galvsgames.blogspot.com.br/2012/08/adobe-photoshop-software-cs6.html'
172.217.21.161302 Moved Temporarily 217 B URL HTTP/1.1 galvsgames.blogspot.com.br/2012/08/adobe-photoshop-software-cs6.html'
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 7378b29845763732681fd3455383d414
5e80d722c8582c9d1491f5e63161267076c290b7
2aaf20a8c09b9809d8e0992ea13251a648b04aa808b5096dddf25f994a48cf9e
GET /2012/08/adobe-photoshop-software-cs6.html' HTTP/1.1
Host: galvsgames.blogspot.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://galvsgames.blogspot.com/2012/08/adobe-photoshop-software-cs6.html'
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 06 Jan 2023 23:58:29 GMT
Expires: Fri, 06 Jan 2023 23:58:29 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 217
Server: GSE
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 326898eb925368408f6f42ee173b9d89
b8b20ee34b7e7b139e7729b8e46a54ea25f54ac8
96c2c75f700ab55649882111713ca3cfb2eaf08e404c2bc245a641dc12ae168a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96C2C75F700AB55649882111713CA3CFB2EAF08E404C2BC245A641DC12AE168A"
Last-Modified: Wed, 04 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6491
Expires: Sat, 07 Jan 2023 01:46:40 GMT
Date: Fri, 06 Jan 2023 23:58:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ce8af3d72e7e9af609039abee59c8b87
8e1b16591fbc632df35f15e23da55ee86af31bc3
52edddbda4a3a3b778f61a491b21e6ea439e9d8024189e636b1f37b2dd7226fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52EDDDBDA4A3A3B778F61A491B21E6EA439E9D8024189E636B1F37B2DD7226FC"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5641
Expires: Sat, 07 Jan 2023 01:32:30 GMT
Date: Fri, 06 Jan 2023 23:58:29 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 06 Jan 2023 23:41:22 GMT
content-type: application/json
age: 1027
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 600f7ba6e1a6fbbd176cd2df19b1e4d9
cdd72b25fd91ee980aba193b12e890096e4fe852
860214860947dfbe26099f018747154823b175fceb2821a390cc655da191a6d0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "860214860947DFBE26099F018747154823B175FCEB2821A390CC655DA191A6D0"
Last-Modified: Thu, 05 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7846
Expires: Sat, 07 Jan 2023 02:09:15 GMT
Date: Fri, 06 Jan 2023 23:58:29 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pR7boPufwLrLh+Cb03oF2pVdYAGljlIoFgq1uPOgWpSgYOjBDSx6JfxoqUc2q9F8szfv+Rno5fM=
x-amz-request-id: JKX1CZE9R2HA1SST
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 06 Jan 2023 23:00:10 GMT
age: 3499
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 06 Jan 2023 23:58:29 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
galvsgames.blogspot.com/2012/08/adobe-photoshop-software-cs6.html'
172.217.21.161404 Not Found 16 kB URL HTTP/1.1 galvsgames.blogspot.com/2012/08/adobe-photoshop-software-cs6.html'
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4233)
Hash d4ada97e50dc0f158b6f6eb3493bf081
bde34366aad481de5b1677961c501ff3f6f3b9c6
f540bbc4ac186bb58680dc41d47e8c7a73b5d07a38bdf6b0e1ad9185ca53184b
GET /2012/08/adobe-photoshop-software-cs6.html' HTTP/1.1
Host: galvsgames.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Fri, 06 Jan 2023 23:58:29 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 15723
Server: GSE
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/53952260/blogger.js
date: Fri, 06 Jan 2023 23:58:29 GMT
server: envoy
x-dropbox-request-id: 24770a66549a447ca1234bfcafe0440a
content-length: 0
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/53952260/data-post.js
date: Fri, 06 Jan 2023 23:58:29 GMT
server: envoy
x-dropbox-request-id: 983f040b2a8d4949b6914051193b4460
content-length: 0
dl.dropbox.com/u/16265358/downloadsgratis/style.css
162.125.71.15301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/16265358/downloadsgratis/style.css
IP 162.125.71.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/style.css HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/16265358/downloadsgratis/style.css
date: Fri, 06 Jan 2023 23:58:29 GMT
server: envoy
x-dropbox-request-id: b42ee99be9e14b76a35c7e26e202af37
content-length: 0
dl.dropbox.com/u/16265358/downloadsgratis/jquery.js
162.125.71.15301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/16265358/downloadsgratis/jquery.js
IP 162.125.71.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/jquery.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/16265358/downloadsgratis/jquery.js
date: Fri, 06 Jan 2023 23:58:30 GMT
server: envoy
x-dropbox-request-id: 9e83fc3d0523484f9f2c72f316523629
content-length: 0
dl.dropbox.com/u/16265358/downloadsgratis/jquery.flexislider.js
162.125.71.15301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/16265358/downloadsgratis/jquery.flexislider.js
IP 162.125.71.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/jquery.flexislider.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/16265358/downloadsgratis/jquery.flexislider.js
date: Fri, 06 Jan 2023 23:58:29 GMT
server: envoy
x-dropbox-request-id: 80eaf7ca5385458288211f1026196cdc
content-length: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e785236ca882ce17097cf1cb116dfc37
20d645e7ce9b64a52ed76965eca4ab4e5051680b
6af28e70aea8a37a26659b0236321e1693e082df794fadda691cdb1d0b839770
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
galvsgames.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 galvsgames.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: galvsgames.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/2012/08/adobe-photoshop-software-cs6.html'
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:38 GMT
Expires: Fri, 13 Jan 2023 23:57:38 GMT
Cache-Control: public, max-age=604800
Last-Modified: Fri, 06 Jan 2023 19:52:14 GMT
Content-Type: text/javascript
Age: 52
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 493bdf2105c24403ce1c6397c51f4a79
9ce5b52185255782e7fa7633594a275bad03ad81
9321ead4868f245d85e1eb9e2c343a11a4bb26567af1ccf0aca7d66285150bd6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jan 2023 08:10:46 GMT
expires: Fri, 05 Jan 2024 08:10:46 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 05 Jan 2023 01:52:49 GMT
content-type: text/css
age: 143264
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/3675762886-widgets.js
216.58.207.233200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/3675762886-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 05af587c82e2eb4eb2caa22ffae2168b
b5cf524b74f41124ccad34edff003b33f58a0662
6e23f93233f37dbe5f9ad92a416df7627e553b7ffa4b92e81e3b7e5880eb125a
GET /static/v1/widgets/3675762886-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56471
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 16:14:34 GMT
expires: Sat, 06 Jan 2024 16:14:34 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 04 Jan 2023 15:54:00 GMT
content-type: text/javascript
age: 27836
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
142.250.74.78200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1429)
Hash 1cc36f699291ba29dab9ec0f885b281b
d536f8bda7d333c21eae8e3d816d690402adb90c
6b20ce0ec6b6c57b33e8118f8d5d3c501ede61b8589ebab71d411b81d0fae994
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20933
date: Fri, 06 Jan 2023 23:58:30 GMT
expires: Fri, 06 Jan 2023 23:58:30 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "4fcbc207c89b8c6c"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.3.2/jquery.min.js
172.217.21.170200 OK 20 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.3.2/jquery.min.js
IP 172.217.21.170:0
File type ASCII text, with very long lines (39660)
Hash 6ad9e9100f68042a634e403e56e3744a
3d148af6eb9f86b03d5a815f4fb3a49c7b2df356
72bbdea3217793991ab87a6c7cb165d267551810d3d88b5fd2fd489748d04b7a
GET /ajax/libs/jquery/1.3.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 19926
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 05 Jan 2023 09:58:45 GMT
Expires: Fri, 05 Jan 2024 09:58:45 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 136785
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e785236ca882ce17097cf1cb116dfc37
20d645e7ce9b64a52ed76965eca4ab4e5051680b
6af28e70aea8a37a26659b0236321e1693e082df794fadda691cdb1d0b839770
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bb124e2a88852c3427c589b38ffbd50f
6b0e24a487cf6253dcdc642c5b9ac4d1e560be7c
a05e9ab8d068a8bed12d94ed777b94828612c8b16db9da608e9971475bf0409e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1116
Cache-Control: max-age=166494
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:58:30 GMT
Etag: "63b898a8-1d7"
Expires: Sun, 08 Jan 2023 22:13:24 GMT
Last-Modified: Fri, 06 Jan 2023 21:54:48 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bb124e2a88852c3427c589b38ffbd50f
6b0e24a487cf6253dcdc642c5b9ac4d1e560be7c
a05e9ab8d068a8bed12d94ed777b94828612c8b16db9da608e9971475bf0409e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 446
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:58:30 GMT
Etag: "63b7472b-1d7"
Last-Modified: Fri, 06 Jan 2023 23:51:04 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bb124e2a88852c3427c589b38ffbd50f
6b0e24a487cf6253dcdc642c5b9ac4d1e560be7c
a05e9ab8d068a8bed12d94ed777b94828612c8b16db9da608e9971475bf0409e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3414
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:58:30 GMT
Last-Modified: Fri, 06 Jan 2023 23:01:36 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bb124e2a88852c3427c589b38ffbd50f
6b0e24a487cf6253dcdc642c5b9ac4d1e560be7c
a05e9ab8d068a8bed12d94ed777b94828612c8b16db9da608e9971475bf0409e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5353
Cache-Control: max-age=170731
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:58:30 GMT
Etag: "63b898a8-1d7"
Expires: Sun, 08 Jan 2023 23:24:01 GMT
Last-Modified: Fri, 06 Jan 2023 21:54:48 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5ddd48b55142ea746fa6165da9c75916
a2e4ddea65431b1b1bddbcbf257874fddd7cc332
f6f85f03bb7716bf8d960e8cd94b66495040371cc68c1642f4a30e0f95e7c27e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i45.tinypic.com/33cm7w8.jpg
143.204.55.72301 Moved Permanently 0 B URL HTTP/1.1 i45.tinypic.com/33cm7w8.jpg
IP 143.204.55.72:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /33cm7w8.jpg HTTP/1.1
Host: i45.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:02 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aFyKjntVxjlfkxJZGVyhqX6OfkvOg1xfslcP8y_BHvYiBa2jVOHPrQ==
Age: 34829
i43.tinypic.com/33dbajt.png
143.204.55.72301 Moved Permanently 0 B URL HTTP/1.1 i43.tinypic.com/33dbajt.png
IP 143.204.55.72:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /33dbajt.png HTTP/1.1
Host: i43.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:14 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: erGP6WqEeYqveevcSCEZJ5X1WmDw70k-SmA0PUidgg--4VNOH2KFvA==
Age: 34817
2.bp.blogspot.com/--j4B-aHjDdk/USUmB0zU9HI/AAAAAAAACyw/dnQCFgc07GA/s1600/teste180.png
142.250.74.161200 OK 11 kB URL HTTP/1.1 2.bp.blogspot.com/--j4B-aHjDdk/USUmB0zU9HI/AAAAAAAACyw/dnQCFgc07GA/s1600/teste180.png
IP 142.250.74.161:0
File type PNG image data, 180 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash ded5f09db00f2d10cfadd49704737f62
b970d353e890f720a2656e6c555a363f8b32dff6
a365b50f3da6098942a6747d3d4b4af7d7fea50285abbc1d1190e6bf8db0842c
GET /--j4B-aHjDdk/USUmB0zU9HI/AAAAAAAACyw/dnQCFgc07GA/s1600/teste180.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="teste180.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 10809
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vb2c"
Content-Type: image/png
Age: 51
3.bp.blogspot.com/-6KdmIOXBPsc/URlgHo_TCvI/AAAAAAAAAjE/8lfrm0DtUOg/s1600/bangifwex.gif
142.250.74.161200 OK 22 kB URL HTTP/1.1 3.bp.blogspot.com/-6KdmIOXBPsc/URlgHo_TCvI/AAAAAAAAAjE/8lfrm0DtUOg/s1600/bangifwex.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 180 x 40\012- data
Hash 74dda25b108671974e590323961353c2
47ae8fb03e9ee48fc83cb168ee4878bb1355ba41
30f3cfde798de4d899017e0f3ed3a9553c53588ef0faca19034daf8108038161
GET /-6KdmIOXBPsc/URlgHo_TCvI/AAAAAAAAAjE/8lfrm0DtUOg/s1600/bangifwex.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bangifwex.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 21905
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v3a2"
Content-Type: image/gif
Age: 51
3.bp.blogspot.com/-M-KjtpPDFlI/T1N74M9AtiI/AAAAAAAAAxw/SwkjtlXdCLo/s1600/ajax-loader.gif
142.250.74.161200 OK 4.0 kB URL HTTP/1.1 3.bp.blogspot.com/-M-KjtpPDFlI/T1N74M9AtiI/AAAAAAAAAxw/SwkjtlXdCLo/s1600/ajax-loader.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 128 x 15\012- data
Hash 022fa5075d5c96188f13a7009486cad9
6bd2a4404f36fba40a04ed91af8a0458454fb330
acccc31dbf746699a0d02ae545cf89a194d7158732cb5a88f4a514e04ea3fc1d
GET /-M-KjtpPDFlI/T1N74M9AtiI/AAAAAAAAAxw/SwkjtlXdCLo/s1600/ajax-loader.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="ajax-loader.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3951
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:38 GMT
Expires: Sat, 07 Jan 2023 23:57:38 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v39f"
Content-Type: image/gif
Age: 52
2.bp.blogspot.com/-0OVh8pIH44M/T70-bFrd7uI/AAAAAAAAAM4/4y0aBRAahzQ/s1600/alu.jpg
142.250.74.161200 OK 41 kB URL HTTP/1.1 2.bp.blogspot.com/-0OVh8pIH44M/T70-bFrd7uI/AAAAAAAAAM4/4y0aBRAahzQ/s1600/alu.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 468x60, components 3\012- data
Hash c6279ca08b059d9633e1f6bcbe9a7d25
1771927292059596b52c0a6af9f4ad1a818386bf
b7427fbbb50f432a2e13ebb473f44788134c0d1e020b5822d74caf2349177d69
GET /-0OVh8pIH44M/T70-bFrd7uI/AAAAAAAAAM4/4y0aBRAahzQ/s1600/alu.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="alu.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 40845
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vce"
Content-Type: image/jpeg
Age: 51
2.bp.blogspot.com/-dQ5XQ44LFhs/USPeMFEMakI/AAAAAAAACwo/t2RkqDIGbKQ/s1600/anigif180x40.gif
142.250.74.161200 OK 39 kB URL HTTP/1.1 2.bp.blogspot.com/-dQ5XQ44LFhs/USPeMFEMakI/AAAAAAAACwo/t2RkqDIGbKQ/s1600/anigif180x40.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 180 x 40\012- data
Hash e2ae1a1f3f141529f58a1f7705b72d6a
46e958a78f622bb7180ed9137dbab1f6805adaaf
038556e78e730f9d168d7114bdb5401be8af67089d4894ed0c6786abf9ed5308
GET /-dQ5XQ44LFhs/USPeMFEMakI/AAAAAAAACwo/t2RkqDIGbKQ/s1600/anigif180x40.gif HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anigif180x40.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 39317
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vd47"
Content-Type: image/gif
Age: 51
i1307.photobucket.com/albums/s600/caio184/180x40_zps1358ba52.jpg
143.204.55.54301 Moved Permanently 167 B URL HTTP/1.1 i1307.photobucket.com/albums/s600/caio184/180x40_zps1358ba52.jpg
IP 143.204.55.54:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/s600/caio184/180x40_zps1358ba52.jpg HTTP/1.1
Host: i1307.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i1307.photobucket.com/albums/s600/caio184/180x40_zps1358ba52.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XBaXBBVgqi2xNzxeDjjYA0LDhAbBG3IyV28h-y1A9yYNnIa4BU3trQ==
Vary: Origin
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 06 Jan 2023 23:08:12 GMT
age: 3018
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
i49.tinypic.com/28hhnbs.jpg
143.204.55.100301 Moved Permanently 0 B URL HTTP/1.1 i49.tinypic.com/28hhnbs.jpg
IP 143.204.55.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /28hhnbs.jpg HTTP/1.1
Host: i49.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: szhNBk-CDhJ9l5IDXuET3oFvOy_Hbr6xMudQOlNjJBLP8hoLN9UBHg==
Age: 34828
i49.tinypic.com/11v1c3a.jpg
143.204.55.100301 Moved Permanently 0 B URL HTTP/1.1 i49.tinypic.com/11v1c3a.jpg
IP 143.204.55.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /11v1c3a.jpg HTTP/1.1
Host: i49.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6_6UxCAB7n0OPfQrdLfHAHoq0EagJkdWB3MTxgngUrrMFiUgzb25JA==
Age: 34828
i46.tinypic.com/rm681s.jpg
143.204.55.64301 Moved Permanently 0 B URL HTTP/1.1 i46.tinypic.com/rm681s.jpg
IP 143.204.55.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rm681s.jpg HTTP/1.1
Host: i46.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:17 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vTeN4IBJmbnSBqjCb1Ywa2UaM_RQa9VlMQ20Ruj_7o8gTnhDL_FR_w==
Age: 34814
i46.tinypic.com/301q0r4.jpg
143.204.55.64301 Moved Permanently 0 B URL HTTP/1.1 i46.tinypic.com/301q0r4.jpg
IP 143.204.55.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /301q0r4.jpg HTTP/1.1
Host: i46.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 18:45:46 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: g_WfemIdpnuEc3Mnemi-ka7x8zhuaQhb1HuqVV3uP08KYEY0o0lWlw==
Age: 18765
www.loogix.com/img/res/1/3/6/0/8/9/1360892286118026.gif
88.99.130.181301 Moved Permanently 185 B URL HTTP/1.1 www.loogix.com/img/res/1/3/6/0/8/9/1360892286118026.gif
IP 88.99.130.181:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash a68b24962bbce3b3f05231f7e3f0c860
16c65b914c09af12031433a6b19f474b15667647
662eef7c5ba51c4a4095c852a1418b9b186a906d4cdfb5bf18378dde86fee585
GET /img/res/1/3/6/0/8/9/1360892286118026.gif HTTP/1.1
Host: www.loogix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx/1.12.0
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: http://freegifmaker.me/img/res/1/3/6/0/8/9/1360892286118026.gif
i47.tinypic.com/1zlb3ar.jpg
143.204.55.64301 Moved Permanently 0 B URL HTTP/1.1 i47.tinypic.com/1zlb3ar.jpg
IP 143.204.55.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1zlb3ar.jpg HTTP/1.1
Host: i47.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jISrYudg_p8uFcaQKQc2xjUjRn3e6LY9OQSVM6Ng9smIzr7e7BO7Yg==
Age: 34828
i47.tinypic.com/530gae.jpg
143.204.55.64301 Moved Permanently 0 B URL HTTP/1.1 i47.tinypic.com/530gae.jpg
IP 143.204.55.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /530gae.jpg HTTP/1.1
Host: i47.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gONQjNFEucozQL-hwC1a5e727Y4SZc1IxqHaLBGsLaOS1UEF9GMBjA==
Age: 34828
img801.imageshack.us/img801/4453/180x40p.gif
38.99.77.17404 Not Found 168 B URL HTTP/1.1 img801.imageshack.us/img801/4453/180x40p.gif
IP 38.99.77.17:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img801/4453/180x40p.gif HTTP/1.1
Host: img801.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
i47.tinypic.com/14xms83.jpg
143.204.55.64301 Moved Permanently 0 B URL HTTP/1.1 i47.tinypic.com/14xms83.jpg
IP 143.204.55.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /14xms83.jpg HTTP/1.1
Host: i47.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zTH6OTvRg0FMTLzMYz4CzXf4_WchcsCC89WU5Nqm-d8iCpoJXc9qeA==
Age: 34828
mersone.com/img/180x40.png
156.224.142.48301 Moved Permanently 0 B URL HTTP/1.1 mersone.com/img/180x40.png
IP 156.224.142.48:0
ASN #133201 ABCDE GROUP COMPANY LIMITED
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/180x40.png HTTP/1.1
Host: mersone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 06 Jan 2023 23:59:09 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.mersone.com/img/180x40.png
i47.tinypic.com/13z5u9y.jpg
143.204.55.64301 Moved Permanently 0 B URL HTTP/1.1 i47.tinypic.com/13z5u9y.jpg
IP 143.204.55.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /13z5u9y.jpg HTTP/1.1
Host: i47.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: g2kACN_zo1uD3pi4EZielWzoo-nkTbfGAhosPVUh3JpquLYD8GWOYg==
Age: 34828
i50.tinypic.com/50sfx5.gif
143.204.55.100301 Moved Permanently 0 B URL HTTP/1.1 i50.tinypic.com/50sfx5.gif
IP 143.204.55.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /50sfx5.gif HTTP/1.1
Host: i50.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:13 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HwZNTU2rwuuvRv4YZ8TgnC8Xkdt-7IlYF5DmDPV1ls6X1f7pXFCZLQ==
Age: 34818
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
172.217.21.162200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 172.217.21.162:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 13:19:58 GMT
Expires: Fri, 20 Jan 2023 13:19:58 GMT
Cache-Control: public, max-age=1209600
Age: 38312
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
img822.imageshack.us/img822/3210/bannerbsc.gif
38.99.77.17404 Not Found 168 B URL HTTP/1.1 img822.imageshack.us/img822/3210/bannerbsc.gif
IP 38.99.77.17:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img822/3210/bannerbsc.gif HTTP/1.1
Host: img822.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
4.bp.blogspot.com/-Nh_Zqg7om5o/USj0Yk0DvnI/AAAAAAAAC28/9-PiA66u2cc/s1600/anigif468.gif
142.250.74.161200 OK 31 kB URL HTTP/1.1 4.bp.blogspot.com/-Nh_Zqg7om5o/USj0Yk0DvnI/AAAAAAAAC28/9-PiA66u2cc/s1600/anigif468.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 468 x 60\012- data
Hash 747ed0b8eb91c58312cd64e51a6d963a
bc216e844d740ff75574f0bd30329fafd707ba2b
c38a152f8de299f04953980e7814e7107a48c7d798c2e245358d6ca3772cdc8d
GET /-Nh_Zqg7om5o/USj0Yk0DvnI/AAAAAAAAC28/9-PiA66u2cc/s1600/anigif468.gif HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anigif468.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 30963
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vd42"
Content-Type: image/gif
Age: 51
i47.tinypic.com/14e6iae.png
143.204.55.64301 Moved Permanently 0 B URL HTTP/1.1 i47.tinypic.com/14e6iae.png
IP 143.204.55.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /14e6iae.png HTTP/1.1
Host: i47.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:02 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5wH4wTEINcCemo-gChbnIKN-UQ3L294_irSfC2BAI2znbS7DTbArCQ==
Age: 34829
i1138.photobucket.com/albums/n535/a-70/5-2.png
143.204.55.73301 Moved Permanently 167 B URL HTTP/1.1 i1138.photobucket.com/albums/n535/a-70/5-2.png
IP 143.204.55.73:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/n535/a-70/5-2.png HTTP/1.1
Host: i1138.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i1138.photobucket.com/albums/n535/a-70/5-2.png
X-Cache: Redirect from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sSNSXov0ZsGgMyTRXeVXf2ZJXXKyPt-TYawCWzHt3_E1vNUGTO07-A==
Vary: Origin
i47.tinypic.com/9au5ut.jpg
143.204.55.64301 Moved Permanently 0 B URL HTTP/1.1 i47.tinypic.com/9au5ut.jpg
IP 143.204.55.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /9au5ut.jpg HTTP/1.1
Host: i47.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _2-CRkoIlgl8yLkNQJzS4EJzvJw-49sq00fluefN_pVeUjrEfiPktw==
Age: 34828
i1138.photobucket.com/albums/n535/a-70/180x404pngN.png
143.204.55.73301 Moved Permanently 167 B URL HTTP/1.1 i1138.photobucket.com/albums/n535/a-70/180x404pngN.png
IP 143.204.55.73:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/n535/a-70/180x404pngN.png HTTP/1.1
Host: i1138.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i1138.photobucket.com/albums/n535/a-70/180x404pngN.png
X-Cache: Redirect from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _8i4GtHiIlJs0j586Euz-wm-u_C5qj7sfZxEmkYJ1j-IqPRNv8i65w==
Vary: Origin
i1201.photobucket.com/albums/bb356/doors121/anigif.gif
143.204.55.54301 Moved Permanently 167 B URL HTTP/1.1 i1201.photobucket.com/albums/bb356/doors121/anigif.gif
IP 143.204.55.54:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/bb356/doors121/anigif.gif HTTP/1.1
Host: i1201.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i1201.photobucket.com/albums/bb356/doors121/anigif.gif
X-Cache: Redirect from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: e6Ktjut7XBTiZCtfV7A3_aQgcYOXG-GVLBonR6dWHUhiSPuA_opxyg==
Vary: Origin
img14.imageshack.us/img14/8378/m76to.png
38.99.77.17404 Not Found 168 B URL HTTP/1.1 img14.imageshack.us/img14/8378/m76to.png
IP 38.99.77.17:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img14/8378/m76to.png HTTP/1.1
Host: img14.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
img39.imageshack.us/img39/6307/180.gif
38.99.77.16404 Not Found 168 B URL HTTP/1.1 img39.imageshack.us/img39/6307/180.gif
IP 38.99.77.16:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img39/6307/180.gif HTTP/1.1
Host: img39.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
img607.imageshack.us/img607/7357/bannerhd.gif
38.99.77.17404 Not Found 168 B URL HTTP/1.1 img607.imageshack.us/img607/7357/bannerhd.gif
IP 38.99.77.17:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img607/7357/bannerhd.gif HTTP/1.1
Host: img607.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
i48.tinypic.com/334jhpl.jpg
143.204.55.100301 Moved Permanently 0 B URL HTTP/1.1 i48.tinypic.com/334jhpl.jpg
IP 143.204.55.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /334jhpl.jpg HTTP/1.1
Host: i48.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Y5BsNAubO0bx6ryArCazao_xUbMRufSZ6TNu_jVWf_r9XWVTCLsS0Q==
Age: 34828
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 43c8442b7447debab97b0f6bc973e23a
38a5f1869cff7f6ddbfd3a24e57a3da7851ba3b0
4eb7adc914570287dde1317395d1d95b07271c8fe20b97a8928025c292c47dba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 263
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:58:30 GMT
Etag: "63b7e4a8-1d7"
Last-Modified: Fri, 06 Jan 2023 23:54:07 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
i48.tinypic.com/dmyw05.jpg
143.204.55.100301 Moved Permanently 0 B URL HTTP/1.1 i48.tinypic.com/dmyw05.jpg
IP 143.204.55.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dmyw05.jpg HTTP/1.1
Host: i48.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:02 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DILhPvxju3GALkeoaTMiTsYU080QWIPw1oLKXrXFuaTUM_3K8vv4CQ==
Age: 34829
img716.imageshack.us/img716/6825/banerza.gif
38.99.77.16404 Not Found 168 B URL HTTP/1.1 img716.imageshack.us/img716/6825/banerza.gif
IP 38.99.77.16:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img716/6825/banerza.gif HTTP/1.1
Host: img716.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
i48.tinypic.com/zwnb6w.jpg
143.204.55.100301 Moved Permanently 0 B URL HTTP/1.1 i48.tinypic.com/zwnb6w.jpg
IP 143.204.55.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zwnb6w.jpg HTTP/1.1
Host: i48.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Oq1KK2s4ML6fZpGuI4gxbzMBvuvKldG6ZBnjC4EQn85FtBDnltx6Ow==
Age: 34828
img13.imageshack.us/img13/1986/180x40l.png
38.99.77.16404 Not Found 168 B URL HTTP/1.1 img13.imageshack.us/img13/1986/180x40l.png
IP 38.99.77.16:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img13/1986/180x40l.png HTTP/1.1
Host: img13.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
4.bp.blogspot.com/-u6aoxm3uWHs/TchtfKtPw4I/AAAAAAAABeo/wkgxJfw1eGk/s1600/Banner+gif+180x40gif.gif
142.250.74.161404 Not Found 832 B URL HTTP/1.1 4.bp.blogspot.com/-u6aoxm3uWHs/TchtfKtPw4I/AAAAAAAABeo/wkgxJfw1eGk/s1600/Banner+gif+180x40gif.gif
IP 142.250.74.161:0
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-u6aoxm3uWHs/TchtfKtPw4I/AAAAAAAABeo/wkgxJfw1eGk/s1600/Banner+gif+180x40gif.gif HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Fri, 06 Jan 2023 23:58:30 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0
tinypic.com/images/goodbye.jpg
143.204.55.100200 OK 16 kB URL HTTP/1.1 tinypic.com/images/goodbye.jpg
IP 143.204.55.100:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x300, components 3\012- data
Hash 32af06ac4b80d728f7e4c8780eb6b6d7
dd3198f4361e94f2c3606474e04a629e42402d02
f610dc2752e938d77dab1c4e9fb1f0f7f53b25e527d130ce4e034b7de09da053
GET /images/goodbye.jpg HTTP/1.1
Host: tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 15616
Connection: keep-alive
Last-Modified: Wed, 18 Sep 2019 21:23:53 GMT
Server: AmazonS3
Date: Fri, 06 Jan 2023 05:46:55 GMT
ETag: "32af06ac4b80d728f7e4c8780eb6b6d7"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: d3CvJBMOmbvZnQY8IOI55WhB9fWR8yr3QFd0XLvQIjehZI2f6qI5Zw==
Age: 65574
img706.imageshack.us/img706/4189/bannergamesthematrix.gif
38.99.77.16404 Not Found 168 B URL HTTP/1.1 img706.imageshack.us/img706/4189/bannergamesthematrix.gif
IP 38.99.77.16:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img706/4189/bannergamesthematrix.gif HTTP/1.1
Host: img706.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
dl.dropbox.com/u/16265358/downloadsgratis/print.css
162.125.71.15301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/16265358/downloadsgratis/print.css
IP 162.125.71.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/print.css HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/16265358/downloadsgratis/print.css
date: Fri, 06 Jan 2023 23:58:30 GMT
server: envoy
x-dropbox-request-id: b78f27869b4b4c3c85061cbf0fe9ed88
content-length: 0
1.bp.blogspot.com/-ChYI3I2_DH4/T4jJrab6PMI/AAAAAAAAARM/p8UoTdPOTGA/s1600/Banner+180x40.gif.gif
142.250.74.161404 Not Found 832 B URL HTTP/1.1 1.bp.blogspot.com/-ChYI3I2_DH4/T4jJrab6PMI/AAAAAAAAARM/p8UoTdPOTGA/s1600/Banner+180x40.gif.gif
IP 142.250.74.161:0
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-ChYI3I2_DH4/T4jJrab6PMI/AAAAAAAAARM/p8UoTdPOTGA/s1600/Banner+180x40.gif.gif HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Fri, 06 Jan 2023 23:58:30 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0
i1138.photobucket.com/albums/n535/a-70/180x404pngN.png
143.204.55.73200 OK 2.8 kB URL HTTP/2 i1138.photobucket.com/albums/n535/a-70/180x404pngN.png
IP 143.204.55.73:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 483dbab8ffd6d2812fc73bdda510e352
8c196bca12a1a17074cd707b6253566b649be56e
fd64cbebc9d8312bf443052f5ad5d0b55b33756274b0da92dceb9425e5371df1
GET /albums/n535/a-70/180x404pngN.png HTTP/1.1
Host: i1138.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 2770
date: Fri, 06 Jan 2023 23:57:39 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="180x404pngN.webp"
expires: Sat, 06 Jan 2024 23:57:39 GMT
server: photobucket
x-amzn-trace-id: Root=1-63b8b573-44bc5dc03299f6e9270b358d
x-request-id: FBlrgxpHalo6v7fUPzITk
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hzo_V0TtcDyzXU_J8N8qfSZlBBL5qEpCuo3jODGFeP5BV9dkjpoUlA==
age: 51
vary: Accept, Origin
X-Firefox-Spdy: h2
i1201.photobucket.com/albums/bb356/doors121/anigif.gif
143.204.55.54200 OK 9.4 kB URL HTTP/2 i1201.photobucket.com/albums/bb356/doors121/anigif.gif
IP 143.204.55.54:0
File type GIF image data, version 89a, 180 x 40\012- data
Hash 0731aeb59c1ddf082894a0dc1dfc88a0
c3a7c601d50c9e043cc9114a1f03d03577cee37d
10d45fe5f93e49ec6f7499c385e9be0b772fdafc0cefd3effd25a83eaf364671
GET /albums/bb356/doors121/anigif.gif HTTP/1.1
Host: i1201.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 9366
date: Fri, 06 Jan 2023 23:57:39 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="anigif.gif"
expires: Sat, 06 Jan 2024 23:57:39 GMT
server: photobucket
x-amzn-trace-id: Root=1-63b8b573-50756dd569e8769320a5882a
x-request-id: U56h4W7eOnnhKbN2RtGal
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Del1NheX_JZI3vVDs8ExFLWosY1EfEeq1au1oOW_bh0cAabFbk1ODA==
age: 51
vary: Accept, Origin
X-Firefox-Spdy: h2
1.bp.blogspot.com/-qtpuCD7-x7A/T1N3g--tS2I/AAAAAAAAAvQ/RfGE71amaic/s1600/linha-menu.jpg
142.250.74.161200 OK 589 B URL HTTP/1.1 1.bp.blogspot.com/-qtpuCD7-x7A/T1N3g--tS2I/AAAAAAAAAvQ/RfGE71amaic/s1600/linha-menu.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 3x47, components 3\012- data
Hash 6cf31b1a0c26e66dff61337f68e65d7d
a0b772c3c941ff6862d5086eb215be19b555beb4
47c71c4e709e635de9e340c001f13bc230cabe085d74593ab55f7f8755b8b76e
GET /-qtpuCD7-x7A/T1N3g--tS2I/AAAAAAAAAvQ/RfGE71amaic/s1600/linha-menu.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="linha-menu.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 589
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2f4"
Content-Type: image/jpeg
Age: 51
3.bp.blogspot.com/-hYKwP-RNfEk/T1N5I866XsI/AAAAAAAAAv4/BaPERAGUcfM/s1600/repeat-widgth.jpg
142.250.74.161200 OK 506 B URL HTTP/1.1 3.bp.blogspot.com/-hYKwP-RNfEk/T1N5I866XsI/AAAAAAAAAv4/BaPERAGUcfM/s1600/repeat-widgth.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 195x8, components 3\012- data
Hash b51654ccb43b186e61c0562919408f53
c559ef23bd82693054772b2ad2065348d9711bdd
2de5c59257b5898d07bb49b0701d36573790844c6bcd16b80deb88e29c388c09
GET /-hYKwP-RNfEk/T1N5I866XsI/AAAAAAAAAv4/BaPERAGUcfM/s1600/repeat-widgth.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="repeat-widgth.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 506
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2fe"
Content-Type: image/jpeg
Age: 51
3.bp.blogspot.com/-Ff25IViP5y4/T1fueMKlz2I/AAAAAAAAAD0/ygWbIDyE3mQ/s1600/bt-busca.png
142.250.74.161200 OK 641 B URL HTTP/1.1 3.bp.blogspot.com/-Ff25IViP5y4/T1fueMKlz2I/AAAAAAAAAD0/ygWbIDyE3mQ/s1600/bt-busca.png
IP 142.250.74.161:0
File type PNG image data, 41 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash f9e72e37ef55a034fc13a90693211616
107a263948e79d2fb1e4c73f74946a33cc6b8d6d
a1aebc2b56e930b4c2bc0956983135119626cd53d21734842853f5397983d2eb
GET /-Ff25IViP5y4/T1fueMKlz2I/AAAAAAAAAD0/ygWbIDyE3mQ/s1600/bt-busca.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bt-busca.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 641
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v3d"
Content-Type: image/png
Age: 51
i1138.photobucket.com/albums/n535/a-70/5-2.png
143.204.55.73200 OK 3.4 kB URL HTTP/2 i1138.photobucket.com/albums/n535/a-70/5-2.png
IP 143.204.55.73:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6049c41fc32663778a5d86ba9566951b
55e78b2e56e62b0c10fd6ba01384d96a1a040218
97231ebf2f607a8959ea91e46703eeded895ed0915eb69c58063818669e9ee6e
GET /albums/n535/a-70/5-2.png HTTP/1.1
Host: i1138.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 3390
date: Fri, 06 Jan 2023 23:57:39 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="5-2.webp"
expires: Sat, 06 Jan 2024 23:57:39 GMT
server: photobucket
x-amzn-trace-id: Root=1-63b8b573-1869808f780aabe939a62e90
x-request-id: yM38TJNDBpEYOOnPVK1T2
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Q69Zl2_1ZzP-C6wmmYD6xy-Kac5AKAnCYlxPrEs5FgDSvg0JuYVH3g==
age: 51
vary: Accept, Origin
X-Firefox-Spdy: h2
i1307.photobucket.com/albums/s600/caio184/180x40_zps1358ba52.jpg
143.204.55.73200 OK 4.0 kB URL HTTP/2 i1307.photobucket.com/albums/s600/caio184/180x40_zps1358ba52.jpg
IP 143.204.55.73:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0ff79b7588272dcb0c226668c7d83440
ba5ab72fe67a516976ec2cb882f53d7e3bf94ac6
9f78cfe41926366d9f8d0beeff1a9e7bb30285aaeb3fb5bfde2c045b02b1ca1c
GET /albums/s600/caio184/180x40_zps1358ba52.jpg HTTP/1.1
Host: i1307.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 3996
date: Fri, 06 Jan 2023 23:57:39 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="180x40_zps1358ba52.webp"
expires: Sat, 06 Jan 2024 23:57:39 GMT
server: photobucket
x-amzn-trace-id: Root=1-63b8b573-00bcc7b2349eab710a7d7f14
x-request-id: Xd5z1K6MkxiD0M4HdbEra
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: M6vE1yYIwH0-M4r0bfLOC51mYCDIyMUEMNqE9BqySOLfbhtMug6_HQ==
age: 51
vary: Accept, Origin
X-Firefox-Spdy: h2
i.imgur.com/TLnpH.jpg
151.101.84.193301 Moved Permanently 0 B IP 151.101.84.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /TLnpH.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/TLnpH.jpg
Accept-Ranges: bytes
Date: Fri, 06 Jan 2023 23:58:30 GMT
X-Served-By: cache-bma1668-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1673049511.946583,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
dl.dropbox.com/u/16265358/downloadsgratis/jquery.js
162.125.71.15404 Not Found 4.7 kB URL HTTP/2 dl.dropbox.com/u/16265358/downloadsgratis/jquery.js
IP 162.125.71.15:0
Hash c98e34b3540d110f4f646eeb2355bc59
641b94ee71324058c37a83df33a496231107509e
0224ac4387e47012fed5c7f2963cd720433de9d46e6d00c3f1f363d6cfc88904
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/jquery.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:58:30 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 384ba990e7e1430dbaffc8ef7824c775
X-Firefox-Spdy: h2
2.bp.blogspot.com/-Ab5ps5669hg/T1fyKih6V6I/AAAAAAAAAEE/YdjgD6F7zXU/s1600/seta-bulet.png
142.250.74.161200 OK 613 B URL HTTP/1.1 2.bp.blogspot.com/-Ab5ps5669hg/T1fyKih6V6I/AAAAAAAAAEE/YdjgD6F7zXU/s1600/seta-bulet.png
IP 142.250.74.161:0
File type PNG image data, 156 x 17, 8-bit/color RGB, non-interlaced\012- data
Hash f79b85ec18877584022d6a2950c11711
d162e64ee865dc98fbd235e2582e9b4d72207d5d
3f76aec3328012b10ffc57e8db533f5fcad3bfad769b8b2f5bf4af3bc63ef7b8
GET /-Ab5ps5669hg/T1fyKih6V6I/AAAAAAAAAEE/YdjgD6F7zXU/s1600/seta-bulet.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="seta-bulet.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 613
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:40 GMT
Expires: Sat, 07 Jan 2023 23:57:40 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v41"
Content-Type: image/png
Age: 50
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15404 Not Found 4.2 kB URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23665)
Hash f897700409fd949b941309bead7a1b19
a6ae129d45c1e6ddf8d9e13313b1c397f38bd68b
e14a578dd2c6e9401f219764ab9647febd521bc497c84a019747bfceb9699b62
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:58:30 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 972ddb82c14b486db41b842e83d10c8a
X-Firefox-Spdy: h2
search-blogger.com/
216.239.38.21301 Moved Permanently 226 B IP 216.239.38.21:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 6cead0835d0db6fad3caa16fd433e503
ca57ab13a499edb6d43ffa595a6aa2aea345032a
d3834744046b0851e6a28f76502d0f4aebf3c7f6c1f1dc7da297e5eec79a929b
GET / HTTP/1.1
Host: search-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: http://www.search-blogger.com
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html; charset=UTF-8
Server: ghs
Content-Length: 226
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dl.dropbox.com/u/16265358/downloadsgratis/jquery.flexislider.js
162.125.71.15404 Not Found 4.4 kB URL HTTP/2 dl.dropbox.com/u/16265358/downloadsgratis/jquery.flexislider.js
IP 162.125.71.15:0
Hash cb0c69ef95d6bb98775d7a75e01460ba
039d3fa91cb2b203a2333337408ed1b20f35cb7d
a2a27322b328dbe60e3a46bc68dfcaa13cfa41d68e8b3a18a4f2ecf9558f8aaa
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/jquery.flexislider.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:58:30 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: e03a39115d7f443ea104c265ae78825b
X-Firefox-Spdy: h2
i48.tinypic.com/mh6qag.png
143.204.55.100301 Moved Permanently 0 B URL HTTP/1.1 i48.tinypic.com/mh6qag.png
IP 143.204.55.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mh6qag.png HTTP/1.1
Host: i48.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:01 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: huFDuiU_0uzqmqYeMX94qoyJ5Ym-CM-dhYdXyK7x3TiRm_7BDrXfNA==
Age: 34830
www2.cbox.ws/box/?boxid=2298837&boxtag=ppawfz&sec=main
195.201.153.71200 OK 2.9 kB URL HTTP/1.1 www2.cbox.ws/box/?boxid=2298837&boxtag=ppawfz&sec=main
IP 195.201.153.71:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (715), with CRLF, LF line terminators
Hash 0fdf3ea478723cbef466a2c5ab2690f1
45e7d1a9ed37dea50194ea20283e54de5d6b0bc1
1322212881c798d72c207338b4b52f22fd1ad0e880b535cf3455f3ae17656c81
GET /box/?boxid=2298837&boxtag=ppawfz&sec=main HTTP/1.1
Host: www2.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 06 Jan 2023 23:58:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI DSP COR NID CURa OUR NOR"
Cache-Control: public, must-revalidate, max-age=5
Last-Modified: Fri, 06 Jan 2023 23:58:30 GMT
X-Cache: EXPIRED
Content-Encoding: gzip
freegifmaker.me/img/res/1/3/6/0/8/9/1360892286118026.gif
3.66.136.156200 OK 29 kB URL HTTP/1.1 freegifmaker.me/img/res/1/3/6/0/8/9/1360892286118026.gif
IP 3.66.136.156:0
File type GIF image data, version 89a, 120 x 60\012- data
Hash 2dc4cb9de4c78c521a9a2a98b4872604
0b89bda1bed844ec8b695672623f8dc7c30b11ca
e921824eca54c225403e8c8e4663bdbcc98dd7ede88c0c6566828986ec036166
GET /img/res/1/3/6/0/8/9/1360892286118026.gif HTTP/1.1
Host: freegifmaker.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Cache-Control: max-age=604800
Content-Encoding: gzip
Content-Type: image/gif
Date: Fri, 06 Jan 2023 23:58:30 GMT
Display: staticcontent_sol
Etag: "511d917e-7a6c-gzip"
Expires: Fri, 13 Jan 2023 23:58:30 GMT
Last-Modified: Wed, 04 Jan 2023 23:19:01 GMT
Response: 200
Server: nginx/1.12.0
Vary: Accept-Encoding,Origin
X-Middleton-Display: staticcontent_sol
X-Middleton-Response: 200
X-Ua-Compatible: IE=edge
Transfer-Encoding: chunked
lh4.ggpht.com/_Q_rlZm67eb0/TIsOVnQClNI/AAAAAAAAAQ8/ASRPDYTMMvE/anuncie.png
142.250.74.161200 OK 1.9 kB URL HTTP/1.1 lh4.ggpht.com/_Q_rlZm67eb0/TIsOVnQClNI/AAAAAAAAAQ8/ASRPDYTMMvE/anuncie.png
IP 142.250.74.161:0
File type PNG image data, 485 x 85, 8-bit/color RGB, non-interlaced\012- data
Hash d85c9afd61a3530a2bc6ea3503331622
061f234b06d0a20d9473bbe60b13492f4590e2b7
c1a3ba2c9b2837d756f04639232a40343fecfcdc70454cb1f98b8f57ee642ed9
GET /_Q_rlZm67eb0/TIsOVnQClNI/AAAAAAAAAQ8/ASRPDYTMMvE/anuncie.png HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anuncie.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1890
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:25:05 GMT
Expires: Sat, 07 Jan 2023 23:25:05 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v10f"
Content-Type: image/png
Age: 2006
i.imgur.com/TLnpH.jpg
151.101.84.193200 OK 12 kB IP 151.101.84.193:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 195x1500, components 3\012- data
Hash 53e2f3ac58ebd5965e0d92a29f551aba
5cb684f29d9666d2366168a3e85cbf8da2541b19
6aec073343ab9fca0758d33209018b6ba76c325d03a9afdc14d94ffa00fbd012
GET /TLnpH.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 04 Mar 2012 14:12:56 GMT
etag: "53e2f3ac58ebd5965e0d92a29f551aba"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 06 Jan 2023 23:58:31 GMT
age: 611598
x-served-by: cache-iad-kcgs7200162-IAD, cache-bma1620-BMA
x-cache: HIT, HIT
x-cache-hits: 10, 1
x-timer: S1673049511.017163,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 11643
X-Firefox-Spdy: h2
dl.dropbox.com/u/16265358/downloadsgratis/jquery.flexislider.js
162.125.71.15404 Not Found 6.7 kB URL HTTP/2 dl.dropbox.com/u/16265358/downloadsgratis/jquery.flexislider.js
IP 162.125.71.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23665)
Hash 99758fd00ed2217e0bcaf6439ff9f6b7
6b2b64833d9d6107a0695eba6390c1b00512822f
ebe4d31caa582f50562ecb1ee74a599acee80ea9d0914ba3216c3041b5dff094
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/jquery.flexislider.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:58:30 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 6c4b428001be4a4b8e83918a943861b5
X-Firefox-Spdy: h2
4.bp.blogspot.com/-rBbnpVXFubc/T1ffooT_p8I/AAAAAAAAAC0/RhyfIULNoyw/s1600/topo-widgth.png
142.250.74.161200 OK 1.0 kB URL HTTP/1.1 4.bp.blogspot.com/-rBbnpVXFubc/T1ffooT_p8I/AAAAAAAAAC0/RhyfIULNoyw/s1600/topo-widgth.png
IP 142.250.74.161:0
File type PNG image data, 195 x 58, 8-bit/color RGB, non-interlaced\012- data
Hash bbdbf89cdb15a21b23db4de35eeff6f5
9d8cf6487b22f4ee9bf81e769a7ccde020567d44
e6469698e02f473e4f2f40aef009514048e26441db3d1b72b85556eb01c96f0e
GET /-rBbnpVXFubc/T1ffooT_p8I/AAAAAAAAAC0/RhyfIULNoyw/s1600/topo-widgth.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="topo-widgth.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1048
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:40 GMT
Expires: Sat, 07 Jan 2023 23:57:40 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2d"
Content-Type: image/png
Age: 51
i50.tinypic.com/y1641.png
143.204.55.100301 Moved Permanently 0 B URL HTTP/1.1 i50.tinypic.com/y1641.png
IP 143.204.55.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /y1641.png HTTP/1.1
Host: i50.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:18 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: soIOKY1KsXSqm_9r8XI9byyxKEzjQB8u2IxbJV9trj2YRwkjj8kHGw==
Age: 34813
static.cbox.ws/styles/v4s12_2.css?20171204
104.21.1.254200 OK 821 B URL HTTP/1.1 static.cbox.ws/styles/v4s12_2.css?20171204
IP 104.21.1.254:0
File type ASCII text, with CRLF line terminators
Hash 397f662777eee115629ddb45d48b76a0
b4004a2274b6afdb571ac91ac5db940523d3d2a2
c0268b480357ad08e36f933dd0080b98ceb47bec23ae3498eeb01af5a50e5b82
GET /styles/v4s12_2.css?20171204 HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www2.cbox.ws/
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 23:58:31 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5a250fb0-93a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 18495237
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pU3gUtBg5D0fQH9p5VKpgAfxlpmXUD7U72BqD3LqNHY7%2FnehBZd86uHOlyNlJGg87rTwqJUKlG%2BZ0VAZ8DRB4LFjrdILVB9dmHiFAXg4t7U8aN4SOqM9H7E96RbvOGABpA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 785866f3eb33fabc-OSL
alt-svc: h2=":443"; ma=60
static.cbox.ws/jsc/jsc_1593163307.js
104.21.1.254200 OK 17 kB URL HTTP/1.1 static.cbox.ws/jsc/jsc_1593163307.js
IP 104.21.1.254:0
File type ASCII text, with very long lines (538)
Hash d145f5920028cd6628fd2a489864f740
30754798a738b79a9a39c7f2c1f4f3d366e494b2
f534b4a63d6e14e118b76f38c76615b6f759542f1cc987664141ebf760d7e6fe
GET /jsc/jsc_1593163307.js HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www2.cbox.ws
Connection: keep-alive
Referer: http://www2.cbox.ws/
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 23:58:31 GMT
Content-Type: application/x-javascript
Content-Length: 16559
Connection: keep-alive
Last-Modified: Fri, 26 Jun 2020 09:21:54 GMT
ETag: "5ef5be32-40af"
Content-Encoding: gzip
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
CF-Cache-Status: HIT
Age: 19187134
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mc33L1FS4x5fZDNKZW3TMoiLw%2BtbbLNfTxqRwPd6rE%2B%2BVBUiuWWDWyNS5iC39287yxM8oR4t1hxtXTfCZpxy4WzvewMNu6uQFUbACda38nGbIxtSs75Fy6SdjQ2l3hecPg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 785866f409c3fac4-OSL
alt-svc: h2=":443"; ma=60
lh3.googleusercontent.com/_4UmhaKWZHqo/TcnV8laz9iI/AAAAAAAABpU/7v178TNqBVs/PUBLICIADE%20125X125%20-%20ANUNCIE%20AQUI.png
142.250.74.97404 Not Found 832 B URL HTTP/2 lh3.googleusercontent.com/_4UmhaKWZHqo/TcnV8laz9iI/AAAAAAAABpU/7v178TNqBVs/PUBLICIADE%20125X125%20-%20ANUNCIE%20AQUI.png
IP 142.250.74.97:0
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /_4UmhaKWZHqo/TcnV8laz9iI/AAAAAAAABpU/7v178TNqBVs/PUBLICIADE%20125X125%20-%20ANUNCIE%20AQUI.png HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Fri, 06 Jan 2023 23:58:31 GMT
server: fife
content-length: 832
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img801.imageshack.us/img801/4453/180x40p.gif
38.99.77.17404 Not Found 168 B URL HTTP/1.1 img801.imageshack.us/img801/4453/180x40p.gif
IP 38.99.77.17:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img801/4453/180x40p.gif HTTP/1.1
Host: img801.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:58:31 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
www.mersone.com/img/180x40.png
156.224.142.48200 OK 789 B URL HTTP/1.1 www.mersone.com/img/180x40.png
IP 156.224.142.48:0
ASN #133201 ABCDE GROUP COMPANY LIMITED
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with CRLF line terminators
Hash c7965742e95b5e75999abf371810b196
a0057b2347a05212651922f02cda00fae919d2e9
7ed68e979c6af0e99d54e6fcf701cfcd49247908772b9990816274b558560771
GET /img/180x40.png HTTP/1.1
Host: www.mersone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 06 Jan 2023 23:59:10 GMT
Content-Type: text/html
Content-Length: 789
Connection: keep-alive
www.search-blogger.com/
142.250.74.179301 Moved Permanently 178 B IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 27181302eba676d4a386d528deb7bc8a
7d2cb61e26ebadcf231d53a8f6051b070509288d
59f63d057541bb65e384d154da24cc0f7db6215cd679c6bef7c69c1a05fcfca7
GET / HTTP/1.1
Host: www.search-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.search-blogger.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 06 Jan 2023 23:58:31 GMT
Expires: Fri, 06 Jan 2023 23:58:31 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 178
Server: GSE
dl.dropbox.com/u/16265358/downloadsgratis/print.css
162.125.71.15404 Not Found 4.7 kB URL HTTP/2 dl.dropbox.com/u/16265358/downloadsgratis/print.css
IP 162.125.71.15:0
Hash c98e34b3540d110f4f646eeb2355bc59
641b94ee71324058c37a83df33a496231107509e
0224ac4387e47012fed5c7f2963cd720433de9d46e6d00c3f1f363d6cfc88904
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/print.css HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:58:30 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 53a45700b8374e888eb85a93ea60fc66
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.210.158.59101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.158.59:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3TrtsQjMfm+Snb8SBqxlUA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VOlb2uGrZ3uCQZjUYCeJaQJh0aU=
ocsp.pki.goog/s/gts1d4/EbmBDfRBee4
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/EbmBDfRBee4
IP 142.250.74.131:0
Hash 4580aea00cd8225f8cd9260793e2fcf3
d584e67b37ec22eeb28046c3785869aebfe2756e
2ed97dc421764e0d975351b730ce6422b49896ab2d0c86c953c9441691b3239f
POST /s/gts1d4/EbmBDfRBee4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:58:31 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cur.cursors-4u.net/cursors/cur-2/cur117.cur
96.43.128.66301 Moved Permanently 169 B URL HTTP/1.1 cur.cursors-4u.net/cursors/cur-2/cur117.cur
IP 96.43.128.66:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd6987d71fad7058a993a9028dc40454
3ed872fa3a00837bb008ad9d201850e2ea57a79f
f0e759f444eb3a324b621f0548919424455e81441d42ea6bc6bcd2b24fce1b92
GET /cursors/cur-2/cur117.cur HTTP/1.1
Host: cur.cursors-4u.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx/1.16.1
Date: Fri, 06 Jan 2023 23:58:31 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://cur.cursors-4u.net/cursors/cur-2/cur117.cur
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a86bc0de199dc42d233b988a675a5522
53dfbd1fd41824737ed9ef6bc6a55cfb67a0f373
4d86dd990a772ae74a6beff56dc0496162ff18bbaf7aa0552f1108d305e0056c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D86DD990A772AE74A6BEFF56DC0496162FF18BBAF7AA0552F1108D305E0056C"
Last-Modified: Thu, 05 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17353
Expires: Sat, 07 Jan 2023 04:47:44 GMT
Date: Fri, 06 Jan 2023 23:58:31 GMT
Connection: keep-alive
www.search-blogger.com/
142.250.74.179301 Moved Permanently 178 B IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 27181302eba676d4a386d528deb7bc8a
7d2cb61e26ebadcf231d53a8f6051b070509288d
59f63d057541bb65e384d154da24cc0f7db6215cd679c6bef7c69c1a05fcfca7
GET / HTTP/1.1
Host: www.search-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.search-blogger.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 06 Jan 2023 23:58:31 GMT
Expires: Fri, 06 Jan 2023 23:58:31 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 178
Server: GSE
www.search-blogger.com/
142.250.74.179200 OK 6.4 kB IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4098)
Hash 60e2a30e6933c4a3cd94e5efb3f1431c
821ad5c218875ec6adac1f00db9fedffbe7a3f39
4d4a8bf175dca71b287c6c3ade533976a5c7aba46c5b57a395723b1866f498c4
GET / HTTP/1.1
Host: www.search-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Fri, 06 Jan 2023 23:58:31 GMT
date: Fri, 06 Jan 2023 23:58:31 GMT
cache-control: private, max-age=0
last-modified: Tue, 27 Dec 2022 20:37:40 GMT
etag: W/"c9cff2eb4c54eb86665a350562d75729b20f27840da43e8732f583e0c7ceb817"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 6408
server: GSE
X-Firefox-Spdy: h2
www.search-blogger.com/js/cookienotice.js
142.250.74.179200 OK 2.0 kB URL HTTP/2 www.search-blogger.com/js/cookienotice.js
IP 142.250.74.179:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: www.search-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.search-blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Fri, 06 Jan 2023 23:58:31 GMT
expires: Fri, 13 Jan 2023 23:58:31 GMT
cache-control: public, max-age=604800
last-modified: Fri, 06 Jan 2023 22:52:23 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
cur.cursors-4u.net/cursors/cur-2/cur116.cur
96.43.128.66200 OK 4.3 kB URL HTTP/1.1 cur.cursors-4u.net/cursors/cur-2/cur116.cur
IP 96.43.128.66:0
File type MS Windows cursor resource - 1 icon, 32x32, hotspot @4x3\012- data
Hash f20404aa540015ab306db5f8a6bfcd8f
576b02b8b346ca913024605ccf95266aff174455
f98fce389db32e6e29c6739dbfdf0296dbf664181f4156e35d36ad8876c89081
GET /cursors/cur-2/cur116.cur HTTP/1.1
Host: cur.cursors-4u.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Fri, 06 Jan 2023 23:58:31 GMT
Content-Type: application/octet-stream
Content-Length: 4286
Last-Modified: Wed, 27 Feb 2013 17:42:42 GMT
Connection: keep-alive
ETag: "512e4592-10be"
Accept-Ranges: bytes
widgets.amung.us/small/13/1305.png
104.22.74.171200 OK 339 B URL HTTP/2 widgets.amung.us/small/13/1305.png
IP 104.22.74.171:0
File type PNG image data, 80 x 15, 8-bit colormap, non-interlaced\012- data
Hash 62f95f43272e866bd1f13cfbe07e5fed
402f572fe487f112df0a8ebeec0b92ef5318facd
dca244c595ba80686ce6e4567130cf5963b331aa346ca419bf394e40af4b5f17
GET /small/13/1305.png HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.search-blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 06 Jan 2023 23:58:31 GMT
content-type: image/png
content-length: 339
last-modified: Sun, 13 Jun 2010 09:48:30 GMT
etag: "4c14a96e-153"
expires: Mon, 26 Dec 2022 15:28:27 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 1067404
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 785866f7990d0a31-ARN
X-Firefox-Spdy: h2
www.search-blogger.com/
142.250.74.179200 OK 6.4 kB IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4098)
Hash 60e2a30e6933c4a3cd94e5efb3f1431c
821ad5c218875ec6adac1f00db9fedffbe7a3f39
4d4a8bf175dca71b287c6c3ade533976a5c7aba46c5b57a395723b1866f498c4
GET / HTTP/1.1
Host: www.search-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Fri, 06 Jan 2023 23:58:31 GMT
date: Fri, 06 Jan 2023 23:58:31 GMT
cache-control: private, max-age=0
last-modified: Tue, 27 Dec 2022 20:37:40 GMT
etag: W/"c9cff2eb4c54eb86665a350562d75729b20f27840da43e8732f583e0c7ceb817"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 6408
server: GSE
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15404 Not Found 13 kB URL HTTP/2 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
Hash 3367a19532bd693f42218b70dcf64f6c
24ad81f542b6bdd24a7d0b6046278bb83f759581
6ca4ca3c7fd701b69e5a1e6e634c5cfc146093d907a466de31787a3ca7ed6638
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:58:31 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 28ed00ffce684d60a168ebdc76da338f
X-Firefox-Spdy: h2
cur.cursors-4u.net/cursors/cur-2/cur117.cur
96.43.128.66200 OK 4.3 kB URL HTTP/1.1 cur.cursors-4u.net/cursors/cur-2/cur117.cur
IP 96.43.128.66:0
File type MS Windows cursor resource - 1 icon, 32x32, hotspot @4x3\012- data
Hash 656887271e880767e13b793fdfb999e0
f895990846e42fccb5ad9a17a0a8195fa75ce5c4
c6d483fbf356de40b7504dd92947fa16ccf1805ec70ff45615fba182c7ecd50c
GET /cursors/cur-2/cur117.cur HTTP/1.1
Host: cur.cursors-4u.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Fri, 06 Jan 2023 23:58:31 GMT
Content-Type: application/octet-stream
Content-Length: 4286
Last-Modified: Wed, 27 Feb 2013 17:42:42 GMT
Connection: keep-alive
ETag: "512e4592-10be"
Accept-Ranges: bytes
widgets.amung.us/small/13/1303.png
104.22.74.171200 OK 337 B URL HTTP/2 widgets.amung.us/small/13/1303.png
IP 104.22.74.171:0
File type PNG image data, 80 x 15, 8-bit colormap, non-interlaced\012- data
Hash 8cbb51e8269787bc9d1402dd3ba4faa5
9e800f0e4f5e25b90ec2be64e14d716db7ece3c7
6457d587be35462580db13b32ff0dbb56161d56f90f69d34cedd2c642fa48e9e
GET /small/13/1303.png HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.search-blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 06 Jan 2023 23:58:31 GMT
content-type: image/png
content-length: 337
last-modified: Sun, 13 Jun 2010 09:48:30 GMT
etag: "4c14a96e-151"
expires: Sat, 31 Dec 2022 08:39:14 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 659957
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 785866f98a400a31-ARN
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6699
Expires: Sat, 07 Jan 2023 01:50:11 GMT
Date: Fri, 06 Jan 2023 23:58:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6699
Expires: Sat, 07 Jan 2023 01:50:11 GMT
Date: Fri, 06 Jan 2023 23:58:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6699
Expires: Sat, 07 Jan 2023 01:50:11 GMT
Date: Fri, 06 Jan 2023 23:58:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e832123ea0c92a446b5894e75efc86ae
bb438ca635b43819701067ef07a3d910ad29a0c7
e1b0c6cd873f304de15664f96af6b6914e13fbbfb3e2179ba43369e116446773
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 93353c3e-1b26-424c-b4c6-0d113703edd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eFvpBFGvIAMFobw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b22c9f-1d07cff31ae39320693642f0;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 01:00:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vIFVXgt2RmoplkAVOtUrOkXj3LmhRw-XEPe7fugZ2-mv_iDY07XzUg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 00:24:30 GMT
age: 84842
etag: "bb438ca635b43819701067ef07a3d910ad29a0c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6699
Expires: Sat, 07 Jan 2023 01:50:11 GMT
Date: Fri, 06 Jan 2023 23:58:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528de87e-4c51-4e2a-90d5-fa6c5a52a300.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528de87e-4c51-4e2a-90d5-fa6c5a52a300.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c3735c87d612da35bd07f0397b95799a
47a017ef6a57d5ec43482308cda3e15f35bfacf6
e075dd0433540b3c35030bd9312273e1ed472ab1a25cfe2912086d35e6019a60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528de87e-4c51-4e2a-90d5-fa6c5a52a300.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10420
x-amzn-requestid: 3feb5ad5-2b7c-48b5-8a0d-f780c780a72e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eP6bPHGNoAMFQYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b63de1-3d6b89744fc025f2770caaf1;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 03:02:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zPg_L3kgFW1vpK8X4JH3IZTKSdD2PUcGKwuMsdJ-jxSm2I0ZanyZtQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 03:53:23 GMT
age: 72309
etag: "47a017ef6a57d5ec43482308cda3e15f35bfacf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5c619dc-4aba-44fa-b20f-5156f0b5ce48.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5c619dc-4aba-44fa-b20f-5156f0b5ce48.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5196aa81157b1c7f02a2aeec700cb184
f298bf34671800af23c78a4dcc14ff0ed60f48e8
ecdaf55df4565409bd6f6cb66a7272e9a6f3cee750437df658d4412827e0d042
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5c619dc-4aba-44fa-b20f-5156f0b5ce48.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10809
x-amzn-requestid: 6871f0ab-096d-42bc-82c4-ed72871efd30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d4DgmF_EIAMF_Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63acb2d0-551e264261f23a0f3afa9213;Sampled=0
x-amzn-remapped-date: Wed, 28 Dec 2022 21:19:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BoHEdJaS8XPY5eqT7q4mdxypOsnxpFgvMoB5O8iKkMSiNicBZgz5mw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 15:53:32 GMT
age: 29100
etag: "f298bf34671800af23c78a4dcc14ff0ed60f48e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f422f55-b598-4b18-ad6c-d64bb470b0c5.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f422f55-b598-4b18-ad6c-d64bb470b0c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4dd5fc3111e49a998f6c1c8e8ef049
54c51c4566a514b9d8567a34e5b6f7dfd6614fa6
f05de119c3ddf9ad7bec9189889f9a8ddbd4aa764ce71d8ef8c839163faf5825
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f422f55-b598-4b18-ad6c-d64bb470b0c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7569
x-amzn-requestid: e7a15e21-9a65-40f1-98e4-006e2a121b7d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eQSzVHOwIAMFzgg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b664e1-6834326e53cb489002a03bd2;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 05:49:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -7LU3FeAbADqt8mRKjBs2ZkXBKQQ3IsjrGZxj7AUwMVHGc0M7wz07w==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 08:37:17 GMT
age: 55275
etag: "54c51c4566a514b9d8567a34e5b6f7dfd6614fa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a51093b-a234-4694-9280-6ea68de36744.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a51093b-a234-4694-9280-6ea68de36744.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b970a91b8b2e02c08da490ad7a897a79
0b25447121c9d5d1c276cde893549234ab1d0448
e528ef574f793d899cd41ec3d2f954bc1a3658f4c8faedc04206aaf0c530e2e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a51093b-a234-4694-9280-6ea68de36744.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5815
x-amzn-requestid: c2634739-191d-47c0-98bb-2c91f0d7e5ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d_-8mEtSoAMF1Fg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63afdeb6-55946d3d7784a69409205dfc;Sampled=0
x-amzn-remapped-date: Sat, 31 Dec 2022 07:03:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Z0j6NdKvdYB0clSgL9AMRWTxjsgnUMSxsD3OOh-cHswkPXVnwCnM8g==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 05:12:37 GMT
age: 67555
etag: "0b25447121c9d5d1c276cde893549234ab1d0448"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4459605-f609-4708-9d2f-a9847e75083d.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4459605-f609-4708-9d2f-a9847e75083d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b9a1ed2794a7736b50852eb3686003c
86eca466bc7f92bf08faa14e0e81689014e956a8
5e5ebb24253d640719db3e8c27d4de71405173004e1be4df49af7c493fb504b8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4459605-f609-4708-9d2f-a9847e75083d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9314
x-amzn-requestid: d7733987-847e-446f-ab4e-8f4022e5ca2b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eP6aOH9joAMFzeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b63dda-4b395435357054a273ce94e8;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 03:02:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rQQBSZ09w7R-z2Hq7swh5LQhpSsGpdnmLkTYPa3t_f2sHWgmkdO7Zg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 04:41:25 GMT
age: 69427
etag: "86eca466bc7f92bf08faa14e0e81689014e956a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dl.dropbox.com/u/77549632/Aplicandroid/120x60.png
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/77549632/Aplicandroid/120x60.png
IP 162.125.71.15:0
GET /u/77549632/Aplicandroid/120x60.png HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:58:29 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 0d4149f5f3154457a8031add2c8b606a
X-Firefox-Spdy: h2
dl.dropbox.com/u/77549632/Aplicandroid/120x60.png
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/77549632/Aplicandroid/120x60.png
IP 162.125.71.15:0
GET /u/77549632/Aplicandroid/120x60.png HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:58:30 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 2cefe3c96fa24a2e892194ec566b7782
X-Firefox-Spdy: h2
whos.amung.us/swidget/26ri8qf50jwy
104.22.74.171307 Temporary Redirect 0 B URL HTTP/2 whos.amung.us/swidget/26ri8qf50jwy
IP 104.22.74.171:0
GET /swidget/26ri8qf50jwy HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.search-blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
date: Fri, 06 Jan 2023 23:58:31 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/small/13/1303.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 785866f8b9bf0a31-ARN
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/data-post.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/data-post.js
IP 162.125.71.15:0
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:58:30 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 38fc34660cad4d5ba40d9fe5e7809b9c
X-Firefox-Spdy: h2
dl.dropbox.com/u/16265358/downloadsgratis/style.css
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/16265358/downloadsgratis/style.css
IP 162.125.71.15:0
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/style.css HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:58:30 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: c28f89c58193453d95d7f748e1e12816
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/blogger.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP 162.125.71.15:0
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:58:30 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 89bb03f398a04dcdbab7d86621f6efa9
X-Firefox-Spdy: h2