75&auto=format
200 OK 185 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/1b6486db2b76134b2881d14b8bec4b629eb7b5b9-1708x884.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1708x884, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 185 kB (184910 bytes)
Hash 246696a01603de298a6c8f4325b17858
14e988776ad26f2a6799283a6d9e530b3decfca7
5fe300eb60b17054f23334d750ffeb0e57fa344d66cf0d89279f473af46accef
GET /images/w9lc5y04/production/1b6486db2b76134b2881d14b8bec4b629eb7b5b9-1708x884.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 184910
x-b3-traceid: c0fde551d597b2a85aab658f0449b0b0
x-b3-parentspanid: 71374548a09b239e
x-b3-spanid: 48595fe3f58d1ee
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 37
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 15:33:51 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 30 Nov 2023 15:33:03 GMT
content-type: image/webp
vary: origin, accept
age: 196078
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/a528f6b846099a98652feb6a665fd0683432d289-1708x884.jpg?q=75&auto=format
200 OK 172 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/a528f6b846099a98652feb6a665fd0683432d289-1708x884.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1708x884, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 172 kB (172048 bytes)
Hash 2ae621f9cf8a8b5d4a627798fe95dd0f
cf0176377852d472fa883a551841a6026c013d40
d86c9f93bac9790469971e5f92ec072a8fa8321e97d9b01900757b38dc5a7cb9
GET /images/w9lc5y04/production/a528f6b846099a98652feb6a665fd0683432d289-1708x884.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 172048
x-b3-traceid: b48f0420749b9690dc1b941956a95042
x-b3-parentspanid: fbbcc667fb84ddad
x-b3-spanid: b35560e85293f8c5
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-6
x-varnish-age: 123
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 15:33:00 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 30 Nov 2023 15:31:48 GMT
content-type: image/webp
vary: origin, accept
age: 196129
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/29f5cc9b0f3be4684ecbe0c28e68adf4a37b1425-750x708.jpg?q=75&auto=format
200 OK 76 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/29f5cc9b0f3be4684ecbe0c28e68adf4a37b1425-750x708.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 750x708, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 38344a576ce70a33b9996fe7ff4c1da8
bfc48ba9af33d84513dd9142dcf97e645bb54ed1
f6bbe6a21b67b3f21835888f328bafce973ca57cd5a01d895787f1e9321b7c83
GET /images/w9lc5y04/production/29f5cc9b0f3be4684ecbe0c28e68adf4a37b1425-750x708.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 76098
x-b3-traceid: dc9565bc5c92865a31bc72c1522c8510
x-b3-parentspanid: 32d24c2e6c1fe5e9
x-b3-spanid: 44b551cbd8e83ca4
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 45
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 14:02:53 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 30 Nov 2023 14:01:55 GMT
content-type: image/webp
vary: origin, accept
age: 201536
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/b9a5a10aa430e31f6f8247fbe82455e88cc72b1c-1708x884.jpg?q=75&auto=format
200 OK 188 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/b9a5a10aa430e31f6f8247fbe82455e88cc72b1c-1708x884.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1708x884, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 188 kB (188354 bytes)
Hash bbdf0cb2809780bde4e252c1c4993c74
571b5c7d21932fa259b2f8cb58f1bd0cd6885984
5af85fb7f8bc9e53a008e747eef2bb9eff07e2f0dddc0f059d8b602f120a7b2a
GET /images/w9lc5y04/production/b9a5a10aa430e31f6f8247fbe82455e88cc72b1c-1708x884.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 188354
x-b3-traceid: 87c5c23e584a08065f375e56ac724e10
x-b3-parentspanid: f93e639a055cc7c3
x-b3-spanid: aac6150237dbe3e4
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 45
accept-ranges: bytes
via: 1.1 google
date: Thu, 30 Nov 2023 14:02:53 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 30 Nov 2023 14:01:13 GMT
content-type: image/webp
vary: origin, accept
age: 201536
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/red-arrow-icon-12f65a39.svg
200 OK 211 B URL GET HTTP/2 www.ibet.com/assets/red-arrow-icon-12f65a39.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 6e6ced8ea34274f7493b4b58b951f9e1
bd975570f829526ab8fb770af5932504166abaea
12f65a396e79c4a782411e4c89709d983607e157ba7e0198f50a9b1d2fa4699d
GET /assets/red-arrow-icon-12f65a39.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 211
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:07:24 GMT
etag: "6e6ced8ea34274f7493b4b58b951f9e1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LDuY-QddLfKH4i9T6vekdfuMRIaBGO9TtT7M1MrkGYpCSE8nRqyTrA==
age: 39645
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/desk-mobile-255eeaee.png
200 OK 501 kB URL GET HTTP/2 www.ibet.com/assets/desk-mobile-255eeaee.png
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type PNG image data, 920 x 868, 8-bit/color RGBA, non-interlaced\012- data
Size 501 kB (500572 bytes)
Hash fd96eee35b390dfd08f545b75d939ac6
6921b711e1a4eb122f1c7805a6e1a51a96402330
255eeaeea7d72c03eb622eb824940135801f903f45f1dce5a206ead783ec2dd8
GET /assets/desk-mobile-255eeaee.png HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 500572
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:01:11 GMT
etag: "fd96eee35b390dfd08f545b75d939ac6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: m55svNCB-ThfnSP0R30g7oPlXriPfOy816e7n1GbcP_T9gnB0DkWaw==
age: 57495
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/red-bg-mob-11275b36.png
200 OK 335 kB URL GET HTTP/2 www.ibet.com/assets/red-bg-mob-11275b36.png
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 1060x1186, components 3\012- data
Size 335 kB (335236 bytes)
Hash b4fab880fcb4f77672ea9137447fb844
2253421b22961954592a9b8502ce811e5b66d0f2
11275b361a1372299e54affce15080d5ae42e29982638bc0028e7424a2e13b74
GET /assets/red-bg-mob-11275b36.png HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 335236
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:01:11 GMT
etag: "b4fab880fcb4f77672ea9137447fb844"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ExPg6uRxG8BW4ubWRQoAMWsfL2TX9vG29OngPgtB0EhwLPAWadxxlw==
age: 55121
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/arrow-icon-98999300.svg
200 OK 224 B URL GET HTTP/2 www.ibet.com/assets/arrow-icon-98999300.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 6fc363a8879cd29635e49f9c88e4b688
9909fc3d18310518614d6443a323306a73d55688
98999300be9d6fdd47c0db074e8e7e966c6ded407184cc6d8369d156ef00ae3a
GET /assets/arrow-icon-98999300.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 224
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:07:24 GMT
etag: "6fc363a8879cd29635e49f9c88e4b688"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MmoUehMNUmSjOJLmajfJ5FI0HLugJUa5E-eYuA6WBICD7ntliqU2rg==
age: 39645
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
tracker.ads.sportradar.com/dist/tracker.js
200 OK 6.4 kB URL GET HTTP/2 tracker.ads.sportradar.com/dist/tracker.js
IP
ASN #20940 Akamai International B.V.
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjecttracker.ads.sportradar.com
Fingerprint2F:44:31:30:BF:6C:CE:CE:AD:55:13:9C:95:C2:98:BB:35:19:22:5B
ValidityThu, 05 Oct 2023 12:16:46 GMT - Wed, 03 Jan 2024 12:16:45 GMT
File type ASCII text, with very long lines (25690)
Hash 235331a0761142ae4fd345cdf7c7f9ed
f71a2cb5824a7049b2c86f5658f48e17ff7f588c
063237f5f52863c3f711ef56625653397a5650eca2da3fa375dc181985a1badb
GET /dist/tracker.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 12 Sep 2023 08:33:19 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
etag: "235331a0761142ae4fd345cdf7c7f9ed"
x-amz-cf-pop: AMS58-P6
x-amz-cf-id: VXIh_gCUtucyYHhCg81QlrVxUxdnyy6WQm1or6vbPe3ihHH54ZiQEQ==
vary: Accept-Encoding
content-encoding: gzip
content-length: 6405
date: Sat, 02 Dec 2023 22:01:49 GMT
cache-control: max-age=900, public
X-Firefox-Spdy: h2
www.ibet.com/assets/red-bg-desktop-da827fb1.png
200 OK 1.9 MB URL GET HTTP/2 www.ibet.com/assets/red-bg-desktop-da827fb1.png
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type PNG image data, 2880 x 1100, 8-bit/color RGBA, non-interlaced\012- data
Size 1.9 MB (1865669 bytes)
Hash 87239eec12f918ba6c8b112e743f7c1b
89e69d386e949092caef144f7d864bc7e73c341a
da827fb13a7defb7ae8677cdfebdb92a2cdfd5735dc5ace7cff18e29c1735ff5
GET /assets/red-bg-desktop-da827fb1.png HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1865669
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:01:11 GMT
etag: "87239eec12f918ba6c8b112e743f7c1b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ywAEDIp5mCmBVpu6cbOLLUxcHm0BdHBSNlVa02HchltvixIk6pdYDg==
age: 57495
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/5689655205501f01021396c790a3c8250ead70ad-232x417.jpg?q=75&auto=format
200 OK 14 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/5689655205501f01021396c790a3c8250ead70ad-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c0cccaeddf376fc0b7e090a5666e3bef
3fbeaee41329a0d6ea91036abacd83769308d540
2443ac2b2bdb18ce1992b25af8528beaff362f49236db74f59e4e269a1c60a2f
GET /images/w9lc5y04/production/5689655205501f01021396c790a3c8250ead70ad-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 13938
x-b3-traceid: 3e8f3948f2d84226deb850df8bcd2e55
x-b3-parentspanid: 264d582a658b71bd
x-b3-spanid: fda4b32a96b4cc2c
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-7
x-varnish-age: 4424
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:12 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:00:22 GMT
content-type: image/webp
vary: origin, accept
age: 1438657
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/70b612b84199e3a1a2d8f79bc9ea6d437819878a-360x648.jpg?q=75&auto=format
200 OK 19 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/70b612b84199e3a1a2d8f79bc9ea6d437819878a-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a86d01dfa52919cf06dce7ea800f780b
6a7c96d0a2a2e51f917dfea824f3e6eabc8a8f36
2cc14e7d6ea6180f360f24ddc7643f5d72dbf788a23d1b50e1b8ad6977a1c397
GET /images/w9lc5y04/production/70b612b84199e3a1a2d8f79bc9ea6d437819878a-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 18774
x-b3-traceid: 47077938da464f73c3f4bcc846256774
x-b3-parentspanid: 1271c8d341300266
x-b3-spanid: 6a07e4e78cfccb3c
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-6
x-varnish-age: 6798
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 05:24:07 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 19 Apr 2021 11:35:37 GMT
content-type: image/webp
vary: origin, accept
age: 837462
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/5f95a9fe7f37f38815cbff4133bc421a499cd27e-232x417.jpg?q=75&auto=format
200 OK 10 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/5f95a9fe7f37f38815cbff4133bc421a499cd27e-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0b0504e7dc961ba3c047522ce89db0ee
b8a910ff1679ef74c95ecd43b60a50cad831a1eb
211758f9c89c600be13c1338e2221f1badaff3db796e787864dfe8a3d9338bdd
GET /images/w9lc5y04/production/5f95a9fe7f37f38815cbff4133bc421a499cd27e-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 10208
x-b3-traceid: 043ac436692e6a1b4731cad3e222603b
x-b3-parentspanid: d8f955c35809710d
x-b3-spanid: b5248a7f732ef4c2
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-2
x-varnish-age: 6492
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:55 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1438614
last-modified: Wed, 01 Feb 2023 15:03:36 GMT
content-type: image/webp
vary: origin, accept
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.googleapis.com/css2?family=Poppins:ital,wght@0,400;0,500;0,600;0,700;0,800;1,900&display=swap
200 OK 18 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Poppins:ital,wght@0,400;0,500;0,600;0,700;0,800;1,900&display=swap
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type gzip compressed data, max compression\012- data
Hash b958583fa77f2c2d43a4800414692949
f06584da5f165582933cc4950f7bfc27f1f98ea2
00e69166bc6aa994f1f99c11269834d9d35f31501a55eddd25f101ffe5690145
GET /css2?family=Poppins:ital,wght@0,400;0,500;0,600;0,700;0,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 02 Dec 2023 22:01:46 GMT
date: Sat, 02 Dec 2023 22:01:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/95a1e6d5e0967886358d18b94d0fe2a06bfc266c-232x417.jpg?q=75&auto=format
200 OK 9.3 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/95a1e6d5e0967886358d18b94d0fe2a06bfc266c-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b924ecd30b52e1e60987d510fd3cb905
c5f9378e4ee9b08de8e6da81108b40ad094cecd6
4ee2a839fcfc5d60735abad4c69768c3c07491731c39163a880e590ebe8dbc7a
GET /images/w9lc5y04/production/95a1e6d5e0967886358d18b94d0fe2a06bfc266c-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 9276
x-b3-traceid: 3a77162f4c71f114206eddf071fffb79
x-b3-parentspanid: 22f837c128ccd099
x-b3-spanid: 6f1265c02fae8b77
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-4
x-varnish-age: 4424
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:12 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:02:39 GMT
content-type: image/webp
vary: origin, accept
age: 1438657
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/961e1842d2f96a0be1b54eb8fd1bb051f15127b2-232x417.jpg?q=75&auto=format
200 OK 7.7 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/961e1842d2f96a0be1b54eb8fd1bb051f15127b2-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 445152a01d772acb20c24e9d394aa652
aae611c23ae05185d440dee1df394d8b88c72c8d
07f9f8268b8c7e88c10280201f6ef14f7f0847cdf8c332a88834e4a3358c2f76
GET /images/w9lc5y04/production/961e1842d2f96a0be1b54eb8fd1bb051f15127b2-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 7720
x-b3-traceid: 444fefb399968f17cd5b4922d24986fc
x-b3-parentspanid: c789d22f0658318f
x-b3-spanid: 178a4ff821ce6e7f
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Mon, 20 Nov 2023 16:01:17 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:01:45 GMT
content-type: image/webp
vary: origin, accept
age: 1058432
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/5b0415ee9746420c1df848a64335c58f3bbf480d-232x417.jpg?q=75&auto=format
200 OK 9.7 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/5b0415ee9746420c1df848a64335c58f3bbf480d-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 87f321c3a7e516a15aaeea9fc2164bf3
771a11437015be1a00bf2488860f1a5cc83a2d0c
4852c0344a7dac1442bc2892c1b7a84cf8d0ab6c65a1e8213b4699cbe7c3160f
GET /images/w9lc5y04/production/5b0415ee9746420c1df848a64335c58f3bbf480d-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 9710
x-b3-traceid: 0f4920200f917407f2a91f4368fe57bf
x-b3-parentspanid: 5d7c815e956b3d73
x-b3-spanid: 5c371c2c6d5c0e8f
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 4423
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:12 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:02:20 GMT
content-type: image/webp
vary: origin, accept
age: 1438657
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/38e7b4ba6f9d8d8e5a68e30c46cc29e69e2d7c68-232x417.jpg?q=75&auto=format
200 OK 12 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/38e7b4ba6f9d8d8e5a68e30c46cc29e69e2d7c68-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6f35734e0cb37f959f512f6d79035ce0
d7abdcd2aa5e06742646781184a5d3212667dc21
e4c71b868c1fcde4b0c2e7d868f41c07b3fe1a7582c23dc078de0a404a7b095b
GET /images/w9lc5y04/production/38e7b4ba6f9d8d8e5a68e30c46cc29e69e2d7c68-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 11756
x-b3-traceid: 25b502f2c97300348b8adde0788771d0
x-b3-parentspanid: 8aec4de8d0141d66
x-b3-spanid: eae1f215f0c06568
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-0
x-varnish-age: 6228
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 09:22:43 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:04:15 GMT
content-type: image/webp
vary: origin, accept
age: 477546
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/e808a44221aa7cded37fc471bb9f73507dda287b-232x417.jpg?q=75&auto=format
200 OK 9.1 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/e808a44221aa7cded37fc471bb9f73507dda287b-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e7926010e3c629ec15afb7119c4d60b2
e36e00f1191eb8ea8517547a6257a958ec14a633
1bd08aca1a412128c241fa74b469690e1bf512ae638a346cc126ca9273b49947
GET /images/w9lc5y04/production/e808a44221aa7cded37fc471bb9f73507dda287b-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 9050
x-b3-traceid: b14edadb9f393d86550832156e5f42d9
x-b3-parentspanid: e44f3d4780b5186f
x-b3-spanid: de9d7906cbc19abe
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 4424
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:12 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:01:28 GMT
content-type: image/webp
vary: origin, accept
age: 1438657
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/20e75c6219b2b793a5fb10c7cca9ab3d1f8b9f82-232x417.jpg?q=75&auto=format
200 OK 7.9 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/20e75c6219b2b793a5fb10c7cca9ab3d1f8b9f82-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f579cf3502f2e9497c4da2e1eb6bd7ac
9aaaf07bf8af7159dd984b74e74644eea315c3cf
74269b46cef36011f6f90c6da460ade0ac22692a96e15ac1ed047bbd2a5c4d2e
GET /images/w9lc5y04/production/20e75c6219b2b793a5fb10c7cca9ab3d1f8b9f82-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 7886
x-b3-traceid: f2f86f3048ec0068ccf9b0c8c4811a11
x-b3-parentspanid: b8aeab71a13775ed
x-b3-spanid: d8d1b0a15970e7a6
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 11463
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 07:51:45 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:03:54 GMT
content-type: image/webp
vary: origin, accept
age: 483004
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/document-search-4855df34.svg
200 OK 8.8 kB URL GET HTTP/2 www.ibet.com/assets/document-search-4855df34.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (624)
Hash 339ba49cc8f0f5837ce0363adfd0df6f
ced950cfaac412ca382bc9782db62094301ca3fb
4855df34f763be51bba0b39b0c0800f38fea4f4f166a95dac6b2184acae53496
GET /assets/document-search-4855df34.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 06:41:43 GMT
etag: W/"339ba49cc8f0f5837ce0363adfd0df6f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QGv4WbYMW49oZl3slzY_SwJjCCfcBHfPMjAuQz9eI3-dOSXow8ANlQ==
age: 55207
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/b54794353124d8847145e5ceea576accbd87117c-360x648.jpg?q=75&auto=format
200 OK 42 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/b54794353124d8847145e5ceea576accbd87117c-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1478d448cd918c58bb8a6ad00860012f
cb37e5133719db7b9c0bcdcec416ece2dfdab545
f72fd2e7f57510ad3c3cf32e950939274ac3e9ed98780deb72b2841a0c3ada62
GET /images/w9lc5y04/production/b54794353124d8847145e5ceea576accbd87117c-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 41746
x-b3-traceid: 4e3529c5bcf8fd27a20341faec21f82a
x-b3-parentspanid: f1b7b04392043f6e
x-b3-spanid: 91aee8471abcf546
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 4423
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:12 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 07 Jul 2021 08:12:33 GMT
content-type: image/webp
vary: origin, accept
age: 1438657
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/f37c6aed020b1db8be527bf4d7ec67aef5031c7f-360x648.jpg?q=75&auto=format
200 OK 35 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/f37c6aed020b1db8be527bf4d7ec67aef5031c7f-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0a46c00c22d6cbdb794751e1c6963f01
a1db56a2ddd6eae1d9f8480814f5bb0d937e5bd7
f166c4b6b69b6dce5cd83c3fff52764e00939ca5504a7320919faa7edd45fce3
GET /images/w9lc5y04/production/f37c6aed020b1db8be527bf4d7ec67aef5031c7f-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 35274
x-b3-traceid: 9326982b6f35973d95154be96f2d63d0
x-b3-parentspanid: 52a0b62f7c4d1c5d
x-b3-spanid: 13c3f4c3a67cb6f7
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-0
x-varnish-age: 2488
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:56:28 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 19 Apr 2021 11:28:30 GMT
content-type: image/webp
vary: origin, accept
age: 1436721
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/034a8c005e2a008a1f3e9a1678fd492f72c97698-360x648.jpg?q=75&auto=format
200 OK 40 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/034a8c005e2a008a1f3e9a1678fd492f72c97698-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2e982b0dc3e31810a074eddcff080f39
8d45dff76d9208b71f4b5b3c2886164bd4c90ae4
ebf469fc70659a64c913d5db3210f07f5c3733412c54497676a7b84b258f8db4
GET /images/w9lc5y04/production/034a8c005e2a008a1f3e9a1678fd492f72c97698-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 40146
x-b3-traceid: 66555f9a98d264b4ef93a1967e438689
x-b3-parentspanid: 4a1c6d28c39d9ef0
x-b3-spanid: 59198078c867fa60
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 103668
accept-ranges: bytes
via: 1.1 google
date: Wed, 22 Nov 2023 02:29:36 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 09 Jun 2021 11:49:59 GMT
content-type: image/webp
vary: origin, accept
age: 934333
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/ToastNotificationContainer-e01f1417.js
200 OK 33 kB URL GET HTTP/2 www.ibet.com/assets/ToastNotificationContainer-e01f1417.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (2182)
Hash 1022721d038e17660867c8a7bbd31f37
04b6d7e82248207e3af74ee7b4bbdc3d77791d7c
80b1bd7b36524305c2364547592b160050c015c0a9c9aff825b8d9f5f35e9629
GET /assets/ToastNotificationContainer-e01f1417.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:07:23 GMT
etag: W/"1022721d038e17660867c8a7bbd31f37"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jpu-L-B_ALft47gA0okIP7zvqKYxnUxOCsjltZvF04h2kE9g1HcXjA==
age: 57495
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/11ae3106175377ee3ac804225b052c2087e4d809-360x648.jpg?q=75&auto=format
200 OK 26 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/11ae3106175377ee3ac804225b052c2087e4d809-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2b4c380622762498eebd7d19115a7f38
152433bf425dd4be0d5faf1518afd56e67e622a6
664b1e524aaba89618c2804d1dc7e3bdd20a1b41e36da9e9875c6079e39694fa
GET /images/w9lc5y04/production/11ae3106175377ee3ac804225b052c2087e4d809-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 25936
x-b3-traceid: 66cc341385a26a24e8930629d9f1b7b2
x-b3-parentspanid: d7d81c11ccd9354e
x-b3-spanid: 519ee7e703e3c045
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 30635
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 04:28:39 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 14 Jun 2021 08:15:50 GMT
content-type: image/webp
vary: origin, accept
age: 754390
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/43cc5e2455bc35783713bcb8dd3c3d25b737d2c4-360x648.jpg?q=75&auto=format
200 OK 29 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/43cc5e2455bc35783713bcb8dd3c3d25b737d2c4-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c06b9ef722b22b8458c0e3e6ee0d86be
fdd336c34ad62742f887db817181fc41f37aac1b
7fe7db270de009d7391871b077efc6b503c09c8dd355c5198b96c0808857983a
GET /images/w9lc5y04/production/43cc5e2455bc35783713bcb8dd3c3d25b737d2c4-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 29126
x-b3-traceid: 24c6b8d80f16d9bd5f95cdd0a1805572
x-b3-parentspanid: b76d1b31c9665e32
x-b3-spanid: c4802763ba17b494
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-5
x-varnish-age: 2509
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:56:07 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 14 Jun 2021 08:33:51 GMT
content-type: image/webp
vary: origin, accept
age: 1436742
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/56fc51fe90f1d0e1120791d5eaf144146eb9af98-360x648.jpg?q=75&auto=format
200 OK 36 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/56fc51fe90f1d0e1120791d5eaf144146eb9af98-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4e8480d48be3a64031d33c991056cfb0
0bfa6564fff1ad5529844333b5597b6e5e6a38d3
ce42a6c92d7e856cf105bee0130afc1df493d3575430695f6c2b4e59725ce0b5
GET /images/w9lc5y04/production/56fc51fe90f1d0e1120791d5eaf144146eb9af98-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 35988
x-b3-traceid: f9e726bf03d676c2f31cc638e7128f82
x-b3-parentspanid: 061ff69b7406e481
x-b3-spanid: 5649a26d104c9e5f
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 98005
accept-ranges: bytes
via: 1.1 google
date: Sun, 26 Nov 2023 08:04:16 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 12 Jul 2023 08:47:36 GMT
content-type: image/webp
vary: origin, accept
age: 568653
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/helpers-349aca53.js
200 OK 22 kB URL GET HTTP/2 www.ibet.com/assets/helpers-349aca53.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (2548)
Hash d727097942f6e92259894070d27be5da
a8a44d3c596c3b3fdeb7a2c0b4cca06016460180
4bb5cbe366b48b59f4bc30ccedc677c4393e4c53108264116c0b03c36587127b
GET /assets/helpers-349aca53.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-fbfbf194.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: W/"d727097942f6e92259894070d27be5da"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vjb7ffPcYiYcHEvkajl3ZZ9SmVXuArDqZ01LeowhmYw9sdcAXmnCIw==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/56491bd99ad297402b1a9dedcb246ca1657a7b9b-360x648.jpg?q=75&auto=format
200 OK 26 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/56491bd99ad297402b1a9dedcb246ca1657a7b9b-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a1e9ea14bf8189b123531504b8bcb68e
f3d2119af6ef34640cc5b3f610e27554038d0e5b
66e17e2ce873884bc335ec6aba999dde16749bae9931366aa8f211d72105a5ba
GET /images/w9lc5y04/production/56491bd99ad297402b1a9dedcb246ca1657a7b9b-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 26544
x-b3-traceid: 7b23f674defcb0786cffbfbbb110e76f
x-b3-parentspanid: 95da34fcc9a5edab
x-b3-spanid: 1603dce4e1ddf699
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 5317
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 17:23:35 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 11 May 2022 09:29:20 GMT
content-type: image/webp
vary: origin, accept
age: 794294
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/BlockContent-93a6cf91.js
200 OK 31 kB URL GET HTTP/2 www.ibet.com/assets/BlockContent-93a6cf91.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (5198)
Hash 1db4c2f5aa861d0026a7bbbdc169c010
50246f2d7458c060f6e143cd35c7e223c1bc8710
9fe19a83ebc72ecf1172c0fed92690137f7e9198ed58f11261e48f6638149daf
GET /assets/BlockContent-93a6cf91.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/AppRoutes-8f87b6d0.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: W/"1db4c2f5aa861d0026a7bbbdc169c010"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: r9Cmgs-SYK4_-CcxqfUObLf--q3W0i0wR419R159Wqv7BGpCANhStg==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/69e4953b38e30c77873eef38e343a1fd67fcde66-360x648.jpg?q=75&auto=format
200 OK 28 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/69e4953b38e30c77873eef38e343a1fd67fcde66-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash babb90025db38ec53193d9743dbe9699
abe3415e61a64daca984c36d1ba5f49c9b2f38dd
05bc35e0a34cf0060e94b7c4233379003a5e349989f18170ee29f00567559514
GET /images/w9lc5y04/production/69e4953b38e30c77873eef38e343a1fd67fcde66-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 27690
x-b3-traceid: 206210538cf5e954f40c78cc7a9effc2
x-b3-parentspanid: a9806b15759177e3
x-b3-spanid: 48540822952f0b20
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-1
x-varnish-age: 14899
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 06:57:15 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 14 Jun 2021 08:46:43 GMT
content-type: image/webp
vary: origin, accept
age: 486274
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/52b16929c1e2b0310000d7270b4d4f92eece9b53-360x648.jpg?q=75&auto=format
200 OK 36 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/52b16929c1e2b0310000d7270b4d4f92eece9b53-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4f52de00c87e38aebddf7a7eb48c6a9c
8026ebf08a393c1ce6a09a4ee557553d8b8aacab
c69b2436fe66143fbf6cbaa8627e9ed49cf7a6aae6b9f07722f6bfcd747aba76
GET /images/w9lc5y04/production/52b16929c1e2b0310000d7270b4d4f92eece9b53-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 35814
x-b3-traceid: da90f634f7506629fdab8e6f5867b1da
x-b3-parentspanid: 4530d550fa35a047
x-b3-spanid: 41130635b3f53688
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-3
x-varnish-age: 4380
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:56 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 26 Apr 2021 08:22:23 GMT
content-type: image/webp
vary: origin, accept
age: 1438613
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/online-casino-84d39742.svg
200 OK 9.0 kB URL GET HTTP/2 www.ibet.com/assets/online-casino-84d39742.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1055)
Hash 09f50f31ee12cbbf106822919d865a1a
5e3ec838232bc547b76ee3b5b66f17dd22904dcf
84d3974268493211be5b646dd17c1f6cdd6e427cc8d34364434d9ec5f99f392e
GET /assets/online-casino-84d39742.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:07:24 GMT
etag: W/"09f50f31ee12cbbf106822919d865a1a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: c0nM_ct7TYaBWfDgxZpDOO3L8gSBPV4YlDzfldbUzNnfERB8rFlr5w==
age: 55207
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/index-2629c06f.js
200 OK 47 kB URL GET HTTP/2 www.ibet.com/assets/index-2629c06f.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (34758)
Hash dde10a5e845f279d8fc4f75e7a6c9065
02fcebc29c8596bcaeb6a67294d4aec2bd002429
72eb15d130bac628bf9a98120743929c5adaeebddb02f234a4781f0697a7b5cd
GET /assets/index-2629c06f.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/AppRoutes-8f87b6d0.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:07:23 GMT
etag: W/"dde10a5e845f279d8fc4f75e7a6c9065"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Q6h_OlGaBADQCF97zTn-JFQCUg-tG5Trv_YwV4XIq64qgxGIK6u41Q==
age: 55207
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/3c926e83a048b38a1da82304ec5bda80e997c5e3-360x648.jpg?q=75&auto=format
200 OK 35 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/3c926e83a048b38a1da82304ec5bda80e997c5e3-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5724b42c238f7f6279324c72829f6b39
841ffcf33eb25358b7a3cd94736b7b83d9707a3a
6f201c988cb6d30db0808ca682f710a36af1b64f9be3dae43bee6b3efdd2903e
GET /images/w9lc5y04/production/3c926e83a048b38a1da82304ec5bda80e997c5e3-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 34984
x-b3-traceid: 0b9fe44171dd3b37b1352c6ef4be352e
x-b3-parentspanid: c7afe2b4650465d4
x-b3-spanid: 6dab124d7565c60b
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 12167
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 10:38:39 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 29 Sep 2021 09:34:02 GMT
content-type: image/webp
vary: origin, accept
age: 732190
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/93033245e862a653520485605dff027b70dab4c6-360x648.jpg?q=75&auto=format
200 OK 45 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/93033245e862a653520485605dff027b70dab4c6-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6fb1456774321ac97b87cad03089481d
e31a1a25f8258f7efa9f31ffdb602cc0476263ab
5ecf9d88ce69765ed780413784e00e1bf5f08dc4809891443035b55d68f062d8
GET /images/w9lc5y04/production/93033245e862a653520485605dff027b70dab4c6-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 44770
x-b3-traceid: 66df85d1b3b405b12fa00a29ce91d2b7
x-b3-parentspanid: 33dc85836f4f9af0
x-b3-spanid: ff75a62ee9e9a5de
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-3
x-varnish-age: 8198
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 09:18:09 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 19 Apr 2021 11:40:21 GMT
content-type: image/webp
vary: origin, accept
age: 477820
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/cf24591bcd8b0810f6800ba186ca015f946fc224-360x648.jpg?q=75&auto=format
200 OK 31 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/cf24591bcd8b0810f6800ba186ca015f946fc224-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3d4cbc7607728358635b4be946973aaf
013b2d398aa197544e78a029aabab154b4c19f60
769e01aa371a538203fd76912c2624d4d1dd5fa2cddb825054e240007cc2088f
GET /images/w9lc5y04/production/cf24591bcd8b0810f6800ba186ca015f946fc224-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 31014
x-b3-traceid: 1b369ce99d7a6bdd51f27b20984de1b7
x-b3-parentspanid: 08187f98c8ff6cb7
x-b3-spanid: cf5c8ef2f08e3200
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 4423
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:12 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 10 Jun 2021 07:48:44 GMT
content-type: image/webp
vary: origin, accept
age: 1438657
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/5788d8b65c59a60485f465171508e4277e2726bc-360x648.jpg?q=75&auto=format
200 OK 19 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/5788d8b65c59a60485f465171508e4277e2726bc-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cc3451f906cf5513f7bda77c8b319f6a
ce644ccbdb9fdb598361f8021ae1adb2f5471e96
52dc9655a65e7e3efea056acd3023b97c6b442d20f9c55e7d05b86c491fb17b8
GET /images/w9lc5y04/production/5788d8b65c59a60485f465171508e4277e2726bc-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 19368
x-b3-traceid: ce4c403e69538cab4d218cdb3c9d3308
x-b3-parentspanid: 07a76aebdbaf7c77
x-b3-spanid: 2bd52d3814d839d7
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 49937
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 08:58:19 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Fri, 05 Nov 2021 09:33:00 GMT
content-type: image/webp
vary: origin, accept
age: 824610
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/ade8e11475aa365473dfbf94e32769bcdb6966c0-360x648.jpg?q=75&auto=format
200 OK 24 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/ade8e11475aa365473dfbf94e32769bcdb6966c0-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 42d57afaa446d360a5c6675b202aa677
ea933834b7c6a2e6910cea710510d7e7ceeb61d4
73d0352bf00519a333e8e64b92d1833c377592e4250e685318152a40027f01d5
GET /images/w9lc5y04/production/ade8e11475aa365473dfbf94e32769bcdb6966c0-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 24276
x-b3-traceid: 1aab4b3e743953278d338d74e52c1285
x-b3-parentspanid: a4c7addd0e9b9f72
x-b3-spanid: 98d39e9a928fc7fd
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 5248
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 09:33:02 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 28 Apr 2021 09:15:48 GMT
content-type: image/webp
vary: origin, accept
age: 476927
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/d19a7dc9350607f7243dc4d2f9a68ae9500459da-360x648.jpg?q=75&auto=format
200 OK 16 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/d19a7dc9350607f7243dc4d2f9a68ae9500459da-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f868db2d91641d1143fed18e52abd99c
6131d1e5fa8cd69454cfed34c94ef93bfcd7b38b
a32367b64281d83e0d6b530893cccbc6db03b01b8b8010bfb486d6dce14cff9b
GET /images/w9lc5y04/production/d19a7dc9350607f7243dc4d2f9a68ae9500459da-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 15844
x-b3-traceid: 6e84faa248aa0a6d63d205654bbbb08b
x-b3-parentspanid: 385b91d41b9227ad
x-b3-spanid: fa5431a1cab13961
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-5
x-varnish-age: 2509
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:56:07 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 14 Jun 2021 08:12:50 GMT
content-type: image/webp
vary: origin, accept
age: 1436742
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/f05767589069324ae9d7a955076f130747a3ea62-360x648.jpg?q=75&auto=format
200 OK 33 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/f05767589069324ae9d7a955076f130747a3ea62-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 86025b46bf0b9e8216fa4bc6486133cf
b6c3822e6363e50f5491ee29df4655b2662b9924
cacb905d6eb4800b11f162eb357cb09ff2232477237b21a897085b4919430b6f
GET /images/w9lc5y04/production/f05767589069324ae9d7a955076f130747a3ea62-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 32994
x-b3-traceid: 15ebc6716ad9356955fa85a760d4ec70
x-b3-parentspanid: 87bb1a3c1ca42fc4
x-b3-spanid: 9f74bc0238ff6dfd
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 29306
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 02:49:37 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 28 Apr 2021 09:37:59 GMT
content-type: image/webp
vary: origin, accept
age: 846732
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/35f84c422b8d397097307afe22e85925cc54d6c1-360x648.jpg?q=75&auto=format
200 OK 26 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/35f84c422b8d397097307afe22e85925cc54d6c1-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f459119df9c6e430b352c953e93120b4
b250d735984d2cf42a7877f6b93ecb69255518fc
9dda6be1a40d1049b4e93b2996342dc30469094a50e88335f2d4adeac8e11ed5
GET /images/w9lc5y04/production/35f84c422b8d397097307afe22e85925cc54d6c1-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 25608
x-b3-traceid: 3672e6d3414aea4fccc597c80c34d8f4
x-b3-parentspanid: 94334ff89a5db300
x-b3-spanid: a848575c6b73c3b7
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 4778
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 11:39:36 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 14 Jun 2021 08:49:45 GMT
content-type: image/webp
vary: origin, accept
age: 728533
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/1b5d3434fe1ba559ffdee3df2e3f37fb95efb893-360x648.jpg?q=75&auto=format
200 OK 43 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/1b5d3434fe1ba559ffdee3df2e3f37fb95efb893-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 89f27066714aefa6aad3fca608d75d88
f8df65593f7d832ef68ab99417df9f0985073dbc
7f38688414b0e8959c956491942530a82af03a7c0510733af255c926caccc8f5
GET /images/w9lc5y04/production/1b5d3434fe1ba559ffdee3df2e3f37fb95efb893-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 43186
x-b3-traceid: fa1e6317bb43f46df99b7b50ee733115
x-b3-parentspanid: abe56815ca78225b
x-b3-spanid: 92bf4c9af493b95f
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-0
x-varnish-age: 29447
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 11:20:55 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 28 Apr 2021 09:41:23 GMT
content-type: image/webp
vary: origin, accept
age: 729654
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/index-fbfbf194.js
200 OK 66 kB URL GET HTTP/2 www.ibet.com/assets/index-fbfbf194.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (51100)
Hash 53ad023220ef0ac6b81cfdd6b3666243
b422a98c27635ccc402c28fb54702f9860722406
c8fc75f2b360aa79b79333a4351c13303c8beef55348bd26d040cd8725edbd7d
GET /assets/index-fbfbf194.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 08:57:18 GMT
etag: W/"53ad023220ef0ac6b81cfdd6b3666243"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: omE4IyfY8WR5puP4cMDxFyB6aagheIe5bM8rNVt1VrN8GvKkOPIixw==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/8413cb70c8b56008511a52973f3da6d25fed6790-360x648.jpg?q=75&auto=format
200 OK 34 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/8413cb70c8b56008511a52973f3da6d25fed6790-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b0bce308f26b15d537a6186acf2653d8
f0eebf35cb4da8b7b4839d9869351973b472886e
c2693e6baa84311b529c31542c10940323b9fbfab6e7d9cf8c8ee4bdd453ab7b
GET /images/w9lc5y04/production/8413cb70c8b56008511a52973f3da6d25fed6790-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 33624
x-b3-traceid: 661eaf1dfd0c8bb3c4f70951b4c4a857
x-b3-parentspanid: 20dab4f54c927fe3
x-b3-spanid: e8132cf17609d65e
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-5
x-varnish-age: 2509
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:56:07 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Tue, 17 Jan 2023 11:50:22 GMT
content-type: image/webp
vary: origin, accept
age: 1436742
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/417b180088f04bc3acd39c40fa1100ba8467f909-360x648.jpg?q=75&auto=format
200 OK 48 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/417b180088f04bc3acd39c40fa1100ba8467f909-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7b369d662f0618ca4d3432b46e160745
fbe842e033b47937110b9d95e5bcab0ead18ea41
72f57c1fb82d557baff742f44fa1b7badf5705eb040d595f6666c18feb86178f
GET /images/w9lc5y04/production/417b180088f04bc3acd39c40fa1100ba8467f909-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 48466
x-b3-traceid: b5a3f8203e99dc285ae6123e4e60e633
x-b3-parentspanid: 1f09cc7db45f1edb
x-b3-spanid: 4511f072e0a22e84
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-8
x-varnish-age: 32752
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 02:03:41 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 19 Apr 2021 08:21:27 GMT
content-type: image/webp
vary: origin, accept
age: 503888
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/fb47a2fc7412f2be656e701ee800e0a63146af49-360x648.jpg?q=75&auto=format
200 OK 32 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/fb47a2fc7412f2be656e701ee800e0a63146af49-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4c8e51f63a8c1c8ca32d8efb0f2a0618
efa20f787a9ded5c059cdaa144ff3b959a98f3a8
957e37f1e7aedd74596bd94e70aaeab025a0d573c3dc79ec56b9bc4290497cd8
GET /images/w9lc5y04/production/fb47a2fc7412f2be656e701ee800e0a63146af49-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 31740
x-b3-traceid: 44b0b9e3bca2ae2bc75bd856a7abe359
x-b3-parentspanid: 2daae92c4c6003ed
x-b3-spanid: 52b96ba14afe7327
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 39492
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 06:09:48 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 06 Sep 2021 19:39:52 GMT
content-type: image/webp
vary: origin, accept
age: 834721
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/134920aa6de2b7750bfc3178f3d43fa4cbee1381-360x648.jpg?q=75&auto=format
200 OK 55 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/134920aa6de2b7750bfc3178f3d43fa4cbee1381-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d28d7dcab196078ca3f30147d0632f3b
fde5b42507e6ccf04f2b7dd0b270545ffff5ee3d
4676aaca854dad389eebad5b0426778226d43cf42b6047b6b8e029f287a1b652
GET /images/w9lc5y04/production/134920aa6de2b7750bfc3178f3d43fa4cbee1381-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 55418
x-b3-traceid: cb31fc6894d92c19d24caf0c53a7fa9e
x-b3-parentspanid: 5d88dbd1f088fbd6
x-b3-spanid: dc36eadba454fc72
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 6535
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:13 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1438656
last-modified: Mon, 26 Apr 2021 08:30:10 GMT
content-type: image/webp
vary: origin, accept
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/a60ca338d2b33729da676562791d017572cbaca9-360x648.jpg?q=75&auto=format
200 OK 34 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/a60ca338d2b33729da676562791d017572cbaca9-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 66d8d444089f63e5e22fa8736e5379b0
dac0b46c6e65a8552dc7e5cbdd7ed3b584f3eb14
6b673f228aeb538513bd46d3cabcc519fc4d37f58057b847d4505704821075a6
GET /images/w9lc5y04/production/a60ca338d2b33729da676562791d017572cbaca9-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 34024
x-b3-traceid: 9ee06ca0c3cf4c527ddc53549131b62e
x-b3-parentspanid: 27002acbf5bb1f21
x-b3-spanid: 70edd8f4e086b41f
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-6
x-varnish-age: 4380
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:56 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 28 Apr 2021 09:13:05 GMT
content-type: image/webp
vary: origin, accept
age: 1438613
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/e7d1b15d27b739aefe44028efb04ecf0e8d9a1f3-360x648.jpg?q=75&auto=format
200 OK 27 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/e7d1b15d27b739aefe44028efb04ecf0e8d9a1f3-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash eced7c713e8bd6af44bfd3974b10100d
c67b8a528c77553c1a00510e5cfc1aed873dbf95
e7e4ca34669728e6cde5add793eb38b291ce2bfdaf9c7f6fcefa0f7d04087182
GET /images/w9lc5y04/production/e7d1b15d27b739aefe44028efb04ecf0e8d9a1f3-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 27274
x-b3-traceid: e0ac54a3ee193aa1fff2931b746f17ca
x-b3-parentspanid: 6f1e83924ffd1677
x-b3-spanid: c5dd0d7db5c3f5a2
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 45829
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 10:55:48 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 08 Sep 2021 16:14:18 GMT
content-type: image/webp
vary: origin, accept
age: 731161
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/1aed95d6db6096682e3ddbc64e2754d78c4a1b53-360x648.jpg?q=75&auto=format
200 OK 40 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/1aed95d6db6096682e3ddbc64e2754d78c4a1b53-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f5a19555df1f54e9ad39a2deb6374b96
d58d4864127a082b55a1d9ba87cd649ebe2edff8
5e6c98805486abf5947a7a8a9d542eaf603754da92ac03353c77f8a0a3ef3fdb
GET /images/w9lc5y04/production/1aed95d6db6096682e3ddbc64e2754d78c4a1b53-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 40088
x-b3-traceid: 7cb4c33e4b90fe9c8a4cd8b749d9ee74
x-b3-parentspanid: 64c451032d337399
x-b3-spanid: a34a065031fcfd5
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 20013
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 06:17:06 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 26 Apr 2021 08:12:57 GMT
content-type: image/webp
vary: origin, accept
age: 488683
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/f84ed70b5ff46c4c11a9c15a8ce70864f4632908-360x648.jpg?q=75&auto=format
200 OK 33 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/f84ed70b5ff46c4c11a9c15a8ce70864f4632908-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5ac7adf6482838fa01a90d8e25eb3f25
fd1bcc440f7ceb61be7096506d2a2f7fed0c6223
845541a798fe7e1b14363826e3e967739c72f0be0e03ce83e6bad47a255246af
GET /images/w9lc5y04/production/f84ed70b5ff46c4c11a9c15a8ce70864f4632908-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 33142
x-b3-traceid: e2b058f3c9e702485eb613b51c578deb
x-b3-parentspanid: c08d85ce085c068e
x-b3-spanid: e574ef5b432305f8
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-0
x-varnish-age: 30262
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 02:42:10 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 28 Apr 2021 09:35:12 GMT
content-type: image/webp
vary: origin, accept
age: 501579
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/05f3be9b8b821eca62bb5341bf8c8b762dd843f0-360x648.jpg?q=75&auto=format
200 OK 41 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/05f3be9b8b821eca62bb5341bf8c8b762dd843f0-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash de501ba222aa04546eca2f3c021f65f7
8167cd475969cf95d5d6621c52d462054924441f
45ca3e04f79c73df61e92f0ead8528a5c8911b4762bbaf73f0c3a1c140f67228
GET /images/w9lc5y04/production/05f3be9b8b821eca62bb5341bf8c8b762dd843f0-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 40940
x-b3-traceid: a657b406bcc9801ba50fdc1a1775a6ba
x-b3-parentspanid: b9658549c75e45da
x-b3-spanid: 820f9fb58b16cc3d
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-2
x-varnish-age: 4380
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:56 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 28 Apr 2021 09:47:38 GMT
content-type: image/webp
vary: origin, accept
age: 1438613
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/81f04e031060924be40583da47dcfa14a0053926-360x648.jpg?q=75&auto=format
200 OK 41 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/81f04e031060924be40583da47dcfa14a0053926-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce772c526344a9c2377c71f572f694ae
2411fa3cf5cd2c82212c1a6eee6fa387887dae96
ff6263633a379fc5f036f2c5ff5a218ae667996532b031728a81388d27207dbb
GET /images/w9lc5y04/production/81f04e031060924be40583da47dcfa14a0053926-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 41420
x-b3-traceid: 9bf61efae7b685af9430c7161e2cf379
x-b3-parentspanid: 9b535f139a832080
x-b3-spanid: 5eb54b69aef0234a
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-0
x-varnish-age: 15559
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 10:37:50 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 15 Jul 2021 14:58:45 GMT
content-type: image/webp
vary: origin, accept
age: 732239
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/5c96237a6d59d0a8493a82e7bc50e433f3512f28-360x648.jpg?q=75&auto=format
200 OK 26 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/5c96237a6d59d0a8493a82e7bc50e433f3512f28-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e0286147024a9d907818a6d86e579de8
44a5be459039db3c9b381402f6c18ebcb81997b0
f8c497068bca751605d9e1df8c311a34a6d123307d1c31c3ff8439ef2d93defa
GET /images/w9lc5y04/production/5c96237a6d59d0a8493a82e7bc50e433f3512f28-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 25922
x-b3-traceid: d64b1203b4a27d987d7578553de3631b
x-b3-parentspanid: 8708a2708163fbbb
x-b3-spanid: 267fe2db3cfc3d2e
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 17:44:24 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 793045
last-modified: Mon, 26 Apr 2021 08:11:04 GMT
content-type: image/webp
vary: origin, accept
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tracker.ads.sportradar.com/dist//sp-3.8.0.js
200 OK 24 kB URL GET HTTP/2 tracker.ads.sportradar.com/dist//sp-3.8.0.js
IP
ASN #20940 Akamai International B.V.
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjecttracker.ads.sportradar.com
Fingerprint2F:44:31:30:BF:6C:CE:CE:AD:55:13:9C:95:C2:98:BB:35:19:22:5B
ValidityThu, 05 Oct 2023 12:16:46 GMT - Wed, 03 Jan 2024 12:16:45 GMT
File type ASCII text, with very long lines (65378)
Hash 143272dddc33395008a84a86ac9c2e96
8a90a07a66c30b4fa28300001cf97db7baba420e
6361e3a49a38d1fdc74ec96bd29ee1ecd7c30045ccb0e5f361413d65cbf5ef87
GET /dist//sp-3.8.0.js HTTP/1.1
Host: tracker.ads.sportradar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 12 Sep 2023 08:33:18 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
etag: "143272dddc33395008a84a86ac9c2e96"
x-amz-cf-pop: AMS58-P6
x-amz-cf-id: nikS6Wo-aKJF4RdU9KTw9mjPc9Hvzu9Ss9lL9CrciBkjeaCsNT24rw==
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 02 Dec 2023 22:01:49 GMT
content-length: 24162
cache-control: max-age=900, public
X-Firefox-Spdy: h2
ocsp.entrust.net/
1.6 kB IP
Hash 3b2998d411d7ddf655b5406a56fc7195
8cd1cc92a652e83298ed569857cd48e458ce2b0f
edc0ef9f1e103ea8606b3ebb6ef73495249212d0b724e15c663cd1d4a8327138
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "EDC0EF9F1E103EA8606B3EBB6EF73495249212D0B724E15C663CD1D4A8327138"
Last-Modified: Sat, 02 Dec 2023 19:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3259
Expires: Sat, 02 Dec 2023 22:56:08 GMT
Date: Sat, 02 Dec 2023 22:01:49 GMT
Connection: keep-alive
a.sportradarserving.com/pixel?type=js&aid=1622&id=7046
302 Moved Temporarily 0 B URL GET HTTP/1.1 a.sportradarserving.com/pixel?type=js&aid=1622&id=7046
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerEntrust, Inc.
Subject*.sportradarserving.com
FingerprintD0:C1:99:26:D2:AD:C7:6B:F2:AD:C4:44:44:70:7C:4F:D2:49:9B:C4
ValidityWed, 20 Sep 2023 07:44:29 GMT - Mon, 14 Oct 2024 07:44:28 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?type=js&aid=1622&id=7046 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sat, 02 Dec 2023 22:01:49 GMT
Location: https://a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
Set-Cookie: zuuid=a2192d43-ed80-4d5c-864d-7dae611f5405; path=/; expires=Sun, 01-Dec-2024 22:01:49 GMT; domain=sportradarserving.com; samesite=none; secure
c=1701554509; path=/; expires=Sun, 01-Dec-2024 22:01:49 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1701554509; path=/; expires=Sun, 01-Dec-2024 22:01:49 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 0
Connection: keep-alive
mpsnare.iesnare.com/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
200 OK 419 B URL GET HTTP/1.1 mpsnare.iesnare.com/5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerDigiCert Inc
Subjectmpsnare.iesnare.com
Fingerprint76:12:1D:E6:DA:A3:5F:1E:E7:FC:3D:15:6F:B5:5D:0A:2E:F1:A2:D5
ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (377)
Hash c6429ce247ee2a3221f28f7aa3d532b0
ff7a2c577d05a8f58621ccce4f29e9e589234b74
6a2c969f7f7665fd387d10957fcef9f49570f10cc62c4f76c3610969a3f0a737
GET /5.7.0/mM0sp8Erj2GlCHJLX6SgFKsKcD68gIN_z1-m9vV_lm0/logo.js HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 02 Dec 2023 22:01:49 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 May 2014 00:01:40 GMT
Expires: Sun, 01 Dec 2024 22:01:49 GMT
Cache-Control: private
p3p: CP="NON DSP COR CURa"
Accept-CH: Sec-CH-UA-Full-Version, Sec-CH-UA-Arch, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-WoW64, ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
mpsnare.iesnare.com/time.mp3?nocache=0.4940298596843309
206 Partial Content 504 B URL GET HTTP/1.1 mpsnare.iesnare.com/time.mp3?nocache=0.4940298596843309
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerDigiCert Inc
Subjectmpsnare.iesnare.com
Fingerprint76:12:1D:E6:DA:A3:5F:1E:E7:FC:3D:15:6F:B5:5D:0A:2E:F1:A2:D5
ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
File type MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Hash cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.4940298596843309 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Server: nginx
Date: Sat, 02 Dec 2023 22:01:50 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
200 OK 1.5 kB URL GET HTTP/1.1 a.sportradarserving.com/ul_cb/pixel?type=js&aid=1622&id=7046
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerEntrust, Inc.
Subject*.sportradarserving.com
FingerprintD0:C1:99:26:D2:AD:C7:6B:F2:AD:C4:44:44:70:7C:4F:D2:49:9B:C4
ValidityWed, 20 Sep 2023 07:44:29 GMT - Mon, 14 Oct 2024 07:44:28 GMT
File type ASCII text, with very long lines (1527), with no line terminators
Hash f829c12c5d4e00965dfb9b9689dfd932
650099debefddac4272ca25b213f96a696fc5859
fe9e08c5b23db77285fe790e9e550357923f22b779dd100deaf2f30d5b350c26
GET /ul_cb/pixel?type=js&aid=1622&id=7046 HTTP/1.1
Host: a.sportradarserving.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/
DNT: 1
Connection: keep-alive
Cookie: zuuid=a2192d43-ed80-4d5c-864d-7dae611f5405; c=1701554509; zuuid_lu=1701554509
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/javascript; charset=UTF-8
Date: Sat, 02 Dec 2023 22:01:50 GMT
Set-Cookie: zuuid=a2192d43-ed80-4d5c-864d-7dae611f5405; path=/; expires=Sun, 01-Dec-2024 22:01:50 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_lu=1701554510; path=/; expires=Sun, 01-Dec-2024 22:01:50 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k=1; path=/; expires=Sun, 01-Dec-2024 22:01:50 GMT; domain=sportradarserving.com; samesite=none; secure
zuuid_k_lu=1701554510; path=/; expires=Sun, 01-Dec-2024 22:01:50 GMT; domain=sportradarserving.com; samesite=none; secure
cm2=!bidswitch,470883710; path=/; expires=Sun, 01-Dec-2024 22:01:50 GMT; domain=sportradarserving.com; samesite=none; secure
bss=!bidswitch,470811710; path=/; expires=Sun, 01-Dec-2024 22:01:50 GMT; domain=sportradarserving.com; samesite=none; secure
Content-Length: 1527
Connection: keep-alive
mpsnare.iesnare.com/time.mp3?nocache=0.03814882982971002
206 Partial Content 504 B URL GET HTTP/1.1 mpsnare.iesnare.com/time.mp3?nocache=0.03814882982971002
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerDigiCert Inc
Subjectmpsnare.iesnare.com
Fingerprint76:12:1D:E6:DA:A3:5F:1E:E7:FC:3D:15:6F:B5:5D:0A:2E:F1:A2:D5
ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
File type MPEG ADTS, layer III, v2.5, 32 kbps, 8 kHz, JntStereo\012- data
Hash cfe47da3367b896cf8fe9d23144e6294
5eb28e56c71ce7e851b99b4d90b4091e3090243a
2857eb76b4850703192f5d42bc145b2384147fcb65f63b5447ed74664e241507
GET /time.mp3?nocache=0.03814882982971002 HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Server: nginx
Date: Sat, 02 Dec 2023 22:01:50 GMT
Content-Type: audio/mpeg
Content-Length: 504
Connection: keep-alive
Content-Disposition: inline; filename=time.mp3
Content-Range: bytes 0-503/504
Accept-Ranges: bytes
Pragma: public
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains
niwooghu.com/impression/MC9PglWbjjBCX0V9bGfCdq8ctKAhoxIQK36YCaa9xTuptHjx3viAX5c2Quwq1GvwBpQQ5M_j95jZDWcs_GDRlfgU_mSmeQbjwCupxhwkifJKOloE-FOiW6KSzW706fwKE9htOvd-d7giPZ8sv_bdHZIxulISrkoTuiW8qXbUFQR1weJ3rKg0gkeY6lA9A8jkG0E88ifnJU8xMao8sKvqzdlitUS1ZSCOpopPYF-aTZg0BvJftUiHPknBEai3916MV8APQnL4Z8hLzKlqyhsdkR6g1HsYa1JVMWNc2Uk0ZgHyjd4j9yRt9X76zgeEuLtjYcXqsGNI1CEmJCzKM6ZOX73cv9qZ-dz84RB7RSYDRlGodVT5_mHTYBXrLaF6qY2ReQp4-j4VaxnCDkafPccQ_KhkxGx45IZxalwbPyp-a4kabGxE8Jya3ANH5wRHmpyYkaxTxjMvLLCATR6ht_joWxbdtSPUyZZ8GS22I7HLGi-GYXVlT4ouMMxo2F4uBmoSBiTUYdmoxr4VsoK4vj6Utq4gIEDCK7gqWzTbempkvnTt0TDzFWKkYi7_H7CimwzJ2qvKgxKBirIeNXXu9CXi5u1JmmpLavzndFUBQIlgLih8ja_C5XF42-fCl6OiOXA4?_z=5776801&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
200 OK 43 B URL GET HTTP/2 niwooghu.com/impression/MC9PglWbjjBCX0V9bGfCdq8ctKAhoxIQK36YCaa9xTuptHjx3viAX5c2Quwq1GvwBpQQ5M_j95jZDWcs_GDRlfgU_mSmeQbjwCupxhwkifJKOloE-FOiW6KSzW706fwKE9htOvd-d7giPZ8sv_bdHZIxulISrkoTuiW8qXbUFQR1weJ3rKg0gkeY6lA9A8jkG0E88ifnJU8xMao8sKvqzdlitUS1ZSCOpopPYF-aTZg0BvJftUiHPknBEai3916MV8APQnL4Z8hLzKlqyhsdkR6g1HsYa1JVMWNc2Uk0ZgHyjd4j9yRt9X76zgeEuLtjYcXqsGNI1CEmJCzKM6ZOX73cv9qZ-dz84RB7RSYDRlGodVT5_mHTYBXrLaF6qY2ReQp4-j4VaxnCDkafPccQ_KhkxGx45IZxalwbPyp-a4kabGxE8Jya3ANH5wRHmpyYkaxTxjMvLLCATR6ht_joWxbdtSPUyZZ8GS22I7HLGi-GYXVlT4ouMMxo2F4uBmoSBiTUYdmoxr4VsoK4vj6Utq4gIEDCK7gqWzTbempkvnTt0TDzFWKkYi7_H7CimwzJ2qvKgxKBirIeNXXu9CXi5u1JmmpLavzndFUBQIlgLih8ja_C5XF42-fCl6OiOXA4?_z=5776801&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectniwooghu.com
Fingerprint3D:54:BD:F6:52:70:24:C2:E6:6B:18:3F:1F:1D:6E:34:28:B2:6C:9F
ValidityFri, 13 Oct 2023 05:12:56 GMT - Thu, 11 Jan 2024 05:12:55 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impression/MC9PglWbjjBCX0V9bGfCdq8ctKAhoxIQK36YCaa9xTuptHjx3viAX5c2Quwq1GvwBpQQ5M_j95jZDWcs_GDRlfgU_mSmeQbjwCupxhwkifJKOloE-FOiW6KSzW706fwKE9htOvd-d7giPZ8sv_bdHZIxulISrkoTuiW8qXbUFQR1weJ3rKg0gkeY6lA9A8jkG0E88ifnJU8xMao8sKvqzdlitUS1ZSCOpopPYF-aTZg0BvJftUiHPknBEai3916MV8APQnL4Z8hLzKlqyhsdkR6g1HsYa1JVMWNc2Uk0ZgHyjd4j9yRt9X76zgeEuLtjYcXqsGNI1CEmJCzKM6ZOX73cv9qZ-dz84RB7RSYDRlGodVT5_mHTYBXrLaF6qY2ReQp4-j4VaxnCDkafPccQ_KhkxGx45IZxalwbPyp-a4kabGxE8Jya3ANH5wRHmpyYkaxTxjMvLLCATR6ht_joWxbdtSPUyZZ8GS22I7HLGi-GYXVlT4ouMMxo2F4uBmoSBiTUYdmoxr4VsoK4vj6Utq4gIEDCK7gqWzTbempkvnTt0TDzFWKkYi7_H7CimwzJ2qvKgxKBirIeNXXu9CXi5u1JmmpLavzndFUBQIlgLih8ja_C5XF42-fCl6OiOXA4?_z=5776801&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Frewardarium.com%2F%3Fvar%3Dzd_5951427%26ar%3D1%26pb%3D3%26ymid%3D690219906500924331%26source%3D%5B%5Bpartner_id%5D%5D%26ret%3Dnull%26acb%3Dproxy%26axcusid2%3DSweepstakes%26axadvid%3D3599371%26axcamid%3D9357&drf=https%3A%2F%2Fcdntechone.com%2F&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: niwooghu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
DNT: 1
Connection: keep-alive
Cookie: OAID=83dcba81532f42d684de0aaaf8ec6c84
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:50 GMT
content-type: image/gif
content-length: 43
x-trace-id: b73d604b62f6e5500e90fadb9a400cf5
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
offerimage.com/www/images/9e9e762a8aeda4556eb0010f07639539.jpg
200 OK 15 kB URL GET HTTP/2 offerimage.com/www/images/9e9e762a8aeda4556eb0010f07639539.jpg
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 9e9e762a8aeda4556eb0010f07639539
0bcb67a031d30b5513b5e574b4ef7de2ca2db096
32dce39ac731f9cec2f539d042bcfcd5ad867b4a4cc25ffc7d36feb6611264e4
GET /www/images/9e9e762a8aeda4556eb0010f07639539.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:51 GMT
content-type: image/jpeg
content-length: 14857
cache-control: max-age=86400
cf-bgj: h2pri
etag: "655a0954-3a09"
expires: Sun, 03 Dec 2023 00:36:06 GMT
last-modified: Sun, 19 Nov 2023 13:10:44 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 77145
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f6d9ce5bd92d75-ARN
X-Firefox-Spdy: h2
api.fouanalytics.com/api/x
200 OK 471 B URL POST HTTP/3 api.fouanalytics.com/api/x
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectfouanalytics.com
Fingerprint6A:6F:F4:F8:96:F5:AF:BD:04:DA:3B:26:07:70:F4:17:1F:A7:43:82
ValidityTue, 07 Nov 2023 01:56:38 GMT - Mon, 05 Feb 2024 01:56:37 GMT
Hash 7ffff4a987c9d0149095f26cefbee390
23c5e11bba11b7267d6c3da0092cf48936533b6d
ad6a661eb26c253d370ae631c81044f347d626eba2a48fc3f3d3ca03fdb64e79
POST /api/x HTTP/1.1
Host: api.fouanalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2797
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
date: Sat, 02 Dec 2023 22:01:50 GMT
access-control-allow-origin: *
access-control-allow-methods: *
cf-cache-status: DYNAMIC
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wlRcpcWzhTlnzu5GQzVDCvgM3qj53%2BCy4AyqBJF%2B5ZHen%2BTwIJ14ajPRqekvXnULji5918isxpw%2BObSvIhSMX9ZL3bP0nunNlgjR9NesJxxEtmnaiXqcCQ6m8a2QZ5ZJSGt1%2BT%2BBHg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82f6d9c8ca6c06fd-LHR
alt-svc: h3=":443"; ma=86400
ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
512 kB URL ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
IP
File type Zip archive data, at least v2.0 to extract, compression method=deflate\012- data
Size 512 kB (511815 bytes)
Hash 152eda253e242e18443ef3282495bc7c
ff0fa85565f21ec4931baad4573b4c0bd08c4019
8e03090fee16f6e0ee2e436af8e51d0c3deed6d9f0db80dec048e668fc009a48
GET /openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip HTTP/1.1
Host: ciscobinary.openh264.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Last-Modified: Thu, 16 Nov 2023 07:38:15 GMT
ETag: 152eda253e242e18443ef3282495bc7c
Content-Length: 511815
Accept-Ranges: bytes
X-Timestamp: 1700120294.87662
Content-Type: application/zip
X-Trans-Id: tx8c0ef9e37b1a4ab29193d-0065580fd1dfw1
Cache-Control: public, max-age=115873
Expires: Mon, 04 Dec 2023 06:13:16 GMT
Date: Sat, 02 Dec 2023 22:02:03 GMT
Connection: keep-alive
api.fouanalytics.com/s/pp.js
200 OK 200 kB URL GET HTTP/3 api.fouanalytics.com/s/pp.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectfouanalytics.com
Fingerprint6A:6F:F4:F8:96:F5:AF:BD:04:DA:3B:26:07:70:F4:17:1F:A7:43:82
ValidityTue, 07 Nov 2023 01:56:38 GMT - Mon, 05 Feb 2024 01:56:37 GMT
File type ASCII text, with very long lines (15322)
Size 200 kB (200486 bytes)
Hash 2d891a51ede7a7e3d19465c6554de567
f6f7071c856fe8288ba205f73b930ce06cdda9d2
1d20c481e50170ca79ba8d1e25956a4dd11088bdd7ccd13cdd0b45f96b20c535
GET /s/pp.js HTTP/1.1
Host: api.fouanalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 02 Dec 2023 22:01:49 GMT
content-type: text/javascript
etag: W/"6564c871-3bdb"
cache-control: max-age=86400
cf-cache-status: HIT
age: 16933
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zd%2BCVoKqwX%2F%2BiYy9%2FFHaT1f8wrKyaMkrfRlluYOzooyNLTowD7QOnuCqChEVXTQoVjKjjefzrl%2FvNKCH5IwRJjxjmdqLb8YRtCxTX4dOMjT%2BWijgG%2BQLpQSQcBO3yU2IuCNYcGsiNg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f6d9c55f4906fd-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.ibet.com/assets/AppRoutes-8f87b6d0.js
200 OK 15 kB URL GET HTTP/2 www.ibet.com/assets/AppRoutes-8f87b6d0.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (15074)
Hash e9efe364c26a34d796ccff1ab357c9fd
30a09f20c8eb8cccb02b59b53589c3f01399abc6
fb64869aa59685d29d36b075c2988d9b54fc9634cb9b6793e69bd6ebac72bf9e
GET /assets/AppRoutes-8f87b6d0.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 08:57:18 GMT
etag: W/"e9efe364c26a34d796ccff1ab357c9fd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NqlojGyY9akEkRRNtcucz3caop_bI2_oWrcuHL7WDaJQuX2QWO-mOw==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/transition-fc19594c.js
200 OK 19 kB URL GET HTTP/2 www.ibet.com/assets/transition-fc19594c.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (10338)
Hash 79a5c2211ad9dedb6be4c4e910d4eb90
73adc8d37acde0a1985b1e2e78c8ba3f6a19ffb9
60438a07bb95ca018a9fcb7a9c126ad640aa2353023646994a14927cb70e859f
GET /assets/transition-fc19594c.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-bf854176.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: W/"79a5c2211ad9dedb6be4c4e910d4eb90"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fzdhp4GMzRBqtsgTEe70B4vyVcZcKKDH_UAsIdSGJvIz2XbSH2ePeg==
age: 57495
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
api.fouanalytics.com/api/init-2315cm3nkx3pemx84qeo.js
200 OK 318 B URL GET HTTP/2 api.fouanalytics.com/api/init-2315cm3nkx3pemx84qeo.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectfouanalytics.com
Fingerprint6A:6F:F4:F8:96:F5:AF:BD:04:DA:3B:26:07:70:F4:17:1F:A7:43:82
ValidityTue, 07 Nov 2023 01:56:38 GMT - Mon, 05 Feb 2024 01:56:37 GMT
File type ASCII text, with very long lines (323), with no line terminators
Hash f5ed4c723fc22734b6d0cea5ce55942d
95219239b74994bcfa8f3ee825bc863dab04f7b3
29665d2661b89bef25a124d8ee6025b1c7dd29788ddd9b7d9769698ec0de2853
GET /api/init-2315cm3nkx3pemx84qeo.js HTTP/1.1
Host: api.fouanalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:49 GMT
content-type: text/javascript
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
expires: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nz1qMTjdDaetHNTLkPeiivWcwb3sbhMvEFDBRqA729YhCD4JUK%2Fpvyf%2FljRSV5%2BNe%2B922hHIiKLQjdSoV5Xa9jqwcz83pkYZw22XlgY3C2MwT0Qo7UpY9HDXyFxB37CXdzVRRzuM%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82f6d9c0ca0248c7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/messenger/latest/web-widget-4852-0345ad6.js
200 OK 142 kB URL GET HTTP/2 static.zdassets.com/web_widget/messenger/latest/web-widget-4852-0345ad6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
File type ASCII text, with very long lines (65307)
Size 142 kB (142415 bytes)
Hash ea51d3eb674c1f286144bbe26ba05c86
290e1d8b1c4d22825f2a275999b8552cf3361529
3e53f18a73c934fe1c7f3c4aa74c209a907f0ac4bd954d1747a4e82207591917
GET /web_widget/messenger/latest/web-widget-4852-0345ad6.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:47 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: /+Qy09rCveMHskIZI+PJKetU3q6Nkqz5jjPjqH/ZfgNUiEx2byBIqEjrFqMpsyKr8rZtjFRl1WU=
x-amz-request-id: JMDS7988V7JWXH58
x-amz-replication-status: COMPLETED
last-modified: Mon, 06 Nov 2023 00:52:49 GMT
etag: W/"ea51d3eb674c1f286144bbe26ba05c86"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 05 Nov 2024 00:52:48 GMT
x-amz-version-id: LLGa90fsv7bQUGdN2N0k5kLPN0aE.36G
cf-cache-status: HIT
age: 414038
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wx6FDvyICpS2u3MZsAk1j5DUNV9LrGJD%2FcZcVxA14KLdTjr8NM1Nn2mT2sfcrIhjIdK%2Ft%2BT7g07O%2BHHo4wGeMlvxNkBhgIKqIE13vaU5pPGgJydu0njb7rdfTzBpOt6Yhq3yIOM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82f6d9b509c80b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/e6d559f4a3575ca37527ee83e5f69b20c5d93cc9-360x648.jpg?q=75&auto=format
200 OK 21 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/e6d559f4a3575ca37527ee83e5f69b20c5d93cc9-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4b5eb8c93e4ce5a10e8d58c57ffce5d8
499bd6cecd2f76f39b4daacc990b902dcd027dfb
c76bf6fc1d8b3e0c3e26ac4e52a70c025cfd02c86a60ce2152ac0dcfd694fa9d
GET /images/w9lc5y04/production/e6d559f4a3575ca37527ee83e5f69b20c5d93cc9-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 21014
x-b3-traceid: 1b39208f1dc294c257850e0722259636
x-b3-parentspanid: 59c33ddbeb7883a8
x-b3-spanid: 6011f067ae7b6900
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 06:08:05 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 834824
last-modified: Mon, 20 Nov 2023 11:22:05 GMT
content-type: image/webp
vary: origin, accept
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D
200 OK 164 kB URL GET HTTP/3 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
Size 164 kB (164110 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/data/query/production/?query=%7B%20%20%20%20%0A%20%20%20%20%27languages%27%3A%20*%5B_type%20%3D%3D%20%22language%22%20%26%26%20%22NO%22%20in%20markets%5B%5D-%3Eid%5D%2C%0A%20%20%20%20%27markets%27%3A%20*%5B_type%20%3D%3D%20%22market%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bid%7D%2C%0A%20%20%20%20%27texts%27%3A%20*%5B_type%20%3D%3D%20%22texts%22%20%26%26%20!(_id%20in%20path(%27drafts.**%27))%5D%7Bkey%2C%22value%22%3Ano%7D%2C%0A%20%20%7D HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=utf-8
date: Sat, 02 Dec 2023 21:26:51 GMT
server-timing: api;dur=978
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 2095
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 33445
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/money-comes-f69b01fb.svg
200 OK 4.5 kB URL GET HTTP/2 www.ibet.com/assets/money-comes-f69b01fb.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4584), with no line terminators
Hash b070eaeecc0e25d1a13c8aa002392425
356e75234a3d206905620e2a769548e8242eeb16
c0becfc39dc4837829b7fe89a4117da899c1156545c7e8bdbd116e142bb0ea22
GET /assets/money-comes-f69b01fb.svg HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 06:41:43 GMT
etag: W/"789ceb0c85dafd8d24f2b66daf6057ba"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: F3k5-cj36JRYl_2QvolOzPciHZUmSfx5xCl5DmJCvCqlAoPGUGjW3g==
age: 55207
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2
200 OK 884 B URL GET HTTP/2 www.google.com/recaptcha/api.js?render=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT
File type ASCII text, with very long lines (884), with no line terminators
Hash 3b171b3bc6278c3c11672cd31d0d7086
c3a88827be5e02a36ebae8f1aef2a7c55bc19471
bbd2b3b0875f93c1d42e7ed6b7da4f77a186b66525ad92fd435d33a5ce9952b6
GET /recaptcha/api.js?render=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Sat, 02 Dec 2023 22:01:46 GMT
date: Sat, 02 Dec 2023 22:01:46 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg
200 OK 3.4 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3425), with no line terminators
Hash 248748a390adc001b3c5c3faddef1850
5b2e2e2a164834db871b8a33c4b3b07264dfe9c0
ce9cae914ff43f8a79a9446c38713c2b78852ec1bce9c3b6c73899a3867231b5
GET /images/w9lc5y04/production/bbf27568b61d4113e6c772dce2e018abda0fcc0c-87x34.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-b3-traceid: 4dbe6715b21ed1bfea1345ab5d466aab
x-b3-parentspanid: 1b23564088027db0
x-b3-spanid: e6dd22297d9d1505
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
content-encoding: br
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
content-length: 1454
date: Thu, 16 Nov 2023 22:22:41 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1381147
last-modified: Wed, 20 Jul 2022 10:00:20 GMT
content-type: image/svg+xml
vary: origin, accept-encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/assets/FooterPartnersView-80850708.js
200 OK 605 B URL GET HTTP/2 www.ibet.com/assets/FooterPartnersView-80850708.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (628), with no line terminators
Hash 739294e1b09f087308941c108a63af4c
bbacb44b6d0aedff0da45a7421faaf3e3d3f6c28
13a1af99476899096ff61d903ece72f778e9883bb18305af4c9c8352a9622bd1
GET /assets/FooterPartnersView-80850708.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 605
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:01:30 GMT
etag: "be887513c52adc20ce776d44c0e562b8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: knxw3OjNRP9VXsXv9bixTscBG1J8_a6yWenITh5Cxo4f4qD3yP-2xA==
age: 55261
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
stootsou.net/pfe/current/universal.min.js?v=3.1.471
200 OK 88 kB URL GET HTTP/2 stootsou.net/pfe/current/universal.min.js?v=3.1.471
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectstootsou.net
Fingerprint7B:74:99:B5:70:60:13:AA:4D:53:BA:14:89:45:5F:F7:58:7C:C9:1C
ValidityTue, 21 Nov 2023 05:14:26 GMT - Mon, 19 Feb 2024 05:14:25 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash d46d2997ab218d1dba1ab614422ed53f
3f1f6b9847c8ad209835db366c62fcb209b83a67
09e8ce2dfeac0ad09cd24788931b38ea7e7592f2c28eecc324b2dd1cd69d1b42
GET /pfe/current/universal.min.js?v=3.1.471 HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
Origin: https://rewardarium.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 17:44:23 GMT
etag: W/"6564d577-1572c"
access-control-allow-origin: https://rewardarium.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/83f3b229f25211e3b8870eb979a8ff86b3360710-360x648.jpg?q=75&auto=format
200 OK 35 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/83f3b229f25211e3b8870eb979a8ff86b3360710-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 55f9ba7eb970c11a3da67532d24db207
2f73f456a1d6b6a62a14c28dbfc34251b4165579
61ba3c7774fa855075f4dbc0e34c8839f97e4e8d6e85220e76ce44fe1a6c5bd2
GET /images/w9lc5y04/production/83f3b229f25211e3b8870eb979a8ff86b3360710-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 34932
x-b3-traceid: 5b8723cfd2333b509f9569ae1df1de22
x-b3-parentspanid: 6dd1ea5ad9754f6a
x-b3-spanid: 4690306755a77ce
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-0
x-varnish-age: 32483
accept-ranges: bytes
via: 1.1 google
date: Thu, 23 Nov 2023 09:50:49 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 19 Apr 2021 09:53:21 GMT
content-type: image/webp
vary: origin, accept
age: 821460
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27regulationLogo%27%5D%20%7C%20order(_createdAt%20asc)%7BlogoName%2C%22image%22%3Alogo.asset-%3Eurl%2C%22url%22%3Aurl.current%7D%20%0A%20%20
200 OK 1.2 kB URL GET HTTP/2 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27regulationLogo%27%5D%20%7C%20order(_createdAt%20asc)%7BlogoName%2C%22image%22%3Alogo.asset-%3Eurl%2C%22url%22%3Aurl.current%7D%20%0A%20%20
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1258), with no line terminators
Hash 5e3f02806db4003534516d2de128f3b6
eb11646721c1e02eac84ea0f6154656cd2fae1b3
efb0c6de1bd917ba43a87870fdec444445d771d43d71d03276af9db84bfa78b4
GET /v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27regulationLogo%27%5D%20%7C%20order(_createdAt%20asc)%7BlogoName%2C%22image%22%3Alogo.asset-%3Eurl%2C%22url%22%3Aurl.current%7D%20%0A%20%20 HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Sat, 02 Dec 2023 21:14:46 GMT
server-timing: api;dur=23
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 2820
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 550
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/messenger/latest/web-widget-locales/messenger/en-us-json-0345ad6.js
200 OK 16 kB URL GET HTTP/2 static.zdassets.com/web_widget/messenger/latest/web-widget-locales/messenger/en-us-json-0345ad6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web_widget/messenger/latest/web-widget-locales/messenger/en-us-json-0345ad6.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:47 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: qZFLuR4kjTOJ4X6pKBpHTui6s7i5iQiwp8gWBhmslcxwoAx9FWXKb9Sc0ZhAo/pqa9sJSapEysNsHH8DC8bD8g==
x-amz-request-id: 5NGF411GQRJVD72J
x-amz-replication-status: COMPLETED
last-modified: Mon, 06 Nov 2023 00:52:51 GMT
etag: W/"2d7a163ff937b4b9ea7ab13e6c8dfadf"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 05 Nov 2024 00:52:50 GMT
x-amz-version-id: SVieg7ebyluTA_U51KpD8k4UW9CnNoR3
cf-cache-status: HIT
age: 745495
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FKTtB3n6SGNX39q4v%2F7C6Y%2Bq3LHUzauncj9aPLGLwwKNPLVQPdgsv9UFMquNT3FhKxM9UNfhEZn5g9LXrCNiSujW1OmY69bxwDNnGjmjs0H0%2Buy1lJcLedrBzn7iLkyXa9JQN40%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82f6d9b509c70b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/e905e2573a77a48c99e5e58886cd31e222f31ebf-474x106.png
200 OK 6.3 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/e905e2573a77a48c99e5e58886cd31e222f31ebf-474x106.png
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 474 x 106, 8-bit/color RGBA, non-interlaced\012- data
Hash 3bef3b68c1c547a1cb7ec6b2dfef9b3d
392d3b682d7ce2286e508f6f6d2b1d6740607420
bcb5b82ace1eb6134ee26d47dbac9a236c8289aac737841144709c639d128c8a
GET /images/w9lc5y04/production/e905e2573a77a48c99e5e58886cd31e222f31ebf-474x106.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 6338
x-b3-traceid: c367c717487fe5813875e79f94a9c121
x-b3-parentspanid: a3d4fd4db0ad638e
x-b3-spanid: a365ae8615b4ddcf
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-7
x-varnish-age: 664
accept-ranges: bytes
via: 1.1 google
date: Sun, 12 Nov 2023 06:35:02 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 09 Feb 2023 13:16:17 GMT
content-type: image/png
vary: origin
age: 1783606
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/deb746cfa80896c61d0fdcfbb43d41f49c0ab7a7-360x648.jpg?q=75&auto=format
200 OK 25 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/deb746cfa80896c61d0fdcfbb43d41f49c0ab7a7-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b0774e382ff23133be83f0f684278a3e
4c97f4831042065e7a0e3f8a23a8ee646a60c1b4
301af9da4b537c5e4b3e28dc415de4bce0d344f937c404b380afa78f769fdfe9
GET /images/w9lc5y04/production/deb746cfa80896c61d0fdcfbb43d41f49c0ab7a7-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 24990
x-b3-traceid: ad40429127f9958ce711405478c26f87
x-b3-parentspanid: 1fe1a275cb431a69
x-b3-spanid: 65e17f97d318562c
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-8
x-varnish-age: 2509
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:56:07 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Tue, 08 Aug 2023 07:31:12 GMT
content-type: image/webp
vary: origin, accept
age: 1436742
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
amunfezanttor.com/event
200 OK 94 B IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 44954fbd0fa38a3dd5187c0fd7bd4b87
2c71854ad0e114459f6dad3940c8372c7fc5be0e
b24847b04fe43c6d140275f49e3d71a24d0ec654caf6c513fdb918858b7c160d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
Content-Type: application/json
Content-Length: 639
Origin: https://rewardarium.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: https://rewardarium.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.ibet.com/assets/transition-fc19594c.js
200 OK 19 kB URL GET HTTP/2 www.ibet.com/assets/transition-fc19594c.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (10338)
Hash 79a5c2211ad9dedb6be4c4e910d4eb90
73adc8d37acde0a1985b1e2e78c8ba3f6a19ffb9
60438a07bb95ca018a9fcb7a9c126ad640aa2353023646994a14927cb70e859f
GET /assets/transition-fc19594c.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:04:45 GMT
etag: W/"79a5c2211ad9dedb6be4c4e910d4eb90"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tRq-37C_0I5BfdkA1Hw-vuCaWmVBsdzLvkFdXO9SZ1ttRUbsUuZAFw==
age: 57495
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/assets/FooterPartnersView-80850708.js
200 OK 605 B URL GET HTTP/2 www.ibet.com/assets/FooterPartnersView-80850708.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (628), with no line terminators
Hash 739294e1b09f087308941c108a63af4c
bbacb44b6d0aedff0da45a7421faaf3e3d3f6c28
13a1af99476899096ff61d903ece72f778e9883bb18305af4c9c8352a9622bd1
GET /assets/FooterPartnersView-80850708.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-bf854176.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 605
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:01:30 GMT
etag: "be887513c52adc20ce776d44c0e562b8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qZBYVPBsK1i3GomcqOE4nmwF5m-ThSclTQBj63_DNv9GcDSVYht5KA==
age: 55261
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png
200 OK 1.0 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash c54b1baea0fee1c28f161b98caca9b6f
73b98cda447fa00944f7922509f1c40435f9a2c3
84ae01ad9032bb57c873dac068aaad998c5b813259b1a0b200cede6061d9044f
GET /images/w9lc5y04/production/0541486e094af64bc1c7d198c09d281b56f78727-64x64.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 1009
x-b3-traceid: a9ed66991155d5fc97503b7b320ac16e
x-b3-parentspanid: a6385024575c39bd
x-b3-spanid: f51deff32771d130
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
xkey: project-w9lc5y04-production
x-varnish-age: 4243
accept-ranges: bytes
via: 1.1 google
strict-transport-security: max-age=63072000; includeSubDomains; preload
vha6-origin: image-varnish-ssd-7
date: Thu, 30 Nov 2023 04:36:15 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 235533
last-modified: Mon, 28 Feb 2022 12:12:47 GMT
content-type: image/png
vary: origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
200 OK 19 kB IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint52:B8:ED:73:BB:55:6F:9C:F8:97:7C:04:34:2B:AD:DB:55:0A:C9:6A
ValidityThu, 05 Oct 2023 17:59:18 GMT - Wed, 03 Jan 2024 17:59:17 GMT
File type ASCII text, with very long lines (18369)
Hash 89e89aea544ea2785d49cc4cd9cf26f6
7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b
86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: application/javascript
last-modified: Thu, 07 Sep 2023 08:19:52 GMT
etag: W/"64f987a8-4a4b"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 5582
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rJjvfr%2BFRdJFz2zhj22D5IFQocHPh9LAcep7TdRInWH%2F9R7vy%2FVqFZfi95vQH%2Bzz8pyFXb9oCeq6o9gZWrB9xXKlPA8eDmAvcHWmBWUUxH1Gp%2B9HwUwBFqIx3KKb8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f6d9ac28f4568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.ibet.com/assets/index-bf854176.js
200 OK 76 kB URL GET HTTP/2 www.ibet.com/assets/index-bf854176.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash dbf7e4f6ebebd8ed12aeba26ab81ec6e
16c1de9a2cf7a06d32e23a5d2ffbe858792efb0d
9f63a812861c29ffe48498ff85930531295b2fbb20196a66278e055fd841cc24
GET /assets/index-bf854176.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 08:57:18 GMT
etag: W/"dbf7e4f6ebebd8ed12aeba26ab81ec6e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ahl9wprfN_o3f-ElbbeGoYVoJ0XK5spVUKkc2yReky2VLXuDOJwulQ==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/f3900eec9c0d90796d9f16c8428ab29cef457771-360x648.jpg?q=75&auto=format
200 OK 14 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/f3900eec9c0d90796d9f16c8428ab29cef457771-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2c25ecb823cb69b57cb9ccd179a20a21
fd0d855db12496a1d46e6c276e013553ed2b8132
da1c542375ad9ff20664cd94f719f5bcc83996e7ba2c42ea8662ce8fd227ad92
GET /images/w9lc5y04/production/f3900eec9c0d90796d9f16c8428ab29cef457771-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 13866
x-b3-traceid: 3b173ffeeda5a722693283a0408a259e
x-b3-parentspanid: 3a131bd5fdfea729
x-b3-spanid: c1a61b37f2243d81
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 22893
accept-ranges: bytes
via: 1.1 google
date: Fri, 24 Nov 2023 16:47:23 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Tue, 01 Feb 2022 14:59:41 GMT
content-type: image/webp
vary: origin, accept
age: 710066
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/index-bf854176.js
200 OK 76 kB URL GET HTTP/2 www.ibet.com/assets/index-bf854176.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash dbf7e4f6ebebd8ed12aeba26ab81ec6e
16c1de9a2cf7a06d32e23a5d2ffbe858792efb0d
9f63a812861c29ffe48498ff85930531295b2fbb20196a66278e055fd841cc24
GET /assets/index-bf854176.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 08:57:18 GMT
etag: W/"dbf7e4f6ebebd8ed12aeba26ab81ec6e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RscdEkgGdiFpz2i1amCLE84HkSYogWDwzJS6K7aExB1757phEz4BYg==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-Regular.ttf
200 OK 97 kB URL GET HTTP/2 www.ibet.com/fonts/OpenSans-Regular.ttf
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Hash 3ed9575dcc488c3e3a5bd66620bdf5a4
babe8dce93a3e48b6c3c79720a0c048e88dd1fe7
037236ed4bf58a85f67074c165d308260fd6be01c86d7df4e79ea16eb273f8c5
GET /fonts/OpenSans-Regular.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/ttf
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 08:57:16 GMT
etag: W/"3ed9575dcc488c3e3a5bd66620bdf5a4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: a60g4izE2FvbKY4Vke5rw-eznKr6McXyNgQcKtRAqfcROh4_lHK1dQ==
age: 55240
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/47d2361c6114c0eaf9df6c55357e7311cf1a7c75-121x32.svg
200 OK 21 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/47d2361c6114c0eaf9df6c55357e7311cf1a7c75-121x32.svg
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (20675), with no line terminators
Hash c2bad36208b2af176c248788eb1d2a52
1877750f2f0300bbd159ed584323eef0d4bee619
2972808786c4e9bb39fa2676fe3e3dfcdc64b38a29c6775bb08a22c7559cbbc7
GET /images/w9lc5y04/production/47d2361c6114c0eaf9df6c55357e7311cf1a7c75-121x32.svg HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-b3-traceid: 1c8a1037becdcbd8c620a18b8836519d
x-b3-parentspanid: 0bb02e4918c95317
x-b3-spanid: 16195f7d0c68132
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
content-encoding: br
vha6-origin: image-varnish-ssd-2
x-varnish-age: 7380
accept-ranges: bytes
content-length: 7477
via: 1.1 google
date: Thu, 16 Nov 2023 21:23:30 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Fri, 21 Apr 2023 11:22:25 GMT
content-type: image/svg+xml
vary: origin, accept-encoding
age: 1384698
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/assets/index-e5fc44ce.css
200 OK 64 B URL GET HTTP/2 www.ibet.com/assets/index-e5fc44ce.css
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash cc693f06262b56dc26e8105559ab21fa
add85633759825f3a42acfcb72e94bc2029ea0e5
f513abd39d9324014685499eb6465dbb46eee524919bdac1e53017a529534c0e
GET /assets/index-e5fc44ce.css HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 64
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 02 Dec 2023 11:07:23 GMT
etag: "778d509cc7840959ba2e8cda2296b305"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 64O8PD71z1nzWbJSYEkCcV90wcyGCm5NLW1BGsNxsIMXPdw7t5xxsQ==
age: 55121
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
record.ibetaffiliates.com/_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5776779
301 Moved Permanently 2.5 kB URL GET HTTP/2 record.ibetaffiliates.com/_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5776779
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerGoogle Trust Services LLC
Subjectrecord.ibetaffiliates.com
Fingerprint20:9C:01:BD:F3:33:41:C8:18:62:F8:9E:85:26:D1:98:D9:33:FB:4A
ValiditySat, 21 Oct 2023 17:41:44 GMT - Fri, 19 Jan 2024 17:41:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_1LOEjeN3o8q22a5QkwDt8GNd7ZgqdRLk/10/?payload=5776779 HTTP/1.1
Host: record.ibetaffiliates.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: text/html; charset=utf-8
location: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
cache-control: private, no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
set-cookie: VID1=KCxTPFctMyxQLVM0YApgCg%3D%3D; expires=Mon, 02-Dec-2024 22:01:45 GMT; Max-Age=31622400; path=/; secure; HttpOnly; SameSite=None
ZBan=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk; expires=Mon, 02-Dec-2024 22:01:45 GMT; Max-Age=31622400; path=/; domain=.ibetaffiliates.com; secure; HttpOnly; SameSite=None
access-control-allow-origin: *
pragma: no-cache
x-powered-by: ZBan
cf-cache-status: BYPASS
vary: Accept-Encoding
server: cloudflare
cf-ray: 82f6d9ac595f569f-OSL
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/48143d56f72bfb3b239af1e9cb1cbaeaebd8e116-232x417.jpg?q=75&auto=format
200 OK 7.8 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/48143d56f72bfb3b239af1e9cb1cbaeaebd8e116-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 96ea069bedc202148bb6472a0fd51c31
d58b25d90fe2cc4f78be3b8b8c9b04f2a4030b14
121b8ec220ae222f0c69fac7114a308d40d381dc92f1631dfd4e12605b6b3345
GET /images/w9lc5y04/production/48143d56f72bfb3b239af1e9cb1cbaeaebd8e116-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 7758
x-b3-traceid: 685523d8374e7608fda87c8808dc991a
x-b3-parentspanid: 04e272b0914f8697
x-b3-spanid: 32c43835b5d224ac
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-7
x-varnish-age: 4424
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:12 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:04:39 GMT
content-type: image/webp
vary: origin, accept
age: 1438657
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/47d514b59e21a38a0bae130bcf69c305cb142825-360x648.jpg?q=75&auto=format
200 OK 28 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/47d514b59e21a38a0bae130bcf69c305cb142825-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b84cef3c76cecd8a7d5d8ed806677ac0
d3f019f5f36d1d1101809564043b56941365fd3d
8d1a782a02e8b7b7607a81a25ad98ba994c6baa3282a337cd27329dc319cceed
GET /images/w9lc5y04/production/47d514b59e21a38a0bae130bcf69c305cb142825-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 27676
x-b3-traceid: 26be4919dde1f33399f3f9f2583a8a77
x-b3-parentspanid: 03946c2baf964b30
x-b3-spanid: fb70bf79f48e8a9e
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-2
x-varnish-age: 4381
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:55 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Thu, 29 Sep 2022 07:09:23 GMT
content-type: image/webp
vary: origin, accept
age: 1438614
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
static.zdassets.com/web_widget/messenger/latest/web-widget-519-0345ad6.js
200 OK 25 kB URL GET HTTP/2 static.zdassets.com/web_widget/messenger/latest/web-widget-519-0345ad6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
File type ASCII text, with very long lines (24781), with no line terminators
Hash 1c9884a2069c7bec6b20dac62004eb1b
78f9c5c20271d0ad2a0af29db9f5846b19b72334
5d0142e7dd8eee7b1776ce44b79a5aa7b292d3a509bae832fb438afb2534bbc7
GET /web_widget/messenger/latest/web-widget-519-0345ad6.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:47 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: tW4oGHXNWcmTGJrP2G7VhjwZAqImn9omdZnC+SKHpwfElnMetRRau0HK+nOmHVPYoxT6NkcBPGY=
x-amz-request-id: B489Y0EH0VREEAT1
x-amz-replication-status: COMPLETED
last-modified: Mon, 06 Nov 2023 00:52:49 GMT
etag: W/"1c9884a2069c7bec6b20dac62004eb1b"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 05 Nov 2024 00:52:48 GMT
x-amz-version-id: c3fTu.1VTXTnJfTpV257t3CmA_E19Whc
cf-cache-status: HIT
age: 743364
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iX2vqgkup7roq5e4OPdApUPS5W%2FbRQ6COsabz7rqkdgb7S6WIm1PjqU5S88uV3JcGd4GO%2FZU3%2FNgmjJYvFhlhNNgJg5UGD%2FpnJEvrRDIXkRpaW4PkEiTKVjl%2FZWu8G4jk2d0pn4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82f6d9b509c90b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-Regular.ttf
200 OK 97 kB URL GET HTTP/2 www.ibet.com/fonts/OpenSans-Regular.ttf
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Hash 3ed9575dcc488c3e3a5bd66620bdf5a4
babe8dce93a3e48b6c3c79720a0c048e88dd1fe7
037236ed4bf58a85f67074c165d308260fd6be01c86d7df4e79ea16eb273f8c5
GET /fonts/OpenSans-Regular.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/ttf
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 08:57:16 GMT
etag: W/"3ed9575dcc488c3e3a5bd66620bdf5a4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1a_FZju47CVuaC7J1cuG3yXeUN5jjBvbq9AAW9ecNcPSqETmf05qEA==
age: 55242
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
mpsnare.iesnare.com/star
101 Switching Protocols 0 B IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerDigiCert Inc
Subjectmpsnare.iesnare.com
Fingerprint76:12:1D:E6:DA:A3:5F:1E:E7:FC:3D:15:6F:B5:5D:0A:2E:F1:A2:D5
ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G65KEDd/ovn6lphTrYbrsg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sat, 02 Dec 2023 22:01:48 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: Hsh0ONVWDYiwFP4d0DZEmeCaKnE=
Upgrade: WebSocket
www.ibet.com/assets/backlistedIP-9ed3b537.js
200 OK 162 kB URL GET HTTP/2 www.ibet.com/assets/backlistedIP-9ed3b537.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 162 kB (161586 bytes)
Hash 8b0c80725daa24516dbd0130f58d6eb1
251382f1ad7f8c5ca5f9760241a888a01dce9b97
83c0d9f657333651deeacfbcf1a749b3ee4d6fd5041a72de511a3ae5b7eb58c3
GET /assets/backlistedIP-9ed3b537.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/assets/index-30e5ec17.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:01:38 GMT
etag: W/"8b0c80725daa24516dbd0130f58d6eb1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZU9Dy8sI4jL4U71ZFe0sqSs6EhnpcOmYQ9AtBUyMBg3XJib2CIpV1w==
age: 55254
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/messenger/latest/web-widget-main-0345ad6.js
200 OK 445 kB URL GET HTTP/2 static.zdassets.com/web_widget/messenger/latest/web-widget-main-0345ad6.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT
Size 445 kB (444989 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web_widget/messenger/latest/web-widget-main-0345ad6.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 02 Dec 2023 22:01:46 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: vBelavEzM+F4Ko+4zGWcfhsix/dqnW0c5dM2hXHExsV321LPz971FRwckA88OeSALRfoF/dRz8w=
x-amz-request-id: 5NG07683BG19B9SP
x-amz-replication-status: COMPLETED
last-modified: Mon, 06 Nov 2023 00:52:49 GMT
etag: W/"9bf48d8c4bfd9e228c1cfc260b39519b"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 05 Nov 2024 00:52:48 GMT
x-amz-version-id: MAWFo55nmJzTCV22.OVVsjgzwIcuk5qx
cf-cache-status: HIT
age: 588909
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BUVyA%2FhTTrMMqVoGXQVlz9h%2Bt33J5PHqdqzD8fTYp8fyPrCzYobjrUnVe8LhU1nw40303NXjhULASMehE5JPQspfRyyuYj9k%2BmsKRQk7GNGEst4agDUY71qva%2BWgKpDWaisphD0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 82f6d9b3a8de0b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
mpsnare.iesnare.com/star
101 Switching Protocols 0 B IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerDigiCert Inc
Subjectmpsnare.iesnare.com
Fingerprint76:12:1D:E6:DA:A3:5F:1E:E7:FC:3D:15:6F:B5:5D:0A:2E:F1:A2:D5
ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ibet.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: j5NxKNHZObLAf4ZXeOnoQQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sat, 02 Dec 2023 22:01:48 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: p3U8pNeuSHYRI5J9ZwfSuO/ARWo=
Upgrade: WebSocket
rewardarium.com/lightning.svg
200 OK 558 B URL GET HTTP/3 rewardarium.com/lightning.svg
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectrewardarium.com
Fingerprint0F:AE:B4:3C:83:1E:9D:AA:A0:4F:56:A9:16:94:9B:AA:EF:3B:61:EA
ValidityTue, 28 Nov 2023 22:57:19 GMT - Mon, 26 Feb 2024 22:57:18 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (603), with no line terminators
Hash 9c0ef0f4019464092e924742904d75ea
33ed4dae960a9bfc33b63882d39e47ec431ec46d
2b810d0b2fb0339bca96276a4646b209804b992d8dbffb6e0d62651e48d97e83
GET /lightning.svg HTTP/1.1
Host: rewardarium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 02 Dec 2023 22:01:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"9cbec3ef22e57179a0901d90b7b6e2fd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3mf2VRnkG0q7dJWZ%2Bj%2FR4yUhLfPttIBQDkcJzDnE0xuDTK9S11hzReXVD3Z8mGV%2BBXmgDzpEZSsuvULNlhWJOLVp2j4Ih3D8KBfFcuI7T5upkUjyRkBnUHw5mhepAoWGDg4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 82f6d9a79c780b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.sanity.io/images/w9lc5y04/production/4f666106b0eefc833c9a500656be9f1365890511-256x90.png
200 OK 2.9 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/4f666106b0eefc833c9a500656be9f1365890511-256x90.png
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 256 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 9823573a804e67abba05de26d2f9078c
3e7748db9a99b4adc19b89bce656e25cac1e27ae
d3c47f8b3616b4817dca9d7df45fb627a43a70cc0230b40c31c7a5a82efe5ddb
GET /images/w9lc5y04/production/4f666106b0eefc833c9a500656be9f1365890511-256x90.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 2948
x-b3-traceid: 821815b46cbc66da8558fb0893afb1f9
x-b3-parentspanid: 1558ff8bc15e4e41
x-b3-spanid: 473c57da850113f7
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 23:08:03 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1378425
last-modified: Thu, 09 Feb 2023 10:09:12 GMT
content-type: image/png
vary: origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ibet.com/js/iovation/loader.js
200 OK 3.7 kB URL GET HTTP/2 www.ibet.com/js/iovation/loader.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (3819), with no line terminators
Hash 04514fc2c68a7c58c8007c0909a45851
bdc61593daa292400e6b83f537469fe1eb2e0fcd
7b8caf2888a8ac42a762bf9089b6389fb4ab8bcea17c91d3023644c8cee8b8f1
GET /js/iovation/loader.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:07:54 GMT
etag: W/"345143e355b88a10dd5e7e47b83f2348"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7r8gEAK4yx5ZgOZMWSiBJMu9JT8TrY5Yiq44w_dpthtzcLUxfBCt2g==
age: 55250
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/4f612c5ca330cd1e053e14e97f673f57d71585ee-232x417.jpg?q=75&auto=format
200 OK 7.6 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/4f612c5ca330cd1e053e14e97f673f57d71585ee-232x417.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c9f26795549bf8af72875fe471fa8fe9
b4ad8101ecb43324eab838a8ee57d83c2893f6fc
74d8793a6b00ac9cf362442f519d523b1e4fd68ce833ae729fef42266ecffb00
GET /images/w9lc5y04/production/4f612c5ca330cd1e053e14e97f673f57d71585ee-232x417.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 7620
x-b3-traceid: 9387fe74c8dc45d2ee9021579d1b4e8d
x-b3-parentspanid: d208ce69fc61aa86
x-b3-spanid: 95fad443132014a1
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
vha6-origin: image-varnish-ssd-7
x-varnish-age: 4424
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 06:24:12 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Wed, 01 Feb 2023 15:02:11 GMT
content-type: image/webp
vary: origin, accept
age: 1438657
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.sanity.io/images/w9lc5y04/production/204f43696505a927f0d8f8d1e89381b2544d018c-292x113.png
200 OK 2.0 kB URL GET HTTP/2 cdn.sanity.io/images/w9lc5y04/production/204f43696505a927f0d8f8d1e89381b2544d018c-292x113.png
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type PNG image data, 292 x 113, 8-bit/color RGBA, non-interlaced\012- data
Hash 521e051f55b449a1735091a2b252d770
ca5f26cebe1843935b67a78c111d013006967b08
bdc51c1ea61698aa15ef423a8438cb2dd9e22f133b10e2c1a71369cf5aef8f7f
GET /images/w9lc5y04/production/204f43696505a927f0d8f8d1e89381b2544d018c-292x113.png HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 1983
x-b3-traceid: 709c206be03cb530c21ebe7a8dd0e1db
x-b3-parentspanid: 071b0772146c8262
x-b3-spanid: 28285119f8fe2897
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Thu, 16 Nov 2023 23:11:25 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
age: 1378223
last-modified: Thu, 09 Feb 2023 10:31:23 GMT
content-type: image/png
vary: origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.sanity.io/images/w9lc5y04/production/4ec1906b9d63a3d8533d7538b67ab1c290609c8f-360x648.jpg?q=75&auto=format
200 OK 21 kB URL GET HTTP/3 cdn.sanity.io/images/w9lc5y04/production/4ec1906b9d63a3d8533d7538b67ab1c290609c8f-360x648.jpg?q=75&auto=format
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.sanity.io
FingerprintFB:EF:74:F7:DD:DD:15:CD:83:CC:0E:50:DC:6F:81:65:7C:A3:1C:46
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x648, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e0fe1d04655c4a293ebd9f01bac7775a
e36f372c82d4b462bc3d371cec29e96d67fa800a
cd56deac03bdec82d88933e4403d6c16168b807445237b060381905525ee96b4
GET /images/w9lc5y04/production/4ec1906b9d63a3d8533d7538b67ab1c290609c8f-360x648.jpg?q=75&auto=format HTTP/1.1
Host: cdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 20578
x-b3-traceid: 2fa6e46f6e8a0e9814aca2483c1f6782
x-b3-parentspanid: a73b172ded18bd4e
x-b3-spanid: 217827f60133ace1
x-b3-sampled: 0
x-sanity-asset-storage: gcs-default
content-security-policy: script-src 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
xkey: project-w9lc5y04-production
x-varnish-age: 0
accept-ranges: bytes
via: 1.1 google
date: Mon, 27 Nov 2023 11:43:05 GMT
cache-control: public, max-age=31536000, s-maxage=2592000
last-modified: Mon, 26 Apr 2021 08:27:33 GMT
content-type: image/webp
vary: origin, accept
age: 469124
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/assets/AppRoutes-8f87b6d0.js
200 OK 15 kB URL GET HTTP/2 www.ibet.com/assets/AppRoutes-8f87b6d0.js
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (15074)
Hash e9efe364c26a34d796ccff1ab357c9fd
30a09f20c8eb8cccb02b59b53589c3f01399abc6
fb64869aa59685d29d36b075c2988d9b54fc9634cb9b6793e69bd6ebac72bf9e
GET /assets/AppRoutes-8f87b6d0.js HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 06:40:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 08:57:18 GMT
etag: W/"e9efe364c26a34d796ccff1ab357c9fd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TL_iVRuQPAr0QzlKskd-O9PGjgvD8bHfepgi1f7sq6ySgcjHKO88gQ==
age: 55260
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
amunfezanttor.com/event
200 OK 0 B IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://rewardarium.com/
Origin: https://rewardarium.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 02 Dec 2023 22:01:45 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://rewardarium.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
200 OK 56 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lez22YkAAAAAN9nQzcmAGTdF-scvWXe7SQRP5t2&co=aHR0cHM6Ly93d3cuaWJldC5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=2o7g163ohbrb
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (56398), with no line terminators
Hash eb4bc511f79f7a1573b45f5775b3a99b
d910fb51ad7316aa54f055079374574698e74b35
7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 02 Dec 2023 11:33:17 GMT
expires: Sun, 01 Dec 2024 11:33:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/css
vary: Accept-Encoding
age: 37710
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
200 OK 2.5 kB URL GET HTTP/2 www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
IP
Requested by https://rewardarium.com/?var=zd_5951427&ar=1&pb=3&ymid=690219906500924331&source=[[partner_id]]&ret=null&acb=proxy&axcusid2=Sweepstakes&axadvid=3599371&axcamid=9357
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2665), with no line terminators
Hash fe7293d1c2a792ad3f94b7af7481f579
bb4f07cbea43216cd5dbe2e4d39c73a2a3e25e7c
6781e61b6251f4a50e980fad58cf50a42399ea496b79602247be3c7c94ab30c5
GET /no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 07:13:09 GMT
etag: W/"0ff7a150dc0f4230cbbced01a82724d7"
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TArbB7xcbOg8Kr98Bx3G2i3Pc8IypysFJ1w_uApYhZXZWVQHvt4S5Q==
age: 55282
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
www.ibet.com/fonts/OpenSans-SemiBold.ttf
200 OK 101 kB URL GET HTTP/2 www.ibet.com/fonts/OpenSans-SemiBold.ttf
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerAmazon
Subjectibet.com
Fingerprint3B:AD:BE:27:EB:34:85:82:2F:7E:9B:BC:BE:33:AE:64:4D:23:C0:85
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type TrueType Font data, 17 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Digitized data copyright \251 2011, Google Corporation.Open Sans SemiBoldRegular1.10;1ASC;OpenSa\012- data
Size 101 kB (100820 bytes)
Hash ba5cde21eeea0d57ab7efefc99596cce
e256f8391718ef61f253dfb4e95bbeb3c5857afc
5e8d9e1a89083cd1b0849993fe2f3acc9aa33b7f439f7e8616872f6897f30684
GET /fonts/OpenSans-SemiBold.ttf HTTP/1.1
Host: www.ibet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/ttf
last-modified: Wed, 29 Nov 2023 06:40:01 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Sat, 02 Dec 2023 11:01:37 GMT
etag: W/"ba5cde21eeea0d57ab7efefc99596cce"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: f_8Kh8Thg8YNZPqidEPhEyBNCUyIJTEq32dhB7b6bpsKIsyQZSj7jQ==
age: 55240
cache-control: public, max-age=63072000
X-Firefox-Spdy: h2
w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27staticPage%27%20%26%26%20pageCategory%20match%20%22contact-us%22%20%26%26%20!(%22NO%22%20in%20excludedMarkets%5B%5D-%3Eid)%5D%20%7C%20order(_createdAt%20asc)%7B...%2C%22onlyShowMarkets%22%3A%20onlyShowMarkets%5B%5D%20-%3E%20id%7D%20%0A%20%20
200 OK 245 B URL GET HTTP/3 w9lc5y04.apicdn.sanity.io/v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27staticPage%27%20%26%26%20pageCategory%20match%20%22contact-us%22%20%26%26%20!(%22NO%22%20in%20excludedMarkets%5B%5D-%3Eid)%5D%20%7C%20order(_createdAt%20asc)%7B...%2C%22onlyShowMarkets%22%3A%20onlyShowMarkets%5B%5D%20-%3E%20id%7D%20%0A%20%20
IP
Requested by https://www.ibet.com/no-NO/?aff=KWjXt-HaBObqDaFLR9HQfGNd7ZgqdRLk
Certificate IssuerSectigo Limited
Subject*.apicdn.sanity.io
FingerprintA5:1C:16:FF:52:AD:72:FC:C8:DD:BF:3A:CC:96:55:F4:B5:CA:F5:49
ValidityTue, 10 Oct 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 1b0f6fab103c2c5f8da39ed0dd199662
9204f603f946671419291b01cefffa22bb0b11fd
7324a33b376c617fb960f5554efc50da9d34185b5abe6a41a1c283e6db8155d1
GET /v1/data/query/production/?query=%0A%20%20%20%20*%5B_type%20%3D%3D%20%27staticPage%27%20%26%26%20pageCategory%20match%20%22contact-us%22%20%26%26%20!(%22NO%22%20in%20excludedMarkets%5B%5D-%3Eid)%5D%20%7C%20order(_createdAt%20asc)%7B...%2C%22onlyShowMarkets%22%3A%20onlyShowMarkets%5B%5D%20-%3E%20id%7D%20%0A%20%20 HTTP/1.1
Host: w9lc5y04.apicdn.sanity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ibet.com
DNT: 1
Connection: keep-alive
Referer: https://www.ibet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=utf-8
date: Sat, 02 Dec 2023 21:59:09 GMT
server-timing: api;dur=9
x-sanity-shard: gcp-eu-w1-01-prod-1046
access-control-allow-origin: https://www.ibet.com
access-control-expose-headers: Content-Type, Content-Length, ETag, X-Sanity-Deprecated, X-Sanity-Warning
access-control-max-age: 600
strict-transport-security: max-age=63072000; includeSubDomains; preload
apicdn-cache-control: public, max-age=60, s-maxage=3600, stale-while-revalidate=60, stale-if-error=7200
content-encoding: br
x-sanity-age: 157
cache-control: public, max-age=60, s-maxage=60, stale-while-revalidate=15, stale-if-error=7200
vary: accept-encoding, origin
accept-ranges: bytes
content-length: 160
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
188.114.96.1
142.250.74.3
3.122.4.58
104.18.193.136
139.45.197.250
37.48.68.71
23.36.79.43
54.195.39.4
2.18.121.79
0.0.0.0