snrtnews.ma/
172.67.203.73301 Moved Permanently 0 B IP 172.67.203.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: snrtnews.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Dec 2022 03:09:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 21 Dec 2022 04:09:06 GMT
Location: https://snrtnews.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N9JAkgvpOv5%2FE0Wa7R%2F%2BaG3EYMZWmQAlBpZMTmbnlucV8Yi02FYbX1IGizVr1zsWA3PKZQyy5iKJOMy4u4Fy4X98lXdK64Czkz6UfdES9pAcqd5Nh4O0p%2BGHQkQomg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77cd6ac3feb1b500-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 048cda18c6dbe7c4e4b106f5e1104b0a
1bd6f3367ccf446263b00ad8c1ece15a4164730b
66a680d9b8e454db94e14d2c4a466891e538b2d83ccee0dc65be62163992b4e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66A680D9B8E454DB94E14D2C4A466891E538B2D83CCEE0DC65BE62163992B4E0"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9462
Expires: Wed, 21 Dec 2022 05:46:48 GMT
Date: Wed, 21 Dec 2022 03:09:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b8fbcd7ca1a893d05677318a8a198e7a
0851654c21f6e3741887e7deab8098c1dc56f33c
edbade5913ace2fcbb932922e9af69acb2e8759474a2eeaec216307247fea361
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDBADE5913ACE2FCBB932922E9AF69ACB2E8759474A2EEAEC216307247FEA361"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3769
Expires: Wed, 21 Dec 2022 04:11:55 GMT
Date: Wed, 21 Dec 2022 03:09:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cf03270e3476f7482a2cc7ddc6a9e857
ab70d5ee87b01e0601f8e518bf36f97c8ceeba9a
43a4e796860a1481636dac103488cadc68c261d13cfe835d273efc368e569f97
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "43A4E796860A1481636DAC103488CADC68C261D13CFE835D273EFC368E569F97"
Last-Modified: Sun, 18 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8385
Expires: Wed, 21 Dec 2022 05:28:51 GMT
Date: Wed, 21 Dec 2022 03:09:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 21 Dec 2022 02:45:53 GMT
content-type: application/json
age: 1393
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sS+sHwEcuP5usmoY7EqJvi5Aklvkk9IbKjlZ2JcuRvAYyXAwl9DyS5Ib/7qLkFA30FPURH17lTU=
x-amz-request-id: 1QNTT9YMCH42ZXRG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 21 Dec 2022 02:29:41 GMT
age: 2365
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 8517a3c9ddcb4a6276dec46b2e1f8ce9
367d354918dc01dbe2e13c4518c39de5a934aff5
6316de16b257ed311d3f6749d04a81a499ad8731b16a3121207658f849e633b6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=117219
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:06 GMT
Etag: "63a19fb5-116"
Expires: Thu, 22 Dec 2022 11:42:45 GMT
Last-Modified: Tue, 20 Dec 2022 11:42:45 GMT
Server: nginx
Content-Length: 278
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Dec 2022 03:09:06 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 8517a3c9ddcb4a6276dec46b2e1f8ce9
367d354918dc01dbe2e13c4518c39de5a934aff5
6316de16b257ed311d3f6749d04a81a499ad8731b16a3121207658f849e633b6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=117219
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:06 GMT
Etag: "63a19fb5-116"
Expires: Thu, 22 Dec 2022 11:42:45 GMT
Last-Modified: Tue, 20 Dec 2022 11:42:45 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c92a63593449265941bccd2401ec3927
09bd5c279a11c5067d75300053d70e4e678d7140
a137e34a2d19637a6fe63ba801ce97be1ded72584f8a90798b4c0910526a4429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/npm/sweetalert2@11
151.101.193.229200 OK 18 kB URL HTTP/2 cdn.jsdelivr.net/npm/sweetalert2@11
IP 151.101.193.229:0
File type ASCII text, with very long lines (43325)
Hash 874a00ea826d02354c9a09e26e9a9ce2
4f75c43699edd9b30a69f0cca67ac348d357daa3
2c1f7956d8726c4d996e1cd8bd83e1eebcd0d471635325d20a1c7d80cac1961d
GET /npm/sweetalert2@11 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 11.6.16
x-jsd-version-type: version
etag: W/"fb67-zfDAbUfmgNLMmTZ+1vg0StTtly4"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Dec 2022 03:09:07 GMT
age: 14882
x-served-by: cache-fra-eddf8230057-FRA, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 18041
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c4c68fff63d541e52755ce25a6cc6ca3
2ff33eda877509582fa5f40d63a811e817a982f5
359c457ae816af8a1ba80bb5757a74bbdc1574bfe3c14d6146a688527af1b2f5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=119372
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:07 GMT
Etag: "63a1a81f-117"
Expires: Thu, 22 Dec 2022 12:18:39 GMT
Last-Modified: Tue, 20 Dec 2022 12:18:39 GMT
Server: nginx
Content-Length: 279
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash eadadfec0a65bce69128230cfa49f936
1ae7fbb4969315fc2d13cf0a63d1909c499147db
bbd8831dd832214747d09faca8a7092b1e72dbaec35ee513bf6663caaea3e488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash eadadfec0a65bce69128230cfa49f936
1ae7fbb4969315fc2d13cf0a63d1909c499147db
bbd8831dd832214747d09faca8a7092b1e72dbaec35ee513bf6663caaea3e488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-194293482-1
142.250.74.40200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-194293482-1
IP 142.250.74.40:0
File type ASCII text, with very long lines (1921)
Hash 8a49e0d50024e86a3b17800a929f27a3
f86a46dfc85d123f86ae21fd3cb093f603af953a
30b6dc503ace11407551fec6b45b7edbbf7544af76e1ac6fb4ec9118eb6d9c59
GET /gtag/js?id=UA-194293482-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Dec 2022 03:09:07 GMT
expires: Wed, 21 Dec 2022 03:09:07 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/firebasejs/7.16.1/firebase-messaging.js
216.58.211.3200 OK 11 kB URL HTTP/2 www.gstatic.com/firebasejs/7.16.1/firebase-messaging.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (39119)
Hash 5f6620a6205fb8da481198741c5ca33b
ef0795f1bdbf8f4f7885205fe8a65ad4f7ee6ab4
7ccafe73e9246b246656cb61fc43571f415bb8ecd58e6680a0df9d3c6f52257f
GET /firebasejs/7.16.1/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 19:44:00 GMT
expires: Sat, 16 Dec 2023 19:44:00 GMT
cache-control: public, max-age=31536000
age: 372307
last-modified: Thu, 16 Jul 2020 22:42:23 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/firebasejs/8.4.2/firebase-app.js
216.58.211.3200 OK 6.8 kB URL HTTP/2 www.gstatic.com/firebasejs/8.4.2/firebase-app.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (21158)
Hash 0546960f1f1bdeb7649931de488f4bf5
8515a2ed669150d1d57cc3d2f37738edd7fd5e75
a8ccec53e534b160638913bf5e36387ac48bef2888e79dc7942ebc14aea4f887
GET /firebasejs/8.4.2/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 6763
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Dec 2022 18:56:37 GMT
expires: Wed, 20 Dec 2023 18:56:37 GMT
cache-control: public, max-age=31536000
age: 29550
last-modified: Thu, 29 Apr 2021 20:42:52 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.9 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash 5362ece92cf7acd7bbc131f9802cea5f
4662de43d3fc7a959aedc3e2c697f21c552cca38
0cfd679540c6a144a812adbc6e944b4ff0241adb09a4bb1434a733028e433011
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 03:09:07 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "B46084681E28C8B8ED598C079092862B1CB17B9C"
Expires: Wed, 21 Dec 2022 14:00:00 GMT
Last-Modified: Wed, 21 Dec 2022 02:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1816
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77cd6ac9ff6ab4fa-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c4c68fff63d541e52755ce25a6cc6ca3
2ff33eda877509582fa5f40d63a811e817a982f5
359c457ae816af8a1ba80bb5757a74bbdc1574bfe3c14d6146a688527af1b2f5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=119372
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:07 GMT
Etag: "63a1a81f-117"
Expires: Thu, 22 Dec 2022 12:18:39 GMT
Last-Modified: Tue, 20 Dec 2022 12:18:39 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c92a63593449265941bccd2401ec3927
09bd5c279a11c5067d75300053d70e4e678d7140
a137e34a2d19637a6fe63ba801ce97be1ded72584f8a90798b4c0910526a4429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
snrtnews.com/
104.26.0.115200 OK 122 kB IP 104.26.0.115:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32622)
Size 122 kB (121996 bytes)
Hash b0c72f33b9aad23bb8ab8e4c653ec76a
88016544901ef998a0d17f59f853e392291b8518
362e4b2e61ec890aee293cf7dfbe7ef6291102ce3ee6aebd0a8de5a9df59f381
GET / HTTP/1.1
Host: snrtnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 21 Dec 2022 03:09:06 GMT
content-type: text/html; charset=UTF-8
cache-control: public, max-age=120
link: <https://snrtnews.com/>; rel="canonical", <https://snrtnews.com/>; rel="shortlink"
x-ua-compatible: IE=edge
content-language: ar
x-content-type-options: nosniff
expires: Sun, 19 Nov 1978 05:00:00 GMT
last-modified: Wed, 21 Dec 2022 03:00:22 GMT
vary: Cookie, Accept-Encoding
access-control-allow-origin: *
via: 2.0 ATLASHOSTER.com
x-generator: 2.0 ATLASHOSTER.com
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bXbp%2BWVoVlywaoycGrHT8K1C%2BZqVthrFEsDprDgPKN9%2FXY9rImhkd%2F82Pcbe%2FyPx76G%2F%2B7bjCxnQ4Lp%2BZYZYVSA5yrAq3tFtE9ws4M4E4k8uFxh8l%2BTR6lcm5WVKXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77cd6ac5d87db4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash eadadfec0a65bce69128230cfa49f936
1ae7fbb4969315fc2d13cf0a63d1909c499147db
bbd8831dd832214747d09faca8a7092b1e72dbaec35ee513bf6663caaea3e488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 449487d336c408866149d3d77ca0184e
7fa1b04d1b949ade9c94f252116ef535bd122192
5abc4b245fbc9eca690a2ad058fa277f87b0f56e8a6b4a0b1d172d5d7da8fdf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5ABC4B245FBC9ECA690A2AD058FA277F87B0F56E8A6B4A0B1D172D5D7DA8FDF3"
Last-Modified: Tue, 20 Dec 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 21 Dec 2022 09:09:07 GMT
Date: Wed, 21 Dec 2022 03:09:07 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 21 Dec 2022 03:08:02 GMT
age: 65
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
botola.snrt.ma/widget/ar/index.html
116.202.113.175200 OK 3.5 kB URL HTTP/2 botola.snrt.ma/widget/ar/index.html
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 0159355f4ec887c5018b08ecb9ef9c63
4947b699be5fe7d81d8ef0e8b8126122853aed25
dfe1099df1ab2dced862e1543a24d1486d25da60d6bc6c3510cdfb3feac8920a
GET /widget/ar/index.html HTTP/1.1
Host: botola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
date: Wed, 21 Dec 2022 03:09:07 GMT
etag: "6006dff6-db9"
last-modified: Tue, 19 Jan 2021 13:34:46 GMT
server: nginx/1.19.6
content-length: 3513
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 905 B IP 93.184.220.29:0
Hash 97964856faf40cfa05379da30fb28161
9056fc3d1327311ddde02ab8a5572a303958936e
b493316164695aaeb0941aba9ea4216e1ddeaef6d3933cd650af88029b0c3bcf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1565
Cache-Control: max-age=109428
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:08 GMT
Etag: "63a17b2b-1d7"
Expires: Thu, 22 Dec 2022 09:32:56 GMT
Last-Modified: Tue, 20 Dec 2022 09:06:51 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.210.150.237101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.150.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PfR9+1XTdzcHvCjlCox4Zw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: eU0HXqhOOHeo7MmFzaGxMZzcIg0=
ocsp.digicert.com/
93.184.220.29200 OK 15 kB IP 93.184.220.29:0
Hash 4b74446d5ac8decd93b4d59985afe837
1768cb397c372ecafa0fe9a16cd6f3f394160b6e
ee33c912e3436cc8c9052d6cf51fb842486a65d5dfc54a8c0fead7ac14d0157e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6104
Cache-Control: max-age=123662
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:08 GMT
Etag: "63a1a10a-1d7"
Expires: Thu, 22 Dec 2022 13:30:10 GMT
Last-Modified: Tue, 20 Dec 2022 11:48:26 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 21 Dec 2022 01:34:02 GMT
expires: Wed, 21 Dec 2022 03:34:02 GMT
cache-control: public, max-age=7200
age: 5706
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9280942f48b6d8af0882ac1f9a684dae
1998f517eb03d75b98b81b8fcc3de69b57faaad9
43e916ba35470cee4a823db0332214b20948fedd09350f83aa0376d902a4926b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
Hash ad13aa418b82ec8b7ecb9349855c3d7d
0ad184871debdb5ad989f2d9085660bac9111e8f
29ac9665958b56be00cfdad8c0c1a204cb19d908f84fbdf1132ec187152d2513
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 6daTAwGtelTQqp87/OzSTw1LrrxdDkNYKWPHasRbOdEgJYFK8K7KGihMqos6fafA2fcp25EHmY9oGc1he/aRLA==
content-length: 27298
x-fb-trip-id: 1904183273
date: Wed, 21 Dec 2022 03:09:08 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.162200 OK 28 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (40253)
Hash cd91a1fd2b9bfe67d515cc36b3c34903
7f8286b85da37718308c6c0cd6608df953fbed5d
e6099f220b91443cb5a9123857f74574f2bab9bf5afc00de0bc59e44cb5f42a5
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27542
date: Wed, 21 Dec 2022 03:09:08 GMT
expires: Wed, 21 Dec 2022 03:09:08 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1427 / 211 of 1000 / last-modified: 1670587517"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 1.1 kB IP 93.184.220.29:0
Hash 74d003948872b0de6fa1edb0e2158131
0a70b4fa8760c3a693f76614d338a311fbcd86cf
5f6c39425d9839635aab2798863f8c73eb63588192acfe5ea16bba6e0bf91c7b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6104
Cache-Control: max-age=123662
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:08 GMT
Etag: "63a1a10a-1d7"
Expires: Thu, 22 Dec 2022 13:30:10 GMT
Last-Modified: Tue, 20 Dec 2022 11:48:26 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9280942f48b6d8af0882ac1f9a684dae
1998f517eb03d75b98b81b8fcc3de69b57faaad9
43e916ba35470cee4a823db0332214b20948fedd09350f83aa0376d902a4926b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 650 B IP 93.184.220.29:0
Hash 1ff364804b62a21078e1e501e1b1c899
875e483b02d4f01378e345f75332376b7182331b
2ab570ea1843f8fae5aa8128994e9a18d9bb67f1fa8907e1cbbf12106a48d5e8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 629
Cache-Control: max-age=100955
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:08 GMT
Etag: "63a15dba-117"
Expires: Thu, 22 Dec 2022 07:11:43 GMT
Last-Modified: Tue, 20 Dec 2022 07:01:14 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
botola.snrt.ma/widget/css/styles.css
116.202.113.175200 OK 7.2 kB URL HTTP/2 botola.snrt.ma/widget/css/styles.css
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
Hash 30df9e7f4798f38787453772e0c6861f
8ea8dc1225d28cadfc08e7d322351bafbe05df6e
3a776ddce0bb5db4fb7e2c9b911bed1cdb0e15955235afc1a8ae26e79786ad4f
GET /widget/css/styles.css HTTP/1.1
Host: botola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/widget/ar/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/css
date: Wed, 21 Dec 2022 03:09:08 GMT
etag: "6006dff6-1c14"
last-modified: Tue, 19 Jan 2021 13:34:46 GMT
server: nginx/1.19.6
content-length: 7188
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7011324f8501f3c2c1e545068299bec1
f9ca3911f1c3f66cf89c1b7f2e251c3669636fcb
6afe60a2ce277e620ad2ab621a77fc140d3d28c70b3774afd07ee85e58465623
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4720
Cache-Control: max-age=153274
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:08 GMT
Etag: "63a21a1e-118"
Expires: Thu, 22 Dec 2022 21:43:42 GMT
Last-Modified: Tue, 20 Dec 2022 20:25:02 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
botola.snrt.ma/widget/js/ajax.js
116.202.113.175200 OK 83 kB URL HTTP/2 botola.snrt.ma/widget/js/ajax.js
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
Hash 8ddee66aa26ad671313cb8b1036b5ce1
99c9eff169c36c2b882ab37372f3f6d061dfd78f
ce16fe34735350407c98ec6ec5f84ccc55f4d8b8ef84de44984f70d9e40d81bd
GET /widget/js/ajax.js HTTP/1.1
Host: botola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/widget/ar/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/javascript
date: Wed, 21 Dec 2022 03:09:08 GMT
etag: "6006dff6-2ac"
last-modified: Tue, 19 Jan 2021 13:34:46 GMT
server: nginx/1.19.6
content-length: 684
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.25.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 03:09:08 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5423
expires: Mon, 11 Dec 2023 03:09:08 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FLWAwvlWCilaKDWgjYMwuytd0BCgZf%2FN0KTI9jPjmghX08U3Gdo389Z%2B%2BL7yWzkd5c1KBM1srmWiPCYz5IlIPhOw%2ByiZzKdGA2Z5ON3hy8So1Qse6NhDn5yylwJcHpmW7EWxqMS4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77cd6ad0cf9f0b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
botola.snrt.ma/widget/js/app-ar.js
116.202.113.175200 OK 10 kB URL HTTP/2 botola.snrt.ma/widget/js/app-ar.js
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
Hash 4dfa2a629b092d843e1b677bb4d2ad36
105c53fbfff57cac05d53e53acca2c13a3632db0
05f3e1920a7bb431b52154b266bc3e7a989930cb1cb6f2e2a7f4dbf17e619ab3
GET /widget/js/app-ar.js HTTP/1.1
Host: botola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/widget/ar/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/javascript
date: Wed, 21 Dec 2022 03:09:08 GMT
etag: "6006dff6-2729"
last-modified: Tue, 19 Jan 2021 13:34:46 GMT
server: nginx/1.19.6
content-length: 10025
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9d5518b05926e5fc608ad00c4abf3e01
273178a68589773d7c28a2360e64685937a5caa6
c0401c937edee3f05e3e41ab2b09af061962bcfa8471f2d0a0d91c3fe732843d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maxcdn.bootstrapcdn.com/bootstrap/3.4.1/css/bootstrap.min.css
104.18.11.207200 OK 20 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.4.1/css/bootstrap.min.css
IP 104.18.11.207:0
File type ASCII text, with very long lines (65369)
Hash 62226ea2eb2bab9e91879d6f36f50c2d
857bc8f09aa3006053426393b0185305781f6778
7414d050c550948bcf3f446f4172083d2fee407cfd8f011bdaadfb143f7ab34b
GET /bootstrap/3.4.1/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 03:09:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 632, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-03-10 20:26:25
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 61d285a2b452357d1d833ab142fef512
cdn-cache: HIT
cf-cache-status: HIT
age: 20902925
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77cd6ad0be05b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
142.250.74.10200 OK 31 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP 142.250.74.10:0
File type ASCII text, with very long lines (65451)
Hash 903bc7a7e510f87aa5d0201eb59a0832
ac9aa4dd94cde1bcba9037e94087138b127e41fc
41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Dec 2022 18:38:18 GMT
expires: Mon, 18 Dec 2023 18:38:18 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
age: 203450
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ec965a268279109b36fd2a351c0ed477
6eea32453a7499b52a2095d78dc5a091632263ce
3c606e2f51aef7647ee64f9af6b6f6277fee5024fcc2cc89768d1587b1bd79d2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 629
Cache-Control: max-age=100955
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:08 GMT
Etag: "63a15dba-117"
Expires: Thu, 22 Dec 2022 07:11:43 GMT
Last-Modified: Tue, 20 Dec 2022 07:01:14 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7011324f8501f3c2c1e545068299bec1
f9ca3911f1c3f66cf89c1b7f2e251c3669636fcb
6afe60a2ce277e620ad2ab621a77fc140d3d28c70b3774afd07ee85e58465623
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6332
Cache-Control: max-age=154886
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:08 GMT
Etag: "63a21a1e-118"
Expires: Thu, 22 Dec 2022 22:10:34 GMT
Last-Modified: Tue, 20 Dec 2022 20:25:02 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9d5518b05926e5fc608ad00c4abf3e01
273178a68589773d7c28a2360e64685937a5caa6
c0401c937edee3f05e3e41ab2b09af061962bcfa8471f2d0a0d91c3fe732843d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
104.17.25.14200 OK 77 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 104.17.25.14:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://botola.snrt.ma
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 03:09:08 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2532
expires: Mon, 11 Dec 2023 03:09:08 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vhC0it9y%2FNA%2F0emN3D470F8zLRSJZxa2J10yDIoSAFkWrFzASjmswJb%2Bvw%2BD%2BjTzVZVqUKRz6WSAV71BCVWPA36JCpCszJyUn5cUc4IvOcJG%2BI72ShloLLWeMTTPOkSy5xIFBZ3u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77cd6ad1aae0b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
botola.snrt.ma/widget/fonts/DroidKufi-Bold.ttf
116.202.113.175200 OK 82 kB URL HTTP/2 botola.snrt.ma/widget/fonts/DroidKufi-Bold.ttf
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
Hash 75c638ae61b8faf5b4ecad39510a4f87
81d5dedf240b22747c036c57ccf6d6d52fbe58e6
a5ec16a1c4271abb91cf363a334de88392e051c209b8df2b81641f21fb6d2c1e
GET /widget/fonts/DroidKufi-Bold.ttf HTTP/1.1
Host: botola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/widget/ar/index.html
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/octet-stream
date: Wed, 21 Dec 2022 03:09:08 GMT
etag: "6006dff6-13d44"
last-modified: Tue, 19 Jan 2021 13:34:46 GMT
server: nginx/1.19.6
content-length: 81220
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 83 kB IP 216.58.211.3:0
Hash 500399c8f41cc9bbd696e3900f4b34a7
438b42389db01b54654f921181e6554ae8770338
c67bfc179faf3c3cb6f6d82ea3aa53424d95187194c59f2f2bce1ab000a840ba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 44d1b97ebc6772b76319806ff504cf27
e7e520951d9f34cfc991932a62b0bd8cf390b1f7
b30398f6056dcc04122b413d78c632ea15df7cff07471850a1603a121efba20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ec3e81471a7bca9dbffb376ec8bca544
431abe2b0e3b2e306276226baac0dd1821155687
f83ba73539d7228787b9c588dc958399a18c07995b5bf5a618d41c45a6e7f6df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F83BA73539D7228787B9C588DC958399A18C07995B5BF5A618D41C45A6E7F6DF"
Last-Modified: Tue, 20 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20047
Expires: Wed, 21 Dec 2022 08:43:15 GMT
Date: Wed, 21 Dec 2022 03:09:08 GMT
Connection: keep-alive
adservice.google.com/adsid/integrator.js?domain=snrtnews.com
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=snrtnews.com
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=snrtnews.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 21 Dec 2022 03:09:08 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
covid19-bo.snrtnews.com/api/lastCases?api_token=uOVrcjEpLzIopeekeDjHWMRjOxvTerLrEdkfYkll
172.67.73.221200 OK 366 B URL HTTP/2 covid19-bo.snrtnews.com/api/lastCases?api_token=uOVrcjEpLzIopeekeDjHWMRjOxvTerLrEdkfYkll
IP 172.67.73.221:0
File type JSON data\012- , ASCII text, with very long lines (521), with no line terminators
Hash d49d6d7833b29afcf15e4f90e99fddf0
1110008d39f47023016e923f74d8da2903623683
8672df3cf0b1225785cc2dab6667e6b5dee301369926a12e3fbe9a239370a9de
GET /api/lastCases?api_token=uOVrcjEpLzIopeekeDjHWMRjOxvTerLrEdkfYkll HTTP/1.1
Host: covid19-bo.snrtnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://snrtnews.com
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 03:09:08 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: max-age=3600
x-ratelimit-limit: 60
x-ratelimit-remaining: 59
access-control-allow-origin: *
expires: Wed, 21 Dec 2022 02:19:35 GMT
x-cacheatlasenabled: 0
x-cacheatlasdebug: Nothingassigned
x-cacheatlasstatus: MISS
x-cacheatlasfor: mobileversion
x-varnish: 1279652
x-vc-cache: MISS
x-vc-hash: /api/lastCases?api_token=uOVrcjEpLzIopeekeDjHWMRjOxvTerLrEdkfYkll#covid19-bo.snrtnews.com
via: ATLASHOSTER.com/v2
last-modified: Wed, 21 Dec 2022 02:14:35 GMT
cf-cache-status: HIT
age: 3155
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nQY8FkO8eWhib6mCWH7QPNE0oVpGJI91gpuDdy%2BGo0wbT5g7AT2qTuxHXbbJX9lLqU0QuWPp85ux5%2B2ywtomVOVNkFhWjdb6k7CpHPaNGiYR1eWCLLyC%2FLMVnTVsEN9GH0bzmU%2FyJwkS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77cd6ad168170b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.aladhan.com/v1/timingsByCity?city=Rabat&country=MA&method=99&methodSettings=19.1,0.31,17.05
178.79.176.230200 OK 1.2 kB URL HTTP/2 api.aladhan.com/v1/timingsByCity?city=Rabat&country=MA&method=99&methodSettings=19.1,0.31,17.05
IP 178.79.176.230:0
File type JSON data\012- , ASCII text, with very long lines (1152), with no line terminators
Hash b69d78c19fdfdcc069a2e1de9550850c
2c47058ee8a392fe62146c0776d1d307c0856266
d2bee722bb3f6612f7ad9bf0222629e906597676c583aa93129dcab6666db608
GET /v1/timingsByCity?city=Rabat&country=MA&method=99&methodSettings=19.1,0.31,17.05 HTTP/1.1
Host: api.aladhan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://snrtnews.com
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 1152
x-ratelimit-remaining-second: 6
x-ratelimit-limit-second: 7
ratelimit-limit: 7
ratelimit-remaining: 6
ratelimit-reset: 1
date: Wed, 21 Dec 2022 03:09:08 GMT
server: Apache/2.4.54 (Debian)
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
x-kong-upstream-latency: 7
x-kong-proxy-latency: 2
via: kong/3.0.1
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 344614e7ba4c2e9218a0bacee22a058b
91001dc3980d9afd8a2cf720772eda394de872a9
e7dd508d6f64dabee777f8cffd8a88e6690962d9783b3214506916624cd468e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E7DD508D6F64DABEE777F8CFFD8A88E6690962D9783B3214506916624CD468E4"
Last-Modified: Tue, 20 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21560
Expires: Wed, 21 Dec 2022 09:08:29 GMT
Date: Wed, 21 Dec 2022 03:09:09 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 97216d9347c0d3c1bab297df919688d5
61eca83749fd58d5ce753bf65419435d522c2ce5
7277b81f23f6516aa706c00202e0705421837431095d5b1f7fb0f283ab5736ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 44d1b97ebc6772b76319806ff504cf27
e7e520951d9f34cfc991932a62b0bd8cf390b1f7
b30398f6056dcc04122b413d78c632ea15df7cff07471850a1603a121efba20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ad713e35b57c6101d237bb29f87e028f
9f074c59a3d5832784606d79046c9ab35c7b1a61
4a50938092c9a7d0c2f44fe471d4c332c6dca3a083431c30f2d197750773916c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A50938092C9A7D0C2F44FE471D4C332C6DCA3A083431C30F2D197750773916C"
Last-Modified: Sun, 18 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=276
Expires: Wed, 21 Dec 2022 03:13:45 GMT
Date: Wed, 21 Dec 2022 03:09:09 GMT
Connection: keep-alive
5b57b84ca638a14bf544a688d57a9d8f.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
142.250.74.97200 OK 2.7 kB URL HTTP/2 5b57b84ca638a14bf544a688d57a9d8f.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 5b57b84ca638a14bf544a688d57a9d8f.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Wed, 21 Dec 2022 03:09:09 GMT
expires: Thu, 21 Dec 2023 03:09:09 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ad713e35b57c6101d237bb29f87e028f
9f074c59a3d5832784606d79046c9ab35c7b1a61
4a50938092c9a7d0c2f44fe471d4c332c6dca3a083431c30f2d197750773916c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A50938092C9A7D0C2F44FE471D4C332C6DCA3A083431C30F2D197750773916C"
Last-Modified: Sun, 18 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=328
Expires: Wed, 21 Dec 2022 03:14:37 GMT
Date: Wed, 21 Dec 2022 03:09:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ad713e35b57c6101d237bb29f87e028f
9f074c59a3d5832784606d79046c9ab35c7b1a61
4a50938092c9a7d0c2f44fe471d4c332c6dca3a083431c30f2d197750773916c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A50938092C9A7D0C2F44FE471D4C332C6DCA3A083431C30F2D197750773916C"
Last-Modified: Sun, 18 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3068
Expires: Wed, 21 Dec 2022 04:00:17 GMT
Date: Wed, 21 Dec 2022 03:09:09 GMT
Connection: keep-alive
www.facebook.com/tr/?id=755976951770255&ev=PageView&dl=https%3A%2F%2Fsnrtnews.com%2F&rl=&if=false&ts=1671592163859&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.1.1671592163859.475462169&it=1671592163552&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=755976951770255&ev=PageView&dl=https%3A%2F%2Fsnrtnews.com%2F&rl=&if=false&ts=1671592163859&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.1.1671592163859.475462169&it=1671592163552&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=755976951770255&ev=PageView&dl=https%3A%2F%2Fsnrtnews.com%2F&rl=&if=false&ts=1671592163859&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.1.1671592163859.475462169&it=1671592163552&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 21 Dec 2022 03:09:09 GMT
X-Firefox-Spdy: h2
apibotola.snrt.ma/Buteur/?lang=ar
34.251.187.31200 OK 479 B URL HTTP/1.1 apibotola.snrt.ma/Buteur/?lang=ar
IP 34.251.187.31:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1023), with no line terminators
Hash 63e4ebdc55d3c0afc28d63128ef215a6
ba736c0c9cc68fffdeb24262387810b162a89fe3
07bda3ba0f56d984a43e58c93d95ac66cecfcd573aec91631b22e6d78c68fc46
GET /Buteur/?lang=ar HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://botola.snrt.ma
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Origin, Authorization, X-Requested-With, Content-Type, Accept, Access-Control-Allow-Headers
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Cache: HIT, HIT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
Content-Encoding: gzip
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-194293482-1&cid=115989235.1671592164&jid=1446980393&gjid=723115211&_gid=308545775.1671592164&_u=YEBAAUAAAAAAACAAI~&z=855958408
64.233.164.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-194293482-1&cid=115989235.1671592164&jid=1446980393&gjid=723115211&_gid=308545775.1671592164&_u=YEBAAUAAAAAAACAAI~&z=855958408
IP 64.233.164.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-194293482-1&cid=115989235.1671592164&jid=1446980393&gjid=723115211&_gid=308545775.1671592164&_u=YEBAAUAAAAAAACAAI~&z=855958408 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://snrtnews.com
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://snrtnews.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 21 Dec 2022 03:09:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apibotola.snrt.ma/Classement/?lang=ar
34.251.187.31200 OK 836 B URL HTTP/1.1 apibotola.snrt.ma/Classement/?lang=ar
IP 34.251.187.31:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (2804), with no line terminators
Hash b5df2c05a94c9ee733bb1eae16c2ec67
d35aed3b779bc31d72b42322a144f64f79d31112
d5de0eb460aea19081c51a3c250304ac1bf79af71ec484835fde3077b8d6cde5
GET /Classement/?lang=ar HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://botola.snrt.ma
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Origin, Authorization, X-Requested-With, Content-Type, Accept, Access-Control-Allow-Headers
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Cache: HIT, HIT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
Content-Encoding: gzip
apibotola.snrt.ma/Calendrier/?lang=ar
34.251.187.31200 OK 808 B URL HTTP/1.1 apibotola.snrt.ma/Calendrier/?lang=ar
IP 34.251.187.31:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (2582), with no line terminators
Hash 4536424eeb4f6311db3b20e3eb3ded77
e4c6c2a59325c24333db4462493c38c61b7442b6
60e0cb29004079bf1d326d455b999a0659c03240536f209fd8fbb45808bd64f3
GET /Calendrier/?lang=ar HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://botola.snrt.ma
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Origin, Authorization, X-Requested-With, Content-Type, Accept, Access-Control-Allow-Headers
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Cache: HIT, HIT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
Content-Encoding: gzip
js-agent.newrelic.com/552.2d6a2503-1220.js
151.101.194.137200 OK 5.9 kB URL HTTP/2 js-agent.newrelic.com/552.2d6a2503-1220.js
IP 151.101.194.137:0
File type ASCII text, with very long lines (21423)
Hash 097ef34c5f5d635a147bca3721bd605b
3b31ef3cfb1d62d9884d631ec2467b9d6b0d46e2
3e05d4e42c1e87b516b525574b20d2570dccc50d1bd1b2956d6421699aa19914
GET /552.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Lx7LUNyC193WWpSv5hW/L7UEeNSlDwufm33KpA2sv5a1ht8efI/6s62/R2OVbNZKkoG/gUHXaFI=
x-amz-request-id: VK0V8BCV38T7WVVS
last-modified: Wed, 05 Oct 2022 14:53:43 GMT
etag: "777ac0df4dba632ad1b2955c88dd51ac"
x-amz-version-id: 7EjqUQ3uiXAFqO0VnIOp2ymSTJq3JZwD
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Dec 2022 03:09:09 GMT
via: 1.1 varnish
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 988
x-timer: S1671592149.274068,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 5890
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022120501&st=env
142.250.74.66200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022120501&st=env
IP 142.250.74.66:0
File type JSON data\012- , ASCII text, with very long lines (14853), with no line terminators
Hash f46a6c24487f883b5600e020c7b75dd6
0c782e99818a08f8f5615aaf8694c23201b7aa2d
f1b39df12466f0379cba7729907c2284826c720523cafeca7c091acc7ce39002
GET /getconfig/sodar?sv=200&tid=gpt&tv=2022120501&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://snrtnews.com
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Wed, 21 Dec 2022 03:09:09 GMT
server: cafe
content-length: 11213
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js-agent.newrelic.com/775.2d6a2503-1220.js
151.101.194.137200 OK 632 B URL HTTP/2 js-agent.newrelic.com/775.2d6a2503-1220.js
IP 151.101.194.137:0
File type ASCII text, with very long lines (1169)
Hash 661520fd0dfebb919d68a69b60ca426f
b85ef80a0e0d95bf4904f9ce4fad56c49ae035be
ecd489671c6255fee8370fc1f8f4e99519ef8d4c4c0ab06640b0c021642e1db7
GET /775.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: n5W3M8HU3EdwDhPARC2iiAf1as95kdLfrN2+qdL0W35SMVzIqjIlMR9W7ck8oTAzeIw6lrJi5fM=
x-amz-request-id: VK0MRM6MJ78HXF3Y
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "1dfdb74c0491489bf04c6deadb56add2"
x-amz-version-id: y1AQ2bnjUbwuFOuSS5MP1vew1dGw.1iz
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Dec 2022 03:09:09 GMT
via: 1.1 varnish
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 968
x-timer: S1671592149.429348,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 632
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-194293482-1&cid=115989235.1671592164&jid=1446980393&_u=YEBAAUAAAAAAACAAI~&z=663446867
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-194293482-1&cid=115989235.1671592164&jid=1446980393&_u=YEBAAUAAAAAAACAAI~&z=663446867
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-194293482-1&cid=115989235.1671592164&jid=1446980393&_u=YEBAAUAAAAAAACAAI~&z=663446867 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 03:09:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
botola.snrt.ma/widget/fonts/averta-extrabold-webfont.woff2
116.202.113.175200 OK 26 kB URL HTTP/2 botola.snrt.ma/widget/fonts/averta-extrabold-webfont.woff2
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 26368, version 1.0\012- data
Hash 5d23e350ee661b5550de76ffa46250dc
6e119ad71303f7d478cf0096fba9a6651a5ed0e8
f7ba52f3836c67d70e5e9221d28d2e6b1e931fad6271de4bdbc19aac77963c56
GET /widget/fonts/averta-extrabold-webfont.woff2 HTTP/1.1
Host: botola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://botola.snrt.ma/widget/css/styles.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: font/woff2
date: Wed, 21 Dec 2022 03:09:09 GMT
etag: "6006dff6-6700"
last-modified: Tue, 19 Jan 2021 13:34:46 GMT
server: nginx/1.19.6
content-length: 26368
X-Firefox-Spdy: h2
js-agent.newrelic.com/290.2d6a2503-1220.js
151.101.194.137200 OK 3.4 kB URL HTTP/2 js-agent.newrelic.com/290.2d6a2503-1220.js
IP 151.101.194.137:0
File type ASCII text, with very long lines (8544)
Hash b9baa2cb6a3b1a3d0fda03cd7db51631
42d37467e05182e3cab2fcb54577dc462adcf50b
31a8b4d47298cae24c66e37256a51474ae88a745fdfec79f99b2d43608e6d822
GET /290.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: fhmr6WetDM+g2i2QlvVMRpxUR5FtkKdG9L63CCQ3CSWsvtR6j++f9vvc73sttpIYqURa2xyYTRk=
x-amz-request-id: VK0ZFWF8T6343F8V
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "13898fbb4d7a1f83fc6722c4c12faf40"
x-amz-version-id: C4hj6k9j4I7xXuTBZvcbX78Bf.Ep8KMk
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Dec 2022 03:09:09 GMT
via: 1.1 varnish
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 975
x-timer: S1671592149.429944,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3424
X-Firefox-Spdy: h2
js-agent.newrelic.com/368.2d6a2503-1220.js
151.101.194.137200 OK 1.4 kB URL HTTP/2 js-agent.newrelic.com/368.2d6a2503-1220.js
IP 151.101.194.137:0
File type ASCII text, with very long lines (3382)
Hash fa50a55750d1d0978fca32be5dbc3988
a7f447621d48b3ecf7fc0192b515d506d3d1ad18
c621038fb07e536af8a1ec6d260853dfe69055dc2fb526700919c53b3b7e5f20
GET /368.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: kwoAxcBtx2IMbi3IHVdur3TxF/StXF2YgQ/J5F/J0LqxQRcevbbS10v8PBtCq89jFlCdbzEZt0Y=
x-amz-request-id: VK0S7FDBAB0EX9VY
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "16b4f3676c3859e1378a2ccdebbad675"
x-amz-version-id: zC.KoTaM7bjdFj.W4KQMilxtjXXSNPks
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Dec 2022 03:09:09 GMT
via: 1.1 varnish
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 970
x-timer: S1671592149.430106,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1443
X-Firefox-Spdy: h2
js-agent.newrelic.com/768.2d6a2503-1220.js
151.101.194.137200 OK 2.2 kB URL HTTP/2 js-agent.newrelic.com/768.2d6a2503-1220.js
IP 151.101.194.137:0
File type ASCII text, with very long lines (5523)
Hash 98a96a3306b7723c0b8c4bff074cdd9f
e9070da7daa34fa2d8ac2e4ec00e3c499ea37516
a6079d50fa4c72b521fd865e67be080b5b21c336a71dbf7a1800a12ad42384f7
GET /768.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: YghQGw//W98CcE+uLEc2bIpyY1zfBy1cvSl3ZbHItGIBbBbjBYrgjjDhKdNnyagoNGaVfLpI2xM=
x-amz-request-id: VK0XNZM280HMN60Q
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "d6cc8b42eda6fd7734014b03b87b5787"
x-amz-version-id: 0CJw6LdyBdZcjhOiVrtC0pLcOFtA3d5G
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Dec 2022 03:09:09 GMT
via: 1.1 varnish
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 973
x-timer: S1671592149.452089,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2225
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 0b3a38d8057f8c59aa4db5a405d1004c
3c25e79903c1854f482800c6649da26764730a90
910fbf0b154d2cb38f02f87065f7e94f0aa98a11ffd1c87b04eecf80975d4a51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 47687a1e5abe2c0ffcc784e986013adb
7c6546e637ccbfad5b3275111adaa3547c87ae95
1e145649496ae0ff2433fd18272890d512613ba6dcd5910b2011d04830062042
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:09:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apibotola.snrt.ma/Files/mediumicons/flags/1448.png
34.251.187.31301 Moved Permanently 1.8 kB URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1448.png
IP 34.251.187.31:0
Hash f6d2561ceb3033107da6680d73689d8b
904df06838e77daabc61a35d42385a94f7e81154
f13611b18ea2e84efed0155a92a52b145d69f87cd96fd1806e0121ffc65471c2
GET /Files/mediumicons/flags/1448.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1448.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
www.clarity.ms/eus2/s/0.7.1/clarity.js
13.107.213.53200 OK 19 kB URL HTTP/2 www.clarity.ms/eus2/s/0.7.1/clarity.js
IP 13.107.213.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (56646)
Hash 66bec5cf19258f21f546dafbd8fbac89
9ad80a56291ca677990c37c376631d3ff74e0234
fe223664aef7e529023cbb3ee1920a439abcd1f70bd6ce9554a6fb6ca9e565fb
GET /eus2/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d913c18f6c839e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-azure-ref-originshield: 0oGaiYwAAAABPwXi2PTd9SISmJE0l8mnUQU1TMDRFREdFMTkxMwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
x-azure-ref: 01XiiYwAAAADG/l4HXKY7SKMyN4uVri4WU1ZHMjBFREdFMDUwOAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 21 Dec 2022 03:09:08 GMT
X-Firefox-Spdy: h2
apibotola.snrt.ma/Files/mediumicons/flags/1664.png
34.251.187.31301 Moved Permanently 178 B URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1664.png
IP 34.251.187.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /Files/mediumicons/flags/1664.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1664.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
apibotola.snrt.ma/Files/mediumicons/flags/1764.png
34.251.187.31301 Moved Permanently 178 B URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1764.png
IP 34.251.187.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /Files/mediumicons/flags/1764.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1764.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
apibotola.snrt.ma/Files/mediumicons/flags/1632.png
34.251.187.31301 Moved Permanently 178 B URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1632.png
IP 34.251.187.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /Files/mediumicons/flags/1632.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1632.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
apibotola.snrt.ma/Files/mediumicons/flags/1450.png
34.251.187.31301 Moved Permanently 551 B URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1450.png
IP 34.251.187.31:0
Hash b9121898a6eb3a07fa61500fe153bec2
61e2b1b26a2d26c01af7e41b01abd9721d199421
1e96712504872964cc982978b3880e4424e0f26ea2660b8b8ffcc03e170c8c91
GET /Files/mediumicons/flags/1450.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1450.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-194293482-1&cid=115989235.1671592164&jid=1446980393&_u=YEBAAUAAAAAAACAAI~&z=663446867
216.58.211.4200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-194293482-1&cid=115989235.1671592164&jid=1446980393&_u=YEBAAUAAAAAAACAAI~&z=663446867
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-194293482-1&cid=115989235.1671592164&jid=1446980393&_u=YEBAAUAAAAAAACAAI~&z=663446867 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 03:09:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apibotola.snrt.ma/Files/mediumicons/flags/1454.png
34.251.187.31301 Moved Permanently 88 kB URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1454.png
IP 34.251.187.31:0
Hash 08da0c56e59b0b820c3972d876c2fe56
a58bf19fa94830e47db9652a89324c42e10d33bb
738fe32364172805be51f951f36e0d01a5cc80eb9eb9c8451aafcee9e01521f3
GET /Files/mediumicons/flags/1454.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1454.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
apibotola.snrt.ma/Files/mediumicons/flags/1456.png
34.251.187.31301 Moved Permanently 41 kB URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1456.png
IP 34.251.187.31:0
Hash 20fb960d98ae923c933437cd259d1c8e
a9f1b4991bcf8407d1407b44b7f9b873acca27d3
ad74ebbacb2a2bbac4a4576719103378992951753fe465e890af1cc51b63d498
GET /Files/mediumicons/flags/1456.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1456.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
www.google.com/recaptcha/api2/aframe
216.58.211.4200 OK 514 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 216.58.211.4:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash bad882a67613ddd77dcbf9746e60b2d5
2e027da62a7ce55f088fdc73bb98f3f09def4495
0c28b2b4c5601d1dd0528d626cec258f4373dab026d6814375621e0682f83714
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 21 Dec 2022 03:09:09 GMT
date: Wed, 21 Dec 2022 03:09:09 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-ke1W9vTFiWzC94dINH2rQA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 514
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apibotola.snrt.ma/Files/mediumicons/flags/1763.png
34.251.187.31301 Moved Permanently 527 B URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1763.png
IP 34.251.187.31:0
Hash e53db4fcbf0fdfefc8883d486d8e8ed9
64f8994bc6c8bce85b2dde8c985176f4e595cbbb
b50635e115e1438cbdbaee70568954cfed6cfedf4bac1cc0a1a0d630806c7498
GET /Files/mediumicons/flags/1763.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1763.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
apibotola.snrt.ma/Files/mediumicons/flags/1453.png
34.251.187.31301 Moved Permanently 178 B URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1453.png
IP 34.251.187.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /Files/mediumicons/flags/1453.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1453.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
apibotola.snrt.ma/Files/mediumicons/flags/1451.png
34.251.187.31301 Moved Permanently 178 B URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1451.png
IP 34.251.187.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /Files/mediumicons/flags/1451.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1451.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
apibotola.snrt.ma/Files/mediumicons/flags/1538.png
34.251.187.31301 Moved Permanently 178 B URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1538.png
IP 34.251.187.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /Files/mediumicons/flags/1538.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1538.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
apibotola.snrt.ma/Files/mediumicons/flags/1449.png
34.251.187.31301 Moved Permanently 178 B URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1449.png
IP 34.251.187.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /Files/mediumicons/flags/1449.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1449.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
apibotola.snrt.ma/Files/mediumicons/flags/1447.png
34.251.187.31301 Moved Permanently 178 B URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1447.png
IP 34.251.187.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /Files/mediumicons/flags/1447.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1447.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
apibotola.snrt.ma/Files/mediumicons/flags/1665.png
34.251.187.31301 Moved Permanently 178 B URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1665.png
IP 34.251.187.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /Files/mediumicons/flags/1665.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1665.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
apibotola.snrt.ma/Files/mediumicons/flags/1562.png
34.251.187.31301 Moved Permanently 178 B URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1562.png
IP 34.251.187.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /Files/mediumicons/flags/1562.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1562.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
apibotola.snrt.ma/Files/mediumicons/flags/1445.png
34.251.187.31301 Moved Permanently 178 B URL HTTP/1.1 apibotola.snrt.ma/Files/mediumicons/flags/1445.png
IP 34.251.187.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /Files/mediumicons/flags/1445.png HTTP/1.1
Host: apibotola.snrt.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://botola.vidsens.com/Files/mediumicons/flags/1445.png
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
Strict-Transport-Security: max-age=300; includeSubDomains; preload; always
Referrer-Policy: no-referrer
c.bing.com/c.gif?CtsSyncId=6D74D84DA8124122927B3ED9531DB085&RedC=c.clarity.ms&MXFR=1654239485986CF7032531158198623B
13.107.21.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=6D74D84DA8124122927B3ED9531DB085&RedC=c.clarity.ms&MXFR=1654239485986CF7032531158198623B
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=6D74D84DA8124122927B3ED9531DB085&RedC=c.clarity.ms&MXFR=1654239485986CF7032531158198623B HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://snrtnews.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=6D74D84DA8124122927B3ED9531DB085&MUID=2FF7730DEE2665F02294618CEFD364F9
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=2FF7730DEE2665F02294618CEFD364F9; domain=c.bing.com; expires=Mon, 15-Jan-2024 03:09:09 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1DC21D067C0E4F0680AF7A13ABAFAB60 Ref B: OSL30EDGE0220 Ref C: 2022-12-21T03:09:09Z
date: Wed, 21 Dec 2022 03:09:09 GMT
content-length: 0
X-Firefox-Spdy: h2
bam.eu01.nr-data.net/1/NRJS-9e9aa6ae63c91b2b09c?a=118323441&v=1220.PROD&to=MhBSZQoZWUVSVUFbWwtacVIMEVhYHEZUVVE6FlFSEB0%3D&rst=2995&ck=0&s=652f20e24ba5ccd9&ref=https://snrtnews.com/&ap=17&be=461&fe=2264&dc=1369&perf=%7B%22timing%22:%7B%22of%22:1671592161428,%22n%22:0,%22f%22:145,%22dn%22:224,%22dne%22:256,%22c%22:256,%22s%22:260,%22ce%22:360,%22rq%22:360,%22rp%22:405,%22rpe%22:407,%22dl%22:416,%22di%22:1806,%22ds%22:1829,%22de%22:1855,%22dc%22:2725,%22l%22:2725,%22le%22:2747%7D,%22navigation%22:%7B%7D%7D&fcp=1037&at=HldRE0IDSks%3D&jsonp=NREUM.setToken
185.221.85.3200 OK 77 B URL HTTP/1.1 bam.eu01.nr-data.net/1/NRJS-9e9aa6ae63c91b2b09c?a=118323441&v=1220.PROD&to=MhBSZQoZWUVSVUFbWwtacVIMEVhYHEZUVVE6FlFSEB0%3D&rst=2995&ck=0&s=652f20e24ba5ccd9&ref=https://snrtnews.com/&ap=17&be=461&fe=2264&dc=1369&perf=%7B%22timing%22:%7B%22of%22:1671592161428,%22n%22:0,%22f%22:145,%22dn%22:224,%22dne%22:256,%22c%22:256,%22s%22:260,%22ce%22:360,%22rq%22:360,%22rp%22:405,%22rpe%22:407,%22dl%22:416,%22di%22:1806,%22ds%22:1829,%22de%22:1855,%22dc%22:2725,%22l%22:2725,%22le%22:2747%7D,%22navigation%22:%7B%7D%7D&fcp=1037&at=HldRE0IDSks%3D&jsonp=NREUM.setToken
IP 185.221.85.3:0
ASN #206998 New Relic International Limited
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/NRJS-9e9aa6ae63c91b2b09c?a=118323441&v=1220.PROD&to=MhBSZQoZWUVSVUFbWwtacVIMEVhYHEZUVVE6FlFSEB0%3D&rst=2995&ck=0&s=652f20e24ba5ccd9&ref=https://snrtnews.com/&ap=17&be=461&fe=2264&dc=1369&perf=%7B%22timing%22:%7B%22of%22:1671592161428,%22n%22:0,%22f%22:145,%22dn%22:224,%22dne%22:256,%22c%22:256,%22s%22:260,%22ce%22:360,%22rq%22:360,%22rp%22:405,%22rpe%22:407,%22dl%22:416,%22di%22:1806,%22ds%22:1829,%22de%22:1855,%22dc%22:2725,%22l%22:2725,%22le%22:2747%7D,%22navigation%22:%7B%7D%7D&fcp=1037&at=HldRE0IDSks%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.eu01.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 03:09:09 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 77cd6ad70bf20a30-ARN
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
cross-origin-resource-policy: cross-origin
x-envoy-upstream-service-time: 3
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vweewl4RDeyaFBbWRoIuq8%2BLXTOAxOs4AYEnGEWcp%2FTNz24hsBXFJhYxWgTdt9Ji4MPMhb%2BhIbuGyI1GRONesQzI5CIS97aYIylRoLBYyT1%2FEcCsxBztdAlJ6j35QCwiCTFTeDL3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
c.clarity.ms/c.gif?CtsSyncId=6D74D84DA8124122927B3ED9531DB085&MUID=2FF7730DEE2665F02294618CEFD364F9
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=6D74D84DA8124122927B3ED9531DB085&MUID=2FF7730DEE2665F02294618CEFD364F9
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=6D74D84DA8124122927B3ED9531DB085&MUID=2FF7730DEE2665F02294618CEFD364F9 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://snrtnews.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Mon, 12 Dec 2022 18:28:34 GMT
accept-ranges: bytes
etag: "ea79178b57ed91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Wed, 21-Dec-2022 03:19:09 GMT; path=/; SameSite=None; Secure;
date: Wed, 21 Dec 2022 03:09:09 GMT
content-length: 42
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7ded34eda181ec9751dc001c3b97ef36
0b7d2413204bf67e1cd02f8f035ca013c93e0e36
b363dce0dcbff5d4a422e08120bc49e8a948d714156eb5aec34fa2d416e189ee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B363DCE0DCBFF5D4A422E08120BC49E8A948D714156EB5AEC34FA2D416E189EE"
Last-Modified: Tue, 20 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 21 Dec 2022 09:09:09 GMT
Date: Wed, 21 Dec 2022 03:09:09 GMT
Connection: keep-alive
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1041
Origin: https://snrtnews.com
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://snrtnews.com
access-control-allow-credentials: true
date: Wed, 21 Dec 2022 03:09:08 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6064
Expires: Wed, 21 Dec 2022 04:50:13 GMT
Date: Wed, 21 Dec 2022 03:09:09 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbff75350-af26-4cdc-a530-ee13f1464846.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbff75350-af26-4cdc-a530-ee13f1464846.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5f8a00da147fc1ea45e26ab2f08184d1
746935e11a26447009e10be55e05b14df3b71fef
0a6306992800db29e85e972cf240ebe70f6032f208d8122071a1dc81e3ad25ac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbff75350-af26-4cdc-a530-ee13f1464846.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8801
x-amzn-requestid: e8ead79d-9d25-4ea8-be70-44acf4394424
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dYbu-FKgIAMFoig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a00cc6-0ef5f9f1224069f44a9c9507;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 07:03:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mFYJekLqBW5d6QqwPDBa3c6EkkG_lPqmZeSrPSBvaPUBJ-3bFjr6pQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 07:31:42 GMT
age: 70647
etag: "746935e11a26447009e10be55e05b14df3b71fef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3bd6359db3b908389343275ee839466b
9094f8e9275252a8e9d5e65fd3e87851b2f80bd7
7380590a93f8a21907c39ddce2f51c599161f219522df4099e9c1a82bcd1e40e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9069
x-amzn-requestid: 103b5caf-fa82-4d66-97e6-99c77027f759
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_DG_hoAMFoKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-1a4accb80dbf5e9f2f696c85;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: D8V_RlBCxL1RHxtCyWkX7_IsCCrOdv2o1Wdic0N_aUz0qguhANp88A==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:37:22 GMT
age: 19907
etag: "9094f8e9275252a8e9d5e65fd3e87851b2f80bd7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8f5b2e482a0944dfc0de3a69659fa002
64dd897d9163a6eceadc0c5460cdd135d323abb3
feb1a63a27859b88257d50c3c8723131978fd1f363a6f9e1297b91549b4aed9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9044
x-amzn-requestid: 981a0010-ec53-4659-818b-4cfa39fa8cd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dbuhqGUbIAMF_QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a15e0a-65b084547c4d2b4414236f84;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 07:02:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: -AR7jIQqHV2XWDLH1W7rybyRGcDQ4oSGQsneAScw7MHK3nwjYYkjWg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 07:05:44 GMT
age: 72205
etag: "64dd897d9163a6eceadc0c5460cdd135d323abb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b7a655d774d6fc2289e8a81c21cee8ba
f1a3a1145ed0d742c08e29a9786ac1b2dcceff4e
568df511cef68a367d86bde6aaab93c87674963e92537a8d6cdfd4f7c27ba199
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "568DF511CEF68A367D86BDE6AAAB93C87674963E92537A8D6CDFD4F7C27BA199"
Last-Modified: Tue, 20 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=243
Expires: Wed, 21 Dec 2022 03:13:12 GMT
Date: Wed, 21 Dec 2022 03:09:09 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d031850-22eb-4b68-b31f-b6442037953e.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d031850-22eb-4b68-b31f-b6442037953e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 551946a77ac86428763e22bc008d68b1
04f4a422bd872990f47b802326e386ee26a967e3
58dce19008346e668c2a1219aee7f54b940c9c2b541a8bd860731cc05031cd60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d031850-22eb-4b68-b31f-b6442037953e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10717
x-amzn-requestid: ca8b43b6-7ffd-43df-9a77-b9352a2e8dfe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT66DEbfoAMFw4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3ea6-5f8f5745418a41cd6fb9e2c6;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 22:11:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: N2l8V5Zz2SsDl5UbOfsAQze8Jo4hbkJxTCGvGZrRVCG_ZEHEkI2bTg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 07:13:47 GMT
age: 71722
etag: "04f4a422bd872990f47b802326e386ee26a967e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e09193-cc07-43ac-889e-3940948814ce.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e09193-cc07-43ac-889e-3940948814ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edba09e5cf977de85bbc878f27d6b124
b18cca6c0dfec057305ac3ef231f74887183ebbc
286f14f7d39d91168860d610fc08efe93967781e759eedfac86f29fcf85e9d12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e09193-cc07-43ac-889e-3940948814ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4729
x-amzn-requestid: 02b65dca-78b1-4e7a-b6cc-2d9b7f3b9759
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_BHgSoAMFZjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-024fa06264a6b85424f74ae4;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: r4j0S_ZGeww3h1mKQ5QcwGF2llgP5xBrn1kxw1RyPz3GySghhXzZWA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 3bb2b699cd244bf37141ea08a6a61732.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:37:23 GMT
age: 19906
etag: "b18cca6c0dfec057305ac3ef231f74887183ebbc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c78fc8f-aea2-449f-9a81-c0a596eb2a5d.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c78fc8f-aea2-449f-9a81-c0a596eb2a5d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f544a43069d3e7ef3c9e81be2eae38c
2e99a97efcff24112b95676f2d9c3dbc815edc58
8ce3a265ec7d56944f787f868563d7626fdaecac25312ef82a408d89d3b737cd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c78fc8f-aea2-449f-9a81-c0a596eb2a5d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8963
x-amzn-requestid: 397ea1cc-f004-4152-b528-fca162be7036
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_DElEoAMFyNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-70d4068264436d7f3b3c5be0;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: OayP0-AAqDlhtTg9PHz2MdZq6Vh3iZTAW2ZbgaXmaV34t91ax9bhCA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5292c0d5844327feadb38f1efe42ebc6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:37:22 GMT
age: 19907
etag: "2e99a97efcff24112b95676f2d9c3dbc815edc58"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
botola.vidsens.com/Files/mediumicons/flags/1454.png
116.202.113.175200 OK 18 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1454.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash bbfc18f38fe78e5d5ad015a3388c31a4
b483f2965356c7511255cdb1645e8937c01e42fd
e188ee64ecf51977ca4d3d7dad8d32d516c630e1137c2b240b5315b17cbb32c8
GET /Files/mediumicons/flags/1454.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=44441.521
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 15:29:51 GMT
etag: W/"62fe4b25-484b"
last-modified: Thu, 18 Aug 2022 14:22:29 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 33407
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 18514
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b7a655d774d6fc2289e8a81c21cee8ba
f1a3a1145ed0d742c08e29a9786ac1b2dcceff4e
568df511cef68a367d86bde6aaab93c87674963e92537a8d6cdfd4f7c27ba199
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "568DF511CEF68A367D86BDE6AAAB93C87674963E92537A8D6CDFD4F7C27BA199"
Last-Modified: Tue, 20 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 21 Dec 2022 09:09:09 GMT
Date: Wed, 21 Dec 2022 03:09:09 GMT
Connection: keep-alive
botola.vidsens.com/Files/mediumicons/flags/1456.png
116.202.113.175200 OK 19 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1456.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 548ab2f106d530af09e5cec0e1c2f968
8b3f86918586d9c651d5cf3fd92aabf4b138beed
c038cc82e62e55d05cb3ca0ff277b958e5a021c5038e2d4973c9159137c1e410
GET /Files/mediumicons/flags/1456.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=24935.334
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 10:04:45 GMT
etag: W/"62fe4b25-499d"
last-modified: Thu, 18 Aug 2022 14:22:29 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 50715
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 18611
X-Firefox-Spdy: h2
botola.vidsens.com/Files/mediumicons/flags/1763.png
116.202.113.175200 OK 16 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1763.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 2e9fbacfc4f4a2cc02adfb7415a82dac
6c62c2adc8a64c69e6b85e7e9baa5f25187b6874
1a777d4e208f97a6a5caa89f7cf6e9dfa48ca5595cb5f9f36906598c51e3a70b
GET /Files/mediumicons/flags/1763.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=62467.469
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 20:30:17 GMT
etag: W/"62fe54a3-3e1e"
last-modified: Thu, 18 Aug 2022 15:02:59 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 14847
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 15618
X-Firefox-Spdy: h2
botola.vidsens.com/Files/mediumicons/flags/1453.png
116.202.113.175200 OK 20 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1453.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash f1b65b532578c2951c6f6ed49c5a52d9
8b49dcdad87161ec55319b9826c1a85c367628f0
04fca15138e94318c49689dbd766c1d5a770cf36edba56b0a39a25dc67c13a92
GET /Files/mediumicons/flags/1453.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=62833.973
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 20:36:23 GMT
etag: W/"62fe4b25-4e0a"
last-modified: Thu, 18 Aug 2022 14:22:29 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 14651
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 19703
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b7a655d774d6fc2289e8a81c21cee8ba
f1a3a1145ed0d742c08e29a9786ac1b2dcceff4e
568df511cef68a367d86bde6aaab93c87674963e92537a8d6cdfd4f7c27ba199
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "568DF511CEF68A367D86BDE6AAAB93C87674963E92537A8D6CDFD4F7C27BA199"
Last-Modified: Tue, 20 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 21 Dec 2022 09:09:09 GMT
Date: Wed, 21 Dec 2022 03:09:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7ded34eda181ec9751dc001c3b97ef36
0b7d2413204bf67e1cd02f8f035ca013c93e0e36
b363dce0dcbff5d4a422e08120bc49e8a948d714156eb5aec34fa2d416e189ee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B363DCE0DCBFF5D4A422E08120BC49E8A948D714156EB5AEC34FA2D416E189EE"
Last-Modified: Tue, 20 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21519
Expires: Wed, 21 Dec 2022 09:07:48 GMT
Date: Wed, 21 Dec 2022 03:09:09 GMT
Connection: keep-alive
botola.vidsens.com/Files/mediumicons/flags/1451.png
116.202.113.175200 OK 23 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1451.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash bcc6b1191fc50edeb6997e7acd3d0382
9154369211876bdbd64ffacfde36fc8a0fbbdd37
a71046023646dc19c40d951b1070fe59fe7384015a0e754b3bb3fdfe271db376
GET /Files/mediumicons/flags/1451.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=26535.503
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 10:31:25 GMT
etag: W/"62fe4b24-5e05"
last-modified: Thu, 18 Aug 2022 14:22:28 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 49852
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 23248
X-Firefox-Spdy: h2
botola.vidsens.com/Files/mediumicons/flags/1538.png
116.202.113.175200 OK 19 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1538.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 7e7115cd38047e15e3e19bec987eae2a
ab011b8d94ad73f93dc1c4d0efe17c9569b966b4
17242d54fd8d003052c520f4ab6a0e0c6ef660b0fe39345c413f12d4580841bb
GET /Files/mediumicons/flags/1538.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=45844.933
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 15:53:14 GMT
etag: W/"62fe4b2d-4cbd"
last-modified: Thu, 18 Aug 2022 14:22:37 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 30188
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 19356
X-Firefox-Spdy: h2
botola.vidsens.com/Files/mediumicons/flags/1448.png
116.202.113.175200 OK 27 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1448.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 5edd9c44b950811d540d356dede8ff73
d8478461f0ff43163a1644043e8ad77135a1b960
6958fa36db58675de9a76e7ceccac6db29d1f8eede99c8f2f2bd604428ec8639
GET /Files/mediumicons/flags/1448.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=43091.198
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 15:07:21 GMT
etag: W/"62fe4b24-6966"
last-modified: Thu, 18 Aug 2022 14:22:28 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 35515
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 26958
X-Firefox-Spdy: h2
botola.vidsens.com/Files/mediumicons/flags/1450.png
116.202.113.175200 OK 28 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1450.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 20854a196637551e82601c8e45db3483
feaed367df2fbbbb1310d489f463d6b33dd9a38b
876b04fd06c85d1df5b0010301e1bfc6ed1279dbdf1fc75f1874e10150076a11
GET /Files/mediumicons/flags/1450.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=46117.320
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 15:57:47 GMT
etag: W/"62fe4b24-6ca6"
last-modified: Thu, 18 Aug 2022 14:22:28 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 30338
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 27816
X-Firefox-Spdy: h2
botola.vidsens.com/Files/mediumicons/flags/1445.png
116.202.113.175200 OK 22 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1445.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 08cfe887e75ab066c0a3dec2b08f207d
eb1ed83be8668db95bc255fe6fb8989b91a8c89b
36ddbe0c0002556382329e56d1fc497825b33516fa98aa50c0d5f0ca1bf628d4
GET /Files/mediumicons/flags/1445.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=25062.102
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 10:06:52 GMT
etag: W/"62fe4b24-5766"
last-modified: Thu, 18 Aug 2022 14:22:28 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 50739
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 22111
X-Firefox-Spdy: h2
botola.vidsens.com/Files/mediumicons/flags/1562.png
116.202.113.175200 OK 29 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1562.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 506308f92f95b7af3b35e3b6358b27c0
b7deefd7306f80faab868f7a41071dcd4c430d75
fe01c3549f656704dfb49e071f3c4f271ab8beabcbfdd4a96e5217cbb30c8513
GET /Files/mediumicons/flags/1562.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=46391.777
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 16:02:21 GMT
etag: W/"62fe4b30-7080"
last-modified: Thu, 18 Aug 2022 14:22:40 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 29566
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 28826
X-Firefox-Spdy: h2
botola.vidsens.com/Files/mediumicons/flags/1665.png
116.202.113.175200 OK 13 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1665.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 37c525065d789ad60ab05820d77b941c
6a489023b92a238d5a11074bc7073b0d85eed816
2589bdbc2742a0c9491c73d32af1d267e343a737a95f7a8117e4b3a93b2a27e1
GET /Files/mediumicons/flags/1665.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=62234.935
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 20:26:24 GMT
etag: W/"62fe4b38-339b"
last-modified: Thu, 18 Aug 2022 14:22:48 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 14991
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 12611
X-Firefox-Spdy: h2
botola.vidsens.com/Files/mediumicons/flags/1447.png
116.202.113.175200 OK 20 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1447.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 08d06666fbd8e25b9203ac4e916ab9d8
7acc15488b514cd79f83bd3bcec92f7689795f67
0eaca2affc69853a03bcdd58ca5bca42ac46014147209e5a287fc9cc39b0a153
GET /Files/mediumicons/flags/1447.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=26182.050
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 10:25:31 GMT
etag: W/"62fe4b24-4fb9"
last-modified: Thu, 18 Aug 2022 14:22:28 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 49311
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 20437
X-Firefox-Spdy: h2
botola.vidsens.com/Files/mediumicons/flags/1449.png
116.202.113.175200 OK 30 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1449.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash a2bc704029e7ca22827ca2a84347b57d
daaa6a5278d84c13a2e18b28d3ecd9e52ca0e17a
4907121c824abc0a8dee6738310c06de7673a49ab7db938b25dfea950e9d24c5
GET /Files/mediumicons/flags/1449.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=46503.614
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 16:04:13 GMT
etag: W/"62fe4b24-77ee"
last-modified: Thu, 18 Aug 2022 14:22:28 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 29563
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 30406
X-Firefox-Spdy: h2
botola.vidsens.com/Files/mediumicons/flags/1764.png
116.202.113.175200 OK 12 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1764.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash f932193ffe2ad059ad6df60bba54b13f
314eac4e28bb5490d65d0f9d93c01b04899dc92b
2e8f89d0f2b2fe308f4de2597449b5c8cf14ada9cb116b8e168bcfc0520182ee
GET /Files/mediumicons/flags/1764.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=24771.436
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 10:02:01 GMT
etag: W/"63114038-3192"
last-modified: Thu, 01 Sep 2022 23:28:56 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 51143
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 12410
X-Firefox-Spdy: h2
botola.vidsens.com/Files/mediumicons/flags/1664.png
116.202.113.175200 OK 26 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1664.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 6b406f7515c44fc2ab10297c7fa6c381
3ddf92f3e91cd7bc7b306a80c02213a1b8e9e370
780d408c3a009d50b3ed1849dd7f80f7fc6761f45496b75245ace679103c0b60
GET /Files/mediumicons/flags/1664.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=62130.389
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 20:24:40 GMT
etag: W/"62fe4b38-667c"
last-modified: Thu, 18 Aug 2022 14:22:48 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 15532
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 25956
X-Firefox-Spdy: h2
botola.vidsens.com/Files/mediumicons/flags/1632.png
116.202.113.175200 OK 29 kB URL HTTP/2 botola.vidsens.com/Files/mediumicons/flags/1632.png
IP 116.202.113.175:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash cd088521afa17b845b8fbfa2ee41d9df
46addc29e40d5839d3cb78c0273a7a8b10aec8c9
ce3a5d8ef436501d4ae227cc39f9e252076b6d66d2b273031c2d8f988b157801
GET /Files/mediumicons/flags/1632.png HTTP/1.1
Host: botola.vidsens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=46111.576
content-encoding: gzip
content-security-policy: frame-src *.aramobile.com *.snrtnews.com default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.gvt1.com *.snrt.ma *.vidsens.com *.akamaized.net *.cloudflare.com *.2mdn.net *.github.io *.easybroadcast.fr *.easybroadcast.io *.googlesyndication.com *.linearicons.com *.gstatic.com *.youtube.com *.google.com *.doubleclick.net *.ytimg.com *.googletagservices.com *.google-analytics.com *.googletagmanager.com *.bootstrapcdn.com *.ionicframework.com *.googleapis.com unpkg.com *.laliga.es *.github.io *.aramobile.com *.snrtnews.com;
content-type: image/png
date: Tue, 20 Dec 2022 15:57:41 GMT
etag: W/"62fe4b35-736b"
last-modified: Thu, 18 Aug 2022 14:22:45 GMT
referrer-policy: no-referrer
strict-transport-security: max-age=300; includeSubDomains; preload; always
vary: Accept-Encoding
x-arkia-cache: HIT
x-arkia-cache-hits: 30583
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 29263
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 361
Origin: https://snrtnews.com
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://snrtnews.com
access-control-allow-credentials: true
date: Wed, 21 Dec 2022 03:09:09 GMT
X-Firefox-Spdy: h2
api.aladhan.com/v1/calendarByCity?city=Rabat&country=MA&month=12&year=2022&method=99&methodSettings=19.1,0.31,17.05
178.79.176.230200 OK 0 B URL HTTP/2 api.aladhan.com/v1/calendarByCity?city=Rabat&country=MA&month=12&year=2022&method=99&methodSettings=19.1,0.31,17.05
IP 178.79.176.230:0
GET /v1/calendarByCity?city=Rabat&country=MA&month=12&year=2022&method=99&methodSettings=19.1,0.31,17.05 HTTP/1.1
Host: api.aladhan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://snrtnews.com
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
x-ratelimit-remaining-second: 6
x-ratelimit-limit-second: 7
ratelimit-limit: 7
ratelimit-remaining: 6
ratelimit-reset: 1
date: Wed, 21 Dec 2022 03:09:09 GMT
server: Apache/2.4.54 (Debian)
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
x-kong-upstream-latency: 12
x-kong-proxy-latency: 0
via: kong/3.0.1
X-Firefox-Spdy: h2
snrtnews.ma/themes/basic/images/close-responsive.png
172.67.203.73301 Moved Permanently 0 B URL HTTP/2 snrtnews.ma/themes/basic/images/close-responsive.png
IP 172.67.203.73:0
GET /themes/basic/images/close-responsive.png HTTP/1.1
Host: snrtnews.ma
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Wed, 21 Dec 2022 03:09:07 GMT
location: https://snrtnews.com/themes/basic/images/close-responsive.png
cache-control: max-age=3600
expires: Wed, 21 Dec 2022 04:09:07 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MIP4QEGaIo4VfqA%2BUQmGrmazvoTuUKZx7D8ZEFLexTUI64JmwbsjCng8sn3j3mJf26OU5jrVW7AhfEhx4l5oUm7BINN%2Bzeu7dxkgIXi7qqqzeQv4OVXCDuItsZp%2Bfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cd6ac9589fb511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.clarity.ms/tag/7gfs2vmdzm
13.107.213.53200 OK 0 B URL HTTP/2 www.clarity.ms/tag/7gfs2vmdzm
IP 13.107.213.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /tag/7gfs2vmdzm HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snrtnews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=589b6035938e4a5794e37b3459b4d470.20221221.20231221; expires=Thu, 21 Dec 2023 03:09:08 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
x-cache: CONFIG_NOCACHE
x-azure-ref: 01HiiYwAAAAC1cDkpV0hdR5iSciqhZwziU1ZHMjBFREdFMDUwOAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 21 Dec 2022 03:09:08 GMT
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.4.1/js/bootstrap.min.js
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.4.1/js/bootstrap.min.js
IP 104.18.11.207:0
GET /bootstrap/3.4.1/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://botola.snrt.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 03:09:08 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-08-01 19:19:12
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 6923066369371d6997c92d232b1a01f3
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 7213682
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77cd6ad0ce0cb506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2