cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
188.114.96.1200 OK 5.4 kB URL User Request GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
IP 188.114.96.1:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (547), with CRLF line terminators
Hash 9b6f3a27dbd7ae82d09a9dbc76986f8b
98f11a42c29a79e741171cac291bfbacd81a4e2e
250c55708b50d5b364754b636af5accbf79f61be32753e4895d46f23119fd5c1
NIDS Severity Alert suricata medium ET PHISHING Possible Phish - Saved Website Comment Observed
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:16 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d; path=/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ocb18%2F63r077Y6ofnnjZRmaqXChKTvBYP8dBYybCyXPHZTdAYVc%2Fnygr%2FuT6%2F7UmbAPmVbCPBA2KTAAm2K%2BEvgzm24k1C6a%2BGheNAqS%2BBZs1BGzhL%2Bb%2Fwmc%2BsH4bnvlprfuS6OFQ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b83d3af4bbefac0-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 00e01e626f30855236b5e4c948c7746b
ccdb7e19dccadccd20ed6a2f65d7c83e49ba4590
976a751eb1236e7dda59d25208f1d4faff243f819b25ddeed0164113cd5a7b59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 15 Apr 2023 11:25:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js
142.250.74.164200 OK 555 B URL GET HTTP/2 www.google.com/recaptcha/api.js
IP 142.250.74.164:443
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint3E:43:00:13:2A:5D:12:97:9E:3A:1C:62:F3:7E:D1:C4:FB:DB:B7:73
ValidityTue, 28 Mar 2023 16:54:58 GMT - Tue, 20 Jun 2023 16:54:57 GMT
File type ASCII text, with very long lines (850), with no line terminators
Hash d171e7bc61a08afb0bf0473a731c4b04
8a60e9d2c25123bfc9842e199b0b938149b1404d
c02e7bc93fc705d6bd5dacc6aab41b7a8c6597efb0f73848f8a30642b91cf201
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cassino-revista.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Sat, 15 Apr 2023 11:25:16 GMT
date: Sat, 15 Apr 2023 11:25:16 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/css
188.114.96.1200 OK 11 kB URL GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/css
IP 188.114.96.1:80
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Hash b580e07dfd245ff44d9f3a6676340d00
b57b996689e0a3d723d1c4037ee4af8fc7281aa6
7689e8babb759adf6d1a00d9db6905f54dfe85ef91131150e7b82e06dc43ac28
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/css HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:16 GMT
Content-Length: 11284
Connection: keep-alive
Last-Modified: Mon, 27 Feb 2023 10:05:28 GMT
Accept-Ranges: bytes
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FKcSZCglMjSP0U27d3jp%2B0mJSRUaFkPzqf2YnwvjTqvUvD%2BF57c0HjJZ7raB2FtdjqcH87emcqJ36QGOWLj1%2FBlugipLJSG2t3uxMcwpPhkqLIFRPV5%2FgPrmWrmZJudFZIRTW8iM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b83d3b15d08fac0-OSL
alt-svc: h2=":443"; ma=60
code.jquery.com/jquery-2.0.0.min.js
69.16.175.10200 OK 29 kB URL GET HTTP/2 code.jquery.com/jquery-2.0.0.min.js
IP 69.16.175.10:443
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (32110)
Hash f719a8951104b00ebd01046108724775
6a57be8d0ce07ffb6b08d76a575e7ce4404cb92c
b1dc49287580b831e1f6b4672b4f562197305d1c5036bb3f3604dc05b798f8b2
GET /jquery-2.0.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cassino-revista.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Apr 2023 11:25:16 GMT
content-encoding: gzip
content-length: 29055
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-14497"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1681557916.dop001.sk1.t,1681557916.cds065.sk1.hn,1681557916.cds261.sk1.c
X-Firefox-Spdy: h2
cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/css(1)
188.114.96.1200 OK 12 kB URL GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/css(1)
IP 188.114.96.1:80
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Hash 54c63f60113a6b724199813f608680c1
bcf1d7a41dc5740da1dd8612f8ae0c0725f5447d
b345abe33a4f53c748b8b6858bbe2c0380add9fbbec748044d2e76d6f0bd681d
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/css(1) HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:16 GMT
Content-Length: 12097
Connection: keep-alive
Last-Modified: Mon, 27 Feb 2023 10:05:28 GMT
Accept-Ranges: bytes
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GmDIQOLrwxWEjFmqBSZ0xHhG7JfEnzWcwLIvCAE0W7f74%2BjBJ4rr3nmXAA%2B1nZzNPXs5VLec5FAhbdxLGtChxcQbP527g8Z3Np%2BftUiO1ZT%2F7FztwpAktjozp7K5WXWm8J%2BV21cB"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b83d3b158d2b4f9-OSL
alt-svc: h2=":443"; ma=60
cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/jat6bcb.css
188.114.96.1200 OK 1.2 kB URL GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/jat6bcb.css
IP 188.114.96.1:80
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
File type Unicode text, UTF-8 text, with very long lines (516)
Hash b22bc60b35ba4d96551e4cd37f588025
a6f267f84d3d5d637abebaed883ca02db30c35d6
70fb8c1bec82214874557d3989e3e00f1d7e46197b9fa800023bff6b386880d7
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/jat6bcb.css HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:16 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Feb 2023 10:05:31 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KJBzIJf4hTicTWKrpfDmBuvL0I38S6%2FtYyFILwMb%2Fd6nFkiXDB%2FBLuS2YY8bxBWak56r%2F0aSz7MvPb84vYKqKAa2dqFWPTwqB4b1YMFAqjfZmwNo3yMCQod384DhOfz%2FIEXBh7Hg"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b83d3b159e5b4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 4450867227bc81baa89c9e135f91e537
260e302cf5302fab19b92430bf84dafd1f42264c
d2c192beac9317754b0754287fb8a2373a60a1fc3ace1e55c88d92744b1abcba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 15 Apr 2023 11:25:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/css2
188.114.96.1200 OK 20 kB URL GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/css2
IP 188.114.96.1:80
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Hash b9f64250a4a337817473cc22e46a8be5
1a82d31d4a91a18757b02e402f48c0dfa7504556
2458c6e69ec960015408bcff5b6e3c679da9a9e7cb3149cc810ef75158c0acf1
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/css2 HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:16 GMT
Content-Length: 19499
Connection: keep-alive
Last-Modified: Mon, 27 Feb 2023 10:05:28 GMT
Accept-Ranges: bytes
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RU8iNN%2F%2FqXrkCdBDJn8KS7F9SUIhzQcFy1kxhva7%2B9jjMq5k1GZsEGsVCHvI5SjdiVyiqVqrlDTDyCJwFVMAJikHju%2FLB78x3R8tWOteXevvQ2zFKRxBrg9wSau1z4xO7t0%2ByeH0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b83d3b15f900b55-OSL
alt-svc: h2=":443"; ma=60
p.typekit.net/p.css?s=1&k=jat6bcb&ht=tk&f=13407.15510.26839.26840.26841.26842.28900.28901.28904.28905.37896.37897.37898.37899.37900&a=22171529&app=typekit&e=css
23.36.76.184200 OK 5 B URL GET HTTP/2 p.typekit.net/p.css?s=1&k=jat6bcb&ht=tk&f=13407.15510.26839.26840.26841.26842.28900.28901.28904.28905.37896.37897.37898.37899.37900&a=22171529&app=typekit&e=css
IP 23.36.76.184:443
ASN #20940 Akamai International B.V.
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint5F:2F:EB:47:33:08:97:87:7F:73:06:D1:9A:4B:F5:06:57:11:08:2B
ValidityWed, 14 Sep 2022 00:00:00 GMT - Sun, 15 Oct 2023 23:59:59 GMT
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=jat6bcb&ht=tk&f=13407.15510.26839.26840.26841.26842.28900.28901.28904.28905.37896.37897.37898.37899.37900&a=22171529&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cassino-revista.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Sat, 15 Apr 2023 11:25:16 GMT
X-Firefox-Spdy: h2
cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/script.js.download
188.114.96.1200 OK 972 B URL GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/script.js.download
IP 188.114.96.1:80
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Hash 47a3d377e1cd33e96f407d1bec98c68d
301cdea239b15a17ea77b3f605f01b007bd512e8
0c01b2811e1aac024f9af56ae4b63ea09886b4785e440dc04df567eaf070aab7
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/script.js.download HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Feb 2023 10:05:32 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2oRUYsbCoawO7pVNe7AF5jHW%2B6XLeuuwRht9WmswUmOSEKAH4aCX9b3kAlm9k1My30fMBMSWbS%2BSPv9Q%2F5Axuj7PPdWNv3WL%2FUJoPwJJW0oG59eOmeg3uwxKnS2bmStCHuOnfLNs"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b83d3b2db0eb4f9-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/iti.css
188.114.96.1200 OK 4.0 kB URL GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/iti.css
IP 188.114.96.1:80
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Hash 2cd834de9bba9d214dde2df02cfe3185
e1595e64eb6cb0db0abbb90b6761598343d41792
3d3825b92b4241a53525cc67be32d3da35fd73fa97d927e220ab4b4ce530cf44
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/iti.css HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:16 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Feb 2023 10:05:31 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NCcTIClXdvtXVCbpM2rxPptn6wBniUukrqE5G%2F%2FgJRzfXt%2Buwp%2BD6ptXwLOHvWvG9OY8hHC2zk7NHYUWMXPH%2B5iBF55FR4YJctYsJH6zDmnQVALIzWzDAWakPAU3LBlZI14d4VXx"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b83d3b15f161c06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/style.css
188.114.96.1200 OK 4.9 kB URL GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/style.css
IP 188.114.96.1:80
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Hash 883edbdf8db1649ac4d3de6ed36308af
aa1aff7a87455462840c14d78c7541b9e90d5ac2
00f2fa916c1f93ad784e535e9379b55237f15633f7f462e39b14e503ae740610
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/style.css HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:16 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Feb 2023 10:05:33 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F%2BLi95U1xGSGB5Ia9AHTInZarGmVaXW188hQ%2B3sUGg%2Fnak6fGWQi68RNDFr5Ob0uKHTqxMjneNLHlws0Xz8gJXHdfKnuSVRfnlEP8vgXys7NY34Bdm9xKuhnBQYWVcp7xXimmeo3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b83d3b1fd7ffac0-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/bootstrap.min.css
188.114.96.1200 OK 21 kB URL GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/bootstrap.min.css
IP 188.114.96.1:80
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
File type ASCII text, with very long lines (65324)
Hash 67bf20fb0d5ae521d4e400ecb1255e01
805d631969b01f69c3b95699ac8906489d15090b
c5695ee528e2604fed4d3c44068a210c3b606b5509d1b9cc67485bcb8fe086fe
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/bootstrap.min.css HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:16 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Feb 2023 10:05:28 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LQqiSP1PgBjGtxTPSA%2FmOVrtHe6VOahcEkzMHVmjNQtQknVpu7r9FMOqm2cqK7jTW6sCyUjiYFrh17j6rEnhlAu%2FKasbvZeCodqmagx8bAxBZC7e6mIxmLW7OGu%2B8zx%2FRNxECxbG"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b83d3b15903b4f1-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 798d4dfa1bf269cf25be30e15c0faf27
add23a798eb57d7f581a42d0f9084a3acaa076c3
7b38c793ca44a66a992fb67afcd9dca6a1e53824b5c65cf946f1037118f361ee
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 15 Apr 2023 11:25:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 798d4dfa1bf269cf25be30e15c0faf27
add23a798eb57d7f581a42d0f9084a3acaa076c3
7b38c793ca44a66a992fb67afcd9dca6a1e53824b5c65cf946f1037118f361ee
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 15 Apr 2023 11:25:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 798d4dfa1bf269cf25be30e15c0faf27
add23a798eb57d7f581a42d0f9084a3acaa076c3
7b38c793ca44a66a992fb67afcd9dca6a1e53824b5c65cf946f1037118f361ee
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 15 Apr 2023 11:25:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.227200 OK 7.9 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.227:443
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cassino-revista.com
Connection: keep-alive
Referer: http://cassino-revista.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 02:44:12 GMT
expires: Fri, 12 Apr 2024 02:44:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 204065
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.227200 OK 7.8 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.227:443
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cassino-revista.com
Connection: keep-alive
Referer: http://cassino-revista.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 02:07:56 GMT
expires: Fri, 12 Apr 2024 02:07:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
age: 206241
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.227:443
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cassino-revista.com
Connection: keep-alive
Referer: http://cassino-revista.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 11 Apr 2023 14:36:43 GMT
expires: Wed, 10 Apr 2024 14:36:43 GMT
cache-control: public, max-age=31536000
age: 334114
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
use.typekit.net/af/f9d226/000000000000000077359f59/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
23.36.76.122200 OK 16 kB URL GET HTTP/2 use.typekit.net/af/f9d226/000000000000000077359f59/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP 23.36.76.122:443
ASN #20940 Akamai International B.V.
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint5F:2F:EB:47:33:08:97:87:7F:73:06:D1:9A:4B:F5:06:57:11:08:2B
ValidityWed, 14 Sep 2022 00:00:00 GMT - Sun, 15 Oct 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), CFF, length 15568, version 1.0\012- data
Hash cd90997ee471ba648cc48fe4bd0b148f
0351bf4d2a51834c05ad3e9781bdd8d6480d7b76
582a36fff5b1377f702e79beb46db6f62443d1b31dc974352cf9066f502e8c0b
GET /af/f9d226/000000000000000077359f59/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cassino-revista.com
Connection: keep-alive
Referer: http://cassino-revista.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 15568
etag: "8cb80e5c3ccca845cb7c2335b35dd0cdc0fe30dd"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sat, 15 Apr 2023 11:25:17 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/7f1b26/00000000000000007735a0ac/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
23.36.76.122200 OK 31 kB URL GET HTTP/2 use.typekit.net/af/7f1b26/00000000000000007735a0ac/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP 23.36.76.122:443
ASN #20940 Akamai International B.V.
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint5F:2F:EB:47:33:08:97:87:7F:73:06:D1:9A:4B:F5:06:57:11:08:2B
ValidityWed, 14 Sep 2022 00:00:00 GMT - Sun, 15 Oct 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 30996, version 1.0\012- data
Hash 3670f57e20718061a9c37541c0b00597
806ee1a63611f13511a13379d6235c566e32ad1b
da3902c6f50673bc0161376b5c4c2871d51f72eeaf43d800cdd89865dd00f6ba
GET /af/7f1b26/00000000000000007735a0ac/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cassino-revista.com
Connection: keep-alive
Referer: http://cassino-revista.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 30996
etag: "e8f0afc8be1f653a7bff6045a7dc07fba2140a10"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sat, 15 Apr 2023 11:25:17 GMT
X-Firefox-Spdy: h2
notifpush.com/script_parameters/p_6947d5843895a0ad.json
104.26.13.128200 OK 1.0 kB URL GET HTTP/2 notifpush.com/script_parameters/p_6947d5843895a0ad.json
IP 104.26.13.128:443
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerLet's Encrypt
Subject*.notifpush.com
Fingerprint19:AA:0C:7D:5C:69:69:3F:21:6D:6E:AB:34:AF:01:01:B2:79:C8:2A
ValiditySat, 01 Apr 2023 23:25:26 GMT - Fri, 30 Jun 2023 23:25:25 GMT
File type JSON data\012- , ASCII text, with very long lines (1045), with no line terminators
Hash 5f3a207671caeadb90a132c408480d37
6a390068eceb4f0588fd52981cd8a77aa86fe7a4
9e5bf2d0f962e1f954aab469f7caf830d602c16d990677f86183c289a91bedc5
GET /script_parameters/p_6947d5843895a0ad.json HTTP/1.1
Host: notifpush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://cassino-revista.com/
Origin: http://cassino-revista.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Apr 2023 11:25:17 GMT
content-type: application/octet-stream
content-length: 1045
x-amz-id-2: qd+j/qV+54qJDY8GrBBqtxFCcajcXgscAAuIUC6SDUzeneX2z+gXNHZIQZAVHkKQ3dfCwoLfYCs=
x-amz-request-id: E46QWJ2J8HXNBG23
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
last-modified: Thu, 13 Apr 2023 07:50:15 GMT
x-amz-version-id: w4YsOztorl33o1Q0sJaH.K2U.nUivVhN
etag: "5f3a207671caeadb90a132c408480d37"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1YV5iyFupXL5udBWOKDPFUA%2Fv2VfOtTfKQVg%2F445auhWNtyZraOz6RQ5VVISpoyW0wZz7D7BOx%2Bbp%2B9GphRmKGwflJk0On7zmkn43VCAWoxw%2F4Fwyx9lh1X7CFVXC58%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b83d3b61d7eb503-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 798d4dfa1bf269cf25be30e15c0faf27
add23a798eb57d7f581a42d0f9084a3acaa076c3
7b38c793ca44a66a992fb67afcd9dca6a1e53824b5c65cf946f1037118f361ee
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 15 Apr 2023 11:25:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/3.png
188.114.96.1200 OK 3.8 kB URL GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/3.png
IP 188.114.96.1:80
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
File type PNG image data, 85 x 85, 8-bit/color RGBA, non-interlaced\012- data
Hash 1a1d9f6c6883aaa19dccc6b070eb8151
c2ed9582c2e3e64f2c97ac6fcb0c85c8a114da70
cbe1794b176dbab48b0d9e158c7d7aa82551ac56d2cac37eb4e38c4900e36eee
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/3.png HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:17 GMT
Content-Type: image/png
Content-Length: 3797
Connection: keep-alive
Last-Modified: Mon, 27 Feb 2023 10:05:27 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PhXo2pfO4nGSKdZvVkmLXNaRXufaiHtE1xK7QtwXMQ1xmg%2BQpx%2FTDbTSPLebGv9jxVRBVZwhqE4DLgEHGlWsQfOL8IMOVGsKgVeO49CVApVRoi9nr52%2F2BG7PnbFYGVHZFWxi5si"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b83d3b5e899b4eb-OSL
alt-svc: h2=":443"; ma=60
cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/4.png
188.114.96.1200 OK 3.9 kB URL GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/4.png
IP 188.114.96.1:80
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
File type PNG image data, 85 x 85, 8-bit/color RGBA, non-interlaced\012- data
Hash fc323d67be21f5d6a707e14247f6cb59
5472d8e804f71e17d7420f4c6532367f6cd4a1fe
01d827e0405f255385181fa6264c16393142f687659be6be35e393efaacab9e9
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/4.png HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:17 GMT
Content-Type: image/png
Content-Length: 3931
Connection: keep-alive
Last-Modified: Mon, 27 Feb 2023 10:05:27 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HBjil7HBJhsOHd1yorUOeFz5vZ5Tn6W5qJ7ooQ9MbT2mVWvKzMGOjk1ll1tuI6gGzVUg54t5A2BXU2mLiD1NtgZWBVxi7YZDJW1CdvqOKEaqfD1sWiel3m4RHA7R11Ohe2d6HRzj"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b83d3b5e897fac0-OSL
alt-svc: h2=":443"; ma=60
cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/5.png
188.114.96.1200 OK 3.8 kB URL GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/5.png
IP 188.114.96.1:80
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
File type PNG image data, 78 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash 550f0000c0fcf636dbae74a831ae3783
04e8f4e741725e77c4387ed4c21101533392f13b
1451d476704c9f6bba6fd290910cdeabe4c3ae890a478120d3620dab23e1faf8
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/5.png HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:17 GMT
Content-Type: image/png
Content-Length: 3751
Connection: keep-alive
Last-Modified: Mon, 27 Feb 2023 10:05:28 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2KHTPNwd%2BAbb0itmN319ZrtX5AaO%2FUhH05tX%2FEQmoPPTK3P2bcELBZV58nxAyjwBGj%2FLt8xJjrx1mJ9xdDuV0BehBPljcj6%2FVydV%2BBLM24RsH7AlkWzgE6JoirhMw%2FV1M25ZP7CD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b83d3b5db021c06-OSL
alt-svc: h2=":443"; ma=60
cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/1.png
188.114.96.1200 OK 4.7 kB URL GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/1.png
IP 188.114.96.1:80
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
File type PNG image data, 87 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash 3000ccfd61ccac6f8daeb35b09ab30c1
0f74e29ecf6c8d8287a11d0e3eabb7bb862d87a5
0430c3f6ac2a372aa02ceb9b1b44cc2d6780a81e994d6d6a2b84daa157d0544a
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/1.png HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:17 GMT
Content-Type: image/png
Content-Length: 4685
Connection: keep-alive
Last-Modified: Mon, 27 Feb 2023 10:05:27 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5aMwRGW2yZmaeYETyi33EM6fRJeZ%2BuUaYnhoVt3qEEXfq7kKIp0oTEs6%2BnKWO9vsQf5X3y7KVfj4Hxr3vJ9j7Gui0GgkwDZH%2FlllUHdda1Z29i6oEkbIWW8YKoD60jS3W2b0eimM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b83d3b5df30b4f9-OSL
alt-svc: h2=":443"; ma=60
gjigle.com/visits-optins
13.36.112.42200 OK 2 B IP 13.36.112.42:443
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerLet's Encrypt
Subjectgjigle.com
Fingerprint21:42:E7:DD:BB:BF:A7:36:A7:0C:DC:C9:4F:58:03:A1:27:96:6D:3E
ValidityMon, 20 Feb 2023 09:11:42 GMT - Sun, 21 May 2023 09:11:41 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /visits-optins HTTP/1.1
Host: gjigle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://cassino-revista.com/
Origin: http://cassino-revista.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Apr 2023 11:25:17 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: http://cassino-revista.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, DELETE, PUT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
gjigle.com/visits-optins
13.36.112.42200 OK 0 B IP 13.36.112.42:443
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerLet's Encrypt
Subjectgjigle.com
Fingerprint21:42:E7:DD:BB:BF:A7:36:A7:0C:DC:C9:4F:58:03:A1:27:96:6D:3E
ValidityMon, 20 Feb 2023 09:11:42 GMT - Sun, 21 May 2023 09:11:41 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /visits-optins HTTP/1.1
Host: gjigle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://cassino-revista.com/
Content-Type: application/json
Content-Length: 136
Origin: http://cassino-revista.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sat, 15 Apr 2023 11:25:17 GMT
x-powered-by: Express
access-control-allow-origin: http://cassino-revista.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, DELETE, PUT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/header-img-1.png
188.114.96.1200 OK 181 kB URL GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/header-img-1.png
IP 188.114.96.1:80
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
File type PNG image data, 454 x 464, 8-bit/color RGBA, non-interlaced\012- data
Size 181 kB (181217 bytes)
Hash f7a6393545ccc133c73e334fde2fdf9e
d01173b0b8ddc902ebbb9826cd39766cac40688b
7101d8486105cb3cb8880a9f1d0dc39cab099f866b4b2645891fd1ad461e4875
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/header-img-1.png HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:17 GMT
Content-Type: image/png
Content-Length: 181217
Connection: keep-alive
Last-Modified: Mon, 27 Feb 2023 10:05:30 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y87nAYYny%2FQjAWEMUHycBwK%2Fq5EJeU%2Fs7ZlA5jYEjRukvSEYL99iTEMH0LlGF1jbLgyV2%2B6ioknhNXwbdUzNw4ottJNuaasDhBWtIFy08JbRvtLPWMPxBPSPZR8mrsHeNyehHO2U"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b83d3b5dc980b55-OSL
alt-svc: h2=":443"; ma=60
cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/header-desktop.jpg
188.114.96.1200 OK 406 kB URL GET HTTP/1.1 cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/header-desktop.jpg
IP 188.114.96.1:80
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1097, components 3\012- data
Size 406 kB (405585 bytes)
Hash 6e04b4b04282bf801bf0d87da1c74987
25eb084b77196a0e047a21fb50cbb2b49b57884e
c66a58c00bc04718c2df31f2b9676d6d8027700e0114cd23668a9913b3f57853
GET /campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/header-desktop.jpg HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/cose/style.css
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Apr 2023 11:25:17 GMT
Content-Type: image/jpeg
Content-Length: 405585
Connection: keep-alive
Last-Modified: Mon, 27 Feb 2023 10:05:30 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pSz8OKvN6gfps52p6NscypHa54zmgFNbu3Cv1FsLv02G3wuFSrfZG1ImYZTHmWimn0XR8TLVOAcIt6Hc1%2F3MaMq4JF6iU4GexPUz1ZR69wsm9nhy51wOFuZ56UleF3pTjsGW19iq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b83d3b57e8db4f1-OSL
alt-svc: h2=":443"; ma=60
www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js
142.250.74.35200 OK 167 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js
IP 142.250.74.35:443
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT
File type ASCII text, with very long lines (697)
Size 167 kB (166600 bytes)
Hash fdfdaf63d56b4a9cd6641d79f7159fdc
18b413d8b6b9f3bec32026b7e9d9f4e5e366922f
f4dba3e15f08cf0686e6d89370ed42e8a5dafc38973501f0aa6baa9b93c720f3
GET /recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://cassino-revista.com
Connection: keep-alive
Referer: http://cassino-revista.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 14:23:58 GMT
expires: Fri, 12 Apr 2024 14:23:58 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Apr 2023 18:01:18 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 162079
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cassino-revista.com/immagini/favicon.png
188.114.96.1200 OK 54 kB URL GET HTTP/2 cassino-revista.com/immagini/favicon.png
IP 188.114.96.1:443
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerGoogle Trust Services LLC
Subject*.cassino-revista.com
FingerprintED:13:FE:65:0A:65:46:3A:75:B5:F2:D1:38:85:CC:52:41:D6:D2:D7
ValidityMon, 03 Apr 2023 09:25:20 GMT - Sun, 02 Jul 2023 09:25:19 GMT
File type PNG image data, 500 x 500, 8-bit colormap, non-interlaced\012- data
Hash 3a6c6bb842821155efbe31ae5355fc70
0aca6355af7301bc608f2d99cd4c6f7cee6ee88e
a393c18a71390c2a664c89fd5b42586635564e7d9dc58806d8d3a3f45f7de756
GET /immagini/favicon.png HTTP/1.1
Host: cassino-revista.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cassino-revista.com/
Cookie: PHPSESSID=3c22650327cbc860ba8ebc588224906d; nadz_dailyVisits=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Apr 2023 11:25:18 GMT
content-type: image/png
content-length: 53933
last-modified: Fri, 17 Feb 2023 08:24:06 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WvfmDxUh1nk5oILr9vFDwBwCB1bPFP0uP4biymdx58t12ROeZy7GzGvbffEdoBExd3BgDLGwY9aabowArjE43V03AgnF2Jl51UP8RKVoPni736%2FCIAjcNBy9tr%2FJSAXE%2Bd3K9HmF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b83d3ba1e430b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
notifpush.com/scripts/adsblocker.js
104.26.13.128200 OK 140 B URL GET HTTP/2 notifpush.com/scripts/adsblocker.js
IP 104.26.13.128:443
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerLet's Encrypt
Subject*.notifpush.com
Fingerprint19:AA:0C:7D:5C:69:69:3F:21:6D:6E:AB:34:AF:01:01:B2:79:C8:2A
ValiditySat, 01 Apr 2023 23:25:26 GMT - Fri, 30 Jun 2023 23:25:25 GMT
File type ASCII text, with no line terminators
Hash 33c2169a6fd76228a1638f73169c90e7
26dd96eaa3a7a409f50a6909f6cca22e0566a586
42a1cb7f4e56d1fb40e69a79906259a1866df192af817a30dcb3becd369a223c
GET /scripts/adsblocker.js HTTP/1.1
Host: notifpush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cassino-revista.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Apr 2023 11:25:17 GMT
content-type: application/javascript
x-amz-id-2: 4Oq1GkH20RXD6eJFLV2ROQCaYJ8PvKqP09liEHz55wAAOJdYpRQRJSCbBMTL5K4JwNhhfKXHh04=
x-amz-request-id: RY5XZSF8GWZZXATZ
last-modified: Wed, 29 Sep 2021 13:54:33 GMT
x-amz-version-id: iwCPZlDMAeFlDTwzEOmchCEjaS0BnIVY
etag: W/"08bac9233b636d30412aaa549ad8fe48"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2255
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NfHCm334PPTYcaeGiz9jzPT02JvgxwZtIeAOoFQ5T04L1550ubVHiCfWu5NwacLJ4KVePsg%2BUlnhNW%2BFciwVu%2FrKhoaA8aqNhxCA0M4ljGwso7WsfEflscRxI%2FFVmpI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b83d3b6bdfeb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
notifpush.com/scripts/nadz-sdk.js
104.26.13.128200 OK 33 kB URL GET HTTP/2 notifpush.com/scripts/nadz-sdk.js
IP 104.26.13.128:443
Requested by http://cassino-revista.com/campagne/ninv/casino_pt_br_1_sl3_sn_inst/index.php
Certificate IssuerLet's Encrypt
Subject*.notifpush.com
Fingerprint19:AA:0C:7D:5C:69:69:3F:21:6D:6E:AB:34:AF:01:01:B2:79:C8:2A
ValiditySat, 01 Apr 2023 23:25:26 GMT - Fri, 30 Jun 2023 23:25:25 GMT
File type ASCII text, with very long lines (33404), with no line terminators
Hash 2a3c5315c0c80c65264183fafc6f18a4
e20e706cc1959bfeac9e65c87345d66a0f361a43
2d080683366d2e29a932d0c9325cd9d61cb388edb130af0a0a5cec7b49b4c811
GET /scripts/nadz-sdk.js HTTP/1.1
Host: notifpush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cassino-revista.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Apr 2023 11:25:17 GMT
content-type: application/javascript
x-amz-id-2: 25uwjwc92XlTSgabAAuU/6uk+RYduhSicvA6SgZcj4Ggd2A7c3yOeQ2ROt0yxGKrkHp72nxqv1w=
x-amz-request-id: FT9FVEMGZDATSYD4
last-modified: Mon, 27 Mar 2023 12:40:17 GMT
x-amz-version-id: cZWpmSZdV5ga3dJn4boLco8DBkwRE1mO
etag: W/"2a3c5315c0c80c65264183fafc6f18a4"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1962
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1y0V9%2B6ESR0UkdTdxrafgN%2FR%2F%2Bzbx0vzdCWFDlzQuulUsZP91mfAx9XSn35%2ByxRG1i7PYLwEnrpettCMz2qQIRvf9TDowGtoxMko%2FzwFQE%2FrEhFzbHg4V4qCCY2BTmY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b83d3b59c95b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2