firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 31 Aug 2022 22:26:44 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iVNJgGFnB0Kb3txFJN-R1-932FIjKVg6-BkptY2-q_iqr2MxFp4WqQ==
Age: 2179
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 517693963cc46e7a35a054296d0edfd5
11dfcd7e118e5f8d31e664e56ac29c57f973b8b3
ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6257
Expires: Thu, 01 Sep 2022 00:47:20 GMT
Date: Wed, 31 Aug 2022 23:03:03 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 31 Aug 2022 02:27:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OJYViz9QY0TCYeUfV9Y3FVYQ3p55hp4xaDqJ2oKHeG-ZAIC9bvHRdg==
age: 74159
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 23:03:03 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
302 Found 253 B URL HTTP/1.1 futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
IP
ASN #53057 RedeHost Internet Ltda.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash eee1575b6b2138533f616da805133094
7547273349a1a2eb78ef120c991dd815f75027ae
12fb475a6f219077032d0735a00cd6e39080efe317c948384cfe2517d7fa24f2
GET /ver-agora/toulouse-x-psg-ao-vivo-gratis/13379 HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Wed, 31 Aug 2022 22:53:23 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 253
Connection: keep-alive
Location: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Cache-Control: max-age=3600
Expires: Thu, 01 Sep 2022 00:03:04 GMT
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 31 Aug 2022 22:17:12 GMT
Expires: Wed, 31 Aug 2022 22:49:15 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UVQEZQvt5LeNBuhsD1tcIfEgfQQgHRmcKh2xvjDFmd9sKq1hhk46xA==
Age: 2752
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8f84ba3ccde4152630cb9aac843e1eab
00b1b895e27d43787de1baa65aa474405662795d
d0df55a36aa2d57d173e5e0ee95a11109ef0176c936f37814992234f136a1287
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D0DF55A36AA2D57D173E5E0EE95A11109EF0176C936F37814992234F136A1287"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8447
Expires: Thu, 01 Sep 2022 01:23:51 GMT
Date: Wed, 31 Aug 2022 23:03:04 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 83be4ca2ebb87af44323dd073807bc9e
3ef0ca2b0c351c7d1eb1b7f4daeba6453a632fc6
1ba9c4dbdbd577bf443bc6499ab1edb2e0ea3b382f529fdc2d98021276a3158b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6474
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:04 GMT
Last-Modified: Wed, 31 Aug 2022 21:15:10 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Mye6+/YuFKmuslZqaK2pSw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: siT5uejo4LY+9z64oiU2N92+Hps=
futebol.flog.br/css/responsive.css
200 OK 4.1 kB URL HTTP/2 futebol.flog.br/css/responsive.css
IP
ASN #53057 RedeHost Internet Ltda.
File type ASCII text, with very long lines (418)
Hash dcd33b00a9cceb084b0de9e9ec751df5
3b3dbbc3d4b60dafe0b5f7c6d5e922a85a0f5d8c
e9352d35973990bad054a93b59bfcce62e745dda66b8a6f9f8ebdbd9bd75d487
GET /css/responsive.css HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: text/css
content-length: 4105
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:13 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Thu, 31 Aug 2023 23:03:05 GMT
X-Firefox-Spdy: h2
futebol.flog.br/css/color.css
200 OK 2.1 kB URL HTTP/2 futebol.flog.br/css/color.css
IP
ASN #53057 RedeHost Internet Ltda.
File type ASCII text, with very long lines (2918)
Hash 8ffc4b188784738e8dee40304f42efe8
80c3d90a993a083591b8195ca02e12a0adbfb0ac
d97b3ad014d66dc2832353f2421cf5b4ac13ffecf73e39591a0735b6f119b175
GET /css/color.css HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: text/css
content-length: 2093
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:12 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Thu, 31 Aug 2023 23:03:05 GMT
X-Firefox-Spdy: h2
futebol.flog.br/css/owl.carousel.min.css
200 OK 1.4 kB URL HTTP/2 futebol.flog.br/css/owl.carousel.min.css
IP
ASN #53057 RedeHost Internet Ltda.
Hash cd899205ba6e720370bebe04df641e5d
1c29f197989063e694cd5c2c1a72902f4fbbc114
dcef08857ec71a8a3568b0bc8f9f69ff9668fce07d4168c6ff16ca73d7e6bd08
GET /css/owl.carousel.min.css HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: text/css
content-length: 1356
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:13 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Thu, 31 Aug 2023 23:03:05 GMT
X-Firefox-Spdy: h2
futebol.flog.br/css/fontawesome.css
200 OK 12 kB URL HTTP/2 futebol.flog.br/css/fontawesome.css
IP
ASN #53057 RedeHost Internet Ltda.
File type ASCII text, with very long lines (314)
Hash 0690ae1f9a5f3637de805a0deea70dd7
7912f86da35dc73cc19dd7ed379349e69dea470d
116bc83feac05b836ce5b15a5a2277f0cff90572d35867c035ce1e248c53c817
GET /css/fontawesome.css HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: text/css
content-length: 12197
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:12 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Thu, 31 Aug 2023 23:03:05 GMT
X-Firefox-Spdy: h2
futebol.flog.br/css/prettyPhoto.css
200 OK 2.8 kB URL HTTP/2 futebol.flog.br/css/prettyPhoto.css
IP
ASN #53057 RedeHost Internet Ltda.
File type ASCII text, with very long lines (384)
Hash e28361711d2ea3e4a8ae24bd02008f22
3ef716a36af5b7568e27db68e0996d56d82e4f49
eb25dfa0e865b95f9d12821ae14bbaa47bb5287237983c9d8912fa05c748a5e1
GET /css/prettyPhoto.css HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: text/css
content-length: 2831
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:13 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Thu, 31 Aug 2023 23:03:05 GMT
X-Firefox-Spdy: h2
futebol.flog.br/images/futebol-ao-vivo-gratis.png
200 OK 6.2 kB URL HTTP/2 futebol.flog.br/images/futebol-ao-vivo-gratis.png
IP
ASN #53057 RedeHost Internet Ltda.
File type PNG image data, 93 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash c575780f61d89c37c7e97ca74a02aa4e
b6050ebc592f07d5932aa9bdb70ff1c6c875b54a
a4cb4b6144ad38be072433e0b0eae6020f8a3eff2d1e5b4f012bae75a1c9b226
GET /images/futebol-ao-vivo-gratis.png HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: image/png
content-length: 6226
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:14 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Thu, 31 Aug 2023 23:03:05 GMT
X-Firefox-Spdy: h2
futebol.flog.br/css/bootstrap.min.css
200 OK 21 kB URL HTTP/2 futebol.flog.br/css/bootstrap.min.css
IP
ASN #53057 RedeHost Internet Ltda.
File type ASCII text, with very long lines (766)
Hash 8176ffaf1c43c4aedadbcd0fb51cfc71
8afc51654f732b8bd6b45a302c40de52c0a79187
4da501fece7397f947339ac38cfebacd689cf548aae39f127796a909bb839bd3
GET /css/bootstrap.min.css HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: text/css
content-length: 21407
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:12 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Thu, 31 Aug 2023 23:03:05 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 431a5745d2d9a72be4dfb3b6e107b73b
b5bb4f2332624d2e77595c86c9ac1a00b4563598
c52dd4d1d8abe4df18d2292fd624ef0c3a7c01a796ee520ea94f7f6efa59680d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C52DD4D1D8ABE4DF18D2292FD624EF0C3A7C01A796EE520EA94F7F6EFA59680D"
Last-Modified: Mon, 29 Aug 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21202
Expires: Thu, 01 Sep 2022 04:56:27 GMT
Date: Wed, 31 Aug 2022 23:03:05 GMT
Connection: keep-alive
futebol.flog.br/assets/times/semfoto.png
200 OK 5.5 kB URL HTTP/2 futebol.flog.br/assets/times/semfoto.png
IP
ASN #53057 RedeHost Internet Ltda.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash c10ef2c6de14f66ffadd3337728985ce
9ede8688aeb403c86d6219c666d133b9c6cd5b73
61c7c26b82e4423e0c7eca7fe564565579fa1eaf3eba1628d7a43fadb012bd18
GET /assets/times/semfoto.png HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: image/png
content-length: 5491
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Mon, 12 Jul 2021 12:57:29 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Thu, 31 Aug 2023 23:03:05 GMT
X-Firefox-Spdy: h2
futebol.flog.br/css/custom.css
200 OK 30 kB URL HTTP/2 futebol.flog.br/css/custom.css
IP
ASN #53057 RedeHost Internet Ltda.
Hash c2855f0af11d1140cd44ea3517fe989d
558bf73c500f14cf91e27bccdd8d0d3011ed9a3c
955529e26abd89950c7595e057c0e32138991faf602486ef2f39785da851740a
GET /css/custom.css HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: text/css
content-length: 29740
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 15:33:27 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Thu, 31 Aug 2023 23:03:05 GMT
X-Firefox-Spdy: h2
futebol.flog.br/images/futebol-ao-vivo.png
200 OK 11 kB URL HTTP/2 futebol.flog.br/images/futebol-ao-vivo.png
IP
ASN #53057 RedeHost Internet Ltda.
File type PNG image data, 140 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash c1c976068c7c751887ffebd525522aee
8aa2fb8effb316a6880811489b755e484afdb5e1
7a7c449fcec9946a6761c2607119dd16201a84709337d28ba66db123fd9f5cbb
GET /images/futebol-ao-vivo.png HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: image/png
content-length: 11077
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:14 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Thu, 31 Aug 2023 23:03:05 GMT
X-Firefox-Spdy: h2
futebol.flog.br/js/mobile-nav.js
200 OK 506 B URL HTTP/2 futebol.flog.br/js/mobile-nav.js
IP
ASN #53057 RedeHost Internet Ltda.
Hash d19c7642d04f5c2a3616a0e12e6f3ec6
1cc8c8a525554057d06ae52ddce10263b8b63b16
c77853dda2379ed6537b7c86222a163ecd2e4a79c5b65972c329eaa92b10fd9b
GET /js/mobile-nav.js HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: application/javascript
content-length: 506
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:11 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Wed, 07 Sep 2022 23:03:05 GMT
X-Firefox-Spdy: h2
futebol.flog.br/js/custom.js
200 OK 1.8 kB URL HTTP/2 futebol.flog.br/js/custom.js
IP
ASN #53057 RedeHost Internet Ltda.
Hash 1f8b413bce2dea27fc75faeddca35c07
ba6b1a4c92d6455774f8835a00b9cf58a53d92fc
1725dd97baa0d44559054cf75d6251afff9e26a94559e6628c7d4bfbc7c6e1ff
GET /js/custom.js HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: application/javascript
content-length: 1817
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:10 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Wed, 07 Sep 2022 23:03:05 GMT
X-Firefox-Spdy: h2
futebol.flog.br/js/popper.min.js
200 OK 6.9 kB URL HTTP/2 futebol.flog.br/js/popper.min.js
IP
ASN #53057 RedeHost Internet Ltda.
File type ASCII text, with very long lines (19015)
Hash 90b6591e6f8c482ed51ae2f926de636f
3bbd16f7069c09a1be90f86756ec065fa5ae0110
8d5bdc122214b5492a9e273f608d226a6e26244548b47af54fbfa8af945ec6e8
GET /js/popper.min.js HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: application/javascript
content-length: 6911
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:11 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Wed, 07 Sep 2022 23:03:05 GMT
X-Firefox-Spdy: h2
futebol.flog.br/js/isotope.js
200 OK 9.9 kB URL HTTP/2 futebol.flog.br/js/isotope.js
IP
ASN #53057 RedeHost Internet Ltda.
File type ASCII text, with very long lines (32004)
Hash 4ed1949d7c7dab51c3cb1d3340d0b42b
9bae33b94f50db6788ba94e635fa8d2603c383ba
d8472da5ba87095d9162b1263f0bd06bb0f44037acc16acea4c1ab709912b74f
GET /js/isotope.js HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: application/javascript
content-length: 9863
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:10 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Wed, 07 Sep 2022 23:03:05 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a7aab826beb3533ba03cfe6bab46f240
000c9a63535a3c7c9cadaea7630f1f1443399d56
5fc3e2785f52dbe5fa0e7bbe8d9bfa8476b574a3357df2374ea991e049a1d73b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
futebol.flog.br/js/bootstrap.min.js
200 OK 13 kB URL HTTP/2 futebol.flog.br/js/bootstrap.min.js
IP
ASN #53057 RedeHost Internet Ltda.
File type ASCII text, with very long lines (48664)
Hash d98cccfb9b89091fe42a0fa94083b07c
0d9a5dd0d65305186508b41ccd0075b2f6880389
9db75ee7822d0f0bea3137e023ed756f6f47922700ebfae6dc8707471380526b
GET /js/bootstrap.min.js HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: application/javascript
content-length: 13105
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:10 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Wed, 07 Sep 2022 23:03:05 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a7aab826beb3533ba03cfe6bab46f240
000c9a63535a3c7c9cadaea7630f1f1443399d56
5fc3e2785f52dbe5fa0e7bbe8d9bfa8476b574a3357df2374ea991e049a1d73b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a7aab826beb3533ba03cfe6bab46f240
000c9a63535a3c7c9cadaea7630f1f1443399d56
5fc3e2785f52dbe5fa0e7bbe8d9bfa8476b574a3357df2374ea991e049a1d73b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
futebol.flog.br/js/owl.carousel.min.js
200 OK 11 kB URL HTTP/2 futebol.flog.br/js/owl.carousel.min.js
IP
ASN #53057 RedeHost Internet Ltda.
File type ASCII text, with very long lines (31997)
Hash 147ac1c530c19c721f2f08015355831f
36666c04ebfd91eb34a2bccfd77d5921f149719e
ad388396f2600caf304c74c3255d0cb91ec3eb6979eece045c096b4b8f0e0f3c
GET /js/owl.carousel.min.js HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: application/javascript
content-length: 11412
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:11 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Wed, 07 Sep 2022 23:03:05 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a7aab826beb3533ba03cfe6bab46f240
000c9a63535a3c7c9cadaea7630f1f1443399d56
5fc3e2785f52dbe5fa0e7bbe8d9bfa8476b574a3357df2374ea991e049a1d73b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
futebol.flog.br/js/jquery.prettyPhoto.js
200 OK 5.9 kB URL HTTP/2 futebol.flog.br/js/jquery.prettyPhoto.js
IP
ASN #53057 RedeHost Internet Ltda.
File type ASCII text, with very long lines (21223)
Hash 36a63e6de17d5c8017f6c8f097476873
1852cf0981812ae8956b13cae078dafe9b98237e
caa878fea8b22fe29f474148a377117a1e82abb647b7426ee53a345a2f831ee3
GET /js/jquery.prettyPhoto.js HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: application/javascript
content-length: 5940
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:11 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Wed, 07 Sep 2022 23:03:05 GMT
X-Firefox-Spdy: h2
futebol.flog.br/js/jquery-3.3.1.min.js
200 OK 30 kB URL HTTP/2 futebol.flog.br/js/jquery-3.3.1.min.js
IP
ASN #53057 RedeHost Internet Ltda.
File type ASCII text, with very long lines (65451)
Hash fb0e6981c97fba54d76f9b2bca152299
7c26673f6d5dd46220ca13f2197a5f5e70d06335
09b221854d59bd9fb7dcd7042f9fcee8b6b8f958d932096a9ca307e2d63813d0
GET /js/jquery-3.3.1.min.js HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: application/javascript
content-length: 30307
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:10 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Wed, 07 Sep 2022 23:03:05 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto+Condensed:300,300i,400,400i,700,700i
200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto+Condensed:300,300i,400,400i,700,700i
IP
Hash e871c4c0792ee549289cc02d406eb76c
4010772a3338ddb723143ad777ec0785b503d71a
1cd4bf5528f590c94dca97995f84d600d6649481fad30980e5ede5b9461270d0
GET /css?family=Roboto+Condensed:300,300i,400,400i,700,700i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 31 Aug 2022 23:03:05 GMT
date: Wed, 31 Aug 2022 23:03:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1b4a73637dd140aa2a59daa477faa306
7375e688e33e8398841e96d1d8d5a80885a7f744
95be73fc23236be733bc5de76f214a6c9efddf515d7479e1391e95ee1c09441c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5300
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 23:03:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5300
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 23:03:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5300
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 23:03:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5300
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 23:03:06 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e1a93e8c1857c6d3b244d14ff166ad5f
b85467e5e77a51099b6f25527c9885c75aeef344
8978f8d4b0ab30408ef69c42dcb528422b7bbabc2a87971d5aeb6b3080fafb4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0198fd1f-b00c-442e-9184-8ce8ebf9593c.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0198fd1f-b00c-442e-9184-8ce8ebf9593c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba98f63d9bef7deebb9a8d1b3126d396
d97a8b0e4b4dbc60dfc9eb15ba28f68e8e3731ef
b8f6c1c6b34ec452a6aa3090c30ebf3a68cb3b4d45a7b134ed32e1959f4f0682
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0198fd1f-b00c-442e-9184-8ce8ebf9593c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10777
x-amzn-requestid: 2e9a081f-2ae4-49b9-b9d4-79cae2b7eae9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3kRFiJIAMFgNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2e7-2f9eec0b239ceb6d617431b6;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: w9ACDg_Mxbl2GSEDeDAqdMlKjkCiMyWExvCUa2jHquaQy6U-4EJtbQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:20 GMT
age: 5146
etag: "d97a8b0e4b4dbc60dfc9eb15ba28f68e8e3731ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a65f81-cc75-4344-b2c9-b175dee43d52.jpeg
200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a65f81-cc75-4344-b2c9-b175dee43d52.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c7c7824789fc28f90fdfc7afe9856bd
fd24bc01d65805deff463e77bd875a1a299e8b9d
1c5afb4c9648efb6c0117a47cb7613aa1072f7731fa3c7c325228373c8e07106
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a65f81-cc75-4344-b2c9-b175dee43d52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6879
x-amzn-requestid: 75e0d594-5ef0-4cc0-b34b-7a20d2f1a85e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3i5GhRoAMFjyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2df-10e5e0bb386fbccb79250553;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qv1FPsIltHP40xrSG0KLtuKJKH4OwimLspy17JGRcYSQRxeVieT6aw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:19 GMT
age: 5147
etag: "fd24bc01d65805deff463e77bd875a1a299e8b9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa854afe7-aed7-459f-b9d3-a92ee390f3f0.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa854afe7-aed7-459f-b9d3-a92ee390f3f0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3565104073de1cd27919a8ee68fe296e
5a6425a36ab00449593951fbd4bfba8e4194c217
d60f8a074d84ff44c5273da404fbc79438462a5786c54408ec938bd8ae80e2a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa854afe7-aed7-459f-b9d3-a92ee390f3f0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8877
x-amzn-requestid: 3c9a7b05-f9f7-4b64-8812-6747130b4c5d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xi98yFNVoAMFjiA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630aa9eb-64260de84540a2a135bc6eb0;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 23:34:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Ocwse_hSdULpAVgkQWZv3w9_2yA2tsBgQYfIQoazl7ESv3FllkzvYQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:39:54 GMT
age: 4992
etag: "5a6425a36ab00449593951fbd4bfba8e4194c217"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73e1c8ca-5a00-4132-9227-428b673cb95c.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73e1c8ca-5a00-4132-9227-428b673cb95c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d40814e3031938ca809a845d49522370
a432b526b80fee28e02235e0253049932156d0cf
1b06b133f41ea116e9273134618879813ca00c4262cb8de62eeb3b6d80385bdc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73e1c8ca-5a00-4132-9227-428b673cb95c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8480
x-amzn-requestid: 4bff3bd2-c62b-4a70-860d-3fb1443e868d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XcTOOH1_IAMF2hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6307ff27-7d16dfcc010cdd1e2695d8a2;Sampled=0
x-amzn-remapped-date: Thu, 25 Aug 2022 23:00:55 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yM6pN2ZzXROZIpCfAzvOepf8kmZOKOuhZ-P1o84LjsOd3sxBHv5vHg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:40:12 GMT
age: 4974
etag: "a432b526b80fee28e02235e0253049932156d0cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e1a93e8c1857c6d3b244d14ff166ad5f
b85467e5e77a51099b6f25527c9885c75aeef344
8978f8d4b0ab30408ef69c42dcb528422b7bbabc2a87971d5aeb6b3080fafb4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcce30929-1614-4a6d-80aa-fd9b2f12af34.jpeg
200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcce30929-1614-4a6d-80aa-fd9b2f12af34.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b629767aa19f78c2734128d2cb1e93d
2a66e9c2654e04097031304feca86eea7ab0395e
2bf73bd574a294029803eb25c23442a12519c5d186d806d165ea4fa9b8961b87
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcce30929-1614-4a6d-80aa-fd9b2f12af34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9305
x-amzn-requestid: 3ec274e1-6e02-4099-ba20-f622b20da568
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv4ibGU-oAMFj9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd475-7f2b1dc86353361e105c6f7d;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:36:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 31J99N3FeSApJbAZbYRpIfPdeiBm4bucT3RwaoGFTwhQWxhncPHL8w==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:54:54 GMT
age: 4092
etag: "2a66e9c2654e04097031304feca86eea7ab0395e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b14395b-3f2d-4aeb-b43c-253963035eaa.jpeg
200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b14395b-3f2d-4aeb-b43c-253963035eaa.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e3091a7a992a2ad059e486d4e0d93c02
deec914bf1f10646d923db48ab3d4ec21af27381
8819908ab1f13fd13fe5980883502b6131ab74c2a716b8576d95e89b980df149
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b14395b-3f2d-4aeb-b43c-253963035eaa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8084
x-amzn-requestid: 743404c1-6c84-4232-9b7c-3cae4ebb3d4f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3i5EeioAMFygw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2df-6e6460e844f676d671797ff0;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4sryJq3FD4jgCCkSjTSMMpvOJ3k9V6i3tF2Pd8dXyqDw7cmnojV0KQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:47:20 GMT
age: 4546
etag: "deec914bf1f10646d923db48ab3d4ec21af27381"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15660, version 1.0\012- data
Hash d7b0b953a50fddaa88089b5b787cf719
2f85bc568b27659a3d6452f58f9fd7678450326d
e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://futebol.flog.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 22:17:40 GMT
expires: Wed, 30 Aug 2023 22:17:40 GMT
cache-control: public, max-age=31536000
age: 89126
last-modified: Tue, 19 Apr 2022 18:42:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 16372, version 1.0\012- data
Hash e45478d4d6f15dafda1f25d9e0fb5fa1
52cb490cd0ee4442ede034085cda9652b206f91c
d1a17abb1a999842fe425e1a4ace9d90f9c18f3595c21a63d89f0611b90cfd72
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://futebol.flog.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 19:03:28 GMT
expires: Tue, 29 Aug 2023 19:03:28 GMT
cache-control: public, max-age=31536000
age: 187178
last-modified: Mon, 15 Aug 2022 18:14:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Hash 3d7f7413fca69bff4d231ebdc50aaab0
cb18e7943b6a8a0e3672d7242197c19a226b92e8
6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://futebol.flog.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Aug 2022 16:04:44 GMT
expires: Sat, 26 Aug 2023 16:04:44 GMT
cache-control: public, max-age=31536000
age: 457102
last-modified: Tue, 19 Apr 2022 18:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://futebol.flog.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 18:53:39 GMT
expires: Tue, 29 Aug 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 187767
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e1a93e8c1857c6d3b244d14ff166ad5f
b85467e5e77a51099b6f25527c9885c75aeef344
8978f8d4b0ab30408ef69c42dcb528422b7bbabc2a87971d5aeb6b3080fafb4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d10503.51831964161!2d2.2530487!3d48.8414356!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xdd2450406cef2c5c!2sEst%C3%A1dio%20Parc%20des%20Princes!5e0!3m2!1spt-BR!2sbr!4v1581976191253!5m2!1spt-BR!2sbr
200 OK 1.3 kB URL HTTP/2 www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d10503.51831964161!2d2.2530487!3d48.8414356!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xdd2450406cef2c5c!2sEst%C3%A1dio%20Parc%20des%20Princes!5e0!3m2!1spt-BR!2sbr!4v1581976191253!5m2!1spt-BR!2sbr
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2278)
Hash 41bc8666e09694572c5b9dcc68e6ebc3
aea488848c038a16f8ac1e2de7c1fc79c584f2b9
7e642822e1215e997d8b85f06dea5142df5f928f9d4d81712a007caa16946a02
GET /maps/embed?pb=!1m14!1m8!1m3!1d10503.51831964161!2d2.2530487!3d48.8414356!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xdd2450406cef2c5c!2sEst%C3%A1dio%20Parc%20des%20Princes!5e0!3m2!1spt-BR!2sbr!4v1581976191253!5m2!1spt-BR!2sbr HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 31 Aug 2022 23:03:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-poFr5rcW5xxKVUYmFTsVIw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1251
x-xss-protection: 0
server-timing: gfet4t7; dur=185
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
futebol.flog.br/images/titlelines.png
200 OK 715 B URL HTTP/2 futebol.flog.br/images/titlelines.png
IP
ASN #53057 RedeHost Internet Ltda.
File type PNG image data, 10 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash 4e686cabc85d329b0ee74ad3219c7776
687376e9a60ce24eb42c93b975873c1538338060
ea5d8ea1301a35a94a0ec84fea73babf98636a51d224f38580c2b688c56b4986
GET /images/titlelines.png HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/css/custom.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: image/png
content-length: 715
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 14:11:22 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Thu, 31 Aug 2023 23:03:06 GMT
X-Firefox-Spdy: h2
futebol.flog.br/webfonts/fa-solid-900.woff2
200 OK 74 kB URL HTTP/2 futebol.flog.br/webfonts/fa-solid-900.woff2
IP
ASN #53057 RedeHost Internet Ltda.
File type Web Open Font Format (Version 2), TrueType, length 74348, version 329.31064\012- data
Hash 462806316fea535a6a57651bc2b000b0
80644191098f863f25be27841c0d92c452cf2327
4f9ee3d8f6e621642979e6a8f7e75c57cb9da34918cc08a38abfe178dbae1dd2
GET /webfonts/fa-solid-900.woff2 HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://futebol.flog.br/css/fontawesome.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:25 GMT
content-type: font/woff2
content-length: 74348
vary: X-Proxy-Provider
last-modified: Tue, 21 Sep 2021 14:11:09 GMT
etag: "1226c-5cc81f81e4bed"
accept-ranges: bytes
cache-control: max-age=172800
expires: Fri, 02 Sep 2022 23:03:06 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1145866c536ee429cd1062cf67702ce1
7a6539548ef7146a32f8375f0c4b549561ea3f54
d20925f628903a9c88f8cf350448ed265d03e2a7ff24221dda6797501cf58a90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
futebol.flog.br/webfonts/fa-regular-400.woff2
200 OK 14 kB URL HTTP/2 futebol.flog.br/webfonts/fa-regular-400.woff2
IP
ASN #53057 RedeHost Internet Ltda.
File type Web Open Font Format (Version 2), TrueType, length 13592, version 329.31064\012- data
Hash 65779ebcc35604a25c2ba77309c5b8af
fbb0d9d51850d824d7eba66e0e210c778d6d42f5
940b3908bf9fc263ff7a9640fd719a1a3ecca9e1224e9ce4758053fa01edbcc0
GET /webfonts/fa-regular-400.woff2 HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://futebol.flog.br/css/fontawesome.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:26 GMT
content-type: font/woff2
content-length: 13592
vary: X-Proxy-Provider
last-modified: Tue, 21 Sep 2021 14:11:08 GMT
etag: "3518-5cc81f8110d43"
accept-ranges: bytes
cache-control: max-age=172800
expires: Fri, 02 Sep 2022 23:03:06 GMT
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=pt_BR®ion=br&callback=onApiLoad
200 OK 57 kB URL HTTP/2 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=pt_BR®ion=br&callback=onApiLoad
IP
File type ASCII text, with very long lines (2511)
Hash 7e979cce2adc9be835f6eed2bd829fd4
a7134dcb7223201bc0c302fcaa4525a52cbb26bd
8e654d6faaa8be349ffa30f270ecd7ea125b1a2b8d72c8178398678e1f8eef5b
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=pt_BR®ion=br&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56923
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=13
date: Wed, 31 Aug 2022 22:35:49 GMT
expires: Wed, 31 Aug 2022 23:05:49 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 1637
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
core-call.production-eu-west-1.researchclever.com/?id=56675&c=NO&r=03&l=74&b=Firefox&os=Linux&mob=0&v=1.20.8&ref=aHR0cHM6Ly9mdXRlYm9sLmZsb2cuYnIvdmVyLWFnb3JhL3RvdWxvdXNlLXgtcHNnLWFvLXZpdm8tZ3JhdGlzLzEzMzc5&ruri=&iv=-1&ctr=NO&sz=939
200 OK 43 B URL HTTP/2 core-call.production-eu-west-1.researchclever.com/?id=56675&c=NO&r=03&l=74&b=Firefox&os=Linux&mob=0&v=1.20.8&ref=aHR0cHM6Ly9mdXRlYm9sLmZsb2cuYnIvdmVyLWFnb3JhL3RvdWxvdXNlLXgtcHNnLWFvLXZpdm8tZ3JhdGlzLzEzMzc5&ruri=&iv=-1&ctr=NO&sz=939
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /?id=56675&c=NO&r=03&l=74&b=Firefox&os=Linux&mob=0&v=1.20.8&ref=aHR0cHM6Ly9mdXRlYm9sLmZsb2cuYnIvdmVyLWFnb3JhL3RvdWxvdXNlLXgtcHNnLWFvLXZpdm8tZ3JhdGlzLzEzMzc5&ruri=&iv=-1&ctr=NO&sz=939 HTTP/1.1
Host: core-call.production-eu-west-1.researchclever.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZpCLe1Z2y866nUeJYYlgqS8pnH4iIrb6QAl64iMPk8BPuMWXCdcE%2F28PK3d7RbCvc9Pqav2z2BXXtx6Qy6qMupCHRFlK0PPQUMdHTPePG8yJeMZgteyH76JIbyEY8VD6SYhPmUT83y1%2BGXYjhReNuHsxdOFNJ4NoWEKvBFsD4n8%2FBcSS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743965c8de94b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash f0425264c85b7060e5584a87651d0725
d05d739b0c370860b565ad7755587a4eeafa6a17
baf043da8afa34042e22b14aaba089ebcd2880d7fdf188bc8734a65d41abc145
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 23:03:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 29 Aug 2022 18:55:22 GMT
Expires: Mon, 05 Sep 2022 18:55:21 GMT
Etag: "d05d739b0c370860b565ad7755587a4eeafa6a17"
Cache-Control: max-age=416534,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 743965c95ec51bfa-OSL
scripts.cleverwebserver.com/84b3d5cd4f9ca92a99358394cd996ef9.js
200 OK 120 kB URL HTTP/2 scripts.cleverwebserver.com/84b3d5cd4f9ca92a99358394cd996ef9.js
IP
File type Unicode text, UTF-8 text, with very long lines (65455), with no line terminators
Size 120 kB (120019 bytes)
Hash 785535ea60d658f5d8a1b65eba10a2c5
d910124646b5b23ba55408e7eae9ba610a757f6d
9bf64bf42ca23969e00bb85a5c53d01fda7c107486c86f88aa8bf8d1af1b089d
GET /84b3d5cd4f9ca92a99358394cd996ef9.js HTTP/1.1
Host: scripts.cleverwebserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: application/javascript
x-amz-id-2: OEqLXl+htuWQz2MP1MSVv4lta554/Qw2xpLFEhtkVENOnBpWB2nYRpTgdaT78TXfyGJSMGqXpoY=
x-amz-request-id: CX2MFB1M5E8AK01H
last-modified: Wed, 31 Aug 2022 11:02:13 GMT
x-amz-version-id: 6pr16vKALxqjPVYAlhHf5X30K33PPPoI
etag: W/"cd981e064fa42ea7a5a32712bad49521"
cf-cache-status: HIT
age: 133
expires: Wed, 31 Aug 2022 23:33:06 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 743965c6eb78b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 31 Aug 2022 23:03:06 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.google.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy1-mobile.svg?v=3
200 OK 3.7 kB URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy1-mobile.svg?v=3
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (8261)
Hash d818f5ece06cc16b1b29f4205f0b8a5b
b359f245d10de350ab3320896129405e07061856
1b11816399f2a13ec1ffaa94394fe2458ed06e25e58dd90e46b5836ec25e8e61
GET /bet365/no/sports/grp1/imgs/copy1-mobile.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01125089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: image/svg+xml
x-amz-id-2: J1HQv/fGu0RZOqWAW6r0ID1EZa0oi9oi44tYnqbY0ZAatQePxp564kz/tlug6s8TOv/olYCf9OA=
x-amz-request-id: PY1DGYVTTQ5Z5QDS
last-modified: Mon, 11 Jul 2022 09:22:28 GMT
etag: W/"a51a2c21e682faf24c79d033763e780e"
cf-cache-status: HIT
age: 1386
expires: Wed, 31 Aug 2022 23:33:06 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 743965ca7e68b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/style.css?v=3
200 OK 2.0 kB URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/style.css?v=3
IP
File type ASCII text, with very long lines (11679), with no line terminators
Hash 6bc46022690257405ebd98f50ff853c9
52abe044f33135679838dcd64514ed871bbbaa41
e338fcaa7086533d62e3c8d18d0b08ea52ac461de50c6ef5ea8e951e554eb09f
GET /bet365/no/sports/grp1/style.css?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01125089
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=11931
etag: W/"063046bfe788f619ad47f9059a06c0fa"
last-modified: Mon, 11 Jul 2022 09:22:28 GMT
x-amz-id-2: bsZbS0FKs5Bavj0ehXfu/jiE2ZZkQDgGMEYZYO9vFVB1J8ZVB15ZLvutsN8uN4HIT2YgkUDYyHE=
x-amz-request-id: YWY5AVFVN1CMASSS
cf-cache-status: HIT
age: 1386
expires: Wed, 31 Aug 2022 23:33:06 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 743965ca7e5fb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
ssl.google-analytics.com/ga.js
200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Wed, 31 Aug 2022 22:17:11 GMT
expires: Thu, 01 Sep 2022 00:17:11 GMT
cache-control: public, max-age=7200
age: 2755
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/bg_push.jpg?v=3
200 OK 72 kB URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/bg_push.jpg?v=3
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1500x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b9362b5fc201ea79c2bb70c2d42b94bf
e787c35c18b315b943f7ea753385dc2b412938ed
a26bd27b6c8c59386051cd0d3a420254fdb16b7ad05a47d3905549f745eee517
GET /bet365/no/sports/grp1/imgs/bg_push.jpg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/style.css?v=3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: image/webp
content-length: 71674
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=jpeg, origSize=80553
content-disposition: inline; filename="bg_push.webp"
etag: "9d6b1fe3b808396da215caa000e6315e"
last-modified: Wed, 24 Aug 2022 16:33:11 GMT
vary: Accept
x-amz-id-2: D4RgEesvZZnkREgd7whSQ7EAW48JWX9s7/y+rD4eAeZngRqEqrrfngD4MncFcD6NKVKMD/H8V80=
x-amz-request-id: 98M0Y9879JZNJCDJ
cf-cache-status: HIT
age: 1253
expires: Wed, 31 Aug 2022 23:33:06 GMT
cache-control: public, max-age=1800
accept-ranges: bytes
server: cloudflare
cf-ray: 743965cafebeb4e8-OSL
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy2-push.svg?v=3
200 OK 2.5 kB URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy2-push.svg?v=3
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5570)
Hash c754bf774bdb739539c89c8e582acfbe
8049562b15c06ff3108a9cefad81cd48e2e7fb23
0dd2e9606aaa659f1663d0a1b231b0305742a7f07ab739c99e781a8e182b45d0
GET /bet365/no/sports/grp1/imgs/copy2-push.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01125089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: image/svg+xml
x-amz-id-2: KKINyY4+cxjH+7/H+J1SG8B+idQ3lWXzXQTAgU/T4brH1rWfj3ug3sqLkNI9Pdkt8/YsJrUvxNU=
x-amz-request-id: FE6T5NERDAC748Q1
last-modified: Mon, 11 Jul 2022 09:22:28 GMT
etag: W/"2e4ec772622ddb8919c14017c7f2e770"
cf-cache-status: HIT
age: 1386
expires: Wed, 31 Aug 2022 23:33:06 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 743965ca8e73b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7797095941141121
200 OK 57 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7797095941141121
IP
File type ASCII text, with very long lines (2897)
Hash bab839de7ffe8b09d99088e17b2be820
21017b4cb5fda2dc32f83bdc70f2a364b1f4d936
9c1f733eced797d9604500b31883c14bbbc3a83d772d33263d05142554af0abd
GET /pagead/js/adsbygoogle.js?client=ca-pub-7797095941141121 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://futebol.flog.br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Wed, 31 Aug 2022 23:03:06 GMT
expires: Wed, 31 Aug 2022 23:03:06 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 7943474821532294502
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 57357
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sender.clevernt.com/transporter/56675.php?ppuc=1&ppu=0&id=573051&ref=aHR0cHM6Ly9mdXRlYm9sLmZsb2cuYnIvdmVyLWFnb3JhL3RvdWxvdXNlLXgtcHNnLWFvLXZpdm8tZ3JhdGlzLzEzMzc5&ruri=&r=516152780&tok=33419711310201791433&cmpId=&fb=0&iv=-1&ctr=NO&sz=939&landing=1&hei=281.7&mode=topscroll
302 Found 2.5 kB URL HTTP/2 sender.clevernt.com/transporter/56675.php?ppuc=1&ppu=0&id=573051&ref=aHR0cHM6Ly9mdXRlYm9sLmZsb2cuYnIvdmVyLWFnb3JhL3RvdWxvdXNlLXgtcHNnLWFvLXZpdm8tZ3JhdGlzLzEzMzc5&ruri=&r=516152780&tok=33419711310201791433&cmpId=&fb=0&iv=-1&ctr=NO&sz=939&landing=1&hei=281.7&mode=topscroll
IP
ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A.
Hash 2a66244d68b50b1221da95451bc0b608
74fea20912400a087f9acafe5758e7471dc29ca0
935ddd5c427f5e6ef76de5a0934fe87061cc125300f8968deeddccc0905c11c9
GET /transporter/56675.php?ppuc=1&ppu=0&id=573051&ref=aHR0cHM6Ly9mdXRlYm9sLmZsb2cuYnIvdmVyLWFnb3JhL3RvdWxvdXNlLXgtcHNnLWFvLXZpdm8tZ3JhdGlzLzEzMzc5&ruri=&r=516152780&tok=33419711310201791433&cmpId=&fb=0&iv=-1&ctr=NO&sz=939&landing=1&hei=281.7&mode=topscroll HTTP/1.1
Host: sender.clevernt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: text/html; charset=UTF-8
location: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01125089
expires: Fri, 27 Jun 1986 23:00:00 GMT
last-modified: Wed, 31 Aug 2022 23:03:06 GMT
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 1e230d71fac53f0baf663d169fd0ab4b
e6b9eef8b4169298034c58114a94028a16d426e2
bd490fdde2b281ce5559ad22ea4a954037b546adae591950f47c0d37de1125d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ed0d982177205beee7fe2a874d759219
86649dcfb3b756df526a4ee83445884902a709eb
ad0c07211b6d2c5f157e4f878bfe57ed6d9a094cf3925f3401b6bdd44ee0fce9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
futebol.flog.br/favicon.ico
200 OK 599 B URL HTTP/2 futebol.flog.br/favicon.ico
IP
ASN #53057 RedeHost Internet Ltda.
File type MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel\012- data
Hash dec3bbe64fd8c249c75ffc61a383722b
4bc62e31fcc9efd808ba319a908b62c15c7b8195
83fd1163428de1014b19d1f4624b2d15d0eb3b15d96c6c586004feaa3c581e56
GET /favicon.ico HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
Cookie: clever-last-tracker-56675=1; clever-counter-56675=0-1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:26 GMT
content-type: image/x-icon
content-length: 599
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 21 Sep 2021 20:31:24 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=2419200, must-revalidate
expires: Thu, 31 Aug 2023 23:03:06 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVI.woff2
200 OK 35 B URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVI.woff2
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lp.cleverwebserver.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16756
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 18:53:44 GMT
expires: Tue, 29 Aug 2023 18:53:44 GMT
cache-control: public, max-age=31536000
age: 187762
last-modified: Mon, 15 Aug 2022 18:16:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20220829/r20190131/zrt_lookup.html
200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220829/r20190131/zrt_lookup.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 09a8bd805dba1307ae0bd76a0c9ca73d
bdc16e7610abae944da47ff3a0e5fea818241fb0
e3978f36e9c5f0b909ed64015db629e2c64b46e75d165c6d1d146fcb792cdbde
GET /pagead/html/r20220829/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4412
x-xss-protection: 0
date: Wed, 31 Aug 2022 07:54:38 GMT
expires: Wed, 14 Sep 2022 07:54:38 GMT
cache-control: public, max-age=1209600
etag: 8616628553774171045
content-type: text/html; charset=UTF-8
age: 54508
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ed0d982177205beee7fe2a874d759219
86649dcfb3b756df526a4ee83445884902a709eb
ad0c07211b6d2c5f157e4f878bfe57ed6d9a094cf3925f3401b6bdd44ee0fce9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy1-interstitial.svg?v=3
200 OK 3.5 kB URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy1-interstitial.svg?v=3
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (8278)
Hash c4e441386096cc88a78ea2bbdab00f22
bd7b3fe9e4445573d40ad3af37feabbd8ca8ff55
5b0fb94cfbd0bd9836967d829d2d6104d0eb6aa02e6ce08a1e045cdbe2a430ca
GET /bet365/no/sports/grp1/imgs/copy1-interstitial.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01125089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: image/svg+xml
x-amz-id-2: vXHoU5UeH0fmms9Rpc+lyXDMp9tXAKv198USsqPmrDFkabO/t17lHwTjm1CyiU9WnmEinjYmREs=
x-amz-request-id: 4M53CGDRCX5Y2TQZ
last-modified: Mon, 11 Jul 2022 09:22:27 GMT
etag: W/"ed5dc300d77ef8f2bfa84e8d1c01115d"
cf-cache-status: HIT
age: 1386
expires: Wed, 31 Aug 2022 23:33:06 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 743965ca8e70b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
ui.cleverwebserver.com/
200 OK 598 B IP
File type ASCII text, with no line terminators
Hash edd979c286c4744a0d679b6c928eff80
8bf9ffc10ba2f331439d22aa710109f6e7858af9
05f2d609a7206e3bf4b34ff7d359e2c6dac6c5714673c9d2a343d7449535f529
GET / HTTP/1.1
Host: ui.cleverwebserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: application/javascript
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 743965c7cc3bb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a1862c66f153e94796f490b1749acb3c
bb516282bbd216b29a9b4d8308a6d11479b7c509
5b2072aedb1015b79434d77614aadc1b7da6b679095f0d0b38740e4fb268e609
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 414ff8012191c933c8e899d8747fc7e4
e27ebe1c5805da5ad35c3c2103080eecde9324ac
2d7821e987f1cc3049d4d9454091f26ca2e1b3de886a8b12fde553de902c6ab4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=futebol.flog.br&callback=_gfp_s_&client=ca-pub-7797095941141121
200 OK 203 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=futebol.flog.br&callback=_gfp_s_&client=ca-pub-7797095941141121
IP
File type ASCII text, with no line terminators
Hash ee4c18e239cf5ae4ef8cbaeffc43616a
414149972f3f96b8539d6b4784144cfd5de80176
5f82005095645ae7d38c5770564cead92e6f460adc55154667d6169b0aff7656
GET /gampad/cookie.js?domain=futebol.flog.br&callback=_gfp_s_&client=ca-pub-7797095941141121 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 31 Aug 2022 23:03:07 GMT
server: cafe
cache-control: private
content-length: 203
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=futebol.flog.br
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=futebol.flog.br
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=futebol.flog.br HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 31 Aug 2022 23:03:07 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=futebol.flog.br
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=futebol.flog.br
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=futebol.flog.br HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 31 Aug 2022 23:03:07 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cdc7882b813f69db6e6b33ad67db5d65
ea07d897a04a88d6956e14146338ecd564ee432c
c805447c00ee765cdbc3108bcd4f6883ed7ec604d44180e6699c10e46075be4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a1862c66f153e94796f490b1749acb3c
bb516282bbd216b29a9b4d8308a6d11479b7c509
5b2072aedb1015b79434d77614aadc1b7da6b679095f0d0b38740e4fb268e609
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 414ff8012191c933c8e899d8747fc7e4
e27ebe1c5805da5ad35c3c2103080eecde9324ac
2d7821e987f1cc3049d4d9454091f26ca2e1b3de886a8b12fde553de902c6ab4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220829&st=env
200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220829&st=env
IP
File type JSON data\012- , ASCII text, with very long lines (14530), with no line terminators
Hash 48e8a0207f58e707c0390446da6e24fb
41aa4de6eb2cfc46264ced5d6d21d4f9a594c10b
596819c5474a94ce2e913dac5f6a98a57638ff0696326f935c1ded492668ca8c
GET /getconfig/sodar?sv=200&tid=gda&tv=r20220829&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://futebol.flog.br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 31 Aug 2022 23:03:07 GMT
server: cafe
cache-control: private
content-length: 11036
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202208250101/reactive_library_fy2021.js
200 OK 54 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202208250101/reactive_library_fy2021.js
IP
File type ASCII text, with very long lines (3461)
Hash d7213cc1e1b2d82306225725fbb1de1b
b729979a4222a6a7d12f3c89b280127bef12a4c9
d5ea7a7bfd2a2ea09111bb6ae007fe4946b2576556ec498b2e08e30aec95c2a7
GET /pagead/managed/js/adsense/m202208250101/reactive_library_fy2021.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 31 Aug 2022 23:03:07 GMT
expires: Wed, 31 Aug 2022 23:03:07 GMT
cache-control: private, max-age=1209600
content-type: text/javascript; charset=UTF-8
etag: 16664535957384331631
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 54512
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 625b837b97213f5f0d3e9e9f4e096676
efbe7056fb6c35b44d10f863fdacd7f3d4752e5f
27632a4427bcda572554432fd91d53471d69e36114ddee64a0e4bfcebaa247d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=futebol.flog.br
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=futebol.flog.br
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=futebol.flog.br HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 31 Aug 2022 23:03:07 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Wed, 31 Aug 2022 23:03:07 GMT
expires: Wed, 31 Aug 2022 23:03:07 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20220829&jk=1653718674795284&rc=
204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20220829&jk=1653718674795284&rc=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&li=gda_r20220829&jk=1653718674795284&rc= HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 31 Aug 2022 23:03:08 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/bg/woHX-vsUocJZKT3Xlr8m3oSeq6S0iuLiA_v8-B2MNhs.js
200 OK 16 kB URL HTTP/2 pagead2.googlesyndication.com/bg/woHX-vsUocJZKT3Xlr8m3oSeq6S0iuLiA_v8-B2MNhs.js
IP
File type ASCII text, with very long lines (35643)
Hash 1390784fd751df7569d563702471b83e
aa8471adfbad91ecf7c527cd4f1ab136ccab9d94
ecb214ec170b90ff4f903ea6a60fc4f190730169bbcd496cac5adc878458a57a
GET /bg/woHX-vsUocJZKT3Xlr8m3oSeq6S0iuLiA_v8-B2MNhs.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 15802
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 10:22:16 GMT
expires: Thu, 31 Aug 2023 10:22:16 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Aug 2022 11:08:00 GMT
content-type: text/javascript
age: 45652
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 71e5b9bf68ecc27211f5598597b84c97
6e37c4d8ef2bd08dd0df2fdfc47620b02d82fb40
d325b14e8a1461472b9d7f1a078187d349e100415ddb3ade7ada80159ef1441c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/ads/studio/cached_libs/gsap_3.5.1_min.js
200 OK 24 kB URL HTTP/2 s0.2mdn.net/ads/studio/cached_libs/gsap_3.5.1_min.js
IP
File type ASCII text, with very long lines (60805)
Hash 8bb0a6e91cbcf4aca9c691e9225b34a8
83d921cf6e8334253aded6cd30ffb5781cf3c0cb
06df011163bc2147a0b8dbf5d412f24bfe7ebaaa1654a2d4ac2c68cc71373ddd
GET /ads/studio/cached_libs/gsap_3.5.1_min.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 24155
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 23:03:08 GMT
expires: Wed, 31 Aug 2022 23:03:08 GMT
cache-control: public, max-age=0
last-modified: Mon, 31 Aug 2020 21:23:17 GMT
content-type: text/javascript
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 71e5b9bf68ecc27211f5598597b84c97
6e37c4d8ef2bd08dd0df2fdfc47620b02d82fb40
d325b14e8a1461472b9d7f1a078187d349e100415ddb3ade7ada80159ef1441c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 23:03:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/worksans/v18/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K67QBi8Jpg.woff2
200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/worksans/v18/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K67QBi8Jpg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 18784, version 1.0\012- data
Hash 3367f941f126098953b86681002b2d5c
cb2304a2bc7b644029aaa62577019ed4454655aa
ec04cae0d225b48861b4763dcfe8a3be504dfcf78e2336eefc8fc0bd99760ef8
GET /s/worksans/v18/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K67QBi8Jpg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: null
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18784
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 00:12:42 GMT
expires: Thu, 31 Aug 2023 00:12:42 GMT
cache-control: public, max-age=31536000
age: 82226
last-modified: Tue, 23 Aug 2022 17:55:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/worksans/v18/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K0nXBi8Jpg.woff2
200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/worksans/v18/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K0nXBi8Jpg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 17912, version 1.0\012- data
Hash 4116d9a86a2889032aaca45779a997ca
c99f3ea2bd016a259a1cb864aa31b38def9cb667
3c46b18a1ccba221be436881e1649ef1bfd1e656184fcd535e84bc77c77e8e5d
GET /s/worksans/v18/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K0nXBi8Jpg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: null
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17912
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 19:30:20 GMT
expires: Wed, 30 Aug 2023 19:30:20 GMT
cache-control: public, max-age=31536000
age: 99168
last-modified: Tue, 23 Aug 2022 17:55:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvZIaJc4iVq9Pi0-ivG90aUir7-SC0uBgUf9O2GCJV_gpG5fXcZDwmW_rc-HvUx41cFNV4V85hZ59o_WPZQL3IIBhYxPgxV27Y2LeKH3rOElhypIAng_YbrY83nwwnSHVKm8B3pKIxtTTzC2uC9MbrQYKCsk8DczvC5IilLwtM4jUxehotU08KgKhCNCO4rilnLsZczBzGLAYLEU1vkbbbJWY1LpD3Ad6JIgfvP-0aPvq78DhTKX6LZLGC2jXRyJmsZlrgx3IbnbzWszQyafumASi6hda8qLbNE9PRqEWeuJqSPAf5m-ec-huSUBAHEG23357fgaIV31zBBUN-YyqoQewt5pvU-C2kwnpuPizAC8NREaWSjxUY4pDeH6_Qt0PHP3jnBoXh-AsY5U9NPahUqS1UhYT3VT2ZSX0FcGc2bUobDmu5HOLJVEQKPQ9v8F1_mTfJnAjp3MztvYviRnN0FHTTVUy6pavgqE0Sl7gRaqV2YFiP-kIhKwX2M4tHGB-cdt9XcHiGAazEpwCWCnzmWrabJjH67U57YndsaRe1QumCdin51WrCr2MewNT_-DwziQrs_T2_b7p_uQMuBNeYALdNBk8zs0tzKHI0BUZEA7Nbnuk3ye2bi97u43zlUOBAwtrC5A6PIJENNvJDPPAhshNvyD8jsaCwpGmFV8g9yhIhqudU-QseuM00cbkbscUhgzy2Jtgo1V0lpDOOjXxipksPTYgrM5JMiHRaVq_5bkkED9qiMy4zC2U6Qoj2kBj17qrJTS7NZDVj8hFvlUWGBwzwgUJpJovJdd9yfjoN6kPcvDJSJ96PHgu06HtQhdDt5SCLRNtW02gDIGMstDukPKXywVj3uIEiT2aiiPUpsr2_18udr0wLKcyLrE_pNNl_54d5qMmtzOkrYHOYgm3elRSXvgqMDXngLnEUCURcqf12m0T3jKZWTFdbWDy3c801wj61lRFcx9FAfwzpcOXe7lN00f_FVs3SIvJqZ9Vc4wExSitHyfElilySDUFWE2DEvnprhduagt_XN3GYo2MOy7GlPfi-dw_-TlK4&sai=AMfl-YQe33DO06Sd8UUBiaezYfXwclo6a8E6Ty_L5Si0NNFXvMyfpV4ncF4OnwhxTUZYIjhwRmOO1YXNSzDbedtAJcRstoXEr0_0h7eYAPzIUN_cU6QEMlS-6bhf8OV-HXUdeda7PLgWbXFvQs_Vwg&sig=Cg0ArKJSzPTTtIZFUZMFEAE&cid=CAASUORoKtadYt6Xli-tQ-i5st5Rpe5IOjjAPRP1JrwGPUSWFT3En9G1ia1IgnfsfGUQgdH_myJQYU8MbSP3_iLOuiuieOBpwJNgWSn5WT6qtZeO&id=lidar2&mcvt=1640&p=0,0,124.06668090820312,641&mtos=0,1453,1640,1809,1842&tos=0,1453,187,169,33&v=20220831&bin=7&avms=nio&bs=0,0&mc=0.75&if=1&vu=1&app=0&itpl=2&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1661986987619&rpt=168&met=mue&wmsd=0
200 OK 650 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvZIaJc4iVq9Pi0-ivG90aUir7-SC0uBgUf9O2GCJV_gpG5fXcZDwmW_rc-HvUx41cFNV4V85hZ59o_WPZQL3IIBhYxPgxV27Y2LeKH3rOElhypIAng_YbrY83nwwnSHVKm8B3pKIxtTTzC2uC9MbrQYKCsk8DczvC5IilLwtM4jUxehotU08KgKhCNCO4rilnLsZczBzGLAYLEU1vkbbbJWY1LpD3Ad6JIgfvP-0aPvq78DhTKX6LZLGC2jXRyJmsZlrgx3IbnbzWszQyafumASi6hda8qLbNE9PRqEWeuJqSPAf5m-ec-huSUBAHEG23357fgaIV31zBBUN-YyqoQewt5pvU-C2kwnpuPizAC8NREaWSjxUY4pDeH6_Qt0PHP3jnBoXh-AsY5U9NPahUqS1UhYT3VT2ZSX0FcGc2bUobDmu5HOLJVEQKPQ9v8F1_mTfJnAjp3MztvYviRnN0FHTTVUy6pavgqE0Sl7gRaqV2YFiP-kIhKwX2M4tHGB-cdt9XcHiGAazEpwCWCnzmWrabJjH67U57YndsaRe1QumCdin51WrCr2MewNT_-DwziQrs_T2_b7p_uQMuBNeYALdNBk8zs0tzKHI0BUZEA7Nbnuk3ye2bi97u43zlUOBAwtrC5A6PIJENNvJDPPAhshNvyD8jsaCwpGmFV8g9yhIhqudU-QseuM00cbkbscUhgzy2Jtgo1V0lpDOOjXxipksPTYgrM5JMiHRaVq_5bkkED9qiMy4zC2U6Qoj2kBj17qrJTS7NZDVj8hFvlUWGBwzwgUJpJovJdd9yfjoN6kPcvDJSJ96PHgu06HtQhdDt5SCLRNtW02gDIGMstDukPKXywVj3uIEiT2aiiPUpsr2_18udr0wLKcyLrE_pNNl_54d5qMmtzOkrYHOYgm3elRSXvgqMDXngLnEUCURcqf12m0T3jKZWTFdbWDy3c801wj61lRFcx9FAfwzpcOXe7lN00f_FVs3SIvJqZ9Vc4wExSitHyfElilySDUFWE2DEvnprhduagt_XN3GYo2MOy7GlPfi-dw_-TlK4&sai=AMfl-YQe33DO06Sd8UUBiaezYfXwclo6a8E6Ty_L5Si0NNFXvMyfpV4ncF4OnwhxTUZYIjhwRmOO1YXNSzDbedtAJcRstoXEr0_0h7eYAPzIUN_cU6QEMlS-6bhf8OV-HXUdeda7PLgWbXFvQs_Vwg&sig=Cg0ArKJSzPTTtIZFUZMFEAE&cid=CAASUORoKtadYt6Xli-tQ-i5st5Rpe5IOjjAPRP1JrwGPUSWFT3En9G1ia1IgnfsfGUQgdH_myJQYU8MbSP3_iLOuiuieOBpwJNgWSn5WT6qtZeO&id=lidar2&mcvt=1640&p=0,0,124.06668090820312,641&mtos=0,1453,1640,1809,1842&tos=0,1453,187,169,33&v=20220831&bin=7&avms=nio&bs=0,0&mc=0.75&if=1&vu=1&app=0&itpl=2&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1661986987619&rpt=168&met=mue&wmsd=0
IP
File type gzip compressed data, max compression\012- data
Hash f97ababf054390a3f078a7059b410d41
b2d02f4a12521aac4996fc2197523d8078a7b220
c2609b758ec31e4347a3e9b85cb0b2362a7e670fd5dcf065e6d466c5ded8a5f2
GET /pcs/activeview?xai=AKAOjsvZIaJc4iVq9Pi0-ivG90aUir7-SC0uBgUf9O2GCJV_gpG5fXcZDwmW_rc-HvUx41cFNV4V85hZ59o_WPZQL3IIBhYxPgxV27Y2LeKH3rOElhypIAng_YbrY83nwwnSHVKm8B3pKIxtTTzC2uC9MbrQYKCsk8DczvC5IilLwtM4jUxehotU08KgKhCNCO4rilnLsZczBzGLAYLEU1vkbbbJWY1LpD3Ad6JIgfvP-0aPvq78DhTKX6LZLGC2jXRyJmsZlrgx3IbnbzWszQyafumASi6hda8qLbNE9PRqEWeuJqSPAf5m-ec-huSUBAHEG23357fgaIV31zBBUN-YyqoQewt5pvU-C2kwnpuPizAC8NREaWSjxUY4pDeH6_Qt0PHP3jnBoXh-AsY5U9NPahUqS1UhYT3VT2ZSX0FcGc2bUobDmu5HOLJVEQKPQ9v8F1_mTfJnAjp3MztvYviRnN0FHTTVUy6pavgqE0Sl7gRaqV2YFiP-kIhKwX2M4tHGB-cdt9XcHiGAazEpwCWCnzmWrabJjH67U57YndsaRe1QumCdin51WrCr2MewNT_-DwziQrs_T2_b7p_uQMuBNeYALdNBk8zs0tzKHI0BUZEA7Nbnuk3ye2bi97u43zlUOBAwtrC5A6PIJENNvJDPPAhshNvyD8jsaCwpGmFV8g9yhIhqudU-QseuM00cbkbscUhgzy2Jtgo1V0lpDOOjXxipksPTYgrM5JMiHRaVq_5bkkED9qiMy4zC2U6Qoj2kBj17qrJTS7NZDVj8hFvlUWGBwzwgUJpJovJdd9yfjoN6kPcvDJSJ96PHgu06HtQhdDt5SCLRNtW02gDIGMstDukPKXywVj3uIEiT2aiiPUpsr2_18udr0wLKcyLrE_pNNl_54d5qMmtzOkrYHOYgm3elRSXvgqMDXngLnEUCURcqf12m0T3jKZWTFdbWDy3c801wj61lRFcx9FAfwzpcOXe7lN00f_FVs3SIvJqZ9Vc4wExSitHyfElilySDUFWE2DEvnprhduagt_XN3GYo2MOy7GlPfi-dw_-TlK4&sai=AMfl-YQe33DO06Sd8UUBiaezYfXwclo6a8E6Ty_L5Si0NNFXvMyfpV4ncF4OnwhxTUZYIjhwRmOO1YXNSzDbedtAJcRstoXEr0_0h7eYAPzIUN_cU6QEMlS-6bhf8OV-HXUdeda7PLgWbXFvQs_Vwg&sig=Cg0ArKJSzPTTtIZFUZMFEAE&cid=CAASUORoKtadYt6Xli-tQ-i5st5Rpe5IOjjAPRP1JrwGPUSWFT3En9G1ia1IgnfsfGUQgdH_myJQYU8MbSP3_iLOuiuieOBpwJNgWSn5WT6qtZeO&id=lidar2&mcvt=1640&p=0,0,124.06668090820312,641&mtos=0,1453,1640,1809,1842&tos=0,1453,187,169,33&v=20220831&bin=7&avms=nio&bs=0,0&mc=0.75&if=1&vu=1&app=0&itpl=2&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1661986987619&rpt=168&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Wed, 31 Aug 2022 23:03:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220829&jk=1653718674795284&bg=!JiWlJWHNAAaXrHhMt6w7ACkAdvg8WnVhiJzOrHUTYyGmE_ynKHSPpKtB_1_AcOg2Xz_fWLA_grRx2wIAAAIaUgAAAAtoAQcKAKYkoEjFzhOfc9nz5mnRTij0qOdaVnL5Rhtt1cEA9isa2qYKUYhrdUXH7gN6BpCRoPoRKiXpet8KUKShKg0lzmQVTqtrtOyt29rFd-f4ZbySyQy2ycpjb7UOcPnsCAUcsuQomm-zAdgsM-u86-IKGrlAYE_z9bXZnJm7DNvccA4P7vOs7Lg0Ly0Hi1b09lHsnYUECy-_nikOv4JXhUKezXjX5iUYjcO5mQJ-sKzpzAKxkKMhkBB7oSlSNZgPxsjIi7wt8l7CG4jAsFcr8uGebn9l5q5C6RaYGyd86h3iewnp0PIm_8DJ_JitVo75AnfYxeg679HnlJRySP0u7soZUO1CzO-5e7JbkQkTilhAB8JEXvNcr0BcDg-XtG2uUY1vhqllrFZhU7vQVE47zvFuEIyKKBZK-MQ8s5whkqGjq7_LVoJa33nK8Czm8VFNvizIODBdeF-HFXYLkskRdagelll5TIZFySB8FtBOlEKCCzU9MCECG76hs4cEwgUucx9Q3-SBpxiQVBtalvaCszmTCt9VRhXwFdyy3-AU1NJl3Jd-AuRQHvXXoGkjTM0OxeHswoA3d4nwlssvHx8E7b-rzss4_OMNgPBXI73hy5Bqr9D7l51iipUxNhnXv7-4Ll0khygdNHA4rlcavAY1uhur2OgelVDs2RZ5fBz50A1N8y7FyeREuIungJzyqWwgtXNyYtcWYYnxlGgqSRgnFh4sIyXlv6Y8_JgwMTDdfkEwTBpPprPUJsLun4lcPXbOmHpNS4fY36kzsWoLYnfBGpmKyeD1hC-9KO7iQOvFtRSfGN5CBHks6xn04u0YAH5gSruj78dOC20WHUFMm4WWWG_NhHXEgNe6CGDfLBurZLOeqkUXEve476gOgY5oHgWJWwc6lIl81N-huPqDM-mKIV-obHftsfoNiTlIpvgf0zIzf7hNBRN3RKtUvNtXRsJxyT6MrJfHbrV8wmo16-8x4MxVvVTGS65bqt4cy0Pj3ffl55owIhecfHr1JV1ahShYwJUbTrv_miyE2PXKEA1n5pFFs6zTxhb45aDK0uKOHgVYna7G0vc5OeKyjJE
204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220829&jk=1653718674795284&bg=!JiWlJWHNAAaXrHhMt6w7ACkAdvg8WnVhiJzOrHUTYyGmE_ynKHSPpKtB_1_AcOg2Xz_fWLA_grRx2wIAAAIaUgAAAAtoAQcKAKYkoEjFzhOfc9nz5mnRTij0qOdaVnL5Rhtt1cEA9isa2qYKUYhrdUXH7gN6BpCRoPoRKiXpet8KUKShKg0lzmQVTqtrtOyt29rFd-f4ZbySyQy2ycpjb7UOcPnsCAUcsuQomm-zAdgsM-u86-IKGrlAYE_z9bXZnJm7DNvccA4P7vOs7Lg0Ly0Hi1b09lHsnYUECy-_nikOv4JXhUKezXjX5iUYjcO5mQJ-sKzpzAKxkKMhkBB7oSlSNZgPxsjIi7wt8l7CG4jAsFcr8uGebn9l5q5C6RaYGyd86h3iewnp0PIm_8DJ_JitVo75AnfYxeg679HnlJRySP0u7soZUO1CzO-5e7JbkQkTilhAB8JEXvNcr0BcDg-XtG2uUY1vhqllrFZhU7vQVE47zvFuEIyKKBZK-MQ8s5whkqGjq7_LVoJa33nK8Czm8VFNvizIODBdeF-HFXYLkskRdagelll5TIZFySB8FtBOlEKCCzU9MCECG76hs4cEwgUucx9Q3-SBpxiQVBtalvaCszmTCt9VRhXwFdyy3-AU1NJl3Jd-AuRQHvXXoGkjTM0OxeHswoA3d4nwlssvHx8E7b-rzss4_OMNgPBXI73hy5Bqr9D7l51iipUxNhnXv7-4Ll0khygdNHA4rlcavAY1uhur2OgelVDs2RZ5fBz50A1N8y7FyeREuIungJzyqWwgtXNyYtcWYYnxlGgqSRgnFh4sIyXlv6Y8_JgwMTDdfkEwTBpPprPUJsLun4lcPXbOmHpNS4fY36kzsWoLYnfBGpmKyeD1hC-9KO7iQOvFtRSfGN5CBHks6xn04u0YAH5gSruj78dOC20WHUFMm4WWWG_NhHXEgNe6CGDfLBurZLOeqkUXEve476gOgY5oHgWJWwc6lIl81N-huPqDM-mKIV-obHftsfoNiTlIpvgf0zIzf7hNBRN3RKtUvNtXRsJxyT6MrJfHbrV8wmo16-8x4MxVvVTGS65bqt4cy0Pj3ffl55owIhecfHr1JV1ahShYwJUbTrv_miyE2PXKEA1n5pFFs6zTxhb45aDK0uKOHgVYna7G0vc5OeKyjJE
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220829&jk=1653718674795284&bg=!JiWlJWHNAAaXrHhMt6w7ACkAdvg8WnVhiJzOrHUTYyGmE_ynKHSPpKtB_1_AcOg2Xz_fWLA_grRx2wIAAAIaUgAAAAtoAQcKAKYkoEjFzhOfc9nz5mnRTij0qOdaVnL5Rhtt1cEA9isa2qYKUYhrdUXH7gN6BpCRoPoRKiXpet8KUKShKg0lzmQVTqtrtOyt29rFd-f4ZbySyQy2ycpjb7UOcPnsCAUcsuQomm-zAdgsM-u86-IKGrlAYE_z9bXZnJm7DNvccA4P7vOs7Lg0Ly0Hi1b09lHsnYUECy-_nikOv4JXhUKezXjX5iUYjcO5mQJ-sKzpzAKxkKMhkBB7oSlSNZgPxsjIi7wt8l7CG4jAsFcr8uGebn9l5q5C6RaYGyd86h3iewnp0PIm_8DJ_JitVo75AnfYxeg679HnlJRySP0u7soZUO1CzO-5e7JbkQkTilhAB8JEXvNcr0BcDg-XtG2uUY1vhqllrFZhU7vQVE47zvFuEIyKKBZK-MQ8s5whkqGjq7_LVoJa33nK8Czm8VFNvizIODBdeF-HFXYLkskRdagelll5TIZFySB8FtBOlEKCCzU9MCECG76hs4cEwgUucx9Q3-SBpxiQVBtalvaCszmTCt9VRhXwFdyy3-AU1NJl3Jd-AuRQHvXXoGkjTM0OxeHswoA3d4nwlssvHx8E7b-rzss4_OMNgPBXI73hy5Bqr9D7l51iipUxNhnXv7-4Ll0khygdNHA4rlcavAY1uhur2OgelVDs2RZ5fBz50A1N8y7FyeREuIungJzyqWwgtXNyYtcWYYnxlGgqSRgnFh4sIyXlv6Y8_JgwMTDdfkEwTBpPprPUJsLun4lcPXbOmHpNS4fY36kzsWoLYnfBGpmKyeD1hC-9KO7iQOvFtRSfGN5CBHks6xn04u0YAH5gSruj78dOC20WHUFMm4WWWG_NhHXEgNe6CGDfLBurZLOeqkUXEve476gOgY5oHgWJWwc6lIl81N-huPqDM-mKIV-obHftsfoNiTlIpvgf0zIzf7hNBRN3RKtUvNtXRsJxyT6MrJfHbrV8wmo16-8x4MxVvVTGS65bqt4cy0Pj3ffl55owIhecfHr1JV1ahShYwJUbTrv_miyE2PXKEA1n5pFFs6zTxhb45aDK0uKOHgVYna7G0vc5OeKyjJE HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 31 Aug 2022 23:03:10 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
200 OK 0 B URL HTTP/2 futebol.flog.br/ver-agora/toulouse-x-psg-ao-vivo-gratis/13379
IP
ASN #53057 RedeHost Internet Ltda.
GET /ver-agora/toulouse-x-psg-ao-vivo-gratis/13379 HTTP/1.1
Host: futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:53:24 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
vary: X-Proxy-Provider
cache-control: max-age=0, no-cache, no-store, must-revalidate
expires: Wed, 11 Jan 1984 05:00:00 GMT
pragma: no-cache
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/js/clever.min.js
200 OK 0 B URL HTTP/2 lp.cleverwebserver.com/bet365/js/clever.min.js
IP
GET /bet365/js/clever.min.js HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01125089
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: application/javascript
x-amz-id-2: LKBjI1UPEnPlBeTUBy5SRtvXDyzHEbmIxsRqLUOae174hSe3NwxGJhcTpOQRIwmy49PNXZzn+ls=
x-amz-request-id: 5JPS3MYWRCFAZGVE
last-modified: Fri, 26 Aug 2022 14:10:22 GMT
etag: W/"b3ece6d6ae33957e8c1bc9dea5b91bb9"
cf-cache-status: HIT
age: 1380
expires: Wed, 31 Aug 2022 23:33:06 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 743965cafebfb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/cta.svg?v=3
200 OK 0 B URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/cta.svg?v=3
IP
GET /bet365/no/sports/grp1/imgs/cta.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01125089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: image/svg+xml
x-amz-id-2: 9Jv9xdHsBTOqAkMBAl9GGVcBGeFvxgGj2acJCoT2qawJvIegETwapfLo+p2SEUuLJbS9DK8bAzc=
x-amz-request-id: WV5CGCZFWJJE0AN0
last-modified: Mon, 11 Jul 2022 09:22:28 GMT
etag: W/"f25a49c0565fb424102c080616aa890a"
cf-cache-status: HIT
age: 1386
expires: Wed, 31 Aug 2022 23:33:06 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 743965ca9e79b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
futnews.futebol.flog.br/assets/imgs/banner.jpg
200 OK 0 B URL HTTP/2 futnews.futebol.flog.br/assets/imgs/banner.jpg
IP
ASN #53057 RedeHost Internet Ltda.
GET /assets/imgs/banner.jpg HTTP/1.1
Host: futnews.futebol.flog.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 22:54:53 GMT
content-type: image/jpeg
vary: X-Proxy-Provider,Accept-Encoding
last-modified: Tue, 09 Aug 2022 17:45:51 GMT
accept-ranges: none
content-encoding: gzip
cache-control: max-age=604800, must-revalidate
expires: Thu, 31 Aug 2023 23:03:05 GMT
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy2-interstitial.svg?v=3
200 OK 0 B URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy2-interstitial.svg?v=3
IP
GET /bet365/no/sports/grp1/imgs/copy2-interstitial.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01125089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: image/svg+xml
x-amz-id-2: 5CbSQHE2+QHSgAR2B/sPbg4AwcKLh5xEMig5CtmmpJkTG6J/9F+lfDAYSRPo6TxIDw0nypb703Y=
x-amz-request-id: D6V8M19XXZNB6Y03
last-modified: Fri, 15 Jul 2022 13:41:36 GMT
etag: W/"3a7d3558a41367668f8bbaa7dca23007"
cf-cache-status: HIT
age: 1386
expires: Wed, 31 Aug 2022 23:33:06 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 743965ca8e75b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy1-push.svg?v=3
200 OK 0 B URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy1-push.svg?v=3
IP
GET /bet365/no/sports/grp1/imgs/copy1-push.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01125089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: image/svg+xml
x-amz-id-2: Ih0XW9BPXhqvQZQPSkD+KEWJVRFHKRH4l6K/enSBPiwb6SfdjYgwN67nODhHgWVv6DCxj1vI2zo=
x-amz-request-id: DYW99ZY04QN14BM7
last-modified: Thu, 04 Aug 2022 16:49:27 GMT
etag: W/"8480a9ba64e461df6bda4318bb397463"
cf-cache-status: HIT
age: 1386
expires: Wed, 31 Aug 2022 23:33:06 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 743965ca7e6db4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900&display=swap
IP
GET /css?family=Montserrat:300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 31 Aug 2022 23:03:05 GMT
date: Wed, 31 Aug 2022 23:03:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i
IP
GET /css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 31 Aug 2022 23:03:05 GMT
date: Wed, 31 Aug 2022 23:03:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:300,400,400i,500,500i,600,600i,700,700i,800,800i&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins:300,400,400i,500,500i,600,600i,700,700i,800,800i&display=swap
IP
GET /css?family=Poppins:300,400,400i,500,500i,600,600i,700,700i,800,800i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futebol.flog.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 31 Aug 2022 23:03:05 GMT
date: Wed, 31 Aug 2022 23:03:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01125089
200 OK 0 B URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01125089
IP
GET /bet365/no/sports/grp1/?affiliate=365_01125089 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://futebol.flog.br/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: text/html
x-amz-id-2: JEGmACwyydlIqa862oFl0J7tqbbzsaIghSjO0i6rId7kmJEwP0nB6LiBxpKEoi44RxrBlzYcsH4=
x-amz-request-id: DYDR88CR13MX12SS
last-modified: Fri, 26 Aug 2022 14:08:56 GMT
cf-cache-status: HIT
age: 132
expires: Wed, 31 Aug 2022 23:33:06 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 743965ca3e37b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/logo.svg?v=3
200 OK 0 B URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/logo.svg?v=3
IP
GET /bet365/no/sports/grp1/imgs/logo.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01125089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: image/svg+xml
x-amz-id-2: HDIjUGvgcpgpYFaLiE8QGlFRHnltEyxCN5VlvoWyRuDtbnmrENWIAuwt6eFObkZes6Pe3xfc45A=
x-amz-request-id: YTJ9YGN9KTQXF71X
last-modified: Wed, 03 Aug 2022 16:27:30 GMT
etag: W/"1eab7ef515be2c77eef2348999d42b7e"
cf-cache-status: HIT
age: 1386
expires: Wed, 31 Aug 2022 23:33:06 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 743965ca7e66b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy3.svg?v=3
200 OK 0 B URL HTTP/2 lp.cleverwebserver.com/bet365/no/sports/grp1/imgs/copy3.svg?v=3
IP
GET /bet365/no/sports/grp1/imgs/copy3.svg?v=3 HTTP/1.1
Host: lp.cleverwebserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lp.cleverwebserver.com/bet365/no/sports/grp1/?affiliate=365_01125089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 23:03:06 GMT
content-type: image/svg+xml
x-amz-id-2: EzzE3hZs8fE2A0yBxZtwkm8DSPrFmbyKDi/7ubySWMcP8EpsrZq0NXBZmDSVk+/HIdwIGAqEw5k=
x-amz-request-id: QGFG6ZDYWEXCEV43
last-modified: Mon, 11 Jul 2022 09:22:28 GMT
etag: W/"f174f812dacf714566b5f71cc08b8ef5"
cf-cache-status: HIT
age: 1386
expires: Wed, 31 Aug 2022 23:33:06 GMT
cache-control: public, max-age=1800
vary: Accept-Encoding
server: cloudflare
cf-ray: 743965ca8e76b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
177.55.111.8
172.64.155.188
104.18.24.246
93.184.220.29
23.36.77.32
148.69.64.76