totalsportekplus.com/qatar-vs-ecuador-m95844
172.67.181.235200 OK 12 kB URL HTTP/1.1 totalsportekplus.com/qatar-vs-ecuador-m95844
IP 172.67.181.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (1594)
Hash de0637f7bb3186fa72e75b1b20d5bbac
ed81164afdd149a1c7a5d534093cb196e05b9027
12d2bea75697d29348eb9b6e6c5ebf450849193f9c950a46966cacb3c6931f93
GET /qatar-vs-ecuador-m95844 HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 20 Nov 2022 15:59:33 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private, max-age=14400
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 352
Last-Modified: Sun, 20 Nov 2022 15:53:41 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EAmlEyMsmtezhyOABfy5qLNN9Yqbf0FoZM6g8tleQc1uJ4%2Bsm%2Bhm7i%2Fe5z%2FreWxw968kHz89fJNkqYUVBLVJDP%2BBEv9KzvMUj1MKokSCMRcViw5GVJa7zALAGwi1bQaUlEN6KbrfIA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76d264bcaf14b529-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eb76c0b3adf4098ad8a9d1e38250758f
99610ddb2b4ec6d04250ac244f966951695d4f00
01ed8c191c175471aee23cbc196d558e5bf5209f166806fc97db08eb06544bab
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01ED8C191C175471AEE23CBC196D558E5BF5209F166806FC97DB08EB06544BAB"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17068
Expires: Sun, 20 Nov 2022 20:44:02 GMT
Date: Sun, 20 Nov 2022 15:59:34 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2061bb5a62c7dbe5a39e49a98bf7d214
812ff4923fc0fa69fa7db7c362d5af728e297099
6f0c1ecd37ba47802a386c487e3c2eb1794a06e8b9f56e016326686e3d80ef92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6578
Cache-Control: max-age=159688
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:34 GMT
Etag: "637a01fc-1d7"
Expires: Tue, 22 Nov 2022 12:21:02 GMT
Last-Modified: Sun, 20 Nov 2022 10:31:24 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 20 Nov 2022 15:45:01 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 873
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1cee7787feebac18f9eca273e56e3741
3a7dac544172921e24c2a1701beef5079b21d01b
79ff4a450c749d64e116c00ca3b00d40e968906c5c3881d6eeb2dc6374a4c858
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "79FF4A450C749D64E116C00CA3B00D40E968906C5C3881D6EEB2DC6374A4C858"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4455
Expires: Sun, 20 Nov 2022 17:13:49 GMT
Date: Sun, 20 Nov 2022 15:59:34 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xqR6A9FUgQQym+cI3XuX8Ae0D6B+iDHrNLhS005U5ulCk7vbLGBudECuNaiP4Tg/PlNrJ6fCRNo=
x-amz-request-id: 03H5RJS1XTSTRBM7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 20 Nov 2022 15:38:47 GMT
age: 1247
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c28dcab32cb68e75be2f9d541e417a3c
7e94e4d48e4004090b100451a37752a7ae691550
fe2434a22cb390d054adcb47b67cbc3d1141a753f87839723554dd1bced75e45
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 021e026f19dd0b3c4541e8132ec01fea
cdade4223e3e11830e6773e8b1a99330bc4ce6d6
fed9db65f01daca1c2178bd7794a7e099271dda5d59cf767fe169f41b6088380
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4412
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:34 GMT
Etag: "6379f269-116"
Last-Modified: Sun, 20 Nov 2022 14:46:02 GMT
Server: ECS (amb/6B7E)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 021e026f19dd0b3c4541e8132ec01fea
cdade4223e3e11830e6773e8b1a99330bc4ce6d6
fed9db65f01daca1c2178bd7794a7e099271dda5d59cf767fe169f41b6088380
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4412
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:34 GMT
Last-Modified: Sun, 20 Nov 2022 14:46:02 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 021e026f19dd0b3c4541e8132ec01fea
cdade4223e3e11830e6773e8b1a99330bc4ce6d6
fed9db65f01daca1c2178bd7794a7e099271dda5d59cf767fe169f41b6088380
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4412
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:34 GMT
Last-Modified: Sun, 20 Nov 2022 14:46:02 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c28dcab32cb68e75be2f9d541e417a3c
7e94e4d48e4004090b100451a37752a7ae691550
fe2434a22cb390d054adcb47b67cbc3d1141a753f87839723554dd1bced75e45
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
totalsportekplus.com/images/team/5e695c8a30aaa04985d1d27d69e9018d.png
172.67.181.235200 OK 14 kB URL HTTP/2 totalsportekplus.com/images/team/5e695c8a30aaa04985d1d27d69e9018d.png
IP 172.67.181.235:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 29ff822b523f27aa6c2fc75c83665ee4
699c87c7838ed4deb456f8d7217e251ac2139afa
a508c928f648536484f650f0771f52f8c0911727d93a9b11b2f6e76b8987cd9d
GET /images/team/5e695c8a30aaa04985d1d27d69e9018d.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 13776
last-modified: Sun, 09 Jun 2019 23:03:40 GMT
etag: "5cfd904c-35d0"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pIvg45Vclo0iI3m9ZS0YG8a0K9br0uP%2BO4ON8FBDwPKpkkOu1eqq0DFzEEqNJdnptvhRomErRns%2BnF2gQNXcutKr3mgfa184G%2Fl6homaFYVAjvFl%2Fj7D9MbKzgP7aaBAwbePtll36w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c109110b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/1774.png
172.67.181.235200 OK 23 kB URL HTTP/2 totalsportekplus.com/images/team_logo/1774.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 1ff29bdddf2aa29475e54873994a7d2e
8aa66d98b49fed84ccaf5a3e601c0e6461fef2ce
d719e95156119e21d19926d3b45907d8b295c1b22a89a754585bb39441d4f4b0
GET /images/team_logo/1774.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 22748
last-modified: Tue, 25 Dec 2018 13:38:30 GMT
etag: "5c2232d6-58dc"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kpq99zAKKJwpJ%2BvEy8pnjSJhGm7KMMpusRXdPXFKM55lf9xQkzg0fJkBCbiOkl0wETHszycwHESiV3tmQqYo1AvxWyBWSALSS0dtNCaSuVnXGnFZBhAwfymHOX54hN%2FDdyLzWr75KA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c1090f0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/2011.png
172.67.181.235200 OK 11 kB URL HTTP/2 totalsportekplus.com/images/team_logo/2011.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 8a7e4ac7b74e2188e1144fc486eb43ab
7d6f6c9568598050fe20b83475f776b7c2e075e6
28fda9e961ad7374b5627b0d78b6fef66a73b6b9c7481ce76ee4761c7110d125
GET /images/team_logo/2011.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 10665
last-modified: Tue, 19 Mar 2019 10:51:06 GMT
etag: "5c90c99a-29a9"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B%2FCAAv8w2LWKn61XZ87Ym2naCuGgrLSGyWW4qtvsiqeoCF%2F4JbfWDVyaOvyarjP0owMT%2FiGIZsjiiq3JoYszznR5ldUDP4wd8PmOIo5vn2cq5gDh8cKDXZ9fdJubqL6GX6KkSEMrTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c109160b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/logo-footer.png
172.67.181.235200 OK 24 kB URL HTTP/2 totalsportekplus.com/images/logo-footer.png
IP 172.67.181.235:0
File type PNG image data, 470 x 259, 8-bit/color RGBA, non-interlaced\012- data
Hash 041338250478ea435fcd3933dd9fc539
7f9018650f99944b835eb781f6264684161cb9d8
36825143c2725de47ad02775f7a6ad725c130035c322262dfcea70166e02d1c6
GET /images/logo-footer.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 23964
last-modified: Mon, 02 May 2022 08:40:52 GMT
etag: "626f9914-5d9c"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qQ6HvUGounkUALPZ0XpaB6gWq3vQLicHw8AClgCzvwqogvhTJE7VF%2B7%2F4CgoNn3Yrf5ITmsZKBhJBhPkK8gkhGbM1T%2FHtCs7kdq%2FAK48GOO3uXh2ROjmYLbiLh8llyt4WLTPRb0Ohw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c109140b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/1425.png
172.67.181.235200 OK 19 kB URL HTTP/2 totalsportekplus.com/images/team_logo/1425.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 98ea4623ed0a95953dcf0d813f96e628
54a3f8559c50069d1e4a3d70a5e1acd125eaf2b8
8944ecfde8156ead78c80324dbfd7ece95d2cde58d187b03a14c25f2f33d6c04
GET /images/team_logo/1425.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 18678
last-modified: Tue, 19 Mar 2019 10:51:52 GMT
etag: "5c90c9c8-48f6"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qjAsScrvkol43UgFKxPNk7gNGkkTDni5k%2BiG4Uvj1G7Vyrzz3zgT5UfhLiQynY7nhN9t2vBlrrCh5TYTpqFe%2BDhVnG7JMnGNkAwPifqCMLzyEWcPKXqaw05WBv759mBPruHsP1%2Bj5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c109190b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/logo.png
172.67.181.235200 OK 24 kB URL HTTP/2 totalsportekplus.com/images/logo.png
IP 172.67.181.235:0
File type PNG image data, 470 x 259, 8-bit/color RGBA, non-interlaced\012- data
Hash 041338250478ea435fcd3933dd9fc539
7f9018650f99944b835eb781f6264684161cb9d8
36825143c2725de47ad02775f7a6ad725c130035c322262dfcea70166e02d1c6
GET /images/logo.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 23964
last-modified: Mon, 02 May 2022 08:40:52 GMT
etag: "626f9914-5d9c"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9rnxPSMqD1p%2FwGIkenuW3afLzTennJV5SVf6SQHlKmLGpJmTd286R5W6eESV2UKfkdNslx42odUAf9MC6otLCiKmsWRwRbWGcwJRYJFY0rVb3CDC2H4sX05IBmKa1p8WNuvnMHSQhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c1090e0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/2705.png
172.67.181.235200 OK 23 kB URL HTTP/2 totalsportekplus.com/images/team_logo/2705.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 7b8040a7ef00f8c30760f9a007ad02c2
dd08733fefdf7958b6a1ee45d45c5d6463621425
c4683f7428d2fe35f007ffc2803d86a39d1da0a0fe2a9da78ebcd67faee8cb28
GET /images/team_logo/2705.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 23176
last-modified: Mon, 08 Jul 2019 19:21:26 GMT
etag: "5d2397b6-5a88"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DsyxVcIn5LcoDkh1lPetLQ8kOky%2BQP034AdJpsUdrnx13%2BaB6U1hSsCffskPXtrgHThv8tr9jk1ee0s%2BjGPFW1%2Bnn2Iwilbha8XjyNEWwzWCdYsUs5UA6eqrjcZ95pYGFP7Brv5VSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c1091c0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/530.png
172.67.181.235200 OK 15 kB URL HTTP/2 totalsportekplus.com/images/team_logo/530.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 4b2a4f69fb53177f7f51c3852be8ce79
d29cdbe4c335bf75de4db84af30baaf83b47c9ab
bb67f2f2aa1822cd8cd3b95f295f0f49f13a20d6a9b948ee67c48f2fa78584ac
GET /images/team_logo/530.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 14609
last-modified: Tue, 19 Mar 2019 10:50:32 GMT
etag: "5c90c978-3911"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VoJHmsxwYEk1dU4QZFuKKVWiAW3vKPCdmkvR0M3a2LdEf9xCCrJc8oXqSXgcAdvE7fCR6cjiHFtehpIYiuM4%2BhplJB6zb47ezFv6lDV5137ay0%2F0ck0zjnPNWpXlmoBDZ4ZMsFDuhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c1092a0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team/7f8ca5058e21c9e049faa8d281e4dff9.png
172.67.181.235200 OK 11 kB URL HTTP/2 totalsportekplus.com/images/team/7f8ca5058e21c9e049faa8d281e4dff9.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash d480e4954321503c488cac536f07dbc4
3c4b9ae2da888dde28c5db39ba745eb16dc57a37
8e63394882154ce08b6e3f42629036850df291d7ea8d74fb2ae4c303b3243848
GET /images/team/7f8ca5058e21c9e049faa8d281e4dff9.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 11311
last-modified: Sun, 20 Nov 2022 11:03:45 GMT
etag: "637a0991-2c2f"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n%2BzbpT6H2RBQ8DtuolGDyiRGwgAE8JEdc2RQsyn%2FYaA5RTNJ51%2BhGEqSq7IjqtieHCtZmOgG1RBkRw1f87e%2F1iUlHyyZQuQu0xOuWBDgS%2Fv3ICC5RjAlQjqP6vkeCCQdOhil9FimeA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c109200b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/7073.png
172.67.181.235200 OK 13 kB URL HTTP/2 totalsportekplus.com/images/team_logo/7073.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash b46e8595a3155d4246a99e921fb278bd
68138818ebd192300b63d9aa236bc0e7f1c28e6f
4555bdc735ed0986ac3a4dcf9ce07727320c26eaf7054b6d53ecd1868842d01a
GET /images/team_logo/7073.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 13373
last-modified: Tue, 04 Dec 2018 07:38:14 GMT
etag: "5c062ee6-343d"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B1ZIONgHcBYpDOfDyOaxVypSnrDbkpQVpgRZFdnjt9o%2BcAQZAzc8%2F2XJWhiGQRJQ8fkMZfPO8HYuLY77jj63kBMRkX26jhLhaxxi6zb7enqwKwUvVkMnjOG5Xvk1HH1s%2BlCj6oiZSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c109240b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team/ae287e1851a95fb35eb11091727878a1.png
172.67.181.235200 OK 14 kB URL HTTP/2 totalsportekplus.com/images/team/ae287e1851a95fb35eb11091727878a1.png
IP 172.67.181.235:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 735635ff521ca7acff2584908c14d416
248f7fda850bf514183288ea81adfdaa75c66ab7
00e199205f287ab595374e52ce99c380545dad82d8ffc9096ba3eace90a7d8fd
GET /images/team/ae287e1851a95fb35eb11091727878a1.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 14219
last-modified: Thu, 05 Sep 2019 09:31:16 GMT
etag: "5d70d5e4-378b"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CJKEaG8Gu1lONC04B7178F%2FJbc303PX7v1CGPHbvPwvTO%2Fs0cvPT%2BgyfbQx1yISyF567yi9R%2Frro7phLZisijannYYzWFOwFD09fYrPfA4cLD5PQJsbsN3S3zMJmdLhdXEp%2BIlbuXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c109170b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/2572.png
172.67.181.235200 OK 18 kB URL HTTP/2 totalsportekplus.com/images/team_logo/2572.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 23c033c90503faf10d213b399702c285
b90080bc05c392e8ccf0379e65dded184e91ef38
bca161ffcc46a514018e163839288a752a0be93f1480640cf72af85d4dead710
GET /images/team_logo/2572.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 17582
last-modified: Fri, 02 Aug 2019 20:40:08 GMT
etag: "5d449fa8-44ae"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nhx2V9VdXwMnRkIL8G%2BV8aOZ89hfbualYAwRlNmVc4PVbvSosr9DLCO0DcDqVIKwbzC4EDKYBsiCI01tbvQ0IaM7vIScyNPG0YkQKX95EptiAxqUi6quvDf0suGJPLVWTA3Yko8hGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c1092e0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team/fff3cb10844510f7cb8d9445481dc230.png
172.67.181.235200 OK 16 kB URL HTTP/2 totalsportekplus.com/images/team/fff3cb10844510f7cb8d9445481dc230.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 17363d4e5ec892e392dd14ffa980b844
8978194d87976d62c8a697969a8dc70232396483
33a5a08d293b08b416f2c67ac2b307e624ef3b358e45b41cdf1784ada6be55f9
GET /images/team/fff3cb10844510f7cb8d9445481dc230.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 15481
last-modified: Tue, 08 Nov 2022 08:37:46 GMT
etag: "636a155a-3c79"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7MSkyXiw1WCpUn9naMAvf4Byaqu3fncJO1870i2NM56JnlAa029p%2FD7e67yCugy2Y2uJ93z6yTiJ5b%2BgyQiLwwb0p15A3x5Rk4uU%2FWKCCfxfh6yWtRKkosKxsBm7DCE7u3PcajxoKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c109250b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/912.png
172.67.181.235200 OK 14 kB URL HTTP/2 totalsportekplus.com/images/team_logo/912.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 9c0046efc89f1a6e2111937f0a085252
e5afdfcf70803ca21890c0f78065ab2608bfef46
84b3457e0d1ce838d3b8d4baafca953978ce2d00a5ae286fd3e1cd36767a5f8b
GET /images/team_logo/912.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 13747
last-modified: Tue, 18 Dec 2018 12:20:54 GMT
etag: "5c18e626-35b3"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HD6GNrrLDcKDED18BFj3Wbr6DYMeplBQUCnQY5ErkpG9a0KOs1B6qzlhVy%2BLI7b3zWrv1Mudpuc2M9u5jO9D5tQ7EXsc3KcHTMKTe3mWeEstoiYrR3PMO2PkpuLYL71x3eyd2Npsbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c109220b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/2707.png
172.67.181.235200 OK 24 kB URL HTTP/2 totalsportekplus.com/images/team_logo/2707.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a9889a210b11d26917495a52c558d3d
8c39e1945f15c6db2c6f237e04041a112956edd9
5eb84d5dbbfbd33d3c12a83c0f60a4adc4159278a01eddaa039170568051a43c
GET /images/team_logo/2707.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 23834
last-modified: Wed, 26 Aug 2020 22:40:02 GMT
etag: "5f46e4c2-5d1a"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bEqcwPAr6D6QTqM5sQTxrC8yZF0nmIjS67u8kFi2QM3C1VAU2LSQ59ZmtRgWCxYSBKyPKc1KTcizlFZSWj%2F1KnkZpWUFCbhAiG8H%2BOVb%2FoIInTNcl33r5p%2FX4ryH63LsVIrF8bPxig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c1091d0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/2042.png
172.67.181.235200 OK 9.4 kB URL HTTP/2 totalsportekplus.com/images/team_logo/2042.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 4bb9c9d341c3197e840e3e51ed38209e
376a6aa1432418c1b799eca3453c657b89b8f2d8
e08f5e1d83b535e2f70a201ee771d79b0949cf0844feae69732e0dcd43bd1f0a
GET /images/team_logo/2042.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 9440
last-modified: Mon, 03 Dec 2018 02:56:40 GMT
etag: "5c049b68-24e0"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rv%2FwAxjHnb3UyzB6IfzqTpSrSRvjWSmP8bx8q9RPNwfiz40MvSd3ygE4LVcFnhbPG7vFRCgSnNmneYZkA8pxvzJmdzL%2FWnNKU%2BfP%2BKUGa3mFm1IKNm8QlXQ79eqLPqIGt3Lz8wun%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c119320b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team/cac43ee843e9be81e1952c5c83758806.png
172.67.181.235200 OK 10 kB URL HTTP/2 totalsportekplus.com/images/team/cac43ee843e9be81e1952c5c83758806.png
IP 172.67.181.235:0
File type PNG image data, 250 x 250, 8-bit colormap, non-interlaced\012- data
Hash 4f011dd390e26b50a5ccb2acb381eeea
a3c7b82cd945ebb33e6bf68e93b05579835191d1
3f89c025d5a822924137f46a317557a7f4248b6a9ee3bc7a9e06b95b40ba385c
GET /images/team/cac43ee843e9be81e1952c5c83758806.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 10134
last-modified: Tue, 06 Aug 2019 22:10:56 GMT
etag: "5d49faf0-2796"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8qUEPJBz2hNPfAcvRaUUsuvFgLPSnb85ctZ3BouALQrFTvCwaVdNx0k26xeP8GackpbPuVnop5GX%2F9fTTyK5K1TQKMhfA1zMeeKWMtylLim78zF9GDlUdE7yMNPLURRM7z52%2Bh%2BRiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c109290b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/11986.png
172.67.181.235200 OK 8.3 kB URL HTTP/2 totalsportekplus.com/images/team_logo/11986.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit colormap, non-interlaced\012- data
Hash 834341ef9ec959739882284ee84058a0
5969bf482d7865da883006350a9aff5a62421617
46e8508f226b222640d86f11c24a3117d53ed6c4044c85449800515fd8ed095a
GET /images/team_logo/11986.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 8316
last-modified: Wed, 14 Apr 2021 21:40:02 GMT
etag: "60776132-207c"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IBbKTGR1IRn%2FrH5EMt%2FpRBPwYt2oCUOKEqdxrqrX%2B46mIs2ggxznhagUZlqrtOohUBxLHtyDVulN5px3%2FlCWyKf7SrVphmrcwWSaXHhP2c048X4c4bug5%2B2bR4MmXfMfTMg6pYKUHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c109260b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/1712.png
172.67.181.235200 OK 12 kB URL HTTP/2 totalsportekplus.com/images/team_logo/1712.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash c6c295d68facdb37f3e139f2ac9d6b9a
97aea01e805197533aa7fd80dcbc3f50ae40f71f
57df6eea13df9c893da23b4174909547a7f7d4555201a3cf4200e02565e8e364
GET /images/team_logo/1712.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 11482
last-modified: Fri, 02 Aug 2019 20:40:22 GMT
etag: "5d449fb6-2cda"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ThYWc%2BMlIFYHVgy3zlgHkrdsiZmAXG75YRxJA8lOuMWMzkc3EHWm7FFY5vUrFh7RqLIH803%2BLemG9CaK0CwQbVgk2sx3BinV0o5OsZkEhMZp0YySIPzv7pTn6haErN8Tuyj2BaTS0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c1092d0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/884.png
172.67.181.235200 OK 13 kB URL HTTP/2 totalsportekplus.com/images/team_logo/884.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 184879763d22e4b143a30263ddb48ae6
5bdc697ac488c004e586f1fa430f6041f5c214dc
354c7ad368a99b59e813f43035079c19138b4792f0bfff31b08f8271bd198da0
GET /images/team_logo/884.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 12798
last-modified: Sun, 25 Jul 2021 16:00:04 GMT
etag: "60fd8a84-31fe"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E%2B18RTG0cLJwSWSfw9oLxND51rBhvcMAunmFcP8mlDmxfpqVlfLT8esO2c9rX3d8krcTufegTFACyHFYh8XIdrljiwDLGWeB2Z9mCPg3ULnGkbRKW4Do%2Bp81DVkNhQk6jLWziRu%2Beg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c109210b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team/c38b3e41d96efa0d87c3db5da3748511.png
172.67.181.235200 OK 8.1 kB URL HTTP/2 totalsportekplus.com/images/team/c38b3e41d96efa0d87c3db5da3748511.png
IP 172.67.181.235:0
File type PNG image data, 250 x 250, 8-bit colormap, non-interlaced\012- data
Hash 8050ecc5ee6cdc7dbd479816bec1a3d3
57e13f1fc458e2af58626824e0c3a8644c7772fa
ff7c0567e1f4e5ca04315164307413b3daef6d0e94561c6cc8219c29dcf5ee72
GET /images/team/c38b3e41d96efa0d87c3db5da3748511.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 8114
last-modified: Tue, 06 Aug 2019 22:11:38 GMT
etag: "5d49fb1a-1fb2"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yjKH6lwa1CxMZNBjZRnQA541cpfGL5MC%2F8wPk0iR7KbYDiLq%2FEHN3GFo8zZZxH1Erkcnvx2ZkZTpPmLI5gp6jcn6earcNYdJqFqP%2BPJFFmz0slzp7YePzAho1mNgbPlCADd8RMd0%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c119350b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/2029.png
172.67.181.235200 OK 20 kB URL HTTP/2 totalsportekplus.com/images/team_logo/2029.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash cd7c90ef436f887b92c6f1acefdbfa5d
5244d51b68c2fcc568f53d4f2753cf249c7ff36b
380162e467990b377645a961e4cbae2feb836ea92c63b887619c8ec0dfca468b
GET /images/team_logo/2029.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 19464
last-modified: Tue, 04 Dec 2018 07:38:24 GMT
etag: "5c062ef0-4c08"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lxb9eRcYkqKEmwNoG0gO2GVwAlK9DNxajj0wEcbNwhhUfk6IHFpsO%2BTgKvJHt6CBHKXbjG0qcraVB2epvQQiG8Wd%2FupfiicwXbSSf%2FLyLbdCKRCaU6Zjpex1tDcq%2BdG7B4adKAsB4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c119300b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/1679.png
172.67.181.235200 OK 24 kB URL HTTP/2 totalsportekplus.com/images/team_logo/1679.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 6591b3f767a5641ba6435e724ec15cff
67afdc2300a0cecb73ee8d7bedc08674982d47e3
703f1f5526ecf720c9feeffccce7a00811b698250256d40196f726b22d170af7
GET /images/team_logo/1679.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 23508
last-modified: Sun, 09 Dec 2018 17:59:14 GMT
etag: "5c0d57f2-5bd4"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w%2F%2FZegdYx5nuS4dUvEK9NJ60YFcH04Er%2FHTKrvlHUBj0xFLAFJj23dlNLrpOGeYK5kROKUfEtISmJC7ngP667GOD2dJnEHuJJ%2BkMqvYprkDgEhbBNspKC63exAkYOLGbBaTMQnf75Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c119380b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/51386.png
172.67.181.235200 OK 9.8 kB URL HTTP/2 totalsportekplus.com/images/team_logo/51386.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 2ca0ac1babafec405b0719413e1f8c63
10202544d6dbae6ccc6914b82f3563a44fe475b4
9f8004a0b4a645c2061f82ebf7ede6520830c071eb2ca9a37fa3f150d53bef11
GET /images/team_logo/51386.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 9817
last-modified: Mon, 14 Dec 2020 15:00:02 GMT
etag: "5fd77df2-2659"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=otLxqYElHreLj3NlbXsX89Owz4akRPikPJ8En3NkIftrWEfW%2BhizQJXBMxLwFWCUr0AaWupab0kVsJH1Z4sqcRb5ZgBuMgxiE8YReeYwDHTgVszv45P5gP%2BsViPI%2FKWgxDnszNjteQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c119360b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/1506.png
172.67.181.235200 OK 8.9 kB URL HTTP/2 totalsportekplus.com/images/team_logo/1506.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit colormap, non-interlaced\012- data
Hash b06acca91c98b4980dcdbb1aba546467
27b5d8b4d097d1dea788b99973b59ead815eabe9
a90129b276cf95f798c580baac0bee79b338567e39eadabbb52c6c1108b3ec4c
GET /images/team_logo/1506.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 8923
last-modified: Tue, 19 Mar 2019 10:51:58 GMT
etag: "5c90c9ce-22db"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QrXdyYrq65OJDBK6d3baiUCEHjHEaGrV1h4fQ4Rd3beS9lKeZSJbKaMFf%2BLXCZczTN4i2eEOwoE6yizgG2TP7QbiiazsK6OQjd5WcuQNHMKxagJTL67zAukDtxZi0M1C2QaOxxJVig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c119340b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/2081.png
172.67.181.235200 OK 18 kB URL HTTP/2 totalsportekplus.com/images/team_logo/2081.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 5db46e756482f4b6bab64572775454c1
84514bdf98f19f5c22a0f6457205602d70bfd375
4c21e740443bd264d498e8729c43b6ff7d55f916299173d1c49decd67a869454
GET /images/team_logo/2081.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 18106
last-modified: Tue, 05 Jan 2021 11:40:02 GMT
etag: "5ff45012-46ba"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LyOr3eM%2FF3KnEvYrV32G7%2FN%2F1%2FI4ASkgf%2BBDEoTOnt3gfkJrzLFeJ1134GCiXC89UB%2FZcw%2B7P%2FXAMaoN3ofOyr00u19HiRitKKY07%2FzlvIJ6kqUEC2BVQaUbgqSD5Q3mKVWL4LGt5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c119310b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/31405.png
172.67.181.235200 OK 4.6 kB URL HTTP/2 totalsportekplus.com/images/team_logo/31405.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 325887ab1c601e77128dbafd6bf877d4
5ec8d0b26a2a7db88a72f50486baaba01457e5c7
93d222814b269506e38a7ccef2c569e416dd8cf4e7e287e19242f27f6c888b1b
GET /images/team_logo/31405.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 4636
last-modified: Wed, 12 Dec 2018 12:20:30 GMT
etag: "5c10fd0e-121c"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kC99kzVPhjQwOwOI5nZZGDCwXocsViP6%2BlBL3%2FI0%2BRz7h4Q04GyEjjsKcX8h0dGQCFOtBArTjGv0vBd9XZIhPOpwB%2Bj4rc%2BIFppkkXxzvyUc1o1CV%2B%2F3ZUWI%2BXrbZ8rblUeETlkVIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c1091e0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116423 bytes)
Hash d5b9b7a3accd3b7b7de639c072ae3ee2
9583b5c046d78af5c6379d844219f828aa2222d0
648dad6716bb917c7d981e7772fca499d9583717fd83ffef47b0534cb9132b60
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-type: application/javascript
content-encoding: gzip
content-length: 116423
date: Sun, 20 Nov 2022 15:59:34 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
totalsportekplus.com/images/team/9591dd8243b1abe43c33e96afccbf9ad.png
172.67.181.235200 OK 9.1 kB URL HTTP/2 totalsportekplus.com/images/team/9591dd8243b1abe43c33e96afccbf9ad.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 9135156969ae4ed7feadef2eb2bf61e4
34cdd46065ac578af8515c8c81ed07650c7b8f70
56f202b0e4eb4cea32205691a8340504f33aff42592a04320d2e2439d2ba5ff7
GET /images/team/9591dd8243b1abe43c33e96afccbf9ad.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 9140
last-modified: Sun, 20 Nov 2022 11:04:31 GMT
etag: "637a09bf-23b4"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7B9IWV48qSJNYmR4p8M3hkfHdUP8CDG11nFFEK%2BC3PtrIB3bjGmk0sCPOUdUNrz%2FxLKBj8lsa2lAzObHk5GWa4NGcXUDGtlkewayz8dksQz1r15wLgS8SzIs4lsLHvjx4eQtC11XlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c1091f0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/382.png
172.67.181.235200 OK 35 kB URL HTTP/2 totalsportekplus.com/images/team_logo/382.png
IP 172.67.181.235:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 542052f914eeecede8b82a3fa66e7823
aa9a0203b0586250282fcd2f48717f462aae6863
92644569c5deb9415c96fbb01fdef9ff8e2ee80db950691c57212529e255b30f
GET /images/team_logo/382.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 35130
last-modified: Tue, 19 Mar 2019 10:51:32 GMT
etag: "5c90c9b4-893a"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IUXAiDec2L9FpnaeQeQXRVbcu5LeG%2FbE6%2BHIz3HBmolIwPabHZRTg29yYXD2c0F%2F4DOwLfzdauqWclVmLgG%2BcBlaulz7UnYZG%2FXxVLgSKlqj24PcLYBH%2F2fqk0mRjEw3nQIGdh4uaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c1091b0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/matches/0ec196783aac4db36d6b98f53cbe293d.jpg
172.67.181.235200 OK 53 kB URL HTTP/2 totalsportekplus.com/images/matches/0ec196783aac4db36d6b98f53cbe293d.jpg
IP 172.67.181.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1303x442, components 3\012- data
Hash 91ce1b7811b79e560e0a7dbf5548dc65
229af7e7e6dd7e8983f2203eaa505224edfbc5e9
0b66efe32c771f141752a819dac7e96f27e0b23b3a19f21275a3bf5aeed82837
GET /images/matches/0ec196783aac4db36d6b98f53cbe293d.jpg HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/jpeg
content-length: 53066
last-modified: Sun, 20 Nov 2022 01:52:06 GMT
etag: "63798846-cf4a"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T18OVJM6HXfq%2F56kry6TaxC%2BljazvFis3JgQprinnWQ%2B5B8XiFiSs2vLqN5GJHePH9zM183X4Hij8Ca%2FB6Sqq3p1Q4wlH8wPwdOo%2FIqOF2ECT7nZbjc2S%2FQ%2BXfrSR9U0kpFYJe4Y2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c119390b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/matches/fc800a2d17248edf5c64eefafcbe1d85.png
172.67.181.235200 OK 50 kB URL HTTP/2 totalsportekplus.com/images/matches/fc800a2d17248edf5c64eefafcbe1d85.png
IP 172.67.181.235:0
File type PNG image data, 883 x 361, 8-bit/color RGBA, non-interlaced\012- data
Hash cad5a7d9d053c9362bb292ab868bb254
2f176539bf24466a47cf49eab04837a1ca16448b
fb8fcf8f41e58d506279d4c14152d4c90f9b0c6eb97f90f8da8b14f728314de2
GET /images/matches/fc800a2d17248edf5c64eefafcbe1d85.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 49956
last-modified: Fri, 18 Nov 2022 07:20:52 GMT
etag: "63773254-c324"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6EN1j1rW04Yx10yF6bwznded1Bs0YFD5oOyJ4CyAIb6MPcqgZUlumWrhRSBt63334yV2EGNz5MLYOYRPGnGFs5oFBp5WRbhz5MWKmW8j2j%2BO8co30eZUpxpZjHbJqbW8gl0JdFzJBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c1193c0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/matches/aa985c15033ae3e330007eca39d47f85.jpg
172.67.181.235200 OK 41 kB URL HTTP/2 totalsportekplus.com/images/matches/aa985c15033ae3e330007eca39d47f85.jpg
IP 172.67.181.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 488x505, components 3\012- data
Hash ae4963dbcc3a41daa8ea6cef381f968e
bf4a4ee07b7fd74c3aec98a8e79dd328f3d08caf
e6176ec9c94c26c92eff360e4cfb0a7bd90a3d688cf1f9090bae358c3f234ba3
GET /images/matches/aa985c15033ae3e330007eca39d47f85.jpg HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/jpeg
content-length: 41438
last-modified: Sun, 20 Nov 2022 11:10:57 GMT
etag: "637a0b41-a1de"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OScNpXcFFahFnf5YJtdcUTYtaiBzJFUfCwuU4MfNlt6BcLdgekY1QZqphZQ7QKTszVfxX6%2B%2FVpEJxl6bvO67zP9EHRp%2BnXS9ozCgXPK2ZNgx11RTKDyxJ0mnwElhqHAiwCMFALDQpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c119440b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/matches/2ca40a1ddd4df2348b26b5c7822c29d6.png
172.67.181.235200 OK 50 kB URL HTTP/2 totalsportekplus.com/images/matches/2ca40a1ddd4df2348b26b5c7822c29d6.png
IP 172.67.181.235:0
File type PNG image data, 883 x 361, 8-bit/color RGBA, non-interlaced\012- data
Hash cad5a7d9d053c9362bb292ab868bb254
2f176539bf24466a47cf49eab04837a1ca16448b
fb8fcf8f41e58d506279d4c14152d4c90f9b0c6eb97f90f8da8b14f728314de2
GET /images/matches/2ca40a1ddd4df2348b26b5c7822c29d6.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 49956
last-modified: Fri, 18 Nov 2022 07:20:54 GMT
etag: "63773256-c324"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZrfaSfhjc%2FCiVA7U51vQwm79b%2BeHwJxGnO%2FB%2F9rZlB%2BOTTbdpuZP7mhqN7xs9u2Y9TLP4L1z2D5nuuw9gizBul2B%2FybGXFLh9VdB2a%2F%2F6Q1eAyK%2B1ySeJagtvZl4VoXHLbXqhkjXQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c1193d0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/matches/319da7fd15dcc5c62fb5240191bda5d2.png
172.67.181.235200 OK 43 kB URL HTTP/2 totalsportekplus.com/images/matches/319da7fd15dcc5c62fb5240191bda5d2.png
IP 172.67.181.235:0
File type PNG image data, 504 x 238, 8-bit/color RGBA, non-interlaced\012- data
Hash 01f3fb4c0fc36fa3b94018dce7ce1449
9d406ce1117d979934874792eb54679eb9a12939
8bc2aa878e645010be2aa101b39711e2717d5b0575df03620817325c0b495daf
GET /images/matches/319da7fd15dcc5c62fb5240191bda5d2.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 43332
last-modified: Sun, 23 Oct 2022 16:44:11 GMT
etag: "63556f5b-a944"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hlhjE%2Bk1bVCvSdrCX7xWGgxs%2B8PygnWXvLdh9hfMqR%2BbR7yeJKvIgnoMwS0qPGywnj6bPBHa3cCG%2FNG32K2vl9Cyye49yiNzzxdF%2FVpyaUAOTWNq1OIZkj5zvkU5Ycdp8diFfT5ZCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c119450b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a16fd70048d81d63ac778964066b5fd5
8678fd9c7ef3f0b3a286e170e87bf59773f41881
fa9dd59489cb48e8509ce8297c3491823e446cdcde0f7393cd621b2abd0702dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 021e026f19dd0b3c4541e8132ec01fea
cdade4223e3e11830e6773e8b1a99330bc4ce6d6
fed9db65f01daca1c2178bd7794a7e099271dda5d59cf767fe169f41b6088380
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2810
Cache-Control: max-age=151932
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:34 GMT
Etag: "6379f269-116"
Expires: Tue, 22 Nov 2022 10:11:46 GMT
Last-Modified: Sun, 20 Nov 2022 09:24:57 GMT
Server: ECS (amb/6B93)
X-Cache: HIT
Content-Length: 278
content.jwplatform.com/libraries/xHr66zlD.js
143.204.55.98200 OK 46 kB URL HTTP/2 content.jwplatform.com/libraries/xHr66zlD.js
IP 143.204.55.98:0
File type Unicode text, UTF-8 text, with very long lines (65143)
Hash 08d2429694b49e903c0848e0ccd60c55
296f0b62d3559289f0ef0f33ebcfaafc8b85afb5
f513b599da9e9dfe7aebb1e9a443b212ae153e2cc61414e66cdba2b063ab5bbc
GET /libraries/xHr66zlD.js HTTP/1.1
Host: content.jwplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 45990
access-control-allow-origin: *
cache-control: max-age=180
content-encoding: gzip
date: Sun, 20 Nov 2022 15:58:40 GMT
server: openresty
x-robots-tag: noindex, indexifembedded
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 08ATJsonu2AY8Sq6VAvnZ8DLXv1zWHkmQZDHuGBf1n8p9HXbl78Efw==
age: 54
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c28dcab32cb68e75be2f9d541e417a3c
7e94e4d48e4004090b100451a37752a7ae691550
fe2434a22cb390d054adcb47b67cbc3d1141a753f87839723554dd1bced75e45
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
totalsportekplus.com/images/matches/6a8ed1fc5678366bc7bd6bbbb5a07964.png
172.67.181.235200 OK 105 kB URL HTTP/2 totalsportekplus.com/images/matches/6a8ed1fc5678366bc7bd6bbbb5a07964.png
IP 172.67.181.235:0
File type PNG image data, 584 x 261, 8-bit/color RGBA, non-interlaced\012- data
Size 105 kB (104720 bytes)
Hash a78239edf922e0700ffb0afc351261bb
1ff40d315b39e48ed76b9682f60ec6ebb2875bd5
6c0ea3fba754269ec9b597d4eab699496a6a6d99fd538e76d6427355fdb61aa4
GET /images/matches/6a8ed1fc5678366bc7bd6bbbb5a07964.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 104720
last-modified: Fri, 18 Nov 2022 07:20:50 GMT
etag: "63773252-19910"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z4%2FVcIXAVRUTjFqeFkW6sUS6m2tym9G%2FS2iN4a99Y0Ta4yMgEsZGbnSxwFHXVHFk06Un9bMntf7j0ZBFVeyZmRf5MtH%2Fltybqhl2Q0mDgAIbm8jFBjMB9qI1MHUyIgJ3dafQgSkb6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c1193b0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/matches/d3f8cdc1599bdee76e26ff9a96a389c3.png
172.67.181.235200 OK 274 kB URL HTTP/2 totalsportekplus.com/images/matches/d3f8cdc1599bdee76e26ff9a96a389c3.png
IP 172.67.181.235:0
File type PNG image data, 1301 x 441, 8-bit/color RGBA, non-interlaced\012- data
Size 274 kB (274150 bytes)
Hash 6150db62a16c357635ed0a6e39b2997f
2d2fb0d1dcfdde7aa4edfd73a248660ba9a50e0d
9c70a3db17fcbd9647163fabe3e652cc0d88e63198a8fc99369b3f0750c55cdf
GET /images/matches/d3f8cdc1599bdee76e26ff9a96a389c3.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 274150
last-modified: Sun, 20 Nov 2022 11:00:33 GMT
etag: "637a08d1-42ee6"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s8LvoK0qP2fvhXJ2I9YWtVByKnutKyAXLZBwrZTha5neP4SezOJa%2BwI3m3ngXbAPXCSvk7RIy%2BBwXlWG70qiYDObPr1OzXHoBQKqMmQCF9uO5piyGwcSsCPNxkzqLc5T8Dz6mc2pVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c119400b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/matches/5e37f58c272a61bf4deb005b32a25a04.png
172.67.181.235200 OK 274 kB URL HTTP/2 totalsportekplus.com/images/matches/5e37f58c272a61bf4deb005b32a25a04.png
IP 172.67.181.235:0
File type PNG image data, 1301 x 441, 8-bit/color RGBA, non-interlaced\012- data
Size 274 kB (274150 bytes)
Hash 6150db62a16c357635ed0a6e39b2997f
2d2fb0d1dcfdde7aa4edfd73a248660ba9a50e0d
9c70a3db17fcbd9647163fabe3e652cc0d88e63198a8fc99369b3f0750c55cdf
GET /images/matches/5e37f58c272a61bf4deb005b32a25a04.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 274150
last-modified: Sun, 20 Nov 2022 11:00:35 GMT
etag: "637a08d3-42ee6"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tkouhhGWqwKGbKEt7NhOBnNmN%2F9rL7Tu4BPtcKws5Xh9VWNIoPC5uEDK5DVMpzyRodMEbyXMD6Kkadm8SZvtQCes8Jm6X6lxZHwHlJmUw6ICcC%2Brx1hBI%2FRBNLzFeB0OJfCwd2b4dw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c1193f0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/lodash.js/2.4.1/lodash.min.js
104.17.25.14200 OK 9.2 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/lodash.js/2.4.1/lodash.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (1067)
Hash 65f41f727e775552aae473ed9e7ab327
9cefa20586057aa93898e188caed90fd4c610d22
4499b8ec99af4d837c0e8e7c0205e722dac5d73b518608503259a70de926c491
GET /ajax/libs/lodash.js/2.4.1/lodash.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 9231
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed2-6df7"
last-modified: Mon, 04 May 2020 16:12:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3961598
expires: Fri, 10 Nov 2023 15:59:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eILbZb4lgWvp4YP6n%2BgzIDTlV4jhY2EiTErhSlHTrQirtJIv0sy9e00AH9OqI7DjiqvBGDvnZuIT3oDDdzm0hKezQOZoKdKqAYdJKo70DKEsJsC6Dct%2BuFVS7gWLNp7OBzrytxRf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76d264c1ea56b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 021e026f19dd0b3c4541e8132ec01fea
cdade4223e3e11830e6773e8b1a99330bc4ce6d6
fed9db65f01daca1c2178bd7794a7e099271dda5d59cf767fe169f41b6088380
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4412
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:34 GMT
Last-Modified: Sun, 20 Nov 2022 14:46:02 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278
www.googletagmanager.com/gtag/js?id=G-DL0F1V1LZV
142.250.74.168200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-DL0F1V1LZV
IP 142.250.74.168:0
File type ASCII text, with very long lines (21484)
Hash 4413e6b209166e4aa37801036412604c
5ad40fbdbedc28a9a3e995d191dba4d4be63dd04
1e62ce93eefca5ab7b35fffa250451154e30490c6a19944007a26b71e5cf7dc8
GET /gtag/js?id=G-DL0F1V1LZV HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 20 Nov 2022 15:59:34 GMT
expires: Sun, 20 Nov 2022 15:59:34 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76588
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a16fd70048d81d63ac778964066b5fd5
8678fd9c7ef3f0b3a286e170e87bf59773f41881
fa9dd59489cb48e8509ce8297c3491823e446cdcde0f7393cd621b2abd0702dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7736076079b2e3a36ed23ab8808cc43c
5bf9795d04db3493300868b75ce48788bde6da1f
62143f6e50287fb51c013420eceac7fedb1e801bac0d403fbeb9a16f61bf5a0c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62143F6E50287FB51C013420ECEAC7FEDB1E801BAC0D403FBEB9A16F61BF5A0C"
Last-Modified: Fri, 18 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8245
Expires: Sun, 20 Nov 2022 18:16:59 GMT
Date: Sun, 20 Nov 2022 15:59:34 GMT
Connection: keep-alive
totalsportekplus.com/css/components.css
172.67.181.235200 OK 64 kB URL HTTP/2 totalsportekplus.com/css/components.css
IP 172.67.181.235:0
Hash e2eee7fa7f160d3390697b6872e4dede
1ff00730964381a0c06d2bc3034c16740dbb0fb9
6e6ed71b745524731bb386f22874a133a41761105a9f927cda1c79c0d334167d
GET /css/components.css HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: text/css
last-modified: Mon, 09 Jul 2018 18:25:42 GMT
vary: Accept-Encoding
etag: W/"5b43a8a6-739db"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 366
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sBNqggbmZ5IR8YHVcvtleF%2FKPK4XGXxtjQ9qKKVwYgXZ4NoPVUJ4Pvof1422zVXg%2F53M5oeI1Dhib03v5TsI8PpDfI6hdT9UpbZChxs%2Bb%2F9DD5QLguw5q%2F8102tjp75A%2FY7u3EXutw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c24ab10b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15528, version 1.0\012- data
Hash 595fe3fc0b85f3cc9ef5aed2d519abc5
96e76de44987e9dec2f97f1e5eb7a18c738daf5d
747d5a0865fe76129cc17fe70097fd5b1db733ed3bbfa0210a8505d80c14ab5a
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 22:59:17 GMT
expires: Wed, 15 Nov 2023 22:59:17 GMT
cache-control: public, max-age=31536000
age: 406818
last-modified: Tue, 19 Apr 2022 18:53:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d561fb4c2606ae6f3e27b550aac78eb1
08fab66de067ec1b26229eb8ca8025228b1e77df
696702c1838990050310f6b21658aa22f4e5d69921a3043ad0f07923db441688
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d561fb4c2606ae6f3e27b550aac78eb1
08fab66de067ec1b26229eb8ca8025228b1e77df
696702c1838990050310f6b21658aa22f4e5d69921a3043ad0f07923db441688
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d561fb4c2606ae6f3e27b550aac78eb1
08fab66de067ec1b26229eb8ca8025228b1e77df
696702c1838990050310f6b21658aa22f4e5d69921a3043ad0f07923db441688
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15660, version 1.0\012- data
Hash d7b0b953a50fddaa88089b5b787cf719
2f85bc568b27659a3d6452f58f9fd7678450326d
e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 22:17:43 GMT
expires: Wed, 15 Nov 2023 22:17:43 GMT
cache-control: public, max-age=31536000
age: 409312
last-modified: Tue, 19 Apr 2022 18:42:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Hash 3d7f7413fca69bff4d231ebdc50aaab0
cb18e7943b6a8a0e3672d7242197c19a226b92e8
6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 18:51:51 GMT
expires: Thu, 16 Nov 2023 18:51:51 GMT
cache-control: public, max-age=31536000
age: 335264
last-modified: Tue, 19 Apr 2022 18:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cookie/v17/syky-y18lb0tSbf9kgqS.woff2
216.58.207.195200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/cookie/v17/syky-y18lb0tSbf9kgqS.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 14456, version 1.0\012- data
Hash 7a93cfe157bf03fdac08d381c241b458
6c502bd8dd6045e41c80b6de80341760a83130a3
4e8b3c170321fd6a38ad24b7df1aebf59b19d9f07fada7beef10f7e5664b13f9
GET /s/cookie/v17/syky-y18lb0tSbf9kgqS.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14456
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 18:42:01 GMT
expires: Thu, 16 Nov 2023 18:42:01 GMT
cache-control: public, max-age=31536000
age: 335854
last-modified: Thu, 21 Apr 2022 16:46:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 20 Nov 2022 15:25:04 GMT
cache-control: public,max-age=3600
age: 2071
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d561fb4c2606ae6f3e27b550aac78eb1
08fab66de067ec1b26229eb8ca8025228b1e77df
696702c1838990050310f6b21658aa22f4e5d69921a3043ad0f07923db441688
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adverbwaist.com/c155c597e0c2d34a1550951c12db23b2/invoke.js
173.233.137.36200 OK 9.3 kB URL HTTP/1.1 adverbwaist.com/c155c597e0c2d34a1550951c12db23b2/invoke.js
IP 173.233.137.36:0
File type Unicode text, UTF-8 text, with very long lines (25085), with no line terminators
Hash fd4055b7174223067b4e0ff480e9b676
c5adb31310a936ed846e2bf37ca2e3069f6a1171
3ad587571435967ecce463dfb559160c1412473a6fb476107e7cc5f862e59fee
GET /c155c597e0c2d34a1550951c12db23b2/invoke.js HTTP/1.1
Host: adverbwaist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 20 Nov 2022 15:59:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2ca04ed79c25f2349a7fabceed78e08a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 0cc2839eab50193c344c9ed10ca4ca74
cb7d7f55be5e3bb4591092ea6dcbdf5a9694c330
96a5483713c5fcc22d2f7fb56eefcc555e10f5bb103bbbcd702d7a24b2caa754
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 20 Nov 2022 15:59:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 19 Nov 2022 06:12:21 GMT
Expires: Sat, 26 Nov 2022 06:12:20 GMT
Etag: "cb7d7f55be5e3bb4591092ea6dcbdf5a9694c330"
Cache-Control: max-age=482564,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76d264c35d30b51b-OSL
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Sun, 20 Nov 2022 15:59:35 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 27138f8625c320bd1434ccd92263b641
6a8f18728c9f324c1c631ffc85901d84ec4d0e0c
02338368cfa2325e8463bd169cb0ad4df2967ca4260b75bc665cd0836e90e9f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5716
Cache-Control: max-age=153754
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:35 GMT
Etag: "6379ee2d-1d7"
Expires: Tue, 22 Nov 2022 10:42:09 GMT
Last-Modified: Sun, 20 Nov 2022 09:06:53 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
deloplen.com/apu.php?zoneid=2825689&_=1668959975133
139.45.197.238200 OK 24 kB URL HTTP/1.1 deloplen.com/apu.php?zoneid=2825689&_=1668959975133
IP 139.45.197.238:0
File type ASCII text, with very long lines (63212), with no line terminators
Hash 27aafb41920207791e1b5e4dba00e0c0
251c4c615dc7ff7afd40cb29626a185d039da9ff
db703a38f502a42c3974e8c454180391bce5eba62316362f487fdd8a4c1821a5
GET /apu.php?zoneid=2825689&_=1668959975133 HTTP/1.1
Host: deloplen.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://totalsportekplus.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 20 Nov 2022 15:59:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 5a90ffb6518a840aab05f0c2b0a979ad
Link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=89ecf448551e446cb34dc0973ae2ed65; expires=Mon, 20 Nov 2023 15:59:35 GMT; path=/
oaidts=1668959975; expires=Mon, 20 Nov 2023 15:59:35 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 316 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash d07b6ee289e32b36f7f9a9a4e6f0fe3d
b84b83faa500786c7528d8738cf3b4ad4612ee71
613fc858ea3feccdd2a506ab23d36ae15970e827364f652024bb4fdfc03a62cf
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 20 Nov 2022 15:59:35 GMT
Content-Type: application/ocsp-response
Content-Length: 316
Connection: keep-alive
Last-Modified: Sun, 20 Nov 2022 10:03:21 GMT
Expires: Sun, 27 Nov 2022 10:03:20 GMT
Etag: "b84b83faa500786c7528d8738cf3b4ad4612ee71"
Cache-Control: max-age=582824,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76d264c5c906b51b-OSL
ghb.adtelligent.com/geo
185.239.173.66200 OK 154 B IP 185.239.173.66:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ec65f841b5dcd74e7fbf6d72c39f8be4
a870e91242dd88bff2656674e85a819bab155c86
b5766bf1a0d74789f005f8935e4a0c88abe930f2f6df469ffe397038d955df54
GET /geo HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Adtelligent
Date: Sun, 20 Nov 2022 15:59:34 GMT
Content-Type: application/json
Content-Length: 154
Access-Control-Allow-Origin: http://totalsportekplus.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
X-Robots-Tag: noindex
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 913a828f0f87e891c1e29334eddee0a7
eeb36887905d7e031b5b8a5f9bca30f25d61eddf
c033a53f811feb2884ea72d7d0a4ebfedd8530dbfd3fe71e1f86439d3f17a65f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=169738
Date: Sun, 20 Nov 2022 15:59:35 GMT
Etag: "637a2c18-1d7"
Expires: Tue, 22 Nov 2022 15:08:33 GMT
Last-Modified: Sun, 20 Nov 2022 13:31:04 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ahHwh0FAJbYr-ysJ140JHoJQUwzTMORQcDwa-RzRMnnhgXGjFeGung==
Age: 5849
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e1fee52baa5c11a94459c67d8fe93ef4
e57ee1ce391b4daf4a0d059c45a090b9c6b5354a
406a94e764b73c626b2b63784b0cb1a0de086c014c1e4add434c4558a8ce5114
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2026
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:35 GMT
Last-Modified: Sun, 20 Nov 2022 15:25:49 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
simplewebanalysis.com/stats
52.28.211.11200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
File type ASCII text, with no line terminators
Hash 3b2ef7619ccefcffe826ef6f1a1ddc93
c8d8b60f02f4c092e732c2110925b6d4d038e053
58e4f40fc432d1ffd0c97175fdbdf7c57ea87baab28ee211ab2f90e1e8a4de63
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:35 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://totalsportekplus.com
access-control-allow-credentials: true
set-cookie: uid_id2=167a8146-a113-4f29-b3de-e06125a6b0af:3:1; expires=Wed, 17 Nov 2032 15:59:35 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
st.chatango.com/js/gz/emb.js
208.93.230.26200 OK 24 kB URL HTTP/1.1 st.chatango.com/js/gz/emb.js
IP 208.93.230.26:0
File type ASCII text, with very long lines (1651)
Hash 805df181036cf9e5d8afe0106e6742bd
d724decdd99a4ad9e94ed1995c385cad56d1aa1d
c8fb96eb9b2d14e8d0e359963ddd7a9cc8f1b2bb8e475d431a40d81a6bc0956e
GET /js/gz/emb.js HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 20 Nov 2022 15:59:35 GMT
Content-Type: application/x-javascript
Content-Length: 23805
Last-Modified: Wed, 09 Nov 2022 23:08:23 GMT
Connection: keep-alive
Expires: Sun, 20 Nov 2022 15:59:35 GMT
Cache-Control: max-age=0
Content-Encoding: gzip
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e1fee52baa5c11a94459c67d8fe93ef4
e57ee1ce391b4daf4a0d059c45a090b9c6b5354a
406a94e764b73c626b2b63784b0cb1a0de086c014c1e4add434c4558a8ce5114
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2026
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:35 GMT
Last-Modified: Sun, 20 Nov 2022 15:25:49 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
cdn.jsdelivr.net/npm/cdnbye@latest/dist/hlsjs-p2p-engine.min.js
151.101.85.229200 OK 48 kB URL HTTP/2 cdn.jsdelivr.net/npm/cdnbye@latest/dist/hlsjs-p2p-engine.min.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 68387e87baec496dd271e757fd2baa49
42bdfa35a0c3945a0a20c737c1b06818d261fee8
c33256eaa90749f963c5bca81c829a2464abaa5aeefe581fd3034cd4dc4780f3
GET /npm/cdnbye@latest/dist/hlsjs-p2p-engine.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weakstreams.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.20.10
x-jsd-version-type: version
etag: W/"2c0fb-ruOSsSubyzmt5zoQXaHqxXBy6Wo"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 20 Nov 2022 15:59:35 GMT
age: 11535
x-served-by: cache-fra19146-FRA, cache-bma1621-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 47856
X-Firefox-Spdy: h2
cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js
151.101.85.229200 OK 10 kB URL HTTP/2 cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js
IP 151.101.85.229:0
File type HTML document, ASCII text, with very long lines (30387)
Hash 5245fb2ca8b98e72f9b7ae0323d76020
eb6493f5f66936432464d98c47f2f0b200309b5b
75d36b8e1e822c4f74c51fa0a97f24ef4c45afc6059d3df9b0f4cc37acd1f231
GET /gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weakstreams.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.0
x-jsd-version-type: version
etag: W/"76e2-qotJurjpL/BNF6Wix8Da/EJuL+k"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 20 Nov 2022 15:59:35 GMT
age: 32141
x-served-by: cache-fra19147-FRA, cache-bma1621-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10250
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.215.91.121101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.91.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZQ4WHPh+tTbG+LzECd2GeA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XJSTWJiKDPL61gtMSlaWsSKIkqU=
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 419e11329b40f6d11706372a1618331f
f6846a20afbbe22c8ad5be20cc711014bc314a27
91f7516f31fec4ded19345ceda5e923324666f5d20c75c47bc36d95a31c43cf3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 20 Nov 2022 15:59:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2022 18:25:19 GMT
Expires: Thu, 24 Nov 2022 18:25:18 GMT
Etag: "f6846a20afbbe22c8ad5be20cc711014bc314a27"
Cache-Control: max-age=353742,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76d264c76b54b51b-OSL
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3922652e349029445e57059efbf1ce1a
969859186f936dbf602e811ff09e597c80f063b7
9735084768aab8615f15a3cabd219ca78a4e24583cd604e228d7684e2cf5c489
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "9735084768AAB8615F15A3CABD219CA78A4E24583CD604E228D7684E2CF5C489"
Last-Modified: Sat, 19 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5111
Expires: Sun, 20 Nov 2022 17:24:46 GMT
Date: Sun, 20 Nov 2022 15:59:35 GMT
Connection: keep-alive
cdn.jsdelivr.net/npm/@clappr/player@0.4.0/dist/clappr.min.js
151.101.85.229200 OK 127 kB URL HTTP/2 cdn.jsdelivr.net/npm/@clappr/player@0.4.0/dist/clappr.min.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 127 kB (126915 bytes)
Hash 4b7a815faadc405c5065e3841dbd57ee
bf8b3aee64ccf6b9055fd0010eea198b1fd1802e
9596eb8c7f96d0b41a7bb291bb51f8105244809e571a56ae36d64d49b42d82f5
GET /npm/@clappr/player@0.4.0/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weakstreams.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.4.0
x-jsd-version-type: version
etag: W/"72005-xDPIgqHJfOeFuHY26QsUErnjK9w"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 20 Nov 2022 15:59:35 GMT
age: 3940597
x-served-by: cache-fra19124-FRA, cache-bma1621-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 126915
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=89ecf448551e446cb34dc0973ae2ed65
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=89ecf448551e446cb34dc0973ae2ed65
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 7fb2d05741f7f7a203e9c70b4d3e94f6
a948ecccfce4d41036ef26e1f7cd1214e15e17b6
20764fc3b34642408da765ae35b7df776a7323427a372f58fd8cd786917d3d70
GET /gid.js?userId=89ecf448551e446cb34dc0973ae2ed65 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 20 Nov 2022 15:59:35 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://totalsportekplus.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=89ecf448551e446cb34dc0973ae2ed65; expires=Mon, 20 Nov 2023 15:59:35 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash 032bae2126920161e1226bc76e68028d
c4216b71b7f495243b133df9729d0ea1c153169c
1d16574d6cad315530546a2d16ecb745967f264d8194020a84cf085df179003e
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 20 Nov 2022 15:59:35 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "9226DD4E7380DB1B85FBB80A3538424A9C08F0F1"
Expires: Mon, 21 Nov 2022 03:00:00 GMT
Last-Modified: Sun, 20 Nov 2022 15:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1283
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76d264c83d9ab505-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fdd00d1e34aaec09afc36e319e746fec
e0783b90a9c121c2b50c5bcde4004eb5336d1798
ce3d680b8d17ab4a37006ead6e4d6b685610755b1f60e8841834dc438bc9b641
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CE3D680B8D17AB4A37006EAD6E4D6B685610755B1F60E8841834DC438BC9B641"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19150
Expires: Sun, 20 Nov 2022 21:18:45 GMT
Date: Sun, 20 Nov 2022 15:59:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fdd00d1e34aaec09afc36e319e746fec
e0783b90a9c121c2b50c5bcde4004eb5336d1798
ce3d680b8d17ab4a37006ead6e4d6b685610755b1f60e8841834dc438bc9b641
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CE3D680B8D17AB4A37006EAD6E4D6B685610755B1F60E8841834DC438BC9B641"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19150
Expires: Sun, 20 Nov 2022 21:18:45 GMT
Date: Sun, 20 Nov 2022 15:59:35 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3922652e349029445e57059efbf1ce1a
969859186f936dbf602e811ff09e597c80f063b7
9735084768aab8615f15a3cabd219ca78a4e24583cd604e228d7684e2cf5c489
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "9735084768AAB8615F15A3CABD219CA78A4E24583CD604E228D7684E2CF5C489"
Last-Modified: Sat, 19 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5111
Expires: Sun, 20 Nov 2022 17:24:46 GMT
Date: Sun, 20 Nov 2022 15:59:35 GMT
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash be27f2d7309444d09c4cd354cab5ceda
b9141c50b19bd26e97cf465370d2a99cfd63bc51
c6d8a87ffd0eb0d11a94f138aff9706b0b714d4c8f7b913e2ccd5dc05aef2124
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 20 Nov 2022 15:59:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 19 Nov 2022 17:22:29 GMT
Expires: Sat, 26 Nov 2022 17:22:28 GMT
Etag: "b9141c50b19bd26e97cf465370d2a99cfd63bc51"
Cache-Control: max-age=522772,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76d264c95ec5b50c-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 539342595b9286f3bbbe36590aba604c
ecb56df48b861b441763404e9a4e7de5d1a12c15
49fe520866e0b136d16dfa619a8a41a5faf4bcbca533dde8510966dfa0cf2e96
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 20 Nov 2022 15:59:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 18 Nov 2022 13:33:19 GMT
Expires: Fri, 25 Nov 2022 13:33:18 GMT
Etag: "ecb56df48b861b441763404e9a4e7de5d1a12c15"
Cache-Control: max-age=422622,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76d264c86cc2b51b-OSL
datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
37.48.68.71200 OK 12 B URL HTTP/1.1 datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 37.48.68.71:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 914
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sun, 20 Nov 2022 15:59:35 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: http://totalsportekplus.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
region1.google-analytics.com/g/collect?v=2&tid=G-DL0F1V1LZV>m=2oeb90&_p=711754584&cid=1358018746.1668959975&ul=en-us&sr=1280x1024&_s=1&sid=1668959975&sct=1&seg=0&dl=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&dt=Qatar%20vs%20Ecuador%20live%20Stream%20Free%20and%20H2H%20results%20on%20Nov%2021%2C%202022%20at%2000%3A00%20-%20World%20-%20World%20Cup%20-%20Totalsportekplus&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 25 kB URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-DL0F1V1LZV>m=2oeb90&_p=711754584&cid=1358018746.1668959975&ul=en-us&sr=1280x1024&_s=1&sid=1668959975&sct=1&seg=0&dl=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&dt=Qatar%20vs%20Ecuador%20live%20Stream%20Free%20and%20H2H%20results%20on%20Nov%2021%2C%202022%20at%2000%3A00%20-%20World%20-%20World%20Cup%20-%20Totalsportekplus&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash 001a2fb0b8216cc38caa9498834803fe
8fd3e1bac7464ed9deddb0887d9332009e4c60eb
25146cab32f2f40ffeae7882ab0e79e8d9cd7e5240747c972b1a5258ea2755cb
POST /g/collect?v=2&tid=G-DL0F1V1LZV>m=2oeb90&_p=711754584&cid=1358018746.1668959975&ul=en-us&sr=1280x1024&_s=1&sid=1668959975&sct=1&seg=0&dl=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&dt=Qatar%20vs%20Ecuador%20live%20Stream%20Free%20and%20H2H%20results%20on%20Nov%2021%2C%202022%20at%2000%3A00%20-%20World%20-%20World%20Cup%20-%20Totalsportekplus&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://totalsportekplus.com
date: Sun, 20 Nov 2022 15:59:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cuesingle.com/0a/31/9b/0a319b9424d04eb7b294577c62f272e3.js
173.233.137.44200 OK 29 kB URL HTTP/1.1 cuesingle.com/0a/31/9b/0a319b9424d04eb7b294577c62f272e3.js
IP 173.233.137.44:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 1cba56dcdc6428e3b37bb9bcaa3bf600
fc75f20c85493bae584b98bc4dd96e30730b767d
1dac483cdb26e9a90c1eb5bacee076a503ea1a48dd48d41ccbe3a528d8c0468e
Analyzer Verdict Alert quad9 Sinkholed
GET /0a/31/9b/0a319b9424d04eb7b294577c62f272e3.js HTTP/1.1
Host: cuesingle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 20 Nov 2022 15:59:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 05a427ac2cafca8e99c625f2df93eef8
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
totalsportekplus.com/js/owl.carousel.min.js
172.67.181.235200 OK 17 kB URL HTTP/2 totalsportekplus.com/js/owl.carousel.min.js
IP 172.67.181.235:0
Hash 805703a43b8cedaa9ce64b57b97bc900
0d21bbf952fe82a706ffe852fe511b652a055b7a
dd8977062f78f387ef2b149397a2f45f9485baa14a4e337e1b900e9d30ba406b
GET /js/owl.carousel.min.js HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 28 Feb 2017 20:43:12 GMT
vary: Accept-Encoding
etag: W/"58b5e0e0-a70e"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 366
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xG2Phu4mWAQ5oCfDifp3OT1bDLOi27vZkAU6drvhuVDVmY%2BF6Qb9pYczkygURi5nJ3tmX5muxmBULYJccXu7rFwALr1%2B%2BsafSevyRUI6lqhKRTKdW1XvE5qDU%2BSRs9mGk7WyDvk63A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c109040b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weakstreams.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 20 Nov 2022 14:41:09 GMT
expires: Sun, 20 Nov 2022 16:41:09 GMT
cache-control: public, max-age=7200
age: 4707
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
52.28.211.11200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
File type ASCII text, with no line terminators
Hash 3b2ef7619ccefcffe826ef6f1a1ddc93
c8d8b60f02f4c092e732c2110925b6d4d038e053
58e4f40fc432d1ffd0c97175fdbdf7c57ea87baab28ee211ab2f90e1e8a4de63
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Cookie: uid_id2=167a8146-a113-4f29-b3de-e06125a6b0af:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:36 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://totalsportekplus.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
st.chatango.com/h5/gz/r1109221504/id.html
208.93.230.26200 OK 224 kB URL HTTP/1.1 st.chatango.com/h5/gz/r1109221504/id.html
IP 208.93.230.26:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (54430), with CRLF, LF line terminators
Size 224 kB (224208 bytes)
Hash b5e55978fc6de5b845040e267bfa4de0
6fd166bb4fc22482e5c2b7ceca0e165ce2277a96
b246b03701578765cdfc5fde2324acb491a9ca1b279d84119a98e537799800a0
GET /h5/gz/r1109221504/id.html HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 20 Nov 2022 15:59:35 GMT
Content-Type: text/html
Content-Length: 224208
Last-Modified: Wed, 09 Nov 2022 23:08:23 GMT
Connection: keep-alive
Expires: Mon, 20 Nov 2023 15:59:35 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
P3P: CP="Chatango does not have a P3P policy. Please see our privacy policy: http://chatango.com/page?full_privacy"
Accept-Ranges: bytes
youradexchange.com/script/suurl4.php?r=5026951&cbur=0.32036725991695747&cbiframe=1&cbWidth=765&cbHeight=450&cbtitle=&cbpage=https%3A%2F%2Ftotalsportekplus.com%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=superfastcdn.com&aggr=0
35.190.41.116200 OK 1.2 kB URL HTTP/2 youradexchange.com/script/suurl4.php?r=5026951&cbur=0.32036725991695747&cbiframe=1&cbWidth=765&cbHeight=450&cbtitle=&cbpage=https%3A%2F%2Ftotalsportekplus.com%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=superfastcdn.com&aggr=0
IP 35.190.41.116:0
Hash 3aa9df79d0d73746b73f1b0d4c1cdc41
bf6e26f312b8022a43174a4fb819bf296a4317e2
fbe3ff31f8bebb5346d359563c781e13455fc9ea54e17096681d563feb1d298e
GET /script/suurl4.php?r=5026951&cbur=0.32036725991695747&cbiframe=1&cbWidth=765&cbHeight=450&cbtitle=&cbpage=https%3A%2F%2Ftotalsportekplus.com%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=superfastcdn.com&aggr=0 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://weakstreams.com/
Origin: https://weakstreams.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sun, 20 Nov 2022 15:59:36 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
superfastcdn.com/script/bootstrap.js
172.64.194.13200 OK 58 kB URL HTTP/2 superfastcdn.com/script/bootstrap.js
IP 172.64.194.13:0
File type Unicode text, UTF-8 text, with very long lines (37814), with NEL line terminators
Hash 2493676bfa17ea629877b132880a42c5
44cac2ad23e217922bc80cccbebecd015bc3e1b4
6cdead2f4a90b95ca308d39cec7a48c69d65384fc5e872ad5bcc9c3f98a2849c
GET /script/bootstrap.js HTTP/1.1
Host: superfastcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weakstreams.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:35 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdvD2aV0vhAfm60SW0Z3KK4sh4pPps0G-9mhbxVaxUs84UEQMhHFmvZkfDWNnm8gCTW04hmXAsP8_nRKiXjgYv8rNQ
x-goog-generation: 1662626315119008
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 100523
x-goog-hash: crc32c=PsCFGQ==, md5=kKQG58EUy5y9vRcdgoLiJA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sun, 20 Nov 2022 15:31:56 GMT
cache-control: public, max-age=14400
last-modified: Thu, 08 Sep 2022 08:38:35 GMT
etag: W/"90a406e7c114cb9cbdbd171d8282e224"
age: 2522
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3oyQ9eAOaLOnJ%2FprpP%2B9Vl2xgyq7H8SvYLeTsDaFj2tWt0Lu3CckU5Cx7fxhb2isKvs7qpj3FkdKDpcZoL7mLXsGFpI3KPbiXFluhaarmKpZxugclTZkRI58pnLgbH1ATdsL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c839128897-LHR
content-encoding: br
X-Firefox-Spdy: h2
totalsportekplus.com/favicon.ico
172.67.181.235200 OK 3.2 kB URL HTTP/1.1 totalsportekplus.com/favicon.ico
IP 172.67.181.235:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 855951c5d089ea7e5afebc7cded4f9aa
798b1005244b5514b101639417778bcd5431fed5
062136ec12aa2f1b25f20148fe03731f4a7811b6b848bdd854ffe0f463edfc56
GET /favicon.ico HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://totalsportekplus.com/qatar-vs-ecuador-m95844
Cookie: __atuvc=1%7C47; __atuvs=637a4ee6bd136f0a000; pop_ads=4; _ga_DL0F1V1LZV=GS1.1.1668959975.1.0.1668959975.0.0.0; _ga=GA1.1.1358018746.1668959975
HTTP/1.1 200 OK
Date: Sun, 20 Nov 2022 15:59:36 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Aug 2018 09:00:58 GMT
ETag: W/"5b7fc94a-c7b"
Expires: Mon, 20 Nov 2023 15:53:32 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
CF-Cache-Status: HIT
Age: 364
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LIflPs9KblTdRDFXyOsVd%2Fyx8odvSccWVOUdPSDEZrTh6B060QPJb66z3fEuMbb6i2z3Ox%2Fco8px5mhCpfvzRHwUOfl9%2FvVgN2vvzALUo3kUfYdVaSBJUI8WLhW2K2qazmG98eBnqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76d264cca93db529-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
fonts.googleapis.com/css?family=Roboto+Condensed:300,400,700
142.250.74.10200 OK 2.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto+Condensed:300,400,700
IP 142.250.74.10:0
File type Unicode text, UTF-8 text, with very long lines (3047)
Hash d783f3f39d2b6b0d6ad07d700996965d
459adb60f2b428858a659a02b4562ab3678688ef
82cfa9d061d10a6eee56d61250aa7a426429fb362560ea21757775ddc672877b
GET /css?family=Roboto+Condensed:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 20 Nov 2022 15:59:34 GMT
date: Sun, 20 Nov 2022 15:59:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
104.21.84.149200 OK 5.3 kB IP 104.21.84.149:0
File type ASCII text, with very long lines (13017), with no line terminators
Hash 27b79d32593251e66207a4a101e41a73
c97301ff1320bcbb20999b13ade48e7fff49788e
5e05e5d134eef4c88c361c033bb9e9838cc690fda874ce66bea6c6e6a2bcc2fb
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:35 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 14:05:58 GMT
etag: W/"634eb2c6-32d9"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 1335
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wrGI2mchfq%2FpIBJpV1DJJ4NHuUG5uouFHgTZbOYR7ijcaAlb2NtBPyqFjXVPCJM2UWoaJ51vpSo5nS4PTN1pOtdQXEwyBCcMwxQxGz7ngavbYbyDW83pP2fxQT7VhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c6a85b0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
z.moatads.com/addthismoatframe568911941483/moatframe.js
23.38.201.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 23.38.201.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=44416
date: Sun, 20 Nov 2022 15:59:36 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6e07952580ed9b0b719f84f99482fa20
b5564e1d1eead2bc9bc28024cd72079dd4636208
3b786eca06c2e0248296acb9207ce8d107d3d4d9f360e1197c10600031b79ed3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4650
Cache-Control: max-age=156629
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:36 GMT
Etag: "6379fd93-1d7"
Expires: Tue, 22 Nov 2022 11:30:05 GMT
Last-Modified: Sun, 20 Nov 2022 10:12:35 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
my.rtmark.net/gid.js?userId=m4pj277196rv790841572o1y3nmzf163
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=m4pj277196rv790841572o1y3nmzf163
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 7fb2d05741f7f7a203e9c70b4d3e94f6
a948ecccfce4d41036ef26e1f7cd1214e15e17b6
20764fc3b34642408da765ae35b7df776a7323427a372f58fd8cd786917d3d70
GET /gid.js?userId=m4pj277196rv790841572o1y3nmzf163 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Cookie: ID=89ecf448551e446cb34dc0973ae2ed65
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 20 Nov 2022 15:59:36 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://totalsportekplus.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=89ecf448551e446cb34dc0973ae2ed65; expires=Mon, 20 Nov 2023 15:59:36 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
connect.facebook.net/zh_CN/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/2 connect.facebook.net/zh_CN/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1957)
Hash 3af1a44c9f6c792528ea886198695d8a
4d6ab207e706aa0972d6fac71b1c8420ff737226
9a8ac35c502539e57d7d691122ea106a9f7af453630f1542cf5bf940eac3ef3a
GET /zh_CN/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: cf7c1b88affacc931c89c977d8399d23
etag: "c4c16be5caa0d7a64c02020d2ddb7912"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 20 Nov 2022 16:13:03 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: OvGkTJ9seSUo6ohhmGldig==
x-fb-debug: wGZ/noyZS6gETZe5PseDn2OAz2aMlWlWc0zaA2kOOxgulpCuiABGe32ewg0O8BusKd0gK5QeUDzJsagO9A3KgA==
content-length: 1688
x-fb-trip-id: 1679558926
date: Sun, 20 Nov 2022 15:59:36 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
v1.addthisedge.com/live/boost/ra-4f5ac6776ee61458/_ate.track.config_resp
23.38.200.123200 OK 661 B URL HTTP/2 v1.addthisedge.com/live/boost/ra-4f5ac6776ee61458/_ate.track.config_resp
IP 23.38.200.123:0
File type ASCII text, with very long lines (2344), with no line terminators
Hash 250404e2dc43e55a321a8ef7c3e59b5a
e86045f72e84f4ba92bcec186721fa6dcc1fbc1d
5b2093d9235591feb14be319d1bd12b8f4776a5c826ed7d720d7cbaaab3c303e
GET /live/boost/ra-4f5ac6776ee61458/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 661
etag: -1017982602--gzip
content-disposition: attachment; filename=1.txt
content-encoding: gzip
cache-control: public, max-age=31, s-maxage=86400
date: Sun, 20 Nov 2022 15:59:36 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
veilsuccessfully.com/pixel/purst?dl=0&th=0&sc=0&rs=2303&rd=2303&fd=852&bv=22.10.v.10&tmpl=136
173.233.139.164200 OK 0 B URL HTTP/1.1 veilsuccessfully.com/pixel/purst?dl=0&th=0&sc=0&rs=2303&rd=2303&fd=852&bv=22.10.v.10&tmpl=136
IP 173.233.139.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=2303&rd=2303&fd=852&bv=22.10.v.10&tmpl=136 HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 20 Nov 2022 15:59:36 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
m.addthis.com/live/red_lojson/300lo.json?si=637a4ee65d7f788d&bkl=0&bl=1&pdt=410&sid=637a4ee65d7f788d&pub=ra-4f5ac6776ee61458&rev=v8.28.8-wp&ln=ms&pc=men&cb=0&ab=-&dp=totalsportekplus.com&fp=qatar-vs-ecuador-m95844&fr=&of=0&pd=0&irt=0&vcl=0&md=2&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Qatar%20vs%20Ecuador%20live%20stream%2CQatar%20live%20stream%2CEcuador%20live%20stream%2CWorld%20-%20World%20Cup%20live%20stream%2Clivescore%2Cresults%2CTotalsportekplus&colc=1668959975231&jsl=1&uvs=637a4ee6bd136f0a000&skipb=1&callback=addthis.cbs.jsonp__74531211643230420
23.38.200.123200 OK 89 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=637a4ee65d7f788d&bkl=0&bl=1&pdt=410&sid=637a4ee65d7f788d&pub=ra-4f5ac6776ee61458&rev=v8.28.8-wp&ln=ms&pc=men&cb=0&ab=-&dp=totalsportekplus.com&fp=qatar-vs-ecuador-m95844&fr=&of=0&pd=0&irt=0&vcl=0&md=2&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Qatar%20vs%20Ecuador%20live%20stream%2CQatar%20live%20stream%2CEcuador%20live%20stream%2CWorld%20-%20World%20Cup%20live%20stream%2Clivescore%2Cresults%2CTotalsportekplus&colc=1668959975231&jsl=1&uvs=637a4ee6bd136f0a000&skipb=1&callback=addthis.cbs.jsonp__74531211643230420
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 81647b343a29e090f441977999b296bc
3ef103c5bf0d1e4cab9ded63eb4303cfaa86e355
cef972bf65df0fd80170faccf3da94c9cfc8fc4db53938f4c24d43dc4e5db2fc
GET /live/red_lojson/300lo.json?si=637a4ee65d7f788d&bkl=0&bl=1&pdt=410&sid=637a4ee65d7f788d&pub=ra-4f5ac6776ee61458&rev=v8.28.8-wp&ln=ms&pc=men&cb=0&ab=-&dp=totalsportekplus.com&fp=qatar-vs-ecuador-m95844&fr=&of=0&pd=0&irt=0&vcl=0&md=2&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Qatar%20vs%20Ecuador%20live%20stream%2CQatar%20live%20stream%2CEcuador%20live%20stream%2CWorld%20-%20World%20Cup%20live%20stream%2Clivescore%2Cresults%2CTotalsportekplus&colc=1668959975231&jsl=1&uvs=637a4ee6bd136f0a000&skipb=1&callback=addthis.cbs.jsonp__74531211643230420 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Sun, 20 Nov 2022 15:59:36 GMT
X-Firefox-Spdy: h2
www.buymeacoffee.com/assets/img/BMC-btn-logo.svg
172.67.70.99200 OK 24 kB URL HTTP/2 www.buymeacoffee.com/assets/img/BMC-btn-logo.svg
IP 172.67.70.99:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1056)
Hash e4cc0a0c77614c4e2ef7f8bab7e58a5b
0f047bb0c3fd4ccbe1f613b423a7f83300aea198
ecea470de991317a80103986a817e49f10c095e0bb520c5a1bfa1d20ca0e5019
GET /assets/img/BMC-btn-logo.svg HTTP/1.1
Host: www.buymeacoffee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/svg+xml
last-modified: Thu, 23 Apr 2020 05:51:29 GMT
etag: W/"5ea12ce1-1fcd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=315360000, s-maxage=10
cf-cache-status: HIT
age: 1005443
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FIfKCkNlV3xKNY1YQ70u33PfdiF%2BRduWUuG%2FLoguJMOZP8qclfKVghf0vlMlw1L9Ii3upqV5aSJcHA20LsH3sCk1AKqlu3F1uWW9fIZaSidguMNyhG2VFHSIuFo2HCS6agYi07bS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c2aa53b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6e07952580ed9b0b719f84f99482fa20
b5564e1d1eead2bc9bc28024cd72079dd4636208
3b786eca06c2e0248296acb9207ce8d107d3d4d9f360e1197c10600031b79ed3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4650
Cache-Control: max-age=156629
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:36 GMT
Etag: "6379fd93-1d7"
Expires: Tue, 22 Nov 2022 11:30:05 GMT
Last-Modified: Sun, 20 Nov 2022 10:12:35 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 352a33a923d352fbbe02918fdbb5aeeb
20899658e77adfdc52c958ac4c9b11701e6043df
0eb7d3df64208263a9dbce57d7ab3d506e60e8b2db997a01590458b94eabf19f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0EB7D3DF64208263A9DBCE57D7AB3D506E60E8B2DB997A01590458B94EABF19F"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13804
Expires: Sun, 20 Nov 2022 19:49:40 GMT
Date: Sun, 20 Nov 2022 15:59:36 GMT
Connection: keep-alive
cdn.taboola.com/libtrc/impl.20221120-13-RELEASE.js
151.101.85.44200 OK 147 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20221120-13-RELEASE.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (65508)
Size 147 kB (146625 bytes)
Hash 012a6ca89d93090429051e0403e298d9
32621b90d26da429c7751272b4aeb68a8298a7f9
919268234783986559d1cc72b04ec1313838bec167e239f5f975d36eb2c1d2ab
GET /libtrc/impl.20221120-13-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: RE1CUQNPV30m4PS6V3PbBORN2wG4BWPaLYkvrfkpxZ+tz+vvHhpczH9BmBezA9IVv1TlkBIKmx8=
x-amz-request-id: M9455NTVHXRJ5EH4
last-modified: Sun, 20 Nov 2022 12:03:00 GMT
etag: "012a6ca89d93090429051e0403e298d9"
content-encoding: br
x-amz-version-id: IgX.r9Xl9W.HsmEIY3hjqNGkfO4dpwqz
content-type: application/javascript
accept-ranges: bytes
date: Sun, 20 Nov 2022 15:59:36 GMT
via: 1.1 varnish
age: 13693
x-served-by: cache-bma1631-BMA
x-cache: HIT
x-cache-hits: 7693
x-timer: S1668959977.628487,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 55
server: AmazonS3-br
content-length: 146625
X-Firefox-Spdy: h2
s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
23.38.200.123200 OK 78 kB URL HTTP/2 s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
IP 23.38.200.123:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 9a77dff666eebb6cf4bbc4c67c7b563b
9e98d7824a7b4e34665c2690d6f52caddad1fe4b
6cdf8e597f3cbe759531153fd926d51aeaebd836a1c9bc1436e079645bfd3ad7
GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77672
date: Sun, 20 Nov 2022 15:59:36 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
connect.facebook.net/zh_CN/sdk.js?hash=ed75081920f8804897f841b199ca7e79
157.240.200.14200 OK 88 kB URL HTTP/2 connect.facebook.net/zh_CN/sdk.js?hash=ed75081920f8804897f841b199ca7e79
IP 157.240.200.14:0
File type ASCII text, with very long lines (18530)
Hash f33c78f9c5f0c1fabe4377b3ffe5ba42
584f62d79b233bfa7e6276f4336bd3ca47363b7f
461909948db44fb6627aa3807250017ba96c92a805e6869681fd624e7b0456c8
GET /zh_CN/sdk.js?hash=ed75081920f8804897f841b199ca7e79 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 64fd3a1656ea992ccbd2d00394b1ff81
etag: "c6156c0c3d522561724f415683ad5aac"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 20 Nov 2023 13:30:23 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 8zx4+cXwwfq+Q3ez/+W6Qg==
x-fb-debug: pdpcq2YwxC43ewC19a0SjQe4F/i98NKbcRxMntuKEiw9xmXrsax1MpaMeIHbpGrtVx8qs0wdHtaIN1NifDTSYQ==
content-length: 88484
x-fb-trip-id: 1679558926
date: Sun, 20 Nov 2022 15:59:36 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2590
Expires: Sun, 20 Nov 2022 16:42:46 GMT
Date: Sun, 20 Nov 2022 15:59:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2590
Expires: Sun, 20 Nov 2022 16:42:46 GMT
Date: Sun, 20 Nov 2022 15:59:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2590
Expires: Sun, 20 Nov 2022 16:42:46 GMT
Date: Sun, 20 Nov 2022 15:59:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2590
Expires: Sun, 20 Nov 2022 16:42:46 GMT
Date: Sun, 20 Nov 2022 15:59:36 GMT
Connection: keep-alive
deloplen.com/?rb=ITJVvlM5oCBzDr-ifxlFksWFPlG0lt8ThZkld9ehL36DT5UJnPNuTOvljN994Sk34tEAA3suYBmz6iOnFwa2zWMaxJEddvBnjzT2GpqMnuGs10ZtJbc-EMjTNFiELex0yWsS8RC15BRfV4xEIfnNhCvR3twQ4KW7GhcynOAWjPpYO3XnJSk8KIbPuoZcIsLpkxExzK1DC4gvVU-vqME8RiEpT4Hhtu5lE011pi0ShxXe8lrM&request_ab2=0&zoneid=2825689&js_build=iclick-v1.450.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=2&pl=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.450.0&bs=36e67745-f5c5-4b38-97ca-0b4fda7372dd&userId=m4pj277196rv790841572o1y3nmzf163&m=link
139.45.197.238200 OK 14 kB URL HTTP/2 deloplen.com/?rb=ITJVvlM5oCBzDr-ifxlFksWFPlG0lt8ThZkld9ehL36DT5UJnPNuTOvljN994Sk34tEAA3suYBmz6iOnFwa2zWMaxJEddvBnjzT2GpqMnuGs10ZtJbc-EMjTNFiELex0yWsS8RC15BRfV4xEIfnNhCvR3twQ4KW7GhcynOAWjPpYO3XnJSk8KIbPuoZcIsLpkxExzK1DC4gvVU-vqME8RiEpT4Hhtu5lE011pi0ShxXe8lrM&request_ab2=0&zoneid=2825689&js_build=iclick-v1.450.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=2&pl=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.450.0&bs=36e67745-f5c5-4b38-97ca-0b4fda7372dd&userId=m4pj277196rv790841572o1y3nmzf163&m=link
IP 139.45.197.238:0
Hash e69d27a0386f21e1583771fe4f35072d
43ac5ea0ba418899ef0c61455d31b9a5c8663e54
560e6b3cb4c699113440c4757563ebf87e439762d7655aab5ef541261d216fa6
GET /?rb=ITJVvlM5oCBzDr-ifxlFksWFPlG0lt8ThZkld9ehL36DT5UJnPNuTOvljN994Sk34tEAA3suYBmz6iOnFwa2zWMaxJEddvBnjzT2GpqMnuGs10ZtJbc-EMjTNFiELex0yWsS8RC15BRfV4xEIfnNhCvR3twQ4KW7GhcynOAWjPpYO3XnJSk8KIbPuoZcIsLpkxExzK1DC4gvVU-vqME8RiEpT4Hhtu5lE011pi0ShxXe8lrM&request_ab2=0&zoneid=2825689&js_build=iclick-v1.450.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=2&pl=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.450.0&bs=36e67745-f5c5-4b38-97ca-0b4fda7372dd&userId=m4pj277196rv790841572o1y3nmzf163&m=link HTTP/1.1
Host: deloplen.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://totalsportekplus.com/
Origin: http://totalsportekplus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 20 Nov 2022 15:59:36 GMT
content-type: application/json
x-trace-id: 909c6ff7bc2f8a957c96d81b519de1c6
access-control-allow-origin: http://totalsportekplus.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=m4pj277196rv790841572o1y3nmzf163; expires=Mon, 20 Nov 2023 15:59:36 GMT; path=/; secure; SameSite=None
oaidts=1668959976; expires=Mon, 20 Nov 2023 15:59:36 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sun, 27 Nov 2022 15:59:36 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84f65b21-5dd5-42d9-9985-0823fc534495.webp
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84f65b21-5dd5-42d9-9985-0823fc534495.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25aa851caa96376b563f0322e8621292
71a917b184ec9ad1bb370724f4e4c707468e865e
7ffbeca58e1a4cc8f26f1a832376ae97d17c973efef9a1f4bebb44536da5ae1c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84f65b21-5dd5-42d9-9985-0823fc534495.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4292
x-amzn-requestid: 5b50eebe-81f9-43fa-b259-eb9be43ff3be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3i0SH1uoAMFdUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63794b4e-7322c4461f94c93c29542312;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 21:31:58 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: pcLZxnbI_hWCZstg2gZwNR3-v6d4Y1szI-Kg_RMXsgneiIRXBZHWkA==
via: 1.1 3c22982dfb94f708939a6ef528c5e55c.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 22:19:52 GMT
etag: "71a917b184ec9ad1bb370724f4e4c707468e865e"
content-type: image/jpeg
age: 63584
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
totalsportekplus.com/css/main_style.css?1668959621
172.67.181.235200 OK 37 kB URL HTTP/2 totalsportekplus.com/css/main_style.css?1668959621
IP 172.67.181.235:0
Hash 56ea8e1b10c291bf1f763d721f1956c5
66121edf4a9aafde3e8aba201eb6f5f760ddd65d
765da671f808518af1de809b8de0730bf35f4767820377522972d0e36aae7718
GET /css/main_style.css?1668959621 HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: text/css
last-modified: Wed, 07 Oct 2020 08:27:12 GMT
vary: Accept-Encoding
etag: W/"5f7d7be0-1c21b"
expires: Mon, 20 Nov 2023 15:53:41 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 353
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q6%2F2RFG42WKg23yjBT4KcRIhWObjWaLCX8lNdbutitQn7YPkCqYG4AgtfF2JCpr1o4ibA9%2FUGfnOiD16PB7owwyVG8YeJ6XFbYesRmbETh735M7bYM8zPBHx1MwGV3H4D36xR6QP%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c108fd0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a4c45ae-b32f-41fd-b114-30dd881b4ef3.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a4c45ae-b32f-41fd-b114-30dd881b4ef3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a1e751db3c22be366e4bef8b30644677
a2147825fc70ee46cdff2c5857646078c7cc3dad
713e83ce024a939bbc34268a18ea20e6e18fedeeeb6c5e5788df9b473c1c1c27
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a4c45ae-b32f-41fd-b114-30dd881b4ef3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7659
x-amzn-requestid: 78936c00-59d6-45ae-97fe-b038a9748078
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3i0BFtdoAMFZwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63794b4c-45f909677dc2cece6f0e27aa;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 21:31:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: -B6mMWjuXxI3rVMu78ut9_BICmn-XzHWHfmj5Xi6H0OoXSAMCPNm0Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 21:41:44 GMT
etag: "a2147825fc70ee46cdff2c5857646078c7cc3dad"
content-type: image/jpeg
age: 65872
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F175348d8-bd72-46a1-a737-9e442ab4231c.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F175348d8-bd72-46a1-a737-9e442ab4231c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a41f9693b9247dcce6c2340bb5c02828
e982a3a8a8c6baac9d1676ad93646d6c4cd9f58e
aa23cead1d44bf9db22654eb14113ef356d4ac972d301969c02803964418d556
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F175348d8-bd72-46a1-a737-9e442ab4231c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9798
x-amzn-requestid: abab4eb2-0a35-4113-8a52-e07c08f069cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bkiY2HXCoAMFVrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371b105-1cb176423ca3231a093cc4c7;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 03:07:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sCEwyGN6h_P0abZJGEY8PJNE7j1Nmz62-wvzWWO5gbFwA1auACXtJw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 17:23:16 GMT
age: 81380
etag: "e982a3a8a8c6baac9d1676ad93646d6c4cd9f58e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19c1a99-6290-4f30-afcf-c426abf8c229.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19c1a99-6290-4f30-afcf-c426abf8c229.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 907cdf495815b066cbeaccd9c862c544
6082de99b599bc3c9ce14e2641a2bf60f9f187d8
fbccb495391bba54b463e8c4eaf3207af00b098c4b5f816011d240257aa56f6c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19c1a99-6290-4f30-afcf-c426abf8c229.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11562
x-amzn-requestid: f01b0409-b43d-4d9c-92c0-0023c5e49d58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3jV_GDmIAMFvqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63794c26-69366c73760dcd5b72634f73;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 21:35:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pvgyUJPVgG_PrCetQXIXLgxyEBar2nMFywc6HracpnEsn2tiCw_Pfg==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 21:42:03 GMT
age: 65853
etag: "6082de99b599bc3c9ce14e2641a2bf60f9f187d8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash ff21c73bee9c356da1c37e2e886552fa
ac256006eef856cbcaf5d479ba4b659c58263df6
44f91ae7aeb7b3ae170490fb6bfe9bd3b4f02763021170a76f61a63056170a03
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 145
Cache-Control: max-age=155397
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:37 GMT
Etag: "637a0a5d-139"
Expires: Tue, 22 Nov 2022 11:09:34 GMT
Last-Modified: Sun, 20 Nov 2022 11:07:09 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
trc-events.taboola.com/chatango-chatango1/log/2/debug?tim=15%3A59%3A37.008&type=usage&msg=rtus&llvl=2&id=3416&cv=20221120-13-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/chatango-chatango1/log/2/debug?tim=15%3A59%3A37.008&type=usage&msg=rtus&llvl=2&id=3416&cv=20221120-13-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /chatango-chatango1/log/2/debug?tim=15%3A59%3A37.008&type=usage&msg=rtus&llvl=2&id=3416&cv=20221120-13-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sun, 20 Nov 2022 15:59:37 GMT
x-fastly-to-nlb-rtt: 22468
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 19f4544c828db59227c011c1dacb0222
5e33a464ded55da55da13ed03de8af5868ee4b97
1c53a0002bb1e7b1923ed81a023d7f76514ba97b15623c2a5ac647298fe1dcf2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 281
Cache-Control: max-age=92899
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:37 GMT
Etag: "637915b3-13a"
Expires: Mon, 21 Nov 2022 17:47:56 GMT
Last-Modified: Sat, 19 Nov 2022 17:43:15 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 314
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:37 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=FnzhjV80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRnhlVjYlMkJic213YzFvY0lBa3V1WUVyUSUyQk1jM3QyZHpqYkpraUY3QiUyRmJHbQ; expires=Fri, 15 Dec 2023 15:59:37 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 347956
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=210920282638543&ev=fb_page_view&dl=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&rl=&if=false&ts=1668959977191&sw=1280&sh=1024&at=
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=210920282638543&ev=fb_page_view&dl=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&rl=&if=false&ts=1668959977191&sw=1280&sh=1024&at=
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=210920282638543&ev=fb_page_view&dl=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&rl=&if=false&ts=1668959977191&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 20 Nov 2022 15:59:37 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash b4fba3d0cb0fb328645972b963b7f135
a64c095c1f9c651eccf2545891c2715c601bb11c
50e9b6ee0962956c128d1c28fe01b8a7f56525a6d292455c671694dd051879f8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1963
Cache-Control: max-age=153242
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:37 GMT
Etag: "6379fad8-138"
Expires: Tue, 22 Nov 2022 10:33:39 GMT
Last-Modified: Sun, 20 Nov 2022 10:00:56 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash b4fba3d0cb0fb328645972b963b7f135
a64c095c1f9c651eccf2545891c2715c601bb11c
50e9b6ee0962956c128d1c28fe01b8a7f56525a6d292455c671694dd051879f8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1963
Cache-Control: max-age=153242
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:37 GMT
Etag: "6379fad8-138"
Expires: Tue, 22 Nov 2022 10:33:39 GMT
Last-Modified: Sun, 20 Nov 2022 10:00:56 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 312
veilsuccessfully.com/pixel/pure
173.233.139.164204 No Content 0 B URL HTTP/1.1 veilsuccessfully.com/pixel/pure
IP 173.233.139.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /pixel/pure HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://totalsportekplus.com/
Origin: http://totalsportekplus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.19.5
Date: Sun, 20 Nov 2022 15:59:37 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb479001433186809749be8ae6e9d1d3
b8465c9391462ceae5134abd2702a5aeed46b3e6
b0668be4ad31dac9ec97156191c740029e51828e889a3501769fd82420aeec71
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0668BE4AD31DAC9EC97156191C740029E51828E889A3501769FD82420AEEC71"
Last-Modified: Fri, 18 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18596
Expires: Sun, 20 Nov 2022 21:09:33 GMT
Date: Sun, 20 Nov 2022 15:59:37 GMT
Connection: keep-alive
my.rtmark.net/gid.js?userId=m4pj277196rv790841572o1y3nmzf163
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=m4pj277196rv790841572o1y3nmzf163
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 7fb2d05741f7f7a203e9c70b4d3e94f6
a948ecccfce4d41036ef26e1f7cd1214e15e17b6
20764fc3b34642408da765ae35b7df776a7323427a372f58fd8cd786917d3d70
GET /gid.js?userId=m4pj277196rv790841572o1y3nmzf163 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Cookie: ID=89ecf448551e446cb34dc0973ae2ed65
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 20 Nov 2022 15:59:37 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://totalsportekplus.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=89ecf448551e446cb34dc0973ae2ed65; expires=Mon, 20 Nov 2023 15:59:37 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
cuesingle.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXiPKevLnsgdlLoKCTLpnpjcZ97AY10gwJtkfybn%2BelJOdVdT1T%2BTOUUXZfEgoyf11Pkm2aAGcT0tiCATD7sEhB0EycGcBY%2FCnmWSgXEfVL331fcO3%2FdefbqbnxIfOT3ZeN%2F0ldZ0Pqz7tdc2VSJM6Wprt2qBX%2Fev1DZVcrl1pdabXLZ4M%2FDDuv967V3Ju2a%2B4Qe%2BH%2FhBbVlZGZne%2FBkLlR62g3rbr7ca9SBsoWefxC734KgHUZySF6DE%2BOmth%2Feg%2BAhJ%2FOM16bqZSd94J841zYxFIQ4%2BSLqJKRPEszKyHqLkYNoN48aEfHUBJjmYOoAp9iYOwNSYeH8GYMnBVCZYsX%2BulGnIBEw8h7IYQeoRFB2Bm9tQ4hEBuMDaOpL47pqxJd0%2BZ%2BmEHZO5x%2F9ClWMy99dLSOIflrTq1W4anWfKJA69qILqjaA6I6T5EbK%2BB1UegWcfQ4nfyfzjVSTx3rrTBkpUZ%2B6VGkFFI2g5AHUe8slRHvLIQ556iMVJjYbtyPcXIhY1m4stznmzyXm4eFmEotlajHzkfCJvgCwdgOsBuN1BanfQVQPY%2FFe4rQpOeHDZmHjXd1CICqUkKB1BSQlKRVBmBGVR7QvtGq66K7TLWTDNjWluVkOTdXbpvsk6MiG76Sl5fjIX7%2BLeGrrypMaDMORhe0H6vCGaLRqEod8OAx40BGs0WQNOVVDuwpnVvhqTlze%2FRKrG5JmfXgWjR3D6CFy9CJoHoOVwoeGDbg1biz76yWG83TFUZ0Xd2A6EqZBmc8i2vV19Si6d7Sd48DMkP776%2Bf3r%2F3zyyn1wWyG1FT5UvxF09J3hDVOSvRumdOTeepqpWPXpZHc3M5rJp757T26XxoqVa27w7Vt8QkzKw1vSZas0ESrpOPL9khJC2mVjuSS%2FrLhNyTZyt7WU2yRPVzfeXl6JUyudUyYZgapH3Y%2FA1Zg8W%2Fxx9isvffYAyo5g8wpxfkymAWWOwNMduHSm3hkCq2c9LPVQ5tXQNtjsUSsCLWeYsgruf5jN6l13Bx3rgWa3kcQVCluh0BWoHsDlF4dZao%2BvPvx6Et%2BAaW%2FItPX2mLb6i%2FPROnVSk2HkR9JvSBa1WbRAfdGOWm1G24FcYCENkLkx76%2F9%2FR8AAAD%2F%2FwEAAP%2F%2FAQ%2F3bm0EAAA%3D
173.233.137.44200 OK 7 B URL HTTP/1.1 cuesingle.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXiPKevLnsgdlLoKCTLpnpjcZ97AY10gwJtkfybn%2BelJOdVdT1T%2BTOUUXZfEgoyf11Pkm2aAGcT0tiCATD7sEhB0EycGcBY%2FCnmWSgXEfVL331fcO3%2FdefbqbnxIfOT3ZeN%2F0ldZ0Pqz7tdc2VSJM6Wprt2qBX%2Fev1DZVcrl1pdabXLZ4M%2FDDuv967V3Ju2a%2B4Qe%2BH%2FhBbVlZGZne%2FBkLlR62g3rbr7ca9SBsoWefxC734KgHUZySF6DE%2BOmth%2Feg%2BAhJ%2FOM16bqZSd94J841zYxFIQ4%2BSLqJKRPEszKyHqLkYNoN48aEfHUBJjmYOoAp9iYOwNSYeH8GYMnBVCZYsX%2BulGnIBEw8h7IYQeoRFB2Bm9tQ4hEBuMDaOpL47pqxJd0%2BZ%2BmEHZO5x%2F9ClWMy99dLSOIflrTq1W4anWfKJA69qILqjaA6I6T5EbK%2BB1UegWcfQ4nfyfzjVSTx3rrTBkpUZ%2B6VGkFFI2g5AHUe8slRHvLIQ556iMVJjYbtyPcXIhY1m4stznmzyXm4eFmEotlajHzkfCJvgCwdgOsBuN1BanfQVQPY%2FFe4rQpOeHDZmHjXd1CICqUkKB1BSQlKRVBmBGVR7QvtGq66K7TLWTDNjWluVkOTdXbpvsk6MiG76Sl5fjIX7%2BLeGrrypMaDMORhe0H6vCGaLRqEod8OAx40BGs0WQNOVVDuwpnVvhqTlze%2FRKrG5JmfXgWjR3D6CFy9CJoHoOVwoeGDbg1biz76yWG83TFUZ0Xd2A6EqZBmc8i2vV19Si6d7Sd48DMkP776%2Bf3r%2F3zyyn1wWyG1FT5UvxF09J3hDVOSvRumdOTeepqpWPXpZHc3M5rJp757T26XxoqVa27w7Vt8QkzKw1vSZas0ESrpOPL9khJC2mVjuSS%2FrLhNyTZyt7WU2yRPVzfeXl6JUyudUyYZgapH3Y%2FA1Zg8W%2Fxx9isvffYAyo5g8wpxfkymAWWOwNMduHSm3hkCq2c9LPVQ5tXQNtjsUSsCLWeYsgruf5jN6l13Bx3rgWa3kcQVCluh0BWoHsDlF4dZao%2BvPvx6Et%2BAaW%2FItPX2mLb6i%2FPROnVSk2HkR9JvSBa1WbRAfdGOWm1G24FcYCENkLkx76%2F9%2FR8AAAD%2F%2FwEAAP%2F%2FAQ%2F3bm0EAAA%3D
IP 173.233.137.44:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXiPKevLnsgdlLoKCTLpnpjcZ97AY10gwJtkfybn%2BelJOdVdT1T%2BTOUUXZfEgoyf11Pkm2aAGcT0tiCATD7sEhB0EycGcBY%2FCnmWSgXEfVL331fcO3%2FdefbqbnxIfOT3ZeN%2F0ldZ0Pqz7tdc2VSJM6Wprt2qBX%2Fev1DZVcrl1pdabXLZ4M%2FDDuv967V3Ju2a%2B4Qe%2BH%2FhBbVlZGZne%2FBkLlR62g3rbr7ca9SBsoWefxC734KgHUZySF6DE%2BOmth%2Feg%2BAhJ%2FOM16bqZSd94J841zYxFIQ4%2BSLqJKRPEszKyHqLkYNoN48aEfHUBJjmYOoAp9iYOwNSYeH8GYMnBVCZYsX%2BulGnIBEw8h7IYQeoRFB2Bm9tQ4hEBuMDaOpL47pqxJd0%2BZ%2BmEHZO5x%2F9ClWMy99dLSOIflrTq1W4anWfKJA69qILqjaA6I6T5EbK%2BB1UegWcfQ4nfyfzjVSTx3rrTBkpUZ%2B6VGkFFI2g5AHUe8slRHvLIQ556iMVJjYbtyPcXIhY1m4stznmzyXm4eFmEotlajHzkfCJvgCwdgOsBuN1BanfQVQPY%2FFe4rQpOeHDZmHjXd1CICqUkKB1BSQlKRVBmBGVR7QvtGq66K7TLWTDNjWluVkOTdXbpvsk6MiG76Sl5fjIX7%2BLeGrrypMaDMORhe0H6vCGaLRqEod8OAx40BGs0WQNOVVDuwpnVvhqTlze%2FRKrG5JmfXgWjR3D6CFy9CJoHoOVwoeGDbg1biz76yWG83TFUZ0Xd2A6EqZBmc8i2vV19Si6d7Sd48DMkP776%2Bf3r%2F3zyyn1wWyG1FT5UvxF09J3hDVOSvRumdOTeepqpWPXpZHc3M5rJp757T26XxoqVa27w7Vt8QkzKw1vSZas0ESrpOPL9khJC2mVjuSS%2FrLhNyTZyt7WU2yRPVzfeXl6JUyudUyYZgapH3Y%2FA1Zg8W%2Fxx9isvffYAyo5g8wpxfkymAWWOwNMduHSm3hkCq2c9LPVQ5tXQNtjsUSsCLWeYsgruf5jN6l13Bx3rgWa3kcQVCluh0BWoHsDlF4dZao%2BvPvx6Et%2BAaW%2FItPX2mLb6i%2FPROnVSk2HkR9JvSBa1WbRAfdGOWm1G24FcYCENkLkx76%2F9%2FR8AAAD%2F%2FwEAAP%2F%2FAQ%2F3bm0EAAA%3D HTTP/1.1
Host: cuesingle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Cookie: u_pl=17474638; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecc155c597e0c2d34a1550951c12db23b2=[3262651]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 20 Nov 2022 15:59:37 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ac1a0cbdc8c649645bea5cf8310da3f4
Strict-Transport-Security: max-age=0; includeSubdomains
veilsuccessfully.com/pixel/pure
173.233.139.164204 No Content 0 B URL HTTP/1.1 veilsuccessfully.com/pixel/pure
IP 173.233.139.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /pixel/pure HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://totalsportekplus.com/
Origin: http://totalsportekplus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.19.5
Date: Sun, 20 Nov 2022 15:59:37 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0
cuesingle.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXiPKevLnsgelL4KCTLp7pndm3MNiXCPBmGR%2FJOfqqppJOdVdTVX%2FTOYUXZTFg4ye1FPnm2SDGsT1tCCCTDzsEhB2ECQHcxY8CnuWSQbGfVD13lffO3zfe%2FXpbn5KPOT0ZON9PZBK0cWw5rmvbcqE69K6a7dc36t5V9xNmVxuXHH708sUb%2FpeWPNed98VrKcXA8%2F3PN%2Fz3WVpREf3F89YyPSw7dfaXq0R1Pywgb55EtvcgaUOeHFKXoDkk6e3Ht6DZGMk8Y%2FXhO1lOn3jnThXNNMGBT%2F4IOklukwQz8uOcdBJDmbd0HZCyFcXoJODmQPoYm%2FqAJGcEOdPH1FyMJOJqNg%2FVxopiAQRfw5lMYZQY0g6BtO3IfkjAjCOtXUk8d01bUq6fc7SKTshC4%2F%2FhSwnZOGvl5DEPywp2XdvapVnUicW%2FU4F2R9DdsdI8yNkAweyPALLPobkv5PFx6tI4r11qzQkr87cSzmG7IyhxBDUOsinRzrIOw7y1EHMT1watjue1%2BxEnXq91WCM1euMha3LPOT1RqvjIWdTeUNk6RBMDcHMDlKzg54cwuS%2Fwm5VsNyBzSbEub6DglcoBUFpCUpKUEqCMiMoi2qfKxvY6i5XNo%2F8WQ5muV6NdNbdpfs664qE7Kan5PnpXJyLe2voiROX%2BWHIwnZTeCzg9Qb1w9Brhz7zAx4F9SiAlRWkvXBmdSAn5OXNL5HKCXnmp1cR0SNYdQQmXwTNfdBy1Aw80K1Ro%2BVhkBzG211NVVbUtOmC6wpptoBs29lVp%2BTS2X78Bz9DsOOrn9%2B%2F%2Fs8nr9wHMxVSU%2BFD%2BRtBV90Z3dAl2buhS0vuraeZjOWATnd3M6OZeOq798R2qQ1fuWaH377FpsS0PLwlbLZKEy6TriXfL0nOhVnWhgnyy4rdFNFGbreWcpPk6erG28srcWqEtVInY1D5qPcRmJyQZ4s%2Fzn7lpc8eQJoxTF4hzo%2FJLCD1EVi6A5vO1VtNYNS8J0odlHk1MkE0f1SSQIk5plEF%2Bz8czetdewdd44Bmt5HEFQpToVAVqBrC5hdHWWqOrz78ehrfIFLOKFLG2YuUUV%2Bcj9bKEzf0G6IVtZqM80gw7jeDeqvueQHnjWZb%2BG1kdsIGa3%2F%2FBwAA%2F%2F8BAAD%2F%2FxUHeYhtBAAA
173.233.137.44200 OK 7 B URL HTTP/1.1 cuesingle.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXiPKevLnsgelL4KCTLp7pndm3MNiXCPBmGR%2FJOfqqppJOdVdTVX%2FTOYUXZTFg4ye1FPnm2SDGsT1tCCCTDzsEhB2ECQHcxY8CnuWSQbGfVD13lffO3zfe%2FXpbn5KPOT0ZON9PZBK0cWw5rmvbcqE69K6a7dc36t5V9xNmVxuXHH708sUb%2FpeWPNed98VrKcXA8%2F3PN%2Fz3WVpREf3F89YyPSw7dfaXq0R1Pywgb55EtvcgaUOeHFKXoDkk6e3Ht6DZGMk8Y%2FXhO1lOn3jnThXNNMGBT%2F4IOklukwQz8uOcdBJDmbd0HZCyFcXoJODmQPoYm%2FqAJGcEOdPH1FyMJOJqNg%2FVxopiAQRfw5lMYZQY0g6BtO3IfkjAjCOtXUk8d01bUq6fc7SKTshC4%2F%2FhSwnZOGvl5DEPywp2XdvapVnUicW%2FU4F2R9DdsdI8yNkAweyPALLPobkv5PFx6tI4r11qzQkr87cSzmG7IyhxBDUOsinRzrIOw7y1EHMT1watjue1%2BxEnXq91WCM1euMha3LPOT1RqvjIWdTeUNk6RBMDcHMDlKzg54cwuS%2Fwm5VsNyBzSbEub6DglcoBUFpCUpKUEqCMiMoi2qfKxvY6i5XNo%2F8WQ5muV6NdNbdpfs664qE7Kan5PnpXJyLe2voiROX%2BWHIwnZTeCzg9Qb1w9Brhz7zAx4F9SiAlRWkvXBmdSAn5OXNL5HKCXnmp1cR0SNYdQQmXwTNfdBy1Aw80K1Ro%2BVhkBzG211NVVbUtOmC6wpptoBs29lVp%2BTS2X78Bz9DsOOrn9%2B%2F%2Fs8nr9wHMxVSU%2BFD%2BRtBV90Z3dAl2buhS0vuraeZjOWATnd3M6OZeOq798R2qQ1fuWaH377FpsS0PLwlbLZKEy6TriXfL0nOhVnWhgnyy4rdFNFGbreWcpPk6erG28srcWqEtVInY1D5qPcRmJyQZ4s%2Fzn7lpc8eQJoxTF4hzo%2FJLCD1EVi6A5vO1VtNYNS8J0odlHk1MkE0f1SSQIk5plEF%2Bz8czetdewdd44Bmt5HEFQpToVAVqBrC5hdHWWqOrz78ehrfIFLOKFLG2YuUUV%2Bcj9bKEzf0G6IVtZqM80gw7jeDeqvueQHnjWZb%2BG1kdsIGa3%2F%2FBwAA%2F%2F8BAAD%2F%2FxUHeYhtBAAA
IP 173.233.137.44:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXiPKevLnsgelL4KCTLp7pndm3MNiXCPBmGR%2FJOfqqppJOdVdTVX%2FTOYUXZTFg4ye1FPnm2SDGsT1tCCCTDzsEhB2ECQHcxY8CnuWSQbGfVD13lffO3zfe%2FXpbn5KPOT0ZON9PZBK0cWw5rmvbcqE69K6a7dc36t5V9xNmVxuXHH708sUb%2FpeWPNed98VrKcXA8%2F3PN%2Fz3WVpREf3F89YyPSw7dfaXq0R1Pywgb55EtvcgaUOeHFKXoDkk6e3Ht6DZGMk8Y%2FXhO1lOn3jnThXNNMGBT%2F4IOklukwQz8uOcdBJDmbd0HZCyFcXoJODmQPoYm%2FqAJGcEOdPH1FyMJOJqNg%2FVxopiAQRfw5lMYZQY0g6BtO3IfkjAjCOtXUk8d01bUq6fc7SKTshC4%2F%2FhSwnZOGvl5DEPywp2XdvapVnUicW%2FU4F2R9DdsdI8yNkAweyPALLPobkv5PFx6tI4r11qzQkr87cSzmG7IyhxBDUOsinRzrIOw7y1EHMT1watjue1%2BxEnXq91WCM1euMha3LPOT1RqvjIWdTeUNk6RBMDcHMDlKzg54cwuS%2Fwm5VsNyBzSbEub6DglcoBUFpCUpKUEqCMiMoi2qfKxvY6i5XNo%2F8WQ5muV6NdNbdpfs664qE7Kan5PnpXJyLe2voiROX%2BWHIwnZTeCzg9Qb1w9Brhz7zAx4F9SiAlRWkvXBmdSAn5OXNL5HKCXnmp1cR0SNYdQQmXwTNfdBy1Aw80K1Ro%2BVhkBzG211NVVbUtOmC6wpptoBs29lVp%2BTS2X78Bz9DsOOrn9%2B%2F%2Fs8nr9wHMxVSU%2BFD%2BRtBV90Z3dAl2buhS0vuraeZjOWATnd3M6OZeOq798R2qQ1fuWaH377FpsS0PLwlbLZKEy6TriXfL0nOhVnWhgnyy4rdFNFGbreWcpPk6erG28srcWqEtVInY1D5qPcRmJyQZ4s%2Fzn7lpc8eQJoxTF4hzo%2FJLCD1EVi6A5vO1VtNYNS8J0odlHk1MkE0f1SSQIk5plEF%2Bz8czetdewdd44Bmt5HEFQpToVAVqBrC5hdHWWqOrz78ehrfIFLOKFLG2YuUUV%2Bcj9bKEzf0G6IVtZqM80gw7jeDeqvueQHnjWZb%2BG1kdsIGa3%2F%2FBwAA%2F%2F8BAAD%2F%2FxUHeYhtBAAA HTTP/1.1
Host: cuesingle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Cookie: u_pl=17474638; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecc155c597e0c2d34a1550951c12db23b2=[3262651]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 20 Nov 2022 15:59:37 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8e5988b717124f26a7db251cdfd56bed
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/si/40/10/fc/4010fc193ad35fbbc2adbb9248bd94e3/1646333155.jpg
45.133.44.10200 OK 43 kB URL HTTP/2 cdn.cloudimagesb.com/si/40/10/fc/4010fc193ad35fbbc2adbb9248bd94e3/1646333155.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 580x435, components 3\012- data
Hash aaed1f28f7895b8e120ff16ff720cb9b
b5bb819c46db891bde121b61e96d7972ab6fd80b
95b978c133b25457f9d36fc6b397f33ef38abeff710d5433fb600f2a73714bc7
GET /si/40/10/fc/4010fc193ad35fbbc2adbb9248bd94e3/1646333155.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:37 GMT
content-type: image/jpeg
content-length: 42903
server: nginx/1.17.6
last-modified: Thu, 03 Mar 2022 18:46:02 GMT
etag: "62210cea-a797"
expires: Tue, 22 Nov 2022 15:59:37 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
veilsuccessfully.com/pixel/pure
173.233.139.164200 OK 0 B URL HTTP/1.1 veilsuccessfully.com/pixel/pure
IP 173.233.139.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /pixel/pure HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 75
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 20 Nov 2022 15:59:37 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
veilsuccessfully.com/pixel/pure
173.233.139.164200 OK 0 B URL HTTP/1.1 veilsuccessfully.com/pixel/pure
IP 173.233.139.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /pixel/pure HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 75
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 20 Nov 2022 15:59:37 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: https://st.chatango.com/
Origin: https://st.chatango.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:36 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE
access-control-allow-origin: https://st.chatango.com
server-processing-duration-in-ticks: 423263
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
tags.h12-media.com/load2.js
154.51.131.137200 OK 98 kB URL HTTP/2 tags.h12-media.com/load2.js
IP 154.51.131.137:0
File type HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 23a5f46fa4ce325c30a3be4a2aef0c01
ca5893e62be0bce6884ec6ba96ea657b3724dff4
3ca6aee82460751181b5037387ed29a0316eaa3cefb66262be18497fbb64fb31
GET /load2.js HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 17 Nov 2022 20:29:09 GMT
accept-ranges: bytes
etag: "86b5363fc3fad81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ARR/3.0
date: Sun, 20 Nov 2022 15:59:37 GMT
content-length: 98011
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=rtus&domain=st.chatango.com&sn=FirefoxSyncframe&so=0&topUrl=totalsportekplus.com&info=cjaIa180M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRnhlVjYlMkJic213YzFvY0lBa3V1WUVyQ3FnYVZFOUlwa1dSUTlaTG9MUTQy&idsd=2077180353,147754168&rtusCallerId=72&lsw=1
178.250.2.146200 OK 670 B URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=st.chatango.com&sn=FirefoxSyncframe&so=0&topUrl=totalsportekplus.com&info=cjaIa180M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRnhlVjYlMkJic213YzFvY0lBa3V1WUVyQ3FnYVZFOUlwa1dSUTlaTG9MUTQy&idsd=2077180353,147754168&rtusCallerId=72&lsw=1
IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with very long lines (978), with no line terminators
Hash 3b6aa6fdbed6491acf7f860342a86fb3
17216e81a38716e6d80c5248bec507bbf5c3e82d
38c8257ccab5af594a4c0fa4b56236d21eaac1f70cdec7b9c3ecd8bcb5f0e2dc
GET /sid/json?origin=rtus&domain=st.chatango.com&sn=FirefoxSyncframe&so=0&topUrl=totalsportekplus.com&info=cjaIa180M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRnhlVjYlMkJic213YzFvY0lBa3V1WUVyQ3FnYVZFOUlwa1dSUTlaTG9MUTQy&idsd=2077180353,147754168&rtusCallerId=72&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=totalsportekplus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:37 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 963693
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
weakstreams.com/streams/10230541
104.21.233.165200 OK 2.4 kB URL HTTP/2 weakstreams.com/streams/10230541
IP 104.21.233.165:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (825), with CRLF, LF line terminators
Hash 35d5e25622d8d51cc83e4f1b1b3d9e98
68a35553820df945ad05a2c30a02a80fec1fde04
a34447d30bf81db20a5d6489cc23466a832f2506a9959fe2a65827cfafb0f317
GET /streams/10230541 HTTP/1.1
Host: weakstreams.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://totalsportekplus.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:35 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=1800
cf-cache-status: HIT
age: 5405
last-modified: Sun, 20 Nov 2022 14:29:30 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8JKHkqjE43tuGl%2FHS%2FtA%2F9W1SFUnsvphWjnkP9DInVlIg6cm8I3gtCganqEqxw2iX42tuu80tQ0M1cp9ILKJIZ2cXZf6mUyRmSgdxRSQoLsitSf7lkNQClnnXxaJN9NCSbs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c64cfe0682-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald%3A300%2Cregular%2C700&subset=latin%2Cvietnamese%2Ccyrillic%2Clatin-ext%2Cgreek%2Ccyrillic-ext%2Cgreek-ext&ver=4.5.15
142.250.74.10200 OK 856 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald%3A300%2Cregular%2C700&subset=latin%2Cvietnamese%2Ccyrillic%2Clatin-ext%2Cgreek%2Ccyrillic-ext%2Cgreek-ext&ver=4.5.15
IP 142.250.74.10:0
Hash d22eb949608bc92f918bdfe4a58fc829
554fa7a5c7c44f15cf0bde3fe87c2421bd1aa401
35f70026df6416d36feec2a57a433ee812bd925c60704b8085f62bd6ee215ba6
GET /css?family=Oswald%3A300%2Cregular%2C700&subset=latin%2Cvietnamese%2Ccyrillic%2Clatin-ext%2Cgreek%2Ccyrillic-ext%2Cgreek-ext&ver=4.5.15 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 20 Nov 2022 15:59:34 GMT
date: Sun, 20 Nov 2022 15:59:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.reddit.com/api/info.json?url=https%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&jsonp=_ate.cbs.rcb_31yp0
151.101.85.140200 OK 144 B URL HTTP/2 www.reddit.com/api/info.json?url=https%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&jsonp=_ate.cbs.rcb_31yp0
IP 151.101.85.140:0
File type ASCII text, with no line terminators
Hash 7ef8516f335913868134d1246658e39b
79c49f1632b56c875277d9cf38e7d4eb7e2d60c0
b3d333aa162ee87a78fc11e14a2f28ffab32b3cd0b53eba5f0c03b5c92047329
GET /api/info.json?url=https%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&jsonp=_ate.cbs.rcb_31yp0 HTTP/1.1
Host: www.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-ua-compatible: IE=edge
expires: -1
cache-control: private, s-maxage=0, max-age=0, must-revalidate, no-store
x-ratelimit-remaining: 299
x-ratelimit-used: 1
x-ratelimit-reset: 23
access-control-allow-origin: *
access-control-expose-headers: X-Moose
x-moose: majestic
accept-ranges: bytes
date: Sun, 20 Nov 2022 15:59:37 GMT
via: 1.1 varnish
strict-transport-security: max-age=31536000; includeSubdomains
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
set-cookie: csv=2; Max-Age=63072000; Domain=.reddit.com; Path=/; Secure; SameSite=None
edgebucket=bWiO2jmXZm6tg0z7z6; Domain=reddit.com; Max-Age=63071999; Path=/; secure
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.2, "failure_fraction": 0.2}
content-length: 144
X-Firefox-Spdy: h2
www.reddit.com/api/info.json?url=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&jsonp=_ate.cbs.rcb_fzz0
151.101.85.140200 OK 143 B URL HTTP/2 www.reddit.com/api/info.json?url=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&jsonp=_ate.cbs.rcb_fzz0
IP 151.101.85.140:0
File type ASCII text, with no line terminators
Hash 2891b2b66d47ae872090d3885643ea5f
d396df3027156ea06f6a3d8c44fef1f749479e86
d16acd831448066aa5b27809e71d4960ddb45a31040a170f183267dcd54c3001
GET /api/info.json?url=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&jsonp=_ate.cbs.rcb_fzz0 HTTP/1.1
Host: www.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-ua-compatible: IE=edge
expires: -1
cache-control: private, s-maxage=0, max-age=0, must-revalidate, no-store
x-ratelimit-remaining: 298
x-ratelimit-used: 2
x-ratelimit-reset: 23
access-control-allow-origin: *
access-control-expose-headers: X-Moose
x-moose: majestic
accept-ranges: bytes
date: Sun, 20 Nov 2022 15:59:37 GMT
via: 1.1 varnish
strict-transport-security: max-age=31536000; includeSubdomains
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
set-cookie: csv=2; Max-Age=63072000; Domain=.reddit.com; Path=/; Secure; SameSite=None
edgebucket=Jr49AN417TS4Ju2eMt; Domain=reddit.com; Max-Age=63071999; Path=/; secure
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.2, "failure_fraction": 0.2}
content-length: 143
X-Firefox-Spdy: h2
csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
178.250.2.150200 OK 43 B URL HTTP/2 csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
IP 178.250.2.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 HTTP/1.1
Host: csm.nl.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:37 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 2bb8286286d118d03432a6a5fc93d5bd
c7606c53e9d596f94e0824117937b2606ac91211
dccbc67b7f2f3cee25bd6e9d37f77dba042f58a2b2baa94bc622e571379c4fe6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2893
Cache-Control: max-age=136190
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:38 GMT
Etag: "6379b49b-116"
Expires: Tue, 22 Nov 2022 05:49:28 GMT
Last-Modified: Sun, 20 Nov 2022 05:01:15 GMT
Server: ECS (amb/6B7E)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 2bb8286286d118d03432a6a5fc93d5bd
c7606c53e9d596f94e0824117937b2606ac91211
dccbc67b7f2f3cee25bd6e9d37f77dba042f58a2b2baa94bc622e571379c4fe6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2893
Cache-Control: max-age=136190
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:38 GMT
Etag: "6379b49b-116"
Expires: Tue, 22 Nov 2022 05:49:28 GMT
Last-Modified: Sun, 20 Nov 2022 05:01:15 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278
f.h12-media.com/?init=1&rnd=0.04560416986378446&h12_autoplaced_enable=1&h12_autoplaced_pub=472e3d78449e40f147d8fb80453c43da&h12_autoplaced_adunit=26959
172.67.211.118200 OK 26 kB URL HTTP/2 f.h12-media.com/?init=1&rnd=0.04560416986378446&h12_autoplaced_enable=1&h12_autoplaced_pub=472e3d78449e40f147d8fb80453c43da&h12_autoplaced_adunit=26959
IP 172.67.211.118:0
File type JSON data\012- , ASCII text, with very long lines (884), with no line terminators
Hash 44aa8ad195b599cca4c726585af63468
0ab01359413cfbb726a184b5678a7f01a409094d
b86c1e1762814d9888cde5ec3850372d50069520c69244909caf343ce1e06c60
GET /?init=1&rnd=0.04560416986378446&h12_autoplaced_enable=1&h12_autoplaced_pub=472e3d78449e40f147d8fb80453c43da&h12_autoplaced_adunit=26959 HTTP/1.1
Host: f.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:38 GMT
content-type: application/json; Charset=UTF-8
cache-control: max-age=3600,private
vary: Accept-Encoding
access-control-allow-origin: *
x-powered-by: ASP.NET, ARR/3.0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K762JJTBOnKs4bcfyHQe8fKXnjgVmqZyPtYpFYK8OEKI0u4aEbuGMzcedD7xFaWePqDrjh%2FwGZfe7il56OYiF5k%2BPCurDRQVG5I83YGZE5mmQa%2FEufV6tej%2FhbBWG4iLpxs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264d6bae3b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b49d97cae29aeb3468953c397e82f247
8c31f568adcc1b4d9749c1d41c4c163e28cbd750
d2623a6ce5e3b792c0a24e0eebdfbc8129c2a870439656c37b17ca02ed8bdcc8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2623A6CE5E3B792C0A24E0EEBDFBC8129C2A870439656C37B17CA02ED8BDCC8"
Last-Modified: Sat, 19 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3996
Expires: Sun, 20 Nov 2022 17:06:14 GMT
Date: Sun, 20 Nov 2022 15:59:38 GMT
Connection: keep-alive
bidder.h12-media.com/prebid/?payload=7o1jLiF-cWB2zzJxV0MiO4dTAT8UKkD4B_wUx6X4I-S3ghueR95Eb9DX0BJu6sWpcepsBcXsYuMVSr2-hvbOlQdisE8UOCj_IR5PaII7RHdQKNa55I7SLKZpI8GSNPs1cNbxF48lu9_D1OmwpJvFZ4gDA-BIxId7eJzRFCtV-MyJEH92knlGBh0i5QuBIASCoMmuTb7G-DYE6A1alfrAstwEyq822DfhGerheQdeHm0tBFgQyLTmZ0fIPZuSgAt-afaKjCdfwKqkYrlyH_JA_DJtUEw6hJUx1k78PEN7Rlc2iOPIEHAAjz9DB0hq2oIIF7IMXT9cfHMciESMsJx_8eGiPvifUwEY7VXe_0268JHV0Eap3f2gCKNe_t3NY1A9GnV9XdfG3GBQ2yZaRUltS6-fpWVPhL9NsuBpAAAJZpvBWufEHqJbNnZ4RxGO-HzI638t6Ij1SNTirZDesXRjau9vXSzyNZyjtpdDgLrEKQ7c61
154.51.131.137200 OK 3.2 kB URL HTTP/2 bidder.h12-media.com/prebid/?payload=7o1jLiF-cWB2zzJxV0MiO4dTAT8UKkD4B_wUx6X4I-S3ghueR95Eb9DX0BJu6sWpcepsBcXsYuMVSr2-hvbOlQdisE8UOCj_IR5PaII7RHdQKNa55I7SLKZpI8GSNPs1cNbxF48lu9_D1OmwpJvFZ4gDA-BIxId7eJzRFCtV-MyJEH92knlGBh0i5QuBIASCoMmuTb7G-DYE6A1alfrAstwEyq822DfhGerheQdeHm0tBFgQyLTmZ0fIPZuSgAt-afaKjCdfwKqkYrlyH_JA_DJtUEw6hJUx1k78PEN7Rlc2iOPIEHAAjz9DB0hq2oIIF7IMXT9cfHMciESMsJx_8eGiPvifUwEY7VXe_0268JHV0Eap3f2gCKNe_t3NY1A9GnV9XdfG3GBQ2yZaRUltS6-fpWVPhL9NsuBpAAAJZpvBWufEHqJbNnZ4RxGO-HzI638t6Ij1SNTirZDesXRjau9vXSzyNZyjtpdDgLrEKQ7c61
IP 154.51.131.137:0
File type JSON data\012- HTML document text\012- HTML document, ASCII text, with very long lines (3140), with no line terminators
Hash c43ef8c372b5b18eb419a9c4e08e37be
0c0fcc848a809adadd1a885f0c1bde5b8246e25b
cd0ce0b95fe43fb24581bad5610d2a923c821d7d676616cdb88a6ecfc2d0b54d
POST /prebid/?payload=7o1jLiF-cWB2zzJxV0MiO4dTAT8UKkD4B_wUx6X4I-S3ghueR95Eb9DX0BJu6sWpcepsBcXsYuMVSr2-hvbOlQdisE8UOCj_IR5PaII7RHdQKNa55I7SLKZpI8GSNPs1cNbxF48lu9_D1OmwpJvFZ4gDA-BIxId7eJzRFCtV-MyJEH92knlGBh0i5QuBIASCoMmuTb7G-DYE6A1alfrAstwEyq822DfhGerheQdeHm0tBFgQyLTmZ0fIPZuSgAt-afaKjCdfwKqkYrlyH_JA_DJtUEw6hJUx1k78PEN7Rlc2iOPIEHAAjz9DB0hq2oIIF7IMXT9cfHMciESMsJx_8eGiPvifUwEY7VXe_0268JHV0Eap3f2gCKNe_t3NY1A9GnV9XdfG3GBQ2yZaRUltS6-fpWVPhL9NsuBpAAAJZpvBWufEHqJbNnZ4RxGO-HzI638t6Ij1SNTirZDesXRjau9vXSzyNZyjtpdDgLrEKQ7c61 HTTP/1.1
Host: bidder.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1135
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Cookie: 7thMile=8f9549a1%2Df6a6%2D4ab4%2Daac6%2D52b0d87dde08
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-store,no-cache,max-age=0,private
content-type: application/json; Charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
set-cookie: 7thMile=1f1f2350%2D86c0%2D406a%2D94b9%2D9951ab0c696e; Max-Age=5000000; Domain=.h12-media.com; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-origin: http://totalsportekplus.com
srg-x: x-.136
procadsent: 0.0312
x-powered-by: ASP.NET, ARR/3.0
date: Sun, 20 Nov 2022 15:59:38 GMT
content-length: 3163
X-Firefox-Spdy: h2
ghb.adtelligent.com/v2/auction/
185.239.173.66200 OK 1.1 kB URL HTTP/1.1 ghb.adtelligent.com/v2/auction/
IP 185.239.173.66:0
File type JSON data\012- , ASCII text, with very long lines (3412), with no line terminators
Hash 0ec2144afd57558f4a7b27e5a32929f2
3c1c16efa18a4fd42bfec31bfd67edd0e52e860d
40b3ed0f245fde7de731c1d88ffc96710df2fd0c4a64ee3dc59c4fc65ca2d448
POST /v2/auction/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 833
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Adtelligent
Date: Sun, 20 Nov 2022 15:59:37 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1112
Access-Control-Allow-Origin: http://totalsportekplus.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
X-Robots-Tag: noindex
Content-Encoding: gzip
prebid.a-mo.net/a/c
147.75.85.234204 No Content 256 kB IP 147.75.85.234:0
Size 256 kB (255622 bytes)
Hash 825e6978b7207d2eb8d3bfe9138bea3a
c1a56a9d816a7d4ad34a0c42754313c10c88b057
46c3efd33258d762161c3f451ffd7e444c80d48b3374aabd02b702791d153ba5
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1542
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: http://totalsportekplus.com
cache-control: max-age=0, private, must-revalidate
date: Sun, 20 Nov 2022 15:59:38 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
bidder.criteo.com/cdb?profileId=207&av=34&wv=7.16.0&cb=55500711368&lsavail=1
178.250.2.131204 No Content 0 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=7.16.0&cb=55500711368&lsavail=1
IP 178.250.2.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdb?profileId=207&av=34&wv=7.16.0&cb=55500711368&lsavail=1 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1321
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 20 Nov 2022 15:59:38 GMT
vary: Origin
server: Finatra
timing-allow-origin: *
access-control-allow-origin: http://totalsportekplus.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash cd29a44e2f43e4fb28d91c91f9e322da
f112e4e4486931a7c8028655705a377d5c3ef33a
50328a10eb9a9218f67ed0ff34544037cc395153f03e9ed604c87d53f856d519
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 20 Nov 2022 15:59:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 19 Nov 2022 07:45:26 GMT
Expires: Sat, 26 Nov 2022 07:45:25 GMT
Etag: "f112e4e4486931a7c8028655705a377d5c3ef33a"
Cache-Control: max-age=488146,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76d264db3a02b51b-OSL
widgets.outbrain.com/outbrain.js
23.38.201.81200 OK 76 kB URL HTTP/2 widgets.outbrain.com/outbrain.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (1595)
Hash 28e1f32efc41e014810162f1e9e7d6d5
aae6766504a2a6fc2436a13554246de796595b0a
18f584ef3613b47d3f6dad7272fcc82ff5196ba2621cab57674419c46980c864
GET /outbrain.js HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
x-traceid: 91d410dd9939537f25233840c0a2c720
cache-control: max-age=14400
last-modified: Thu, 17 Nov 2022 09:19:00 GMT
etag: "17-U4XcUL2DwjZwpBdoF/RzbOpR5/g"
vary: Accept-Encoding
content-encoding: gzip
content-length: 75614
date: Sun, 20 Nov 2022 15:59:38 GMT
edge-cache-tag: widget-cheetah
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widget-pixels.outbrain.com/widget/detect/px.gif?ch=1
23.38.201.81200 OK 43 B URL HTTP/2 widget-pixels.outbrain.com/widget/detect/px.gif?ch=1
IP 23.38.201.81:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /widget/detect/px.gif?ch=1 HTTP/1.1
Host: widget-pixels.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-length: 43
content-type: image/gif
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3:1601475749.911431"
last-modified: Wed, 30 Sep 2020 14:22:29 GMT
server: AkamaiNetStorage
cache-control: max-age=2592000
expires: Tue, 20 Dec 2022 15:59:39 GMT
date: Sun, 20 Nov 2022 15:59:39 GMT
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
tags.h12-media.com/rtb/?pname=hb_result_v3&impdata=7o1jLiF%2DcWB2zzJxV0MiO4dTAT8UKkD4B%5FwUx6X4I%2DS3ghueR95Eb9DX0BJu6sWpcepsBcXsYuMVSr2%2DhvbOlQdisE8UOCj%5FIR5PaII7RHdQKNa55I7SLKZpI8GSNPs1cNbxF48lu9%5FD1OmwpJvFZ4gDA%2DBIxId7eJzRFCtV%2DMyJEH92knlGBh0i5QuBIASCoMmuTb7G%2DDYE6A1alfrAstwEyq822DfhGerheQdeHm0tBFgQyLTmZ0fIPZuSgAt%2DafaKjCdfwKqkYrlyH%5FJA%5FDJtUEw6hJUx1k78PEN7Rlc2iOPIEHAAjz9DB0hq2oIIF7IMXT9cfHMciESMsJx%5F8eGiPvifUwEY7VXe%5F0268JHV0Eap3f2gCKNe%5Ft3NY1A9GnV9XdfG3GBQ2yZaRUltS6%2DfpWVPhL9NsuBpAAAJZpvBWufEHqJbNnZ4RxGO%2DHzI638t6Ij1SNTirZDesXRjau9vXSzyNZyjtpdDgLrEKQ7c61&size=970x90&wp=0%2E00001&bd=OBT&d=1
154.51.131.137200 OK 144 B URL HTTP/2 tags.h12-media.com/rtb/?pname=hb_result_v3&impdata=7o1jLiF%2DcWB2zzJxV0MiO4dTAT8UKkD4B%5FwUx6X4I%2DS3ghueR95Eb9DX0BJu6sWpcepsBcXsYuMVSr2%2DhvbOlQdisE8UOCj%5FIR5PaII7RHdQKNa55I7SLKZpI8GSNPs1cNbxF48lu9%5FD1OmwpJvFZ4gDA%2DBIxId7eJzRFCtV%2DMyJEH92knlGBh0i5QuBIASCoMmuTb7G%2DDYE6A1alfrAstwEyq822DfhGerheQdeHm0tBFgQyLTmZ0fIPZuSgAt%2DafaKjCdfwKqkYrlyH%5FJA%5FDJtUEw6hJUx1k78PEN7Rlc2iOPIEHAAjz9DB0hq2oIIF7IMXT9cfHMciESMsJx%5F8eGiPvifUwEY7VXe%5F0268JHV0Eap3f2gCKNe%5Ft3NY1A9GnV9XdfG3GBQ2yZaRUltS6%2DfpWVPhL9NsuBpAAAJZpvBWufEHqJbNnZ4RxGO%2DHzI638t6Ij1SNTirZDesXRjau9vXSzyNZyjtpdDgLrEKQ7c61&size=970x90&wp=0%2E00001&bd=OBT&d=1
IP 154.51.131.137:0
File type ASCII text, with no line terminators
Hash d45013d657142c297ef663156e1ef6ff
6f849481151f70f36ed3ce025573945893db0c9d
a754969f42738801be2ef332742b3fea538bba504a263a80faabf7bb75fddb8a
GET /rtb/?pname=hb_result_v3&impdata=7o1jLiF%2DcWB2zzJxV0MiO4dTAT8UKkD4B%5FwUx6X4I%2DS3ghueR95Eb9DX0BJu6sWpcepsBcXsYuMVSr2%2DhvbOlQdisE8UOCj%5FIR5PaII7RHdQKNa55I7SLKZpI8GSNPs1cNbxF48lu9%5FD1OmwpJvFZ4gDA%2DBIxId7eJzRFCtV%2DMyJEH92knlGBh0i5QuBIASCoMmuTb7G%2DDYE6A1alfrAstwEyq822DfhGerheQdeHm0tBFgQyLTmZ0fIPZuSgAt%2DafaKjCdfwKqkYrlyH%5FJA%5FDJtUEw6hJUx1k78PEN7Rlc2iOPIEHAAjz9DB0hq2oIIF7IMXT9cfHMciESMsJx%5F8eGiPvifUwEY7VXe%5F0268JHV0Eap3f2gCKNe%5Ft3NY1A9GnV9XdfG3GBQ2yZaRUltS6%2DfpWVPhL9NsuBpAAAJZpvBWufEHqJbNnZ4RxGO%2DHzI638t6Ij1SNTirZDesXRjau9vXSzyNZyjtpdDgLrEKQ7c61&size=970x90&wp=0%2E00001&bd=OBT&d=1 HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Cookie: 7thMile=1f1f2350%2D86c0%2D406a%2D94b9%2D9951ab0c696e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-store,no-cache,max-age=0,private
content-type: application/x-javascript; Charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
srg-x: x-.182
x-powered-by: ARR/3.0
date: Sun, 20 Nov 2022 15:59:38 GMT
content-length: 144
X-Firefox-Spdy: h2
tcheck.outbrainimg.com/tcheck/check/dG90YWxzcG9ydGVrcGx1cy5jb20=
23.38.201.176200 OK 16 B URL HTTP/1.1 tcheck.outbrainimg.com/tcheck/check/dG90YWxzcG9ydGVrcGx1cy5jb20=
IP 23.38.201.176:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ce08a60aa308225db15c98edf4ae2447
bacf25489bad0312aa2f37fc735fa7e57b2d7306
929701ed632814943e3df803ddd9e3f179ccf889c0ad7b7f3392bd8d109b174f
GET /tcheck/check/dG90YWxzcG9ydGVrcGx1cy5jb20= HTTP/1.1
Host: tcheck.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 16
X-TraceId: 296bbf89c042f4c4421b4a62006b650a
ETag: W/"10-us8lSJutAxKqLzf8c1+n5XstcwY"
Cache-Control: max-age=34480
Expires: Mon, 21 Nov 2022 01:34:19 GMT
Date: Sun, 20 Nov 2022 15:59:39 GMT
Connection: keep-alive
Access-Control-Max-Age: 43200
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *
odb.outbrain.com/utils/platforms?contentUrl=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&idx=0&rand=58178&key=H12ME1OGI4M4PLMMGPJ01MHAC&widgetJSId=AR_2&va=true&et=true&format=html&rtbEnabled=true&adblck=false&abwl=false&extid=1641818&pubImpId=213f8b36d29b0b28&px=0&py=0&vpd=0&cnsntv2=CPixxUqPixxUqBBACBENCFCsAP_AAH_AACiQImtf_X__bX9j-_5_f_t0eY1P9_r3v-QzjhfNt-8F3L_W_L0X42E7NF36pq4KuR4Eu3LBIQNlHMHUTUmwaokVrzHsak2cpyNKJ7LEmnMZO2dYGHtPn9lDuYKY7_5___fz3j-v_t_-39T378X_3_d5_2---vCfV599jLv9____39nP___9v-_9_____-CIYBJhqXkAXYljgybRpVCiBGFYSFQCgAooBhaIrABwcFOysAn1BCwAQCoCMCIEGIKMGAQACAQBIREBIAWCARAEQCAAEAKMBCAAiYBBYAWBgEAAoBoWIAUAAgSEGRwVHKYEBEi0UEtlYglBXsaYQBllgBQKIyKgARKEACwMhIWDmOAJAS4WSBZihfIAAAAA.YAAAAAAAAAAA&cw=970&activeTab=true&darkMode=false&ab=0&wl=00&settings=true&recs=true&version=2000952&sig=feISuCtG&apv=false&false&osLang=en-US&winW=970&winH=90&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpaStat=0&iframe=true&ogn=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844
151.101.86.132200 OK 14 kB URL HTTP/2 odb.outbrain.com/utils/platforms?contentUrl=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&idx=0&rand=58178&key=H12ME1OGI4M4PLMMGPJ01MHAC&widgetJSId=AR_2&va=true&et=true&format=html&rtbEnabled=true&adblck=false&abwl=false&extid=1641818&pubImpId=213f8b36d29b0b28&px=0&py=0&vpd=0&cnsntv2=CPixxUqPixxUqBBACBENCFCsAP_AAH_AACiQImtf_X__bX9j-_5_f_t0eY1P9_r3v-QzjhfNt-8F3L_W_L0X42E7NF36pq4KuR4Eu3LBIQNlHMHUTUmwaokVrzHsak2cpyNKJ7LEmnMZO2dYGHtPn9lDuYKY7_5___fz3j-v_t_-39T378X_3_d5_2---vCfV599jLv9____39nP___9v-_9_____-CIYBJhqXkAXYljgybRpVCiBGFYSFQCgAooBhaIrABwcFOysAn1BCwAQCoCMCIEGIKMGAQACAQBIREBIAWCARAEQCAAEAKMBCAAiYBBYAWBgEAAoBoWIAUAAgSEGRwVHKYEBEi0UEtlYglBXsaYQBllgBQKIyKgARKEACwMhIWDmOAJAS4WSBZihfIAAAAA.YAAAAAAAAAAA&cw=970&activeTab=true&darkMode=false&ab=0&wl=00&settings=true&recs=true&version=2000952&sig=feISuCtG&apv=false&false&osLang=en-US&winW=970&winH=90&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpaStat=0&iframe=true&ogn=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844
IP 151.101.86.132:0
File type Unicode text, UTF-8 text, with very long lines (51248), with no line terminators
Hash a97701c66286ef2f93d964fe71cc9e01
f9218b4c6718f550c205d85318b63ae7b2b9c962
99fd82d950fb32db3b2c15557cb7ce4aee354c269a7e3148097b2e893861c766
GET /utils/platforms?contentUrl=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844&idx=0&rand=58178&key=H12ME1OGI4M4PLMMGPJ01MHAC&widgetJSId=AR_2&va=true&et=true&format=html&rtbEnabled=true&adblck=false&abwl=false&extid=1641818&pubImpId=213f8b36d29b0b28&px=0&py=0&vpd=0&cnsntv2=CPixxUqPixxUqBBACBENCFCsAP_AAH_AACiQImtf_X__bX9j-_5_f_t0eY1P9_r3v-QzjhfNt-8F3L_W_L0X42E7NF36pq4KuR4Eu3LBIQNlHMHUTUmwaokVrzHsak2cpyNKJ7LEmnMZO2dYGHtPn9lDuYKY7_5___fz3j-v_t_-39T378X_3_d5_2---vCfV599jLv9____39nP___9v-_9_____-CIYBJhqXkAXYljgybRpVCiBGFYSFQCgAooBhaIrABwcFOysAn1BCwAQCoCMCIEGIKMGAQACAQBIREBIAWCARAEQCAAEAKMBCAAiYBBYAWBgEAAoBoWIAUAAgSEGRwVHKYEBEi0UEtlYglBXsaYQBllgBQKIyKgARKEACwMhIWDmOAJAS4WSBZihfIAAAAA.YAAAAAAAAAAA&cw=970&activeTab=true&darkMode=false&ab=0&wl=00&settings=true&recs=true&version=2000952&sig=feISuCtG&apv=false&false&osLang=en-US&winW=970&winH=90&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpaStat=0&iframe=true&ogn=http%3A%2F%2Ftotalsportekplus.com%2Fqatar-vs-ecuador-m95844 HTTP/1.1
Host: odb.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache
pragma: no-cache
p3p: policyref="http://www.outbrain.com/w3c/p3p.xml",CP="NOI NID CURa DEVa TAIa PSAa PSDa OUR IND UNI"
set-cookie: obsessionid-p178258=03add4f0-0a80-6c79-0000-018495c447c6|0|1; Max-Age=1800; Expires=Sun, 20 Nov 2022 16:29:39 GMT; Path=/; Domain=outbrain.com
obuid=524b6e66-b2d7-4367-bb0f-a06c477bcf5c; Max-Age=7776000; Expires=Sat, 18 Feb 2023 15:59:39 GMT; Path=/; Domain=outbrain.com
recs_4cad16840b7327fcac983affadfeb665=0B3059916126A4392567789ACD1; Max-Age=60; Expires=Sun, 20 Nov 2022 16:00:39 GMT; Path=/; Domain=outbrain.com
x-traceid: 9ce14d91ac4ae75da3bb3539ddc7a8ab
content-encoding: gzip
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Sun, 20 Nov 2022 15:59:39 GMT
x-served-by: cache-lga21959-LGA, cache-bma1649-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1668959979.405620,VS0,VE216
vary: Accept-Encoding, User-Agent
traffic-path: NYDC1, LGA, BMA, Europe1
content-length: 13753
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/externals/obUserFrame/test.html?lsd=524b6e66-b2d7-4367-bb0f-a06c477bcf5c
23.38.201.81200 OK 686 B URL HTTP/2 widgets.outbrain.com/nanoWidget/externals/obUserFrame/test.html?lsd=524b6e66-b2d7-4367-bb0f-a06c477bcf5c
IP 23.38.201.81:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5b97ec90c55f5357b412825e5e67525a
7dd2ad14245380a730735d18b06346dcbb7aa254
ee4237548288e67df37898219464bc7bd57bf2eb4238a627dcbbb15815090037
GET /nanoWidget/externals/obUserFrame/test.html?lsd=524b6e66-b2d7-4367-bb0f-a06c477bcf5c HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
etag: "1e015194a0e596827cb8971f884eb43c:1668678549.274809"
last-modified: Thu, 17 Nov 2022 09:15:33 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
expires: Sun, 27 Nov 2022 15:59:39 GMT
date: Sun, 20 Nov 2022 15:59:39 GMT
content-length: 686
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/externals/cookie/put.html
23.38.201.81200 OK 416 B URL HTTP/2 widgets.outbrain.com/nanoWidget/externals/cookie/put.html
IP 23.38.201.81:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c0311cf15c21ddda054005e92fad3f9e
5276eceeb0576cbee82010f611dfd6fd305991f9
4f3b933077b738b503f7543ffc82fa0a061f0fe7d0ff1470865fde561a324bcc
GET /nanoWidget/externals/cookie/put.html HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
etag: "c0311cf15c21ddda054005e92fad3f9e:1668678545.516071"
last-modified: Thu, 17 Nov 2022 09:15:33 GMT
server: AkamaiNetStorage
content-length: 416
cache-control: max-age=604800
expires: Sun, 27 Nov 2022 15:59:39 GMT
date: Sun, 20 Nov 2022 15:59:39 GMT
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/images/widgetIcons/achoice.svg
23.38.201.81200 OK 2.7 kB URL HTTP/2 widgets.outbrain.com/images/widgetIcons/achoice.svg
IP 23.38.201.81:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2290)
Hash 9d26fa4e7238ed94f1d0d92afb453b3e
ae18efe7d09337bf2f580b3f5bc912284aad7821
2c87952cc1c23627496c7874271042bdb6af21efdf7cbf36ec4d98e6cec34d04
GET /images/widgetIcons/achoice.svg HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/svg+xml
etag: "9d26fa4e7238ed94f1d0d92afb453b3e:1662969032.874716"
last-modified: Mon, 12 Sep 2022 07:37:47 GMT
server: AkamaiNetStorage
content-length: 2735
cache-control: max-age=2592000
expires: Tue, 20 Dec 2022 15:59:39 GMT
date: Sun, 20 Nov 2022 15:59:39 GMT
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/images/widgetIcons/Close.svg
23.38.201.81200 OK 765 B URL HTTP/2 widgets.outbrain.com/images/widgetIcons/Close.svg
IP 23.38.201.81:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (635)
Hash f740f788e2e26736856f7a3a12457a63
d0ec57a47f6a40f23011dd93219873a5eaee96e2
c2c92cde33538b1187bedea3d0b6d5141e4222eba8092476339aa080cee759ac
GET /images/widgetIcons/Close.svg HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/svg+xml
etag: "f740f788e2e26736856f7a3a12457a63:1662969029.343348"
last-modified: Mon, 12 Sep 2022 07:37:47 GMT
server: AkamaiNetStorage
content-length: 765
cache-control: max-age=2592000
expires: Tue, 20 Dec 2022 15:59:39 GMT
date: Sun, 20 Nov 2022 15:59:39 GMT
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/widgetOBUserSync/obUserSync.html
23.38.201.81200 OK 5.9 kB URL HTTP/2 widgets.outbrain.com/widgetOBUserSync/obUserSync.html
IP 23.38.201.81:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (18153)
Hash 5928244ce30d46c9711e45d93accee88
d3c363e73a369ea78cdbfbc1e083560dcceeefa9
80794a13d3bee288d87c8a52a9d1d946d237068ecd2bbf28e855a6abb4bbeeb2
GET /widgetOBUserSync/obUserSync.html HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
etag: "eb6f12a90369cd1799e9dcdcbd9865cc:1668326737.095418"
last-modified: Sun, 13 Nov 2022 07:59:33 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
expires: Sun, 27 Nov 2022 15:59:39 GMT
date: Sun, 20 Nov 2022 15:59:39 GMT
content-length: 5873
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/2000952/module/userZapping.js?e=1
23.38.201.81200 OK 7.0 kB URL HTTP/2 widgets.outbrain.com/nanoWidget/2000952/module/userZapping.js?e=1
IP 23.38.201.81:0
File type ASCII text, with very long lines (13900)
Hash 048bc52cc9ce848925fcf702c23eea7c
85d1758445671cbf5d052b46ceb8cd645de9d4cb
ee1c2e2fea306e9cab6498b64bb53936c5d551c8e7293c78a4676a330fbcebcb
GET /nanoWidget/2000952/module/userZapping.js?e=1 HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "0abf1860b83caed7948295363d7ab2fe:1668678454.324625"
last-modified: Thu, 17 Nov 2022 09:17:44 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
expires: Sun, 27 Nov 2022 15:59:39 GMT
date: Sun, 20 Nov 2022 15:59:39 GMT
content-length: 6997
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/externals/cookie/test.html
23.38.201.81200 OK 610 B URL HTTP/2 widgets.outbrain.com/nanoWidget/externals/cookie/test.html
IP 23.38.201.81:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 48053d50141031b1511dbd30f9a31288
06966364d22a02a4ed89c18c38d6ddfc6de254c6
6139e1fc0d3709eebbe2b18510cf24361b9f8a538c3529a73c282bafe6c78474
GET /nanoWidget/externals/cookie/test.html HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.outbrain.com/nanoWidget/externals/cookie/put.html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
etag: "48053d50141031b1511dbd30f9a31288:1668678546.302743"
last-modified: Thu, 17 Nov 2022 09:15:33 GMT
server: AkamaiNetStorage
content-length: 610
cache-control: max-age=604800
expires: Sun, 27 Nov 2022 15:59:39 GMT
date: Sun, 20 Nov 2022 15:59:39 GMT
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
images.outbrainimg.com/transform/v3/eyJpdSI6ImEyZjM2ODAwYzkyYjMwOGU3NTRhYTcwODY3NGVjZWVjNjIyODg5OTEzODVmNTcwYzMzMzVlNTZmZTk0YzlkNjkiLCJ3IjoyMDAsImgiOjEwMCwiZCI6MS41LCJjcyI6MCwiZiI6MH0.jpg
23.38.201.176200 OK 8.6 kB URL HTTP/2 images.outbrainimg.com/transform/v3/eyJpdSI6ImEyZjM2ODAwYzkyYjMwOGU3NTRhYTcwODY3NGVjZWVjNjIyODg5OTEzODVmNTcwYzMzMzVlNTZmZTk0YzlkNjkiLCJ3IjoyMDAsImgiOjEwMCwiZCI6MS41LCJjcyI6MCwiZiI6MH0.jpg
IP 23.38.201.176:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x150, components 3\012- data
Hash c207b1f2e767f41f2559a8b57dc90b8b
c9d72f68236a14273fe6c0d7b638d1a3a97f573c
644a105a99848b8149d6a4c36576d4a88677e1106bf889e0770dc37309a9303a
GET /transform/v3/eyJpdSI6ImEyZjM2ODAwYzkyYjMwOGU3NTRhYTcwODY3NGVjZWVjNjIyODg5OTEzODVmNTcwYzMzMzVlNTZmZTk0YzlkNjkiLCJ3IjoyMDAsImgiOjEwMCwiZCI6MS41LCJjcyI6MCwiZiI6MH0.jpg HTTP/1.1
Host: images.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 8630
last-modified: Mon, 14 Nov 2022 08:42:26 GMT
x-traceid: 10c252d3ae1c28a9432688ce5e3a545c
cache-control: max-age=2179866
date: Sun, 20 Nov 2022 15:59:39 GMT
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
timing-allow-origin: *, *
X-Firefox-Spdy: h2
images.outbrainimg.com/transform/v3/eyJpdSI6ImNmMWJkZDdkMzAwNGJkMDgxMmJjMDk4ZjdjN2JkNDhmY2QzZmFiMDc5Mjg4NDVjNTNiYzQ1YThiYmVlZDg2YzciLCJ3IjoyMDAsImgiOjEwMCwiZCI6MS41LCJjaCI6LTg2MTkwMDEyMCwiY3MiOjAsImYiOjB9.jpg
23.38.201.176200 OK 12 kB URL HTTP/2 images.outbrainimg.com/transform/v3/eyJpdSI6ImNmMWJkZDdkMzAwNGJkMDgxMmJjMDk4ZjdjN2JkNDhmY2QzZmFiMDc5Mjg4NDVjNTNiYzQ1YThiYmVlZDg2YzciLCJ3IjoyMDAsImgiOjEwMCwiZCI6MS41LCJjaCI6LTg2MTkwMDEyMCwiY3MiOjAsImYiOjB9.jpg
IP 23.38.201.176:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x150, components 3\012- data
Hash 1863f7193472a12f11c47cb129fe940f
736422892ec7794916a2064320cf4e20bbbbba8c
50534b7ba87e0e2dc90839c3716d20b0851fb608aee387266f08ebf5c9d15c9b
GET /transform/v3/eyJpdSI6ImNmMWJkZDdkMzAwNGJkMDgxMmJjMDk4ZjdjN2JkNDhmY2QzZmFiMDc5Mjg4NDVjNTNiYzQ1YThiYmVlZDg2YzciLCJ3IjoyMDAsImgiOjEwMCwiZCI6MS41LCJjaCI6LTg2MTkwMDEyMCwiY3MiOjAsImYiOjB9.jpg HTTP/1.1
Host: images.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11952
last-modified: Mon, 10 Oct 2022 19:29:25 GMT
x-traceid: 68662a2be43b0066fd192fa090e5136c
cache-control: max-age=1929242
date: Sun, 20 Nov 2022 15:59:39 GMT
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
timing-allow-origin: *, *
X-Firefox-Spdy: h2
widgets.outbrain.com/images/widgetIcons/icon-vi.svg
23.38.201.81200 OK 182 B URL HTTP/2 widgets.outbrain.com/images/widgetIcons/icon-vi.svg
IP 23.38.201.81:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash c065312fdb5e02c1399f2622776530df
785d98e9025f7b5cd7e2bd4f80098e44cda01ebf
b9e07d8e5143b4764aeebb012b1b020f60eb1cdca44ed1bc22ba9bc85f3af5eb
GET /images/widgetIcons/icon-vi.svg HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/svg+xml
etag: "91990280dce13a095a0da3a6b2fc6816:1662969041.773759"
last-modified: Mon, 12 Sep 2022 07:37:47 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 182
cache-control: max-age=2592000
expires: Tue, 20 Dec 2022 15:59:39 GMT
date: Sun, 20 Nov 2022 15:59:39 GMT
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/images/widgetIcons/BlockBlue.svg
23.38.201.81200 OK 566 B URL HTTP/2 widgets.outbrain.com/images/widgetIcons/BlockBlue.svg
IP 23.38.201.81:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (462)
Hash 67fffe0e5c5262bfb3fb57a8d8d69fbf
2731fbd0437ec9e215e9e3847908ce93f866ed6c
e72f0926b3418896301bda925b636ad884f5bf18f54308383ae77522ca5cd9a2
GET /images/widgetIcons/BlockBlue.svg HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/svg+xml
etag: "67fffe0e5c5262bfb3fb57a8d8d69fbf:1662969027.986981"
last-modified: Mon, 12 Sep 2022 07:37:47 GMT
server: AkamaiNetStorage
content-length: 566
cache-control: max-age=2592000
expires: Tue, 20 Dec 2022 15:59:39 GMT
date: Sun, 20 Nov 2022 15:59:39 GMT
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.adschill.com/v1/unit/636b1d6a1b8b2800284d931e.js?v=2
3.90.123.234200 OK 1.7 kB URL HTTP/2 cdn.adschill.com/v1/unit/636b1d6a1b8b2800284d931e.js?v=2
IP 3.90.123.234:0
Hash 1c537a8674ea92a29f16f991dc2147b9
8bfd8f81ca8d6dfcc9eefa1fdfdf839ded7f4df4
d3cacbe06ab2822afeb26480b4b67298538afad3ff89fd563736cf8be8a92d0d
GET /v1/unit/636b1d6a1b8b2800284d931e.js?v=2 HTTP/1.1
Host: cdn.adschill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: application/javascript; charset=utf-8
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: *
cache-control: public, max-age=172800
etag: W/"a39-JhT+DNsFpcJm+7Y01agANX6Fcck"
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
X-Firefox-Spdy: h2
widgets.outbrain.com/images/widgetIcons/icon-x-white.svg
23.38.201.81200 OK 559 B URL HTTP/2 widgets.outbrain.com/images/widgetIcons/icon-x-white.svg
IP 23.38.201.81:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (363)
Hash 854eb39a3d94a8ec9977261db0c8acc8
ef852997961f946b34e996504912b0606e4c6593
06ffd9e17bd41822b9a7b982a8ff486fafa54f7781baacb6ef3507ae7f9b36b5
GET /images/widgetIcons/icon-x-white.svg HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/svg+xml
etag: "854eb39a3d94a8ec9977261db0c8acc8:1662969042.351779"
last-modified: Mon, 12 Sep 2022 07:37:47 GMT
server: AkamaiNetStorage
content-length: 559
cache-control: max-age=2592000
expires: Tue, 20 Dec 2022 15:59:39 GMT
date: Sun, 20 Nov 2022 15:59:39 GMT
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash aef3984dc528d9c6aeaeb62752f5c01d
56a959993eb3e2dbc1047ac8f0477cc279631b48
099598c1ff8acfd47c6800ef89c25d0723e7cc8a2ca67bc7a5191c6a84e3c821
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1469
Cache-Control: max-age=106678
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 15:59:39 GMT
Etag: "637946e4-1d7"
Expires: Mon, 21 Nov 2022 21:37:37 GMT
Last-Modified: Sat, 19 Nov 2022 21:13:08 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
fonts.googleapis.com/css?family=Oswald
142.250.74.10200 OK 1.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Oswald
IP 142.250.74.10:0
Hash f60d012fa81cb2330de16b6972e1ddac
dfc651dfa9d33d1cd555b9c7928f5f6554def3d2
9bcd99d6f39ad1f0347761f86b81f9245ac1a8836117c79665ddc0fb2386a3e3
GET /css?family=Oswald HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 20 Nov 2022 15:59:34 GMT
date: Sun, 20 Nov 2022 15:59:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mcdp-nydc1.outbrain.com/l?token=fc7af87533d97428f4f4c02fb29f7f25_178258_1668959979555&tm=644&eT=0&widgetWidth=970&widgetHeight=90&widgetX=0&widgetY=0&wRV=2000952&pVis=1&lsd=524b6e66-b2d7-4367-bb0f-a06c477bcf5c&eIdx=&cnsntV2=CPixxUqPixxUqBBACBENCFCsAP_AAH_AACiQImtf_X__bX9j-_5_f_t0eY1P9_r3v-QzjhfNt-8F3L_W_L0X42E7NF36pq4KuR4Eu3LBIQNlHMHUTUmwaokVrzHsak2cpyNKJ7LEmnMZO2dYGHtPn9lDuYKY7_5___fz3j-v_t_-39T378X_3_d5_2---vCfV599jLv9____39nP___9v-_9_____-CIYBJhqXkAXYljgybRpVCiBGFYSFQCgAooBhaIrABwcFOysAn1BCwAQCoCMCIEGIKMGAQACAQBIREBIAWCARAEQCAAEAKMBCAAiYBBYAWBgEAAoBoWIAUAAgSEGRwVHKYEBEi0UEtlYglBXsaYQBllgBQKIyKgARKEACwMhIWDmOAJAS4WSBZihfIAAAAA.YAAAAAAAAAAA&cheq=0&rtt=336&oo=false&ab=0&wl=0
70.42.32.255200 OK 28 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=fc7af87533d97428f4f4c02fb29f7f25_178258_1668959979555&tm=644&eT=0&widgetWidth=970&widgetHeight=90&widgetX=0&widgetY=0&wRV=2000952&pVis=1&lsd=524b6e66-b2d7-4367-bb0f-a06c477bcf5c&eIdx=&cnsntV2=CPixxUqPixxUqBBACBENCFCsAP_AAH_AACiQImtf_X__bX9j-_5_f_t0eY1P9_r3v-QzjhfNt-8F3L_W_L0X42E7NF36pq4KuR4Eu3LBIQNlHMHUTUmwaokVrzHsak2cpyNKJ7LEmnMZO2dYGHtPn9lDuYKY7_5___fz3j-v_t_-39T378X_3_d5_2---vCfV599jLv9____39nP___9v-_9_____-CIYBJhqXkAXYljgybRpVCiBGFYSFQCgAooBhaIrABwcFOysAn1BCwAQCoCMCIEGIKMGAQACAQBIREBIAWCARAEQCAAEAKMBCAAiYBBYAWBgEAAoBoWIAUAAgSEGRwVHKYEBEi0UEtlYglBXsaYQBllgBQKIyKgARKEACwMhIWDmOAJAS4WSBZihfIAAAAA.YAAAAAAAAAAA&cheq=0&rtt=336&oo=false&ab=0&wl=0
IP 70.42.32.255:0
File type ASCII text, with no line terminators
Hash 377f144d3bb0cf9cf32318e02c9a0a27
cca7d87df98ec713fcb21cdaf937116d3cc00b1f
e11e6d8b2de0c0b8de968c82c7d56316e4ea02e1e8ad112e2a53e078b4f36e01
GET /l?token=fc7af87533d97428f4f4c02fb29f7f25_178258_1668959979555&tm=644&eT=0&widgetWidth=970&widgetHeight=90&widgetX=0&widgetY=0&wRV=2000952&pVis=1&lsd=524b6e66-b2d7-4367-bb0f-a06c477bcf5c&eIdx=&cnsntV2=CPixxUqPixxUqBBACBENCFCsAP_AAH_AACiQImtf_X__bX9j-_5_f_t0eY1P9_r3v-QzjhfNt-8F3L_W_L0X42E7NF36pq4KuR4Eu3LBIQNlHMHUTUmwaokVrzHsak2cpyNKJ7LEmnMZO2dYGHtPn9lDuYKY7_5___fz3j-v_t_-39T378X_3_d5_2---vCfV599jLv9____39nP___9v-_9_____-CIYBJhqXkAXYljgybRpVCiBGFYSFQCgAooBhaIrABwcFOysAn1BCwAQCoCMCIEGIKMGAQACAQBIREBIAWCARAEQCAAEAKMBCAAiYBBYAWBgEAAoBoWIAUAAgSEGRwVHKYEBEi0UEtlYglBXsaYQBllgBQKIyKgARKEACwMhIWDmOAJAS4WSBZihfIAAAAA.YAAAAAAAAAAA&cheq=0&rtt=336&oo=false&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://totalsportekplus.com/
Origin: http://totalsportekplus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 20 Nov 2022 15:59:40 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 28
X-TraceId: 2feb16edfe333a53b3ab163894fb37ac
access-control-allow-origin: *
access-control-expose-headers: content-range
content-encoding: gzip
log.outbrainimg.com/loggerServices/widgetGlobalEvent?rId=fc7af87533d97428f4f4c02fb29f7f25&pvId=fc7af87533d97428f4f4c02fb29f7f25&sid=9675269&pid=178258&idx=0&wId=101&pad=2&org=0&tm=688&eT=3&cnsnt=CPixxUqPixxUqBBACBENCFCsAP_AAH_AACiQImtf_X__bX9j-_5_f_t0eY1P9_r3v-QzjhfNt-8F3L_W_L0X42E7NF36pq4KuR4Eu3LBIQNlHMHUTUmwaokVrzHsak2cpyNKJ7LEmnMZO2dYGHtPn9lDuYKY7_5___fz3j-v_t_-39T378X_3_d5_2---vCfV599jLv9____39nP___9v-_9_____-CIYBJhqXkAXYljgybRpVCiBGFYSFQCgAooBhaIrABwcFOysAn1BCwAQCoCMCIEGIKMGAQACAQBIREBIAWCARAEQCAAEAKMBCAAiYBBYAWBgEAAoBoWIAUAAgSEGRwVHKYEBEi0UEtlYglBXsaYQBllgBQKIyKgARKEACwMhIWDmOAJAS4WSBZihfIAAAAA.YAAAAAAAAAAA&wRV=2000952&pVis=1&lsd=524b6e66-b2d7-4367-bb0f-a06c477bcf5c&eIdx=0&oo=false&ab=0&wl=0
64.202.112.127200 OK 4 B URL HTTP/1.1 log.outbrainimg.com/loggerServices/widgetGlobalEvent?rId=fc7af87533d97428f4f4c02fb29f7f25&pvId=fc7af87533d97428f4f4c02fb29f7f25&sid=9675269&pid=178258&idx=0&wId=101&pad=2&org=0&tm=688&eT=3&cnsnt=CPixxUqPixxUqBBACBENCFCsAP_AAH_AACiQImtf_X__bX9j-_5_f_t0eY1P9_r3v-QzjhfNt-8F3L_W_L0X42E7NF36pq4KuR4Eu3LBIQNlHMHUTUmwaokVrzHsak2cpyNKJ7LEmnMZO2dYGHtPn9lDuYKY7_5___fz3j-v_t_-39T378X_3_d5_2---vCfV599jLv9____39nP___9v-_9_____-CIYBJhqXkAXYljgybRpVCiBGFYSFQCgAooBhaIrABwcFOysAn1BCwAQCoCMCIEGIKMGAQACAQBIREBIAWCARAEQCAAEAKMBCAAiYBBYAWBgEAAoBoWIAUAAgSEGRwVHKYEBEi0UEtlYglBXsaYQBllgBQKIyKgARKEACwMhIWDmOAJAS4WSBZihfIAAAAA.YAAAAAAAAAAA&wRV=2000952&pVis=1&lsd=524b6e66-b2d7-4367-bb0f-a06c477bcf5c&eIdx=0&oo=false&ab=0&wl=0
IP 64.202.112.127:0
File type ASCII text, with no line terminators
Hash b326b5062b2f0e69046810717534cb09
5ffe533b830f08a0326348a9160afafc8ada44db
b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b
GET /loggerServices/widgetGlobalEvent?rId=fc7af87533d97428f4f4c02fb29f7f25&pvId=fc7af87533d97428f4f4c02fb29f7f25&sid=9675269&pid=178258&idx=0&wId=101&pad=2&org=0&tm=688&eT=3&cnsnt=CPixxUqPixxUqBBACBENCFCsAP_AAH_AACiQImtf_X__bX9j-_5_f_t0eY1P9_r3v-QzjhfNt-8F3L_W_L0X42E7NF36pq4KuR4Eu3LBIQNlHMHUTUmwaokVrzHsak2cpyNKJ7LEmnMZO2dYGHtPn9lDuYKY7_5___fz3j-v_t_-39T378X_3_d5_2---vCfV599jLv9____39nP___9v-_9_____-CIYBJhqXkAXYljgybRpVCiBGFYSFQCgAooBhaIrABwcFOysAn1BCwAQCoCMCIEGIKMGAQACAQBIREBIAWCARAEQCAAEAKMBCAAiYBBYAWBgEAAoBoWIAUAAgSEGRwVHKYEBEi0UEtlYglBXsaYQBllgBQKIyKgARKEACwMhIWDmOAJAS4WSBZihfIAAAAA.YAAAAAAAAAAA&wRV=2000952&pVis=1&lsd=524b6e66-b2d7-4367-bb0f-a06c477bcf5c&eIdx=0&oo=false&ab=0&wl=0 HTTP/1.1
Host: log.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://totalsportekplus.com/
Origin: http://totalsportekplus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 20 Nov 2022 15:59:40 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 4
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST
X-TraceId: ae9c02c18259697e860759727fb15ad6
log.outbrainimg.com/api/loggerBatch/log-viewability
64.202.112.127200 OK 4 B URL HTTP/1.1 log.outbrainimg.com/api/loggerBatch/log-viewability
IP 64.202.112.127:0
File type ASCII text, with no line terminators
Hash b326b5062b2f0e69046810717534cb09
5ffe533b830f08a0326348a9160afafc8ada44db
b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b
POST /api/loggerBatch/log-viewability HTTP/1.1
Host: log.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 350
Origin: http://totalsportekplus.com
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 20 Nov 2022 15:59:42 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 4
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST
X-TraceId: e9ff5b96a5c94e0e9b15afc2d41ddf7c
totalsportekplus.com/js/ipp-jquery.js?1668959621
172.67.181.235200 OK 0 B URL HTTP/2 totalsportekplus.com/js/ipp-jquery.js?1668959621
IP 172.67.181.235:0
GET /js/ipp-jquery.js?1668959621 HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 14 Jun 2020 08:51:40 GMT
vary: Accept-Encoding
etag: W/"5ee5e51c-3c9a"
expires: Mon, 20 Nov 2023 15:53:41 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 353
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BipCJRQtUzPSUTV7t8V95qPlJIQRgZTnM%2Fm2bo9JAcIgvW5x1TKMvFp8Jfwa4QL1VDfb2Bbpk2T%2Fnp1agNM2CvfgRKl7qFIwj0Py1Qun8gtUi5xwdVXG%2F0BZJiCO22DkP1n%2BnZ8W3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c1090b0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/js/jquery.countdown.min.js
172.67.181.235200 OK 0 B URL HTTP/2 totalsportekplus.com/js/jquery.countdown.min.js
IP 172.67.181.235:0
GET /js/jquery.countdown.min.js HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 12 Aug 2018 11:48:22 GMT
vary: Accept-Encoding
etag: W/"5b701e86-14db"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 366
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EthPfyY6ekhYOu9PdRG8eyGL%2F2DWqYFJsvPAfQe2kO%2FPnKKHfSu9JJ8ge1T8vzRaBCv3QDYJLCAihn0IUkgz4opDMciZxs9lW5GxHPc6KKfMqhPnj0lIHvq2xHnxrkMwCK6tKnYgVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c109090b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=FnzhjV80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRnhlVjYlMkJic213YzFvY0lBa3V1WUVyUSUyQk1jM3QyZHpqYkpraUY3QiUyRmJHbQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:36 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=cjaIa180M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyRnhlVjYlMkJic213YzFvY0lBa3V1WUVyQ3FnYVZFOUlwa1dSUTlaTG9MUTQy; expires=Fri, 15 Dec 2023 15:59:37 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 371011
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
totalsportekplus.com/css/animate.css
172.67.181.235200 OK 0 B URL HTTP/2 totalsportekplus.com/css/animate.css
IP 172.67.181.235:0
GET /css/animate.css HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: text/css
last-modified: Thu, 18 Aug 2016 10:47:52 GMT
vary: Accept-Encoding
etag: W/"57b59258-d7da"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 366
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EagAzOSBC85cqZLgWFRBiHUJW8HDgvSsqsSRTvT9pb9LBkdO0ZEI27Rp7k9srfvuaswKYvyI%2BU0H499nNrsA%2F3%2FlQ3YxiUI0MiaXNkvxZykDc7%2B2PtKTSGt9cpFUSDzdb4%2FF6F0Qug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c108f90b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.115200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.115:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:36 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 131860
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Cookie
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Cookie
IP 142.250.74.10:0
GET /css?family=Cookie HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 20 Nov 2022 15:59:34 GMT
date: Sun, 20 Nov 2022 15:59:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
totalsportekplus.com/css/bootstrap/css/bootstrap.min.css
172.67.181.235200 OK 0 B URL HTTP/2 totalsportekplus.com/css/bootstrap/css/bootstrap.min.css
IP 172.67.181.235:0
GET /css/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: text/css
last-modified: Sat, 11 Jul 2015 18:32:32 GMT
vary: Accept-Encoding
etag: W/"55a16140-1e276"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 366
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lQ1RBgGAqdl19OIfDqdQivqZzg58AGQBslrWI44oHkHUbGyxFi2YZSpvKKzB4AfYp%2BIwC5SKx2%2BCaSCtCmVY7g5LHP4Dise0NGX6nYBdVQzFxITBDw0PiMMLWeNfq6k3oNYNW0uGlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c24ab30b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/css/owl.theme.default.min.css
172.67.181.235200 OK 0 B URL HTTP/2 totalsportekplus.com/css/owl.theme.default.min.css
IP 172.67.181.235:0
GET /css/owl.theme.default.min.css HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: text/css
last-modified: Tue, 28 Feb 2017 20:43:12 GMT
vary: Accept-Encoding
etag: W/"58b5e0e0-3a8"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 366
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LRg3vYp%2Fhu61UxTw%2B8yE8jgd8u6WG%2Fh%2FcK2pl23DqrE5sMPdeRhVrREo62Wbr13uxFkYsptT6FipVoaLVjjpqezb75p8%2FA4Cc71Sb6M3Nrgjjmo0hKHVGK7ADL94X2cfzSXb%2Byr6wA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c24aae0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/matches/d77c565c28d1c461decfa794843d94d9.jpg
172.67.181.235200 OK 0 B URL HTTP/2 totalsportekplus.com/images/matches/d77c565c28d1c461decfa794843d94d9.jpg
IP 172.67.181.235:0
GET /images/matches/d77c565c28d1c461decfa794843d94d9.jpg HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/jpeg
content-length: 41438
last-modified: Fri, 18 Nov 2022 07:52:20 GMT
etag: "637739b4-a1de"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U5%2BSs0DFOuSr3vR8pHlMPIB5tIQxMZR6uF8YsNVuw3sdf1eHbA55rp8tpq%2BWpuuKCMA8NS6B7RFYHuMRydWQmTG3UsFSzR6xsw7b%2FYS%2FhqFGaF2Qw7YZXn7eFAe6B9hYsn9yrrArLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c119430b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.adschill.com/v1/config/636b1d6a1b8b2800284d931e.js?v=6&ip=OTEuOTAuNDIuMTU0&cc=Tk8=&c=MzE0MzI0NA==&d=b3RoZXJz&s=aHR0cDovL3RvdGFsc3BvcnRla3BsdXMuY29tL3FhdGFyLXZzLWVjdWFkb3ItbTk1ODQ0
3.90.123.234200 OK 0 B URL HTTP/2 cdn.adschill.com/v1/config/636b1d6a1b8b2800284d931e.js?v=6&ip=OTEuOTAuNDIuMTU0&cc=Tk8=&c=MzE0MzI0NA==&d=b3RoZXJz&s=aHR0cDovL3RvdGFsc3BvcnRla3BsdXMuY29tL3FhdGFyLXZzLWVjdWFkb3ItbTk1ODQ0
IP 3.90.123.234:0
GET /v1/config/636b1d6a1b8b2800284d931e.js?v=6&ip=OTEuOTAuNDIuMTU0&cc=Tk8=&c=MzE0MzI0NA==&d=b3RoZXJz&s=aHR0cDovL3RvdGFsc3BvcnRla3BsdXMuY29tL3FhdGFyLXZzLWVjdWFkb3ItbTk1ODQ0 HTTP/1.1
Host: cdn.adschill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 20 Nov 2022 15:59:37 GMT
content-type: application/javascript; charset=utf-8
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: *
etag: W/"4b3-rM3rTlJOaG/bINAx2Tt2q+cKa1E"
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN, SAMEORIGIN
X-Firefox-Spdy: h2
totalsportekplus.com/images/team_logo/2037.png
172.67.181.235200 OK 0 B URL HTTP/2 totalsportekplus.com/images/team_logo/2037.png
IP 172.67.181.235:0
GET /images/team_logo/2037.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: image/png
content-length: 40469
last-modified: Fri, 13 Aug 2021 20:20:02 GMT
etag: "6116d3f2-9e15"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IvT9eUovc7Z1pbp10AULV%2BQIj2HNFvT9UshnswUz3Hd5k9X8OV8otgHDrTIluwzbJHTpe4hOM%2Fk9YdQ11Sy0kRlaBVNqgC%2BieWG2UDMq9JMHd05KLZ716PzV%2BhOr6wJVghRQtxr4TA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76d264c119330b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/1
172.67.181.235404 Not Found 0 B IP 172.67.181.235:0
GET /1 HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iLvCkMaV5vgkZuwQ3OJ0x0B40b0ZhQj3vKvpJ3BijqPwxyz%2Fb2HPLuRlDTFZEE7iGeM7EMh4EkqDd28UFzXncBQf%2BUcbC8t1sduK8V%2FU4epzMpOZdDBXtWLer2UwE2fwsKWf1rM6yQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c119460b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/js/jquery.flexslider-min.js
172.67.181.235200 OK 0 B URL HTTP/2 totalsportekplus.com/js/jquery.flexslider-min.js
IP 172.67.181.235:0
GET /js/jquery.flexslider-min.js HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 24 Apr 2015 19:24:38 GMT
vary: Accept-Encoding
etag: W/"553a9876-5539"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 366
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OGeFU1FnetxmOMwR4WtqB8nKVOWbBd1UGq%2B%2Bip2Yhffe008dVrjcCvHys0RjPxlr4HTIs7TRM0namireFNY0NGVbNO%2B4wMcmRfqAf8wAJa%2BC8EqDGnDrlf920z3FGo%2BuPztwn29LfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c109000b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/js/jquery.sticky.js
172.67.181.235200 OK 0 B URL HTTP/2 totalsportekplus.com/js/jquery.sticky.js
IP 172.67.181.235:0
GET /js/jquery.sticky.js HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 24 Apr 2015 19:24:38 GMT
vary: Accept-Encoding
etag: W/"553a9876-1097"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 366
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=smKyJTeoc%2FrlbIioEAbMx09DIwRwmJwBSNZN9S4NYz1tzmRk5c9IBG2fDas%2BhGhRDoXJ0QkXfhaOEtKfj79DwQvqu7VKvRxt3ns4Jy3LxeL6eMKAB9jf9ZaUgEwMzdNQOZyVZENHrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c109030b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/js/wow.min.js
172.67.181.235200 OK 0 B URL HTTP/2 totalsportekplus.com/js/wow.min.js
IP 172.67.181.235:0
GET /js/wow.min.js HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 18 May 2016 20:56:06 GMT
vary: Accept-Encoding
etag: W/"573cd6e6-20df"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 366
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FSMajnZ4W01uc0icZ9N%2FbRp%2FOZ3PhUyI9HAVjn0M156W1Xz0mqzY8dLfvGGHhuW1S9hxVgVdHTiNZepHrMeT8G1IZs5%2F1I5S9aWuaDtuGx6qBkxwE16g81KD8av4NBAfcBL9%2BgRxvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c109050b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.2.146:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://st.chatango.com/
x-crto-bundle: VB0dzV9IdXZ4UGdpUjglMkYyNDhpQWF0QUNWZnpIZFJtNWxYcmlkWjZ5JTJCJTJCdjVCZFlWOUxvUEhQbG4lMkZrUm5ER3doZGMxdlJxbWxnYlRQM2pzTVNxNnZVTWFNOFVIYUtGRkFyT1JlR2ltSFhYbVpPYXd4OEdvbUtra1QlMkJ2V0tOdjdWZms1JTJGSFkxQWFCJTJGcVBpcFlhejdpQWNpR3dEUSUzRCUzRA
Origin: https://st.chatango.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:37 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://st.chatango.com
server-processing-duration-in-ticks: 4554640
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
totalsportekplus.com/css/owl.carousel.min.css
172.67.181.235200 OK 0 B URL HTTP/2 totalsportekplus.com/css/owl.carousel.min.css
IP 172.67.181.235:0
GET /css/owl.carousel.min.css HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: text/css
last-modified: Tue, 28 Feb 2017 20:43:12 GMT
vary: Accept-Encoding
etag: W/"58b5e0e0-b78"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 366
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DEQw5BIa1qiulZXrgox9eorca%2BaQLtFO%2BdZQNU2JGv%2FA%2FdegH7p9hN3rMuPo4G%2F5Hc%2Fr9i0TbGaPK6v0AY9sbvj0eeK2sU5Olt%2FGg94qE%2F9iPosCybTapKIXJUbhLlsJfjIiRrr0lA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c24ab50b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/images/team/8de8566ddc6877513780c2dd158c5a26.png
172.67.181.235404 Not Found 0 B URL HTTP/2 totalsportekplus.com/images/team/8de8566ddc6877513780c2dd158c5a26.png
IP 172.67.181.235:0
GET /images/team/8de8566ddc6877513780c2dd158c5a26.png HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QzYn1Llnt%2BW0iT0KiIa0jvfO%2BqxLhyobR4PpENQlmUxaVOQ5a68tnFjDlsxtjq6h6bWJ8%2BJJfnBzb6JgHRDXYPGZZqk4XV1l3RwS87F7ykyEClEZEo4TO3C1ZKTwYcaSVfRMojtWgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c109230b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
totalsportekplus.com/css/bootstrap/js/bootstrap.min.js
172.67.181.235200 OK 0 B URL HTTP/2 totalsportekplus.com/css/bootstrap/js/bootstrap.min.js
IP 172.67.181.235:0
GET /css/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 11 Jul 2015 18:32:32 GMT
vary: Accept-Encoding
etag: W/"55a16140-90bf"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 366
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1L7Mk3fb0tPoGHJ4S2AwiY93Q7zgaxhiPcfGMsZ%2FbVXeB3aF2hcLnvdV96cPsjMrHg3L9MSl9NDn2HKoDa1GabLileLSSRHF3GjrL6yW%2F0AdaV7TUPmyFqjIaPEkHwemVeRvGhAWOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c109070b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=totalsportekplus.com
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=totalsportekplus.com
IP 178.250.2.146:0
GET /syncframe?origin=rtus&topUrl=totalsportekplus.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:36 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=bb95036e-ddf8-41d1-a13f-ca2c167a1ca3; expires=Fri, 15 Dec 2023 15:59:37 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 782995
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
totalsportekplus.com/css/simple-line-icons.min.css
172.67.181.235200 OK 0 B URL HTTP/2 totalsportekplus.com/css/simple-line-icons.min.css
IP 172.67.181.235:0
GET /css/simple-line-icons.min.css HTTP/1.1
Host: totalsportekplus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://totalsportekplus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:34 GMT
content-type: text/css
last-modified: Sun, 23 Apr 2017 10:05:00 GMT
vary: Accept-Encoding
etag: W/"58fc7c4c-255a"
expires: Mon, 20 Nov 2023 15:53:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 366
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z0YajsuxOQn0uFCJ5L%2FwViGkewW24UPGmcvaf1yo3wymoY25Uf6ukHScB8IhYZkxWoAY%2BKLVrja6jWK8WKpjfm5%2B7JKeufJnuRrDt4U4eI8eDEX3h17FEXQoyxibRiTxqO3Z1EF7%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76d264c24ab40b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.192200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.192:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:36 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 115894
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.2.146:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 20 Nov 2022 15:59:36 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 594725
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2