r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3896
Expires: Sat, 28 Jan 2023 06:04:36 GMT
Date: Sat, 28 Jan 2023 04:59:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10248
Expires: Sat, 28 Jan 2023 07:50:28 GMT
Date: Sat, 28 Jan 2023 04:59:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9485
Expires: Sat, 28 Jan 2023 07:37:45 GMT
Date: Sat, 28 Jan 2023 04:59:40 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 04:43:03 GMT
content-type: application/json
age: 997
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QsRIKJlttZSlTLP4UiMYlNdGXB1QeZFZjeKxcAjhMPph3mkhYNscaUN/if6Dwzuflizl7FbwGsA=
x-amz-request-id: RM28G3D18P2CZ3T2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 04:20:50 GMT
age: 2330
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 04:59:40 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.min.css
104.18.10.207200 OK 5.2 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.min.css
IP 104.18.10.207:0
File type ASCII text, with very long lines (20604)
Hash bf26d67cb68e5dcd06ebaf54a95e1572
8bcb557503c9088f4b21e473a0037ec3ff7ebd29
dff3eff53592a54969bbeda445d324bf4f452ba8a4e0110a8c0075b4be1786f3
GET /font-awesome/4.1.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:59:40 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
CDN-EdgeStorageId: 723, 617
Last-Modified: Mon, 25 Jan 2021 22:04:53 GMT
CDN-CachedAt: 2021-07-24 09:40:41
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: 2b50aaedc481ac5a56e54a88a5b8c43a
Content-Encoding: gzip
CDN-Status: 200
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 17925679
Server: cloudflare
CF-RAY: 790728fa1b90b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.googleapis.com/css?family=Varela+Round:normal|Open+Sans:normal
142.250.74.106200 OK 689 B URL HTTP/1.1 fonts.googleapis.com/css?family=Varela+Round:normal|Open+Sans:normal
IP 142.250.74.106:0
Hash 440367f2eb64b9ba1f06aa3e9cb7e45c
8eb1a991a0f226f277b6f756a1f3fd55b7ab9c97
67c011369dab09f776b2f720a37efe443473c43c62365a59f82b8c0e710b051c
GET /css?family=Varela+Round:normal|Open+Sans:normal HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 28 Jan 2023 04:59:40 GMT
Date: Sat, 28 Jan 2023 04:59:40 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Oxygen:300
142.250.74.106200 OK 335 B URL HTTP/1.1 fonts.googleapis.com/css?family=Oxygen:300
IP 142.250.74.106:0
Hash ccc292b544c8f78cac5a474e6dff9e34
dd0d0d3fedf0c729db1b844338f0ed42eb2c1d1c
51458220603713869e8d319ea199d11e911106387d6882f47280274d2d43ab10
GET /css?family=Oxygen:300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 28 Jan 2023 04:59:40 GMT
Date: Sat, 28 Jan 2023 04:59:40 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js
142.250.74.106200 OK 33 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (32072)
Hash d38e2944bbc9ae54b8947a2bd0b9a932
782a825679b248d38979c2d7ecae257873344437
65a0917567cb7037612cf420629873f2f3594d2e741aaadf90d893d07d8f5fdd
GET /ajax/libs/jquery/1.10.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 32954
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 24 Jan 2023 15:40:36 GMT
Expires: Wed, 24 Jan 2024 15:40:36 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 307144
ovigames.blogspot.com/2009/09
172.217.21.161200 OK 53 kB URL HTTP/1.1 ovigames.blogspot.com/2009/09
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9800)
Hash eaa91ce16f722b74dcea3f6afe749e81
182d690b7e2e8fc6fad75e3085acae9fba150e67
077f88fa288fc5826687ab833664664c11052a88c054f4db23dc4ff8fa6551d6
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata high ET EXPLOIT_KIT Double-Encoded Reverse Base64/Dean Edwards Packed JavaScript Observed in Unknown EK Feb 16 2015 b64 1 M2
GET /2009/09 HTTP/1.1
Host: ovigames.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 28 Jan 2023 04:59:40 GMT
Date: Sat, 28 Jan 2023 04:59:40 GMT
Cache-Control: private, max-age=0
Last-Modified: Tue, 08 Nov 2022 02:15:37 GMT
ETag: W/"e823d1eeaf9a4aa1b6d4c49a204c6ed7a5dc1a9a4d1aeef8bd6d1e061aa7a9ad"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 53394
Server: GSE
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5bacc65c4126b25914adeaf400b32c5e
9c8d7108a850dd9a78db3fa09210b01d187d2929
3a357c382120191da2590c6eaec7d7aa0e99976b227b0c4f626de0e4f59e37ae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4565
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:59:40 GMT
Last-Modified: Sat, 28 Jan 2023 03:43:35 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 280
cdn.adf.ly/js/link-converter.js
104.20.67.244200 OK 11 kB URL HTTP/2 cdn.adf.ly/js/link-converter.js
IP 104.20.67.244:0
File type ASCII text, with very long lines (24590)
Hash a9d75b7bd46c34771667449479f06d0d
bf539dc98ca8fed1ef064557305d9a26d8f5442f
b84cfa9a1114f418b7600e993e8c9d99a1ccf40e2efccd0484a365e43129d4f0
GET /js/link-converter.js HTTP/1.1
Host: cdn.adf.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:59:40 GMT
content-type: application/x-javascript
content-length: 11182
cache-control: public, max-age=604800
expires: Sat, 04 Feb 2023 04:19:32 GMT
last-modified: Sun, 15 Jan 2023 00:59:02 GMT
etag: "7b7a-63c34fd6-bb6751cf487a3302;gz"
content-encoding: gzip
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 2408
accept-ranges: bytes
server: cloudflare
cf-ray: 790728fa8a97b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24fb829cf6626607036d3aa12e254f2f
993cd8ca527ef8b5ac101471af4589f477bc9f42
54e2f3602c541ad1e17294295b78c571e84d62907e0797f6248c0ed73a5ba4b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
216.58.207.233200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 09:41:15 GMT
expires: Wed, 24 Jan 2024 09:41:15 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 12:51:55 GMT
content-type: text/css
age: 328705
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5bacc65c4126b25914adeaf400b32c5e
9c8d7108a850dd9a78db3fa09210b01d187d2929
3a357c382120191da2590c6eaec7d7aa0e99976b227b0c4f626de0e4f59e37ae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4565
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:59:40 GMT
Last-Modified: Sat, 28 Jan 2023 03:43:35 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 166bf2c6932f048996b3fe12e1cf3db9
9489d067ac8215775dda446a4c291e6db1e8ab3f
896314990eb656b725f8ec5d3753e70bf71e956c142a15b45773a77bb7d6ff24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ovigames.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 ovigames.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: ovigames.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/2009/09
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sat, 28 Jan 2023 04:59:40 GMT
Expires: Sat, 04 Feb 2023 04:59:40 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 28 Jan 2023 01:52:34 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7aa39f6d36d5f61782ab265b425647ef
08348416e84e3c36cdb8aad9a5b72070ce00d9b5
c595e935d3b4504f9b4518d98f50d4462a99627c17fd67a15f71d3f352510001
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7aa39f6d36d5f61782ab265b425647ef
08348416e84e3c36cdb8aad9a5b72070ce00d9b5
c595e935d3b4504f9b4518d98f50d4462a99627c17fd67a15f71d3f352510001
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7aa39f6d36d5f61782ab265b425647ef
08348416e84e3c36cdb8aad9a5b72070ce00d9b5
c595e935d3b4504f9b4518d98f50d4462a99627c17fd67a15f71d3f352510001
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24fb829cf6626607036d3aa12e254f2f
993cd8ca527ef8b5ac101471af4589f477bc9f42
54e2f3602c541ad1e17294295b78c571e84d62907e0797f6248c0ed73a5ba4b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.firebase.com/v0/firebase.js
151.101.1.195200 OK 24 kB URL HTTP/2 cdn.firebase.com/v0/firebase.js
IP 151.101.1.195:0
File type ASCII text, with very long lines (1829)
Hash cb1ef176cd4227000c4c09846f103c06
9fd791ae13589a6d56b642291c69049f5533550a
d183c3e524e2c62ce8278731568b37635eb5aeb09b082c9b6c88ccabc6983841
GET /v0/firebase.js HTTP/1.1
Host: cdn.firebase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public,max-age=432000
content-encoding: br
content-type: application/javascript
etag: "16af03cf134a042390c20240c4c8580c6a855f81d65e5f55e65313f1931e9183-br"
last-modified: Wed, 15 Jul 2020 22:46:44 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sat, 28 Jan 2023 04:59:40 GMT
x-served-by: cache-bma1630-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674881981.733083,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23597
X-Firefox-Spdy: h2
3.bp.blogspot.com/-SP_8wDAS-6c/UW2hjLQVoDI/AAAAAAAAAKg/i416fPwJwQQ/s72-c/WBPpVek.jpg
142.250.74.161200 OK 4.0 kB URL HTTP/2 3.bp.blogspot.com/-SP_8wDAS-6c/UW2hjLQVoDI/AAAAAAAAAKg/i416fPwJwQQ/s72-c/WBPpVek.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash df2ea908faa4c6ac223aed60a61668e3
afd8832c3b50e37bc7e791c4d6abb33894c63f2d
769bf15bf3de990d1585d937f1da9dd5bd6a1739defbf60db8bf983b7b4d825a
GET /-SP_8wDAS-6c/UW2hjLQVoDI/AAAAAAAAAKg/i416fPwJwQQ/s72-c/WBPpVek.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "va9"
expires: Sun, 29 Jan 2023 04:59:40 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="WBPpVek.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 28 Jan 2023 04:59:40 GMT
server: fife
content-length: 4007
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googledrive.com/host/0BzhmjN6UOoj5SWVPNUVwUWV4QUk
142.250.74.129404 Not Found 1.6 kB URL HTTP/1.1 googledrive.com/host/0BzhmjN6UOoj5SWVPNUVwUWV4QUk
IP 142.250.74.129:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 25bd75e92a6d3c667daaf88d81dfa03c
92186182f99a1ddf39da2d0a7de7ab44a6be4286
22c8fc6a622d89271bfc947f38c4d536de09273e1f13308e68ec912508ab6838
GET /host/0BzhmjN6UOoj5SWVPNUVwUWV4QUk HTTP/1.1
Host: googledrive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1594
Date: Sat, 28 Jan 2023 04:59:40 GMT
ocsp.pki.goog/s/gts1d4/WRTnsdHUkCI
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/WRTnsdHUkCI
IP 142.250.74.131:0
Hash 8f354d6f78714d9da1992057f89c3d90
890adaec781f89fdd55154f1a9b83075d1f6ef03
99914d99112ef2d7eaa79a92e27673e0c8fc0c9aed0135e919f79033cabbb418
POST /s/gts1d4/WRTnsdHUkCI HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:59:40 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7aa39f6d36d5f61782ab265b425647ef
08348416e84e3c36cdb8aad9a5b72070ce00d9b5
c595e935d3b4504f9b4518d98f50d4462a99627c17fd67a15f71d3f352510001
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googledrive.com/host/0BzhmjN6UOoj5RXgxQldMWU1GZ0k
142.250.74.129404 Not Found 1.6 kB URL HTTP/2 googledrive.com/host/0BzhmjN6UOoj5RXgxQldMWU1GZ0k
IP 142.250.74.129:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash c7788d0f362c8b43691ab0fa63bdfcf0
64931735df41dd70acd0796440f8a78612a49496
bb45183ad7de8c1c8368f61fb533bc51f375bd8104a0369b35b6cca83114138b
GET /host/0BzhmjN6UOoj5RXgxQldMWU1GZ0k HTTP/1.1
Host: googledrive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 1594
date: Sat, 28 Jan 2023 04:59:40 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img2.blogblog.com/img/icon18_edit_allbkg.gif
216.58.207.233200 OK 162 B URL HTTP/1.1 img2.blogblog.com/img/icon18_edit_allbkg.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: img2.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 162
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 22 Jan 2023 21:11:32 GMT
Expires: Sun, 29 Jan 2023 21:11:32 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 21 Jan 2023 21:51:07 GMT
Content-Type: image/gif
Age: 460088
1.bp.blogspot.com/-I-Jv4WQ5EAE/UVSLaw5XVoI/AAAAAAAAGPQ/0I8zfBerQgU/s72-c/20121015160832_TWI_Pressure_2_D_Box_Preliminary.jpg
142.250.74.161200 OK 4.9 kB URL HTTP/2 1.bp.blogspot.com/-I-Jv4WQ5EAE/UVSLaw5XVoI/AAAAAAAAGPQ/0I8zfBerQgU/s72-c/20121015160832_TWI_Pressure_2_D_Box_Preliminary.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash eef939acf5b25ea20de72b5af532f7de
670d6918b98d27480e937553096fcbb1dc23ef93
1d988848e6f6cba248c84ad4ccf1510628a6ad8ebc3f3fc88c673c6e77c9ed29
GET /-I-Jv4WQ5EAE/UVSLaw5XVoI/AAAAAAAAGPQ/0I8zfBerQgU/s72-c/20121015160832_TWI_Pressure_2_D_Box_Preliminary.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v18f6"
expires: Sun, 29 Jan 2023 04:59:40 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="20121015160832_TWI_Pressure_2_D_Box_Preliminary.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 28 Jan 2023 04:59:40 GMT
server: fife
content-length: 4883
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-Sj1BUjrH3Zw/URHQ9Xk7b_I/AAAAAAAAKis/AUkrNb_Wd5c/s72-c/Athens+2004+1.jpg
142.250.74.161200 OK 4.4 kB URL HTTP/2 4.bp.blogspot.com/-Sj1BUjrH3Zw/URHQ9Xk7b_I/AAAAAAAAKis/AUkrNb_Wd5c/s72-c/Athens+2004+1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 40aada2f49af43e3050eb3260146601f
62c0f723ea222f4a86c093e594e66b169081e952
3cbfc636a977177c33bbe6ee9f3d4567135e4ec09d78847c87a5557c40b2d4db
GET /-Sj1BUjrH3Zw/URHQ9Xk7b_I/AAAAAAAAKis/AUkrNb_Wd5c/s72-c/Athens+2004+1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v57c4"
expires: Sun, 29 Jan 2023 04:59:40 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Athens 2004 1.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 28 Jan 2023 04:59:40 GMT
server: fife
content-length: 4406
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/_aj6f5lJ5nMc/SqmTD6j6DlI/AAAAAAAABEg/-WbpDeSeCq4/s200/early_gui.jpg
142.250.74.161200 OK 10 kB URL HTTP/1.1 1.bp.blogspot.com/_aj6f5lJ5nMc/SqmTD6j6DlI/AAAAAAAABEg/-WbpDeSeCq4/s200/early_gui.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 200x150, components 3\012- data
Hash b32756fb8a11de2ccfd2feeee39275e3
385b904dbeb75f24f3b2f26bc0073fee73d7a083
ce15df2a92cb721b3e1faf99e41592bbeaf1fb3530491350b3606b523e8b625a
GET /_aj6f5lJ5nMc/SqmTD6j6DlI/AAAAAAAABEg/-WbpDeSeCq4/s200/early_gui.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v448"
Expires: Sun, 29 Jan 2023 04:59:40 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="early_gui.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:40 GMT
Server: fife
Content-Length: 10452
X-XSS-Protection: 0
1.bp.blogspot.com/-9qnLUkstkik/VZSvvZUJpqI/AAAAAAAAC2Q/QBg-XG1H2OQ/s72-c/FATAL%2BZERO%2BACTION_info-it8.jpg
142.250.74.161200 OK 4.4 kB URL HTTP/1.1 1.bp.blogspot.com/-9qnLUkstkik/VZSvvZUJpqI/AAAAAAAAC2Q/QBg-XG1H2OQ/s72-c/FATAL%2BZERO%2BACTION_info-it8.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 74c9cf38775565459e81bfcc76bad221
233f4fa94dce03b0ff9eaf9bed68cc77a84cd035
28c66660edc22b20a4ad9c77dafe71ca9faeb2746845fc97099f9ac4072dd35d
GET /-9qnLUkstkik/VZSvvZUJpqI/AAAAAAAAC2Q/QBg-XG1H2OQ/s72-c/FATAL%2BZERO%2BACTION_info-it8.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb64"
Expires: Sun, 29 Jan 2023 04:59:40 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="FATAL ZERO ACTION_info-it8.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:40 GMT
Server: fife
Content-Length: 4439
X-XSS-Protection: 0
4.bp.blogspot.com/_aj6f5lJ5nMc/SrQw5G2dMII/AAAAAAAABEo/Rsf0y7TwNJI/s200/3932991862_811e4e44ba_o.jpg
142.250.74.161200 OK 12 kB URL HTTP/1.1 4.bp.blogspot.com/_aj6f5lJ5nMc/SrQw5G2dMII/AAAAAAAABEo/Rsf0y7TwNJI/s200/3932991862_811e4e44ba_o.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 200x160, components 3\012- data
Hash 49c9efc9a7e7f148fd28a9e169ab5abe
a6146fcaae1ad19655ca21c247ba8f03a523fc43
6f49d66aa3e73f1c12ea8f4f8b836259478cb41605fc418a5a59fc5563f1aacf
GET /_aj6f5lJ5nMc/SrQw5G2dMII/AAAAAAAABEo/Rsf0y7TwNJI/s200/3932991862_811e4e44ba_o.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v44a"
Expires: Sun, 29 Jan 2023 04:59:40 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="3932991862_811e4e44ba_o.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:40 GMT
Server: fife
Content-Length: 11941
X-XSS-Protection: 0
4.bp.blogspot.com/-L--Deq52AmM/UL8wPgJch3I/AAAAAAAAAXY/CnLDylkFu-0/s72-c/1029687-city_life_2008.jpg
142.250.74.161200 OK 4.3 kB URL HTTP/2 4.bp.blogspot.com/-L--Deq52AmM/UL8wPgJch3I/AAAAAAAAAXY/CnLDylkFu-0/s72-c/1029687-city_life_2008.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 937bdee6803d57c489b867b5ac5b4774
ba36d0952bc0577e38bf62a998b80d3b2bccf93d
0e07d896cb44b3034d37d43e3d007248e3e398b9afa0a1e16cb7bda08ae1ff60
GET /-L--Deq52AmM/UL8wPgJch3I/AAAAAAAAAXY/CnLDylkFu-0/s72-c/1029687-city_life_2008.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v176"
expires: Sun, 29 Jan 2023 04:59:40 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="1029687-city_life_2008.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 28 Jan 2023 04:59:40 GMT
server: fife
content-length: 4321
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 04:41:40 GMT
age: 1080
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
2.bp.blogspot.com/-p85Iuo95AqA/VlBu5sTByqI/AAAAAAAADVA/_ulNfqPNW70/s72-c/DOOM%2B3%2BBFG%2BEdition_2_info-it8.jpg
142.250.74.161200 OK 3.4 kB URL HTTP/1.1 2.bp.blogspot.com/-p85Iuo95AqA/VlBu5sTByqI/AAAAAAAADVA/_ulNfqPNW70/s72-c/DOOM%2B3%2BBFG%2BEdition_2_info-it8.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 7b9bac5b85ae2fc7ba714e48ef421c16
57e3ee41abe70697cb8407e6e0bf948eeb5ecd30
e5373705c387f4185ac9ac2f3a5de03b39e1e4734e3afdda061b794bff4ed87c
GET /-p85Iuo95AqA/VlBu5sTByqI/AAAAAAAADVA/_ulNfqPNW70/s72-c/DOOM%2B3%2BBFG%2BEdition_2_info-it8.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vd50"
Expires: Sun, 29 Jan 2023 04:59:40 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DOOM 3 BFG Edition_2_info-it8.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:40 GMT
Server: fife
Content-Length: 3401
X-XSS-Protection: 0
www.linkwithin.com/widget.js
3.19.188.212404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP 3.19.188.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 28 Jan 2023 04:59:40 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
2.bp.blogspot.com/-pw1SB2Okt-I/T7tCzf3_FKI/AAAAAAAACSs/NW_Y0XaOFDo/s72-c/007.qos.jpg
142.250.74.161200 OK 2.7 kB URL HTTP/2 2.bp.blogspot.com/-pw1SB2Okt-I/T7tCzf3_FKI/AAAAAAAACSs/NW_Y0XaOFDo/s72-c/007.qos.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 1e68f027929a61d6728d5452886e5f3f
87e488ba7e26d97cc577567022b153aee727f0cb
a86977882b33ebb01398e26a9c4c6ae3b0da1954ecb78f00c3c6850861f64e3f
GET /-pw1SB2Okt-I/T7tCzf3_FKI/AAAAAAAACSs/NW_Y0XaOFDo/s72-c/007.qos.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v329a"
expires: Sun, 29 Jan 2023 04:59:40 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="007.qos.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 28 Jan 2023 04:59:40 GMT
server: fife
content-length: 2718
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 166bf2c6932f048996b3fe12e1cf3db9
9489d067ac8215775dda446a4c291e6db1e8ab3f
896314990eb656b725f8ec5d3753e70bf71e956c142a15b45773a77bb7d6ff24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/_f9t5ptMEGl4/TH7VWoTvdrI/AAAAAAAAD88/mz5eJlHnRTk/s72-c/Monsters,+Inc.+Scare+Island.jpg
142.250.74.161200 OK 4.7 kB URL HTTP/2 2.bp.blogspot.com/_f9t5ptMEGl4/TH7VWoTvdrI/AAAAAAAAD88/mz5eJlHnRTk/s72-c/Monsters,+Inc.+Scare+Island.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 714828f8c757c55a23765c5aee0d362b
e8d485815a244af4c7de3448b28ad70e566ce779
c5abb02c4a258bb24c6bddab707b8cf7cb4c8e5be4e11018bbaff6acac3d01f8
GET /_f9t5ptMEGl4/TH7VWoTvdrI/AAAAAAAAD88/mz5eJlHnRTk/s72-c/Monsters,+Inc.+Scare+Island.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1d4e"
expires: Sun, 29 Jan 2023 04:59:40 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Monsters, Inc. Scare Island.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 28 Jan 2023 04:59:40 GMT
server: fife
content-length: 4690
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.ggpht.com/-RhvwNjdUSNE/ToXoXgFPuKI/AAAAAAAAAuk/mMVhoZK6eNg/s72-c/Bloodlines%25255B2%25255D.jpg?imgmax=800
142.250.74.161404 Not Found 1.3 kB URL HTTP/1.1 lh3.ggpht.com/-RhvwNjdUSNE/ToXoXgFPuKI/AAAAAAAAAuk/mMVhoZK6eNg/s72-c/Bloodlines%25255B2%25255D.jpg?imgmax=800
IP 142.250.74.161:0
File type PNG image data, 800 x 800, 8-bit colormap, non-interlaced\012- data
Hash 42b4a3c445ab5d125834c7e12040dd22
092f42e95cc1ffcbb01fd71480c1f8964038065c
54b37900d66a5fe8e425174bc49158ba1649609f4fdea8385e6cfdc2dcdd0783
GET /-RhvwNjdUSNE/ToXoXgFPuKI/AAAAAAAAAuk/mMVhoZK6eNg/s72-c/Bloodlines%25255B2%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:40 GMT
Server: fife
Content-Length: 1312
X-XSS-Protection: 0
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.227200 OK 17 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ovigames.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 16740
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 18:46:46 GMT
Expires: Sat, 27 Jan 2024 18:46:46 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Aug 2022 18:14:44 GMT
Content-Type: font/woff2
Age: 36774
fonts.gstatic.com/s/varelaround/v19/w8gdH283Tvk__Lua32TysjIfp8uP.woff2
216.58.207.227200 OK 21 kB URL HTTP/1.1 fonts.gstatic.com/s/varelaround/v19/w8gdH283Tvk__Lua32TysjIfp8uP.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 20636, version 1.0\012- data
Hash ba24c7ff5ccbf9671acfdf235b22cfa5
62d7d22c5b0e55a3bdd80eb635238249f61ed12a
bcf86d95e543e9748b28362562cdbce0c7be01b48dd54191912e15f820daf4aa
GET /s/varelaround/v19/w8gdH283Tvk__Lua32TysjIfp8uP.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ovigames.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 20636
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 25 Jan 2023 21:03:09 GMT
Expires: Thu, 25 Jan 2024 21:03:09 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 15:30:15 GMT
Content-Type: font/woff2
Age: 201391
fonts.gstatic.com/s/oxygen/v15/2sDcZG1Wl4LcnbuCJW8zaGW5.woff2
216.58.207.227200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/oxygen/v15/2sDcZG1Wl4LcnbuCJW8zaGW5.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15792, version 1.0\012- data
Hash 94c3db6f7f5df851bc87a5bf309b9a89
986af9276cc364fe0b2a6801d4514fb3cd920cc3
c5c877b2f70eaa51b17f81150decd43027fec02788fec5719be6befb12af115f
GET /s/oxygen/v15/2sDcZG1Wl4LcnbuCJW8zaGW5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ovigames.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15792
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 05:56:08 GMT
Expires: Sat, 27 Jan 2024 05:56:08 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 09 May 2022 18:30:32 GMT
Content-Type: font/woff2
Age: 83012
www.linkwithin.com/pixel.png
3.19.188.212200 OK 83 B URL HTTP/1.1 www.linkwithin.com/pixel.png
IP 3.19.188.212:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash ca1dba98f5e46c0e7a1549b3d8af9b93
37284bda145ed93cee64997e3d6688cae7d98468
88021da4a13d993a2c94e4d8ddc9bd98b34985d806371e71e0531b37b8a0e081
GET /pixel.png HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 28 Jan 2023 04:59:40 GMT
Content-Type: image/png
Content-Length: 83
Last-Modified: Thu, 18 Jun 2020 22:02:28 GMT
Connection: keep-alive
ETag: "5eebe474-53"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
3.bp.blogspot.com/_aj6f5lJ5nMc/Sr4_a4UzVoI/AAAAAAAABFQ/v9CO4xUFlUc/s200/DH13955679536_bb1e2516ea.jpg
142.250.74.161200 OK 9.7 kB URL HTTP/1.1 3.bp.blogspot.com/_aj6f5lJ5nMc/Sr4_a4UzVoI/AAAAAAAABFQ/v9CO4xUFlUc/s200/DH13955679536_bb1e2516ea.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 200x112, components 3\012- data
Hash 584c61588ba89cd73871cb5da854975d
d37165438f0673e7112e58d253228d4f810625cb
3a4b79d12fcd64f82dc523fd60789d3d2700e2df64b4f697b7fee00356f9349d
GET /_aj6f5lJ5nMc/Sr4_a4UzVoI/AAAAAAAABFQ/v9CO4xUFlUc/s200/DH13955679536_bb1e2516ea.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v454"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DH13955679536_bb1e2516ea.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 9720
X-XSS-Protection: 0
4.bp.blogspot.com/_aj6f5lJ5nMc/SrRPKemYp4I/AAAAAAAABE4/kOM6QRvSHcg/s200/na3.png
142.250.74.161200 OK 3.1 kB URL HTTP/1.1 4.bp.blogspot.com/_aj6f5lJ5nMc/SrRPKemYp4I/AAAAAAAABE4/kOM6QRvSHcg/s200/na3.png
IP 142.250.74.161:0
File type PNG image data, 200 x 145, 8-bit/color RGB, non-interlaced\012- data
Hash 0939860c025459656b4cf0632b44ecee
ce0c5d631987098cd45c0d29df1fb33ff0dc4df7
eaa34371fd53ee7b7d09bed5273bb9ee5a407a05c5b949ee13573d472cd00e1b
GET /_aj6f5lJ5nMc/SrRPKemYp4I/AAAAAAAABE4/kOM6QRvSHcg/s200/na3.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v44e"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="na3.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 3130
X-XSS-Protection: 0
4.bp.blogspot.com/_aj6f5lJ5nMc/Sr5ALGAnLEI/AAAAAAAABFY/AeFs-nZhf-k/s200/DH23955679536_bb1e2516ea.jpg
142.250.74.161200 OK 11 kB URL HTTP/1.1 4.bp.blogspot.com/_aj6f5lJ5nMc/Sr5ALGAnLEI/AAAAAAAABFY/AeFs-nZhf-k/s200/DH23955679536_bb1e2516ea.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 200x112, components 3\012- data
Hash ba13be1b706a74a6f686a3a620048cc3
8218670b3d98150db558e49997c1bdb6aba48267
bcc302de67f18c8c17cd0f398e5f7cf28a19aef78137dd8a204714403abb0a28
GET /_aj6f5lJ5nMc/Sr5ALGAnLEI/AAAAAAAABFY/AeFs-nZhf-k/s200/DH23955679536_bb1e2516ea.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v456"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DH23955679536_bb1e2516ea.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 11130
X-XSS-Protection: 0
4.bp.blogspot.com/_aj6f5lJ5nMc/Sr-hFDYGl7I/AAAAAAAABFw/6XKZoeUKvZY/s200/latest_reactio_screenshot.png
142.250.74.161200 OK 10 kB URL HTTP/1.1 4.bp.blogspot.com/_aj6f5lJ5nMc/Sr-hFDYGl7I/AAAAAAAABFw/6XKZoeUKvZY/s200/latest_reactio_screenshot.png
IP 142.250.74.161:0
File type PNG image data, 200 x 137, 8-bit/color RGB, non-interlaced\012- data
Hash d1e450e0cee02cfef2471b3f0d8b5d56
d80da7f680c8ad6f8cb42f287d08a6f5ca1966ca
36c4c4baf5ad2bfb3c0e203cf21106ca4cf1df77802b7dde43aa8a377315145c
GET /_aj6f5lJ5nMc/Sr-hFDYGl7I/AAAAAAAABFw/6XKZoeUKvZY/s200/latest_reactio_screenshot.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v45c"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="latest_reactio_screenshot.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 10293
X-XSS-Protection: 0
2.bp.blogspot.com/_aj6f5lJ5nMc/Sr3q1m3EDeI/AAAAAAAABFA/rpoJ5C2pEn0/s200/huh2.jpg
142.250.74.161200 OK 17 kB URL HTTP/1.1 2.bp.blogspot.com/_aj6f5lJ5nMc/Sr3q1m3EDeI/AAAAAAAABFA/rpoJ5C2pEn0/s200/huh2.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 200x150, components 3\012- data
Hash 9498a5576f25482ab79a40228fe6b606
1501945700ae79851a940c40ce29586427f8263d
3df023aa8baeac85d718f94fef54f03432e09480cefcdbe4a43c0714eb792a5a
GET /_aj6f5lJ5nMc/Sr3q1m3EDeI/AAAAAAAABFA/rpoJ5C2pEn0/s200/huh2.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v450"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="huh2.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 17148
X-XSS-Protection: 0
3.bp.blogspot.com/_aj6f5lJ5nMc/Sr-gIpnv_BI/AAAAAAAABFo/sKHeEM6aA7Y/s200/latest_screenshot.png
142.250.74.161200 OK 30 kB URL HTTP/1.1 3.bp.blogspot.com/_aj6f5lJ5nMc/Sr-gIpnv_BI/AAAAAAAABFo/sKHeEM6aA7Y/s200/latest_screenshot.png
IP 142.250.74.161:0
File type PNG image data, 200 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash ceab45b33cb2635b3a54242649ad85d5
f57005ff64648838f3368332e973be35c018a661
a548c9ac821ba4d628b2f52136e0c8bb87e799ddb2dffd0aa73fd1667a4efc62
GET /_aj6f5lJ5nMc/Sr-gIpnv_BI/AAAAAAAABFo/sKHeEM6aA7Y/s200/latest_screenshot.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v45a"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="latest_screenshot.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 30292
X-XSS-Protection: 0
2.bp.blogspot.com/_aj6f5lJ5nMc/Sr6mBtib-YI/AAAAAAAABFg/D0njdKmRZ04/s200/yetiright.jpg
142.250.74.161200 OK 12 kB URL HTTP/1.1 2.bp.blogspot.com/_aj6f5lJ5nMc/Sr6mBtib-YI/AAAAAAAABFg/D0njdKmRZ04/s200/yetiright.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 200x150, components 3\012- data
Hash 43dcff72b987eed270b019a7df7bbfb2
0a626ab0adfa3c93f875bbbc3c323b2c78f4c2dd
10e05d23a15b9f90b29538edaa5b4084c8d334ea5615281ff5d61aace9af9251
GET /_aj6f5lJ5nMc/Sr6mBtib-YI/AAAAAAAABFg/D0njdKmRZ04/s200/yetiright.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v458"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="yetiright.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 12364
X-XSS-Protection: 0
maxcdn.bootstrapcdn.com/font-awesome/4.1.0/fonts/fontawesome-webfont.woff?v=4.1.0
104.18.10.207200 OK 84 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.1.0/fonts/fontawesome-webfont.woff?v=4.1.0
IP 104.18.10.207:0
File type Web Open Font Format, TrueType, length 83760, version 1.0\012- data
Hash fdf491ce5ff5b2da02708cd0e9864719
7f2f3c55c2de192387c351b995115f6b79e09173
66db52b456efe7e29cec11fa09421d03cb09e37ed1b567307ec0444fd605ce31
GET /font-awesome/4.1.0/fonts/fontawesome-webfont.woff?v=4.1.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ovigames.blogspot.com
Connection: keep-alive
Referer: http://maxcdn.bootstrapcdn.com/
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:59:41 GMT
Content-Type: font/woff
Content-Length: 83760
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "fdf491ce5ff5b2da02708cd0e9864719"
Last-Modified: Mon, 25 Jan 2021 22:04:53 GMT
CDN-CachedAt: 08/25/2022 04:48:59
CDN-ProxyVer: 1.02
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 860
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: 3856a2abbbdd8252c976403c9c331057
CDN-Cache: HIT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790728fcf935b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4769
Expires: Sat, 28 Jan 2023 06:19:10 GMT
Date: Sat, 28 Jan 2023 04:59:41 GMT
Connection: keep-alive
3.bp.blogspot.com/_aj6f5lJ5nMc/SrRNDcB751I/AAAAAAAABEw/7_lIdL0KOrM/s200/na2.png
142.250.74.161200 OK 5.8 kB URL HTTP/1.1 3.bp.blogspot.com/_aj6f5lJ5nMc/SrRNDcB751I/AAAAAAAABEw/7_lIdL0KOrM/s200/na2.png
IP 142.250.74.161:0
File type PNG image data, 200 x 124, 8-bit/color RGB, non-interlaced\012- data
Hash fd0021cddbf6949b9bbc01dafdd22634
fdb0107f1cf58a0aab27f24ae11b9f0223f83aa8
a5fe413881fad049ba4afdf428c1d4a9c720b8c3d1a581db8fe54887ded3568e
GET /_aj6f5lJ5nMc/SrRNDcB751I/AAAAAAAABEw/7_lIdL0KOrM/s200/na2.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v44c"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="na2.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 5783
X-XSS-Protection: 0
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
45.33.20.235200 OK 18 kB URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
IP 45.33.20.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (46372)
Hash 42044677349363d025bb3db2c8fbbc58
b7eef0232d5ddc9124e74bb048c094e024b1a7b3
38a8c79e497f050bbac0d7aae19859dcd4d1a4662b38eadd6baa508ed60c437f
NIDS Severity Alert suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09 HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Sat, 28 Jan 2023 04:59:41 GMT
content-type: text/html
transfer-encoding: chunked
content-encoding: gzip
connection: close
push.services.mozilla.com/
44.238.9.41101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.9.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MxJQHr3dxMQWsq5IlpySTA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1azxkkDYwdriWF1kEhNZnsueADY=
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
45.33.20.235200 OK 18 kB URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
IP 45.33.20.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (46372)
Hash 3fc67bc45575e595c96970872a9b8086
5a5066436abd6cb488b04cf209472472c5ad7e33
56aa0920876c1bc2ab92509b3611357cd210766c19925c5705252b6cf3a7f626
NIDS Severity Alert suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09 HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Sat, 28 Jan 2023 04:59:41 GMT
content-type: text/html
transfer-encoding: chunked
content-encoding: gzip
connection: close
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
45.33.20.235200 OK 18 kB URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
IP 45.33.20.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (46372)
Hash 4a7520f0fed07a2a9eb536be9e4efc8e
d43d8d36f497a4771cd26f84e93d1dbbaffacee3
6784480132154a4ebf111da7651926835044b5d6dd12784f80d87304503cc685
NIDS Severity Alert suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09 HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Sat, 28 Jan 2023 04:59:41 GMT
content-type: text/html
transfer-encoding: chunked
content-encoding: gzip
connection: close
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
45.33.20.235200 OK 18 kB URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
IP 45.33.20.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (46372)
Hash 69f579a5a1b89c4e67243318d488e71b
448e8453419d51268ff03ff84c9e0c2e3a96e334
974940ab4cb4d90680fe3b84ce3c4aea1d5cc487d7d6f07bb3580f38c873ae62
NIDS Severity Alert suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09 HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Sat, 28 Jan 2023 04:59:41 GMT
content-type: text/html
transfer-encoding: chunked
content-encoding: gzip
connection: close
ovigames.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=labelthumbs
172.217.21.161200 OK 35 kB URL HTTP/1.1 ovigames.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=labelthumbs
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (65518)
Hash e6419f71115631977c06cad5cb99c678
e80127d40a266155a697310b34d40307acd8377e
14cd2e5fb255490c2e98259e8db906697a60bb010dbb4290273d92c67bb51379
GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=labelthumbs HTTP/1.1
Host: ovigames.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/2009/09
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"06bc7a3b5e1d40fdb0a8da97752be20da832a6c310305811698f2d040499141c"
Date: Sat, 28 Jan 2023 04:59:41 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Sat, 28 Jan 2023 04:59:42 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 08 Nov 2022 02:15:37 GMT
Content-Encoding: gzip
Content-Length: 35183
X-Frame-Options: SAMEORIGIN
ovigames.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=cycleitems
172.217.21.161200 OK 35 kB URL HTTP/1.1 ovigames.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=cycleitems
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (65518)
Hash 21a135b8b12c23af67f3003d1726a3a8
91706bbd0440467b4eb47143589c27e44f4184a5
004c18675b7991c0f6bf659d9ed3f3f60796df5273219c87c9f9f104952356b6
GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=cycleitems HTTP/1.1
Host: ovigames.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/2009/09
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"06bc7a3b5e1d40fdb0a8da97752be20da832a6c310305811698f2d040499141c"
Date: Sat, 28 Jan 2023 04:59:41 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Sat, 28 Jan 2023 04:59:42 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 08 Nov 2022 02:15:37 GMT
Content-Encoding: gzip
Content-Length: 35182
X-Frame-Options: SAMEORIGIN
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
45.33.20.235200 OK 18 kB URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
IP 45.33.20.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (46372)
Hash 53a33faa892021ceb40966db752f4fef
bf9038b0eb63513ea7356c9e8497cf9d3dfd44ca
570be839a596eb270d00bc8ad61902016c7d57c7beb7387205f83bd65d98bd92
NIDS Severity Alert suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09 HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Sat, 28 Jan 2023 04:59:41 GMT
content-type: text/html
transfer-encoding: chunked
content-encoding: gzip
connection: close
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
45.33.20.235200 OK 18 kB URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
IP 45.33.20.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (46372)
Hash 558969d9e30126d6709476e750a2e188
3ca9e76614e1e180c85316d0262c7126764d5713
b067c4218a1894c1818465dac34993dfa0e11e6944c835350cdb4259e6344ebe
NIDS Severity Alert suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09 HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Sat, 28 Jan 2023 04:59:41 GMT
content-type: text/html
transfer-encoding: chunked
content-encoding: gzip
connection: close
2.bp.blogspot.com/-4Gb3pIJsG7A/VlaFUvVlshI/AAAAAAAADWo/LGuCbMZdalk/s1600/blur_info-it8.jpg
142.250.74.161200 OK 18 kB URL HTTP/1.1 2.bp.blogspot.com/-4Gb3pIJsG7A/VlaFUvVlshI/AAAAAAAADWo/LGuCbMZdalk/s1600/blur_info-it8.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 256x318, components 3\012- data
Hash 9fe737ec132925bf90ad13e3c2d97afb
96bcfd8d8d44d536ee70df3892f4b8a823bc1e76
03c87c3a5df1a8bddb2d6f93f8c2c13567a04c7fac9339c5c1190c9e2e3ea40e
GET /-4Gb3pIJsG7A/VlaFUvVlshI/AAAAAAAADWo/LGuCbMZdalk/s1600/blur_info-it8.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vd6a"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="blur_info-it8.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 18201
X-XSS-Protection: 0
4.bp.blogspot.com/-XN6IOfXQqhQ/VlaOuvhOOwI/AAAAAAAADXM/fzq2beY8gZg/s320/Blood_Stone_info-it8.jpg
142.250.74.161200 OK 36 kB URL HTTP/1.1 4.bp.blogspot.com/-XN6IOfXQqhQ/VlaOuvhOOwI/AAAAAAAADXM/fzq2beY8gZg/s320/Blood_Stone_info-it8.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 260x320, components 3\012- data
Hash ba948e51a72d4dd5df06c10188460bbb
6669e157f3179867040d2d5c4ac65d8c3be2be91
2381ef01454cb56642d33b476e4c499654664c6d6f9b0c91605c9d49dfb5eaf5
GET /-XN6IOfXQqhQ/VlaOuvhOOwI/AAAAAAAADXM/fzq2beY8gZg/s320/Blood_Stone_info-it8.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vd74"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Blood_Stone_info-it8.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 35506
X-XSS-Protection: 0
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
45.33.20.235200 OK 18 kB URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
IP 45.33.20.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (46372)
Hash 81273225002117642c3e444ef02a422e
a0d2cc91fac4c1e7a72a0cea01ac2bf282719bde
a93ab7617be967ef839f31e19b7d1e3f2f35cdb7a752ff9a4dfbfd7e88b613b3
NIDS Severity Alert suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09 HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Sat, 28 Jan 2023 04:59:41 GMT
content-type: text/html
transfer-encoding: chunked
content-encoding: gzip
connection: close
2.bp.blogspot.com/-p85Iuo95AqA/VlBu5sTByqI/AAAAAAAADVA/_ulNfqPNW70/s200/DOOM%2B3%2BBFG%2BEdition_2_info-it8.jpg
142.250.74.161200 OK 14 kB URL HTTP/1.1 2.bp.blogspot.com/-p85Iuo95AqA/VlBu5sTByqI/AAAAAAAADVA/_ulNfqPNW70/s200/DOOM%2B3%2BBFG%2BEdition_2_info-it8.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 150x200, components 3\012- data
Hash d9bff7130391792d6411eb382af31484
d78eca47f4b8397d6410b3f9338e5bbf211218fd
c57b4456ee8a50f0b9af42485a8e2b57fc346cfa4aba72a99638e1cd2a66196c
GET /-p85Iuo95AqA/VlBu5sTByqI/AAAAAAAADVA/_ulNfqPNW70/s200/DOOM%2B3%2BBFG%2BEdition_2_info-it8.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vd50"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DOOM 3 BFG Edition_2_info-it8.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 13535
X-XSS-Protection: 0
3.bp.blogspot.com/-K295mDkGgsc/VlB1mC5h1uI/AAAAAAAADVo/uvs3l63Zed4/s320/Dead%2BIsland%2BGame%2Bof%2Bthe%2BYear_info-it8.png
142.250.74.161200 OK 61 kB URL HTTP/1.1 3.bp.blogspot.com/-K295mDkGgsc/VlB1mC5h1uI/AAAAAAAADVo/uvs3l63Zed4/s320/Dead%2BIsland%2BGame%2Bof%2Bthe%2BYear_info-it8.png
IP 142.250.74.161:0
File type PNG image data, 227 x 320, 8-bit colormap, non-interlaced\012- data
Hash c4e8f6da4f4350b4c96f9273a3cfd551
94e0d7ee1fb359c719e88d44625b54a71388b985
70751002f5c0a187af32bee0ed08d9d8fa5a2e7a248c31281770a47fbdf866cf
GET /-K295mDkGgsc/VlB1mC5h1uI/AAAAAAAADVo/uvs3l63Zed4/s320/Dead%2BIsland%2BGame%2Bof%2Bthe%2BYear_info-it8.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vd5c"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Dead Island Game of the Year_info-it8.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 60935
X-XSS-Protection: 0
4.bp.blogspot.com/-BfDKHnVT0cc/VkgZ7a4N85I/AAAAAAAADUc/z__KBXOoJo8/s320/Deadisland-riptide-info-it8.jpg
142.250.74.161200 OK 38 kB URL HTTP/1.1 4.bp.blogspot.com/-BfDKHnVT0cc/VkgZ7a4N85I/AAAAAAAADUc/z__KBXOoJo8/s320/Deadisland-riptide-info-it8.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 226x320, components 3\012- data
Hash 4707fe0e258264e3bf110622c9f93151
ed95c9809d8fa0d828c7238b880ab2b326f01e93
61c85d8afa7ceabbc948584cedeec7900602f7d0bd742d7741f40d110af53b04
GET /-BfDKHnVT0cc/VkgZ7a4N85I/AAAAAAAADUc/z__KBXOoJo8/s320/Deadisland-riptide-info-it8.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vd48"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Deadisland-riptide-info-it8.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 38245
X-XSS-Protection: 0
1.bp.blogspot.com/-XX5-YBBZULk/VfPPnf3EmQI/AAAAAAAADNQ/kSNS5TS_3MQ/s1600/Tales%2Bfrom%2Bthe%2BBorderlands_info-it8.jpg
142.250.74.161200 OK 25 kB URL HTTP/1.1 1.bp.blogspot.com/-XX5-YBBZULk/VfPPnf3EmQI/AAAAAAAADNQ/kSNS5TS_3MQ/s1600/Tales%2Bfrom%2Bthe%2BBorderlands_info-it8.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 208x285, components 3\012- data
Hash 408296cec0a5612fb7d13dcccd99a585
7569dd80cf2756326cbb0c2adffd0cac5e0c318a
24c948a9f77f2b5372af23188976201e5e38909d4307c2d2ec25b35e1744f981
GET /-XX5-YBBZULk/VfPPnf3EmQI/AAAAAAAADNQ/kSNS5TS_3MQ/s1600/Tales%2Bfrom%2Bthe%2BBorderlands_info-it8.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vcd6"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Tales from the Borderlands_info-it8.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 24590
X-XSS-Protection: 0
2.bp.blogspot.com/-BZ7VnHP5wqQ/VkBj5zbqF-I/AAAAAAAABOQ/8jvjS3jr388/s400/123farming.jpg
142.250.74.161200 OK 40 kB URL HTTP/1.1 2.bp.blogspot.com/-BZ7VnHP5wqQ/VkBj5zbqF-I/AAAAAAAABOQ/8jvjS3jr388/s400/123farming.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x164, components 3\012- data
Hash 84ff38401582f3a70b9d51b1c5069827
b48940a9fdf6dbf5c44b26e1f847ca1fcee64e92
c3fb7d2e16c4c3d6edca4ba721209ff12aa45ca1c4dba043e69d771ade2c117d
GET /-BZ7VnHP5wqQ/VkBj5zbqF-I/AAAAAAAABOQ/8jvjS3jr388/s400/123farming.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4e5"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="123farming.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 39769
X-XSS-Protection: 0
3.bp.blogspot.com/-YNuynVWEDq8/VkBnyDDzUEI/AAAAAAAABOw/z39mD0tE8ng/s400/stranded-deep-11-700x393.jpg
142.250.74.161200 OK 29 kB URL HTTP/1.1 3.bp.blogspot.com/-YNuynVWEDq8/VkBnyDDzUEI/AAAAAAAABOw/z39mD0tE8ng/s400/stranded-deep-11-700x393.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x224, components 3\012- data
Hash 4c3cc9ab9af125fa875aa46bd847f17e
d1e5b877948f802c0096142385185bbeb0caf512
985e2d1480689cf1638f0754264c6dba0ad447fe287f724bd0ec6acbf5c7c39c
GET /-YNuynVWEDq8/VkBnyDDzUEI/AAAAAAAABOw/z39mD0tE8ng/s400/stranded-deep-11-700x393.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4ed"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="stranded-deep-11-700x393.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 29098
X-XSS-Protection: 0
1.bp.blogspot.com/-4A2INJdioN4/VhgyyufzkAI/AAAAAAAACKk/LEOSHZ9jnbU/s200/C0v.jpg
142.250.74.161200 OK 13 kB URL HTTP/1.1 1.bp.blogspot.com/-4A2INJdioN4/VhgyyufzkAI/AAAAAAAACKk/LEOSHZ9jnbU/s200/C0v.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 200x112, components 3\012- data
Hash edf00faf93b0a27b8789e6b112921f1b
032eabbc1ab0e2f070a17edca79b9cb3e8e94799
0f8deec7b72ae2823eae6f14038da2a4db291ac3f3c16c9c7c1d33fc68bb3ded
GET /-4A2INJdioN4/VhgyyufzkAI/AAAAAAAACKk/LEOSHZ9jnbU/s200/C0v.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v8ac"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="C0v.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 12642
X-XSS-Protection: 0
1.bp.blogspot.com/-Nc81kBrgn4g/VjltIrOfkqI/AAAAAAAAAyY/lpVazimoSNA/s320/The%2BLiving%2BDungeon%2Bilkom123.jpg
142.250.74.161200 OK 28 kB URL HTTP/1.1 1.bp.blogspot.com/-Nc81kBrgn4g/VjltIrOfkqI/AAAAAAAAAyY/lpVazimoSNA/s320/The%2BLiving%2BDungeon%2Bilkom123.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x150, components 3\012- data
Hash 9c8aff4ac5618db1284036ae992add36
e245b491288de8cc63dd61eec6e381bb3d33821b
df62cd1bd9c95ccf80133906e361ed5889847724e8965899c8ad80443a1f36e6
GET /-Nc81kBrgn4g/VjltIrOfkqI/AAAAAAAAAyY/lpVazimoSNA/s320/The%2BLiving%2BDungeon%2Bilkom123.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v327"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="The Living Dungeon ilkom123.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 28108
X-XSS-Protection: 0
3.bp.blogspot.com/-RFPuD_A_wF4/VkBb8kgKoFI/AAAAAAAABNQ/890KOcHCwjA/s400/microsoft-flight-simulator-x.jpg
142.250.74.161200 OK 58 kB URL HTTP/1.1 3.bp.blogspot.com/-RFPuD_A_wF4/VkBb8kgKoFI/AAAAAAAABNQ/890KOcHCwjA/s400/microsoft-flight-simulator-x.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x266, components 3\012- data
Hash fcb32a886eb36d014ce8bcca0538c32f
f19fcf2cd6bdd99e144441f027923926c1175d88
5e479f2f00cc8d24198a54e5b32b2b77fd40c9d25be62de0f98ca9a2ef447835
GET /-RFPuD_A_wF4/VkBb8kgKoFI/AAAAAAAABNQ/890KOcHCwjA/s400/microsoft-flight-simulator-x.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4d5"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="microsoft-flight-simulator-x.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 57901
X-XSS-Protection: 0
1.bp.blogspot.com/-UjRMKMtiroM/Vj2pXH4ntRI/AAAAAAAADUM/a0xI4MPIves/s320/need-for-speed-hot-pursuit-info-it8.jpg
142.250.74.161200 OK 38 kB URL HTTP/1.1 1.bp.blogspot.com/-UjRMKMtiroM/Vj2pXH4ntRI/AAAAAAAADUM/a0xI4MPIves/s320/need-for-speed-hot-pursuit-info-it8.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 239x320, components 3\012- data
Hash cd18d5b89df1af902fb67cb999973dd3
08a7c202a6a3d650045b2587be856d9add7eed38
2ec9a619a804100400623b8ced7bc18d3b8c1b7afdbf0f1cf8f579b29696cca6
GET /-UjRMKMtiroM/Vj2pXH4ntRI/AAAAAAAADUM/a0xI4MPIves/s320/need-for-speed-hot-pursuit-info-it8.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vd44"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="need-for-speed-hot-pursuit-info-it8.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 38501
X-XSS-Protection: 0
3.bp.blogspot.com/-jFl67xbxb-U/VaTu_iLhKXI/AAAAAAAAELA/JJpIBkoEkmE/s1600/Fort-Zombie-cover.jpg
142.250.74.161200 OK 28 kB URL HTTP/1.1 3.bp.blogspot.com/-jFl67xbxb-U/VaTu_iLhKXI/AAAAAAAAELA/JJpIBkoEkmE/s1600/Fort-Zombie-cover.jpg
IP 142.250.74.161:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 310x250, components 3\012- data
Hash 9cb20e39b8770433dc6681035348ceb9
2cabea9f656d4bdf75fe4be77b3baa214adc2a82
529275ade8dbdd9b821d57cca40f724d55719275048ed49cdc62c18edcadca0f
GET /-jFl67xbxb-U/VaTu_iLhKXI/AAAAAAAAELA/JJpIBkoEkmE/s1600/Fort-Zombie-cover.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v10b3"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Fort-Zombie-cover.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 27634
X-XSS-Protection: 0
3.bp.blogspot.com/-RcbJHyPdPoc/U-ZK7mbsaFI/AAAAAAAAAFM/z_RvOui4FzI/s1600/icon-play-64.png
142.250.74.161200 OK 1.1 kB URL HTTP/1.1 3.bp.blogspot.com/-RcbJHyPdPoc/U-ZK7mbsaFI/AAAAAAAAAFM/z_RvOui4FzI/s1600/icon-play-64.png
IP 142.250.74.161:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash a1c5f228df7d54192779fa11f9aa5062
a19feaece617b9f69d09f057cc2830a9e32719c4
95a84242dfee019880e9e424d1f770bb382c0b1e7ed46ee42b4a69d28ebb9b7c
GET /-RcbJHyPdPoc/U-ZK7mbsaFI/AAAAAAAAAFM/z_RvOui4FzI/s1600/icon-play-64.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v55"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="icon-play-64.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 1104
X-XSS-Protection: 0
1.bp.blogspot.com/-dgJTdc265ts/VDEYVCwYyaI/AAAAAAAAB2s/vISgnTd9bbA/s400/QqhXU.png
142.250.74.161200 OK 164 kB URL HTTP/1.1 1.bp.blogspot.com/-dgJTdc265ts/VDEYVCwYyaI/AAAAAAAAB2s/vISgnTd9bbA/s400/QqhXU.png
IP 142.250.74.161:0
File type PNG image data, 267 x 400, 8-bit/color RGB, non-interlaced\012- data
Size 164 kB (164531 bytes)
Hash 2bef89c70192d574000fdde0bb0c1f59
e9fdaaaaf342bcb5e5af4b18eafa1ab389a0acba
356a00c175b4a2c7f8eafb974ea2a89af54ac8fb23e46143fbfdee5b692d272d
GET /-dgJTdc265ts/VDEYVCwYyaI/AAAAAAAAB2s/vISgnTd9bbA/s400/QqhXU.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v76c"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="QqhXU.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 164531
X-XSS-Protection: 0
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
45.33.20.235200 OK 18 kB URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
IP 45.33.20.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (46372)
Hash 62e68779709c46f9c3fdfb178de19867
59beba0390f10b7b629bbcdab6ed5edbb9eaf196
bcf76feabc52fa52459e2396c9406bc157e4d1f4195ffaf818161632d6644d82
NIDS Severity Alert suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09 HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Sat, 28 Jan 2023 04:59:41 GMT
content-type: text/html
transfer-encoding: chunked
content-encoding: gzip
connection: close
www.linkwithin.com/widget.js
3.19.188.212404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP 3.19.188.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 28 Jan 2023 04:59:41 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
4.bp.blogspot.com/-XN6IOfXQqhQ/VlaOuvhOOwI/AAAAAAAADXM/fzq2beY8gZg/s72-c/Blood_Stone_info-it8.jpg
142.250.74.161200 OK 4.2 kB URL HTTP/1.1 4.bp.blogspot.com/-XN6IOfXQqhQ/VlaOuvhOOwI/AAAAAAAADXM/fzq2beY8gZg/s72-c/Blood_Stone_info-it8.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 0016c2880e3d4d38d3ef6396087e827c
57888a48902d3f848700ee9a0488981153c3c1cd
5fbce264f299bb93a9e4ec17a17c04300a44950c3fb3b395111f1c9820a3a208
GET /-XN6IOfXQqhQ/VlaOuvhOOwI/AAAAAAAADXM/fzq2beY8gZg/s72-c/Blood_Stone_info-it8.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vd74"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Blood_Stone_info-it8.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 4195
X-XSS-Protection: 0
3.bp.blogspot.com/-K295mDkGgsc/VlB1mC5h1uI/AAAAAAAADVo/uvs3l63Zed4/s72-c/Dead%2BIsland%2BGame%2Bof%2Bthe%2BYear_info-it8.png
142.250.74.161200 OK 6.1 kB URL HTTP/1.1 3.bp.blogspot.com/-K295mDkGgsc/VlB1mC5h1uI/AAAAAAAADVo/uvs3l63Zed4/s72-c/Dead%2BIsland%2BGame%2Bof%2Bthe%2BYear_info-it8.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Hash ee76135ffe3b4256c60e21cecbb5490c
75bc34693b8fb602f5418b53d21c925784f7bbca
44254703f44008cdcd1708e183fba15f78924d84f41aab99a2ea7b3f47699a75
GET /-K295mDkGgsc/VlB1mC5h1uI/AAAAAAAADVo/uvs3l63Zed4/s72-c/Dead%2BIsland%2BGame%2Bof%2Bthe%2BYear_info-it8.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vd5c"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Dead Island Game of the Year_info-it8.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 6111
X-XSS-Protection: 0
2.bp.blogspot.com/-4Gb3pIJsG7A/VlaFUvVlshI/AAAAAAAADWo/LGuCbMZdalk/s72-c/blur_info-it8.jpg
142.250.74.161200 OK 4.5 kB URL HTTP/1.1 2.bp.blogspot.com/-4Gb3pIJsG7A/VlaFUvVlshI/AAAAAAAADWo/LGuCbMZdalk/s72-c/blur_info-it8.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash ffa596c4dac09809762338e18d6eff5c
9f25b78d64a3fcb4f9876dbf08da825a0cb7e46b
8fa09b91b4c56a2f2232d70b759085f9bde7b2e0aee4927e4b86cec7fc7450fe
GET /-4Gb3pIJsG7A/VlaFUvVlshI/AAAAAAAADWo/LGuCbMZdalk/s72-c/blur_info-it8.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vd6a"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="blur_info-it8.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 4520
X-XSS-Protection: 0
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
45.33.20.235200 OK 18 kB URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
IP 45.33.20.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (46372)
Hash 1023b44e49c0ff2448adfd31096ac609
2ea2c805e8cb1376868d2a7781de4681fde356d2
e44542f1fda4821b1db18574dad9631f712a5e41f5432c79397a41e84aeb9ded
NIDS Severity Alert suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09 HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Sat, 28 Jan 2023 04:59:41 GMT
content-type: text/html
transfer-encoding: chunked
content-encoding: gzip
connection: close
1.bp.blogspot.com/-OSZdyEL7gAg/U-ZK7sYfqNI/AAAAAAAAAFQ/tt0EgrOj1w4/s1600/hori-bg.png
142.250.74.161200 OK 306 B URL HTTP/1.1 1.bp.blogspot.com/-OSZdyEL7gAg/U-ZK7sYfqNI/AAAAAAAAAFQ/tt0EgrOj1w4/s1600/hori-bg.png
IP 142.250.74.161:0
File type PNG image data, 195 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash fa5df9502c1c30bccdb6dceae3a3fa56
058a3fe617c53653ccabb84c2f7fadb5ee1911d4
441b0c95ed9a7589e124c1413fa9ee7c7d8bf3a1c9d04c9d4ab0392e3b7c94d6
GET /-OSZdyEL7gAg/U-ZK7sYfqNI/AAAAAAAAAFQ/tt0EgrOj1w4/s1600/hori-bg.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v56"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="hori-bg.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 306
X-XSS-Protection: 0
1.bp.blogspot.com/-KEAV9iYYNh0/VjrTS_qYV7I/AAAAAAAAA1g/TZ4mjxGu7Ks/s400/FIFA%2B16%2BSuper%2BDeluxe%2Bilkom123.blogspot.com.jpg
142.250.74.161200 OK 224 kB URL HTTP/1.1 1.bp.blogspot.com/-KEAV9iYYNh0/VjrTS_qYV7I/AAAAAAAAA1g/TZ4mjxGu7Ks/s400/FIFA%2B16%2BSuper%2BDeluxe%2Bilkom123.blogspot.com.jpg
IP 142.250.74.161:0
File type PNG image data, 316 x 400, 8-bit/color RGB, non-interlaced\012- data
Size 224 kB (224039 bytes)
Hash 7858ca822c3e38856fdf4720c5c20d86
a56c5a2694356b5bcf7306994a71d070a8f73d1c
c97ad81651fd9d2b2e764a5e9a9d5ed423f9d36abcd9b63afad9f3787e383e34
GET /-KEAV9iYYNh0/VjrTS_qYV7I/AAAAAAAAA1g/TZ4mjxGu7Ks/s400/FIFA%2B16%2BSuper%2BDeluxe%2Bilkom123.blogspot.com.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v359"
Expires: Sun, 29 Jan 2023 04:59:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="FIFA 16 Super Deluxe ilkom123.blogspot.com.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 04:59:41 GMT
Server: fife
Content-Length: 224039
X-XSS-Protection: 0
googledrive.com/host/0BzhmjN6UOoj5SWVPNUVwUWV4QUk
142.250.74.129404 Not Found 1.6 kB URL HTTP/1.1 googledrive.com/host/0BzhmjN6UOoj5SWVPNUVwUWV4QUk
IP 142.250.74.129:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 25bd75e92a6d3c667daaf88d81dfa03c
92186182f99a1ddf39da2d0a7de7ab44a6be4286
22c8fc6a622d89271bfc947f38c4d536de09273e1f13308e68ec912508ab6838
GET /host/0BzhmjN6UOoj5SWVPNUVwUWV4QUk HTTP/1.1
Host: googledrive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1594
Date: Sat, 28 Jan 2023 04:59:42 GMT
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
45.33.20.235200 OK 18 kB URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09
IP 45.33.20.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (46372)
Hash 585b34ebb5923ee6bc2bd578a819fc60
7c7b9553fad1966545e936cc9b0de93e90d0702a
23c34f0df33d8ce862d5d6650203914f83b5afc89e7093af1bf7c3c82e155aff
NIDS Severity Alert suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fovigames.blogspot.com%2F2009%2F09 HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Sat, 28 Jan 2023 04:59:41 GMT
content-type: text/html
transfer-encoding: chunked
content-encoding: gzip
connection: close
c1.popads.net/pop.js
185.76.9.15200 OK 9.9 kB IP 185.76.9.15:0
ASN #60068 Datacamp Limited
File type HTML document, ASCII text, with very long lines (1568), with CRLF line terminators
Hash d2f092c2525456135a6412df048cb9e1
73d6962cb750fd9cc5a06ac6db82718c90bd6296
4ff692ff710346275b517e846bdaf0df85bc82f25484ecc6954b5462e98caf9e
GET /pop.js HTTP/1.1
Host: c1.popads.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:59:42 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
alt-svc: quic="185.76.9.13:443"; ma=2592000; v="44,43,39"
Last-Modified: Sun, 03 Jul 2022 20:49:14 GMT
ETag: W/"62c200ca-7b48"
Access-Control-Allow-Origin: *
X-Accel-Expires: @1675544508
Server: CDN77-Turbo
X-77-NZT: AblMCQ1OLlz/ArYFAA
X-77-NZT-Ray: c0a4cc28e14aae2bbeabd4638e3cb004
X-Cache: HIT
X-Age: 374274
X-77-POP: stockholmSE
X-77-Cache: HIT
Content-Encoding: gzip
connect.facebook.net/en_US/all.js
157.240.200.14301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP 157.240.200.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/all.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Sat, 28 Jan 2023 04:59:42 GMT
Connection: keep-alive
Content-Length: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b10c572a58f34d8fb28433f25bb9c885
8bc11baa4e367bfcf8738f28000a3befc9866cc8
678014c585151112a3bd14158afd8509eeec3d4bad3117d6ccd9ecaa109107bc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3997
Cache-Control: max-age=104497
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:59:42 GMT
Etag: "63d39152-1d7"
Expires: Sun, 29 Jan 2023 10:01:19 GMT
Last-Modified: Fri, 27 Jan 2023 08:54:42 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ovigames.blogspot.com/favicon.ico
172.217.21.161200 OK 359 B URL HTTP/1.1 ovigames.blogspot.com/favicon.ico
IP 172.217.21.161:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 82276d41e67455f0af1026ba307128b2
8c6222553ee8c85d9426cd49c64218e9290e1c4f
a683e8116ef564ac9feba2c2b1fb6323698167129cdbae954358435f30985512
GET /favicon.ico HTTP/1.1
Host: ovigames.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/2009/09
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Sat, 28 Jan 2023 04:59:42 GMT
Date: Sat, 28 Jan 2023 04:59:42 GMT
Cache-Control: private, max-age=86400
Last-Modified: Tue, 08 Nov 2022 02:15:37 GMT
ETag: W/"e823d1eeaf9a4aa1b6d4c49a204c6ed7a5dc1a9a4d1aeef8bd6d1e061aa7a9ad"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 359
Server: GSE
connect.facebook.net/en_US/all.js
157.240.200.14200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/all.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1957)
Hash 977dad7885ff294578dbc4976eab119a
91b7e36ddc29d9cda37de6e55a2d9adaef5d64d9
f4cc4e666f4464e40cf0dbfa5069f16c35b7cefa69038ab9b6241f94e9d9a53f
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ovigames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 90a23b801d6ce9fcd026610f4f1c8207
etag: "7955375efa2d8390d15a767404146505"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 28 Jan 2023 05:11:33 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: l32teIX/KUV428SXbqsRmg==
x-fb-debug: cK6q8jFIYYxP1nCjnDAIpe1xWiRNKjPHgFxnqsg8nz+99I9Gbm/hy8nrkY/CQfbuujj8i7DL4yQAQE5lV5YLmA==
priority: u=3,i
content-length: 1689
x-fb-trip-id: 1679558926
date: Sat, 28 Jan 2023 04:59:42 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b10c572a58f34d8fb28433f25bb9c885
8bc11baa4e367bfcf8738f28000a3befc9866cc8
678014c585151112a3bd14158afd8509eeec3d4bad3117d6ccd9ecaa109107bc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3997
Cache-Control: max-age=104497
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:59:42 GMT
Etag: "63d39152-1d7"
Expires: Sun, 29 Jan 2023 10:01:19 GMT
Last-Modified: Fri, 27 Jan 2023 08:54:42 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/s/gts1d4int/v_VQG5OMB60
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4int/v_VQG5OMB60
IP 142.250.74.131:0
Hash fe0371c8277f47d3a254034348cc64f3
b1534856701c882e042a3161fb36c6a5d1d221aa
9d11251bc40f78b6a52b5db9d557a8b2abc12d467ab49c82b1b17318004947ab
POST /s/gts1d4int/v_VQG5OMB60 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:59:42 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.adsco.re/
104.17.166.186200 OK 30 kB IP 104.17.166.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (689)
Hash 815ef37110ac6b63648f05ba53184bee
bebecd11757b35c25edcbb317a4c54c5c8d23697
36bf07548480e148703dd77a427ddd38209b3a2c5f805ca04e563d5d3bef1a1f
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:59:42 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=2678400
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Permissions-Policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
Link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
Expires: Tue, 28 Feb 2023 04:59:42 GMT
ETag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 2271944
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790729059e29fac4-OSL
alt-svc: h2=":443"; ma=60
6.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://ovigames.blogspot.com
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:59:42 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: http://ovigames.blogspot.com
Cache-Control: private, max-age=10
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Max-Age: 2592000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79072905cffab503-OSL
alt-svc: h2=":443"; ma=60
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://ovigames.blogspot.com
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:59:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: http://ovigames.blogspot.com
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e517537aac970652caf496177313c20b
ef5b281b9e4d8a39eeaa6c3fb331d4b28d081ab7
ac56e1b45c26e17634c41651b75da3d66e752cf51dfb536a6f258261f1e8ed61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC56E1B45C26E17634C41651B75DA3D66E752CF51DFB536A6F258261F1E8ED61"
Last-Modified: Thu, 26 Jan 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2481
Expires: Sat, 28 Jan 2023 05:41:03 GMT
Date: Sat, 28 Jan 2023 04:59:42 GMT
Connection: keep-alive
mybloggertricks.firebaseio.com/.ws?v=5
34.120.160.131101 Switching Protocols 0 B URL HTTP/1.1 mybloggertricks.firebaseio.com/.ws?v=5
IP 34.120.160.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /.ws?v=5 HTTP/1.1
Host: mybloggertricks.firebaseio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://ovigames.blogspot.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 95r1tbzhdgpiuCbBuJCpPw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sat, 28 Jan 2023 04:59:42 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: t4eFi7/5aOSBfHm8eyEM7krZAxI=
Strict-Transport-Security: max-age=31556926; includeSubDomains; preload
8oho5bnzvb5x.l4.adsco.re/
185.200.118.90200 OK 0 B URL HTTP/1.1 8oho5bnzvb5x.l4.adsco.re/
IP 185.200.118.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 8oho5bnzvb5x.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://ovigames.blogspot.com
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:59:42 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Tue, 31 Jul 2018 22:16:15 GMT
Connection: close
ETag: "5b60dfaf-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
6.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Moz: prefetch
Connection: keep-alive
Referer: http://c.adsco.re/
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:59:42 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=10
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Max-Age: 2592000
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790729070cc7b4f3-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19910
Expires: Sat, 28 Jan 2023 10:31:32 GMT
Date: Sat, 28 Jan 2023 04:59:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19910
Expires: Sat, 28 Jan 2023 10:31:32 GMT
Date: Sat, 28 Jan 2023 04:59:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19910
Expires: Sat, 28 Jan 2023 10:31:32 GMT
Date: Sat, 28 Jan 2023 04:59:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19910
Expires: Sat, 28 Jan 2023 10:31:32 GMT
Date: Sat, 28 Jan 2023 04:59:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb319f83c-740d-415f-b846-a8262bdecebc.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb319f83c-740d-415f-b846-a8262bdecebc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 50175d32bf658166ca26db1633fdb95b
69bb6d345d73cd24fd33ad009cc1d3315e7d94e7
d3d3b551cc8b557a1f92a4d819cbb7ab618ef3fac9568f57513fb4905817dad4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb319f83c-740d-415f-b846-a8262bdecebc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5092
x-amzn-requestid: 05cd1dc0-54b4-457a-83f6-5f774e65766f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwH_toAMFweQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-3a038caa6435720711028ac9;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: l6UFb5XNFyRi0hzKaoGw6iYSZ_b388GByLdSaWkhoEUers4I6Ji9Jg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:48:58 GMT
age: 25844
etag: "69bb6d345d73cd24fd33ad009cc1d3315e7d94e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 97118e74a8f60620950e42a11c11d71b
d144bbb82392a6103810ac9baa5346ddbefb5c16
2ce0c9696cf9842243186e86bae28c22896a9f51837f4961b6c7e3cfdfb24bd0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3774
x-amzn-requestid: deae2f1e-baec-408c-92a7-4859d4afed47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-EgFAgoAMFXRQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b6-32a2ff1a369e7b5f41ecbabd;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UYb0x8jVdY5lPTL7paxqk8J2gDYs4Hn27fAtzxJ3CapnyWOHulqy4g==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:49:09 GMT
age: 25833
etag: "d144bbb82392a6103810ac9baa5346ddbefb5c16"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d04b173ecc22c619998bda87a8f9ce70
9e3c3ac1b5a8a5fcee6d1b0db1a61b71948d5fe5
c30fbd2807e36b637bd1382a955c34abb4fe88b99173692530d288fff0986896
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8739
x-amzn-requestid: 591edd56-d422-459f-8934-532106be7e90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_quGvkoAMFWQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44644-5bda946b19b8abc54d324bab;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:46:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yAWADPixWRJsEV9OqvunQGhVHlobpluc-VwHlhq1psEwNh_ignw-dQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:03:05 GMT
etag: "9e3c3ac1b5a8a5fcee6d1b0db1a61b71948d5fe5"
content-type: image/jpeg
age: 24997
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 940946e65210c717266c3a64751f1b72
f0e66aeef0c72865d565f48b563f66a184b758a9
1d031b8a530a1e6d84d79fae891f023e1ab7646596c00c57d83cfffce1f6fdf5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5742
x-amzn-requestid: b22fd8a5-eefc-494e-a304-75b69eef069d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPFr2GsdoAMFpqw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8318-69b5e7c726fa92134d08c775;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:04:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xBpEdVPmvtXlsyGTvZCkIahK7_Ivhq4yswhw23ixIOH1zlgWPyLH9Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 04:39:18 GMT
age: 1224
etag: "f0e66aeef0c72865d565f48b563f66a184b758a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:14:23 GMT
age: 24319
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 25376
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8df27b7a601d90962a00b17e8fdd5ccb
ffe1dd64e769cdf09bd86ce6318604b278af8a41
7d2cad32154d5fafced5b5b9dd83420ae4d6dd04006f0b08957139aeaee0b8b2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D2CAD32154D5FAFCED5B5B9DD83420AE4D6DD04006F0B08957139AEAEE0B8B2"
Last-Modified: Thu, 26 Jan 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2499
Expires: Sat, 28 Jan 2023 05:41:21 GMT
Date: Sat, 28 Jan 2023 04:59:42 GMT
Connection: keep-alive
8oho5bnzvb5x.n4.adsco.re/
38.132.109.186200 OK 0 B URL HTTP/1.1 8oho5bnzvb5x.n4.adsco.re/
IP 38.132.109.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 8oho5bnzvb5x.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://ovigames.blogspot.com
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:59:42 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
adsco.re/p
162.252.214.5200 OK 410 B IP 162.252.214.5:0
File type ASCII text, with very long lines (487), with no line terminators
Hash a32b7db467c4af30690985409df27810
14c8789533b1aae7adb34210b6edc502af74c633
2027e23e4994f6d7e09d8d1854963c990510e0f7ed7804f294640d21debeaf4e
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 2412
Origin: http://ovigames.blogspot.com
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:59:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Access-Control-Allow-Origin: http://ovigames.blogspot.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 97c8f853674aa4f46349f987349cda66
2dfd92125cb118d935441270547cc0524fec1b55
e452852b1ed2b4fa6e2575a00142ecce9a52104b4d327d78a00de3b3991beeb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E452852B1ED2B4FA6E2575A00142ECCE9A52104B4D327D78A00DE3B3991BEEB8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5943
Expires: Sat, 28 Jan 2023 06:38:46 GMT
Date: Sat, 28 Jan 2023 04:59:43 GMT
Connection: keep-alive
serve.popads.net/c?_=BQFiAAAAAAAACZUAAqS9q1hGRDkAM3JcjOaACWQ3osmTpVdu1l1mVKD1DMR3JZS5qo5kFjw6o02vp4HUYvBdcTDrRKp_-MhZ7Dj_UR3woKUwz5HYus_VkP06l6M-iQtfQCBke0w3OgNevKqhDp31SeKkjbrIfq_OE3WOgTxVS2jAh4QMr1v3_6Hac7w5P3VZIvnPPwIKwgEDOI72OcCAYta4vQUaHNFX3r-eDLbAmF181-YVtEauu7xcZoWBn7QwG_84it0C_zC4vJ9VT_vPbzHDPEHediN7ZCnSGqAzXXNvbR1usY2C3I63HSLjYyFjWaQt6-josraf5oayvZcfcK3WLRryQxjTr_HpZUNhnFVtCmq3LqCmLIOKSz51A_WojgEvm33qjxWpWuGD0roavf6Zxot8_Uu97KBcTr3HvNMve-IAZqW8ALXRBryU_O8FF06ExBB_9XyLZjvtCPhO74rbmBVz2zIuK5iZQO8&v=4&siteId=210058&minBid=&popundersPerIP=0,0&blockedCountries=&documentRef=&s=1280,1024,1,1280,1024,0
216.21.13.16200 OK 44 B URL HTTP/1.1 serve.popads.net/c?_=BQFiAAAAAAAACZUAAqS9q1hGRDkAM3JcjOaACWQ3osmTpVdu1l1mVKD1DMR3JZS5qo5kFjw6o02vp4HUYvBdcTDrRKp_-MhZ7Dj_UR3woKUwz5HYus_VkP06l6M-iQtfQCBke0w3OgNevKqhDp31SeKkjbrIfq_OE3WOgTxVS2jAh4QMr1v3_6Hac7w5P3VZIvnPPwIKwgEDOI72OcCAYta4vQUaHNFX3r-eDLbAmF181-YVtEauu7xcZoWBn7QwG_84it0C_zC4vJ9VT_vPbzHDPEHediN7ZCnSGqAzXXNvbR1usY2C3I63HSLjYyFjWaQt6-josraf5oayvZcfcK3WLRryQxjTr_HpZUNhnFVtCmq3LqCmLIOKSz51A_WojgEvm33qjxWpWuGD0roavf6Zxot8_Uu97KBcTr3HvNMve-IAZqW8ALXRBryU_O8FF06ExBB_9XyLZjvtCPhO74rbmBVz2zIuK5iZQO8&v=4&siteId=210058&minBid=&popundersPerIP=0,0&blockedCountries=&documentRef=&s=1280,1024,1,1280,1024,0
IP 216.21.13.16:0
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /c?_=BQFiAAAAAAAACZUAAqS9q1hGRDkAM3JcjOaACWQ3osmTpVdu1l1mVKD1DMR3JZS5qo5kFjw6o02vp4HUYvBdcTDrRKp_-MhZ7Dj_UR3woKUwz5HYus_VkP06l6M-iQtfQCBke0w3OgNevKqhDp31SeKkjbrIfq_OE3WOgTxVS2jAh4QMr1v3_6Hac7w5P3VZIvnPPwIKwgEDOI72OcCAYta4vQUaHNFX3r-eDLbAmF181-YVtEauu7xcZoWBn7QwG_84it0C_zC4vJ9VT_vPbzHDPEHediN7ZCnSGqAzXXNvbR1usY2C3I63HSLjYyFjWaQt6-josraf5oayvZcfcK3WLRryQxjTr_HpZUNhnFVtCmq3LqCmLIOKSz51A_WojgEvm33qjxWpWuGD0roavf6Zxot8_Uu97KBcTr3HvNMve-IAZqW8ALXRBryU_O8FF06ExBB_9XyLZjvtCPhO74rbmBVz2zIuK5iZQO8&v=4&siteId=210058&minBid=&popundersPerIP=0,0&blockedCountries=&documentRef=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: serve.popads.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Sat, 28 Jan 2023 04:59:43 GMT
8oho5bnzvb5x.s4.adsco.re/
185.200.116.90200 OK 0 B URL HTTP/1.1 8oho5bnzvb5x.s4.adsco.re/
IP 185.200.116.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 8oho5bnzvb5x.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://ovigames.blogspot.com
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:59:43 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d9747a7-0b4d-40bd-8d53-7702f8df2966.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d9747a7-0b4d-40bd-8d53-7702f8df2966.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25fd26625a6c5339389faf4f6aa8fc6a
05aed76d3966ea8a02d4bbbeff7b41c8a5aac907
9a29ad65cb7a8632a2c454a4caeb43a10c5152ccf3dbab22d584276bdeeb0dbb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d9747a7-0b4d-40bd-8d53-7702f8df2966.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5746
x-amzn-requestid: 8ab00078-cdf9-465a-a493-64a488c9e634
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwEIJIAMFutA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-3f9b5f031812e32f6625f1e6;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jUVP5rlieH6mUh_fgVz4D636AIMAo2JXJqBgzGSI_CyY2-8Pza4IKw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:48:58 GMT
age: 25851
etag: "05aed76d3966ea8a02d4bbbeff7b41c8a5aac907"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/1253685842-widgets.js
216.58.207.233200 OK 0 B URL HTTP/2 www.blogger.com/static/v1/widgets/1253685842-widgets.js
IP 216.58.207.233:0
GET /static/v1/widgets/1253685842-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 156311
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 01:57:07 GMT
expires: Tue, 23 Jan 2024 01:57:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 00:54:53 GMT
content-type: text/javascript
age: 442953
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c.adsco.re/
104.17.166.186200 OK 0 B IP 104.17.166.186:0
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ovigames.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:59:42 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Tue, 28 Feb 2023 04:59:42 GMT
etag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
cf-cache-status: HIT
age: 2271943
vary: Accept-Encoding
server: cloudflare
cf-ray: 79072904d8ddb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
index.piratemovieofc.workers.dev/0:/The.Last.of.Us.Part.ll.zip
172.67.208.43200 OK 0 B URL HTTP/1.1 index.piratemovieofc.workers.dev/0:/The.Last.of.Us.Part.ll.zip
IP 172.67.208.43:0
GET /0:/The.Last.of.Us.Part.ll.zip HTTP/1.1
Host: index.piratemovieofc.workers.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:59:42 GMT
Content-Type: application/zip
Content-Length: 27162744678
Connection: keep-alive
CF-Ray: 790728fddd72fab8-OSL
Cache-Control: private, max-age=0, must-revalidate
Content-Disposition: attachment
Expires: Sat, 28 Jan 2023 04:59:42 GMT
Vary: Origin, X-Origin, Accept-Encoding
CF-Cache-Status: DYNAMIC
Alt-Svc: h2=":443"; ma=60
X-Goog-Hash: crc32c=hSzcFg==
X-GUploader-UploadID: ADPycdvGqZDFtKxMPppjXJYSzzESxNl6bTM108tMmZW_MU1KmhIq2QN1L745KRktJU2qXx_FI6bnf2C2yTihaoZxP_-0S_XWpLMh
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nlTgqiFY8VNV55Cgx7Pw1iDRNCIyndru%2BdG9M8IO6SyQ2JoR7wEP5JxsE71CdLC4iSRqCUoNiHB85ECLZJoEk3v3ZacTgAAO6b2fHOey2zaMSqz%2BHNogNb%2FOKUTHY8DmA%2Fk7usLsLoKj69LuaLeBiWqSxA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare