xn--eckfca4feb.xn--tckwe/
216.239.38.21301 Moved Permanently 233 B URL HTTP/1.1 xn--eckfca4feb.xn--tckwe/
IP 216.239.38.21:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 263e20971679cf8b2423be5f909a249d
98abd4e9848abf4e7f7b30a5772d246492323c34
ccf1e5b99a8d69bbdb68029bfa3593ffd73b0727440287cd6cc58ecd2e37755c
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: xn--eckfca4feb.xn--tckwe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: http://www.xn--eckfca4feb.xn--tckwe/
Date: Fri, 27 Jan 2023 02:29:23 GMT
Content-Type: text/html; charset=UTF-8
Server: ghs
Content-Length: 233
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3952
Expires: Fri, 27 Jan 2023 03:35:15 GMT
Date: Fri, 27 Jan 2023 02:29:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4896
Expires: Fri, 27 Jan 2023 03:50:59 GMT
Date: Fri, 27 Jan 2023 02:29:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 27 Jan 2023 01:35:19 GMT
content-type: application/json
age: 3244
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6269
Expires: Fri, 27 Jan 2023 04:13:52 GMT
Date: Fri, 27 Jan 2023 02:29:23 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: r0Nc0nAOizY//HVzqMPY6suHr7NGTJbjpkTrnpc2IomFU3mCl+sMSt8Bo4VN0iE8cupxUlicdig=
x-amz-request-id: VZK3S4JFT394P9WV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 02:20:21 GMT
age: 542
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 02:29:23 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 27 Jan 2023 01:49:02 GMT
age: 2421
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.xn--eckfca4feb.xn--tckwe/
142.250.74.19301 Moved Permanently 181 B URL HTTP/1.1 www.xn--eckfca4feb.xn--tckwe/
IP 142.250.74.19:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 68adf972874ea9fbe81f95b168b87463
7aea84943976ca375398097c2ebd295f281fe7b2
18d16818769195ae9889d5a5ff5faca36cdc7797fc9b5ac784829ec6a86d04ea
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.xn--eckfca4feb.xn--tckwe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.xn--eckfca4feb.xn--tckwe/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 27 Jan 2023 02:29:23 GMT
Expires: Fri, 27 Jan 2023 02:29:23 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 181
Server: GSE
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 88f048c75df03f18aa40ed42c29549d7
73c7f15bab393dcdb73f58898e08434d4493dcf2
7dff13369a9b6930f902fe288d6a2068da072e2633694d7756abe5848389cd7f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7DFF13369A9B6930F902FE288D6A2068DA072E2633694D7756ABE5848389CD7F"
Last-Modified: Fri, 27 Jan 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 27 Jan 2023 08:29:23 GMT
Date: Fri, 27 Jan 2023 02:29:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2957
Expires: Fri, 27 Jan 2023 03:18:40 GMT
Date: Fri, 27 Jan 2023 02:29:23 GMT
Connection: keep-alive
www.xn--eckfca4feb.xn--tckwe/
142.250.74.19200 OK 15 kB URL HTTP/2 www.xn--eckfca4feb.xn--tckwe/
IP 142.250.74.19:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6082)
Hash 41f0cadd66e0caa24c429c71bab1d160
17cc0ebcf5a9000a0017cd7d2861730416b8fb3c
931485a212e1b7d9495898993d8d3f7e8603a81e9a9c561d28fe1d22160da2ff
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.xn--eckfca4feb.xn--tckwe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests
content-security-policy-report-only: default-src https: blob: data: 'unsafe-inline' 'unsafe-eval'; report-uri https://www.blogger.com/cspreport
content-type: text/html; charset=UTF-8
expires: Fri, 27 Jan 2023 02:29:24 GMT
date: Fri, 27 Jan 2023 02:29:24 GMT
cache-control: private, max-age=0
last-modified: Thu, 26 Jan 2023 13:18:16 GMT
etag: W/"900ddd540a5ae6b07c504b7afa376fa02b7ad726b4802fa21d670f8db0157008"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 14796
server: GSE
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.43.234.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.234.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: syMKP6GRvGTbTo7GDhn9SA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: reATDg/SG8oazQF29LTMI9rS8KY=
www.xn--eckfca4feb.xn--tckwe/js/cookienotice.js
142.250.74.19200 OK 2.0 kB URL HTTP/2 www.xn--eckfca4feb.xn--tckwe/js/cookienotice.js
IP 142.250.74.19:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Phishing
GET /js/cookienotice.js HTTP/1.1
Host: www.xn--eckfca4feb.xn--tckwe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Fri, 27 Jan 2023 02:29:24 GMT
expires: Fri, 03 Feb 2023 02:29:24 GMT
cache-control: public, max-age=604800
last-modified: Thu, 26 Jan 2023 21:54:47 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 44adf8a39c4678db9cda4bc1f44326ef
68cd22f7dcd9ab779cd22a69ca3be8577f9b2ba9
2c1967dcd6247c73f316f3b5494ff89ea11f62b2cbb0a7755e3f5ea5e1d5d75f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2152
Cache-Control: max-age=123204
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:24 GMT
Etag: "63d26ce0-1d7"
Expires: Sat, 28 Jan 2023 12:42:48 GMT
Last-Modified: Thu, 26 Jan 2023 12:06:56 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 82e3abc4a7b17efedca67cf215f4bb60
e20e55d87591af7db3a4bcfc429048f85e389b85
df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 37994a613d275a8b9882e482c05a148a
5afb51ccfaabda9c87f66f49c252b83d7486856b
a4d56968096c504330c8278de0cddbb8f444079f88a5cf8939424e3bc2525740
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
216.58.207.233200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 09:41:15 GMT
expires: Wed, 24 Jan 2024 09:41:15 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 12:51:55 GMT
content-type: text/css
age: 233289
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 37994a613d275a8b9882e482c05a148a
5afb51ccfaabda9c87f66f49c252b83d7486856b
a4d56968096c504330c8278de0cddbb8f444079f88a5cf8939424e3bc2525740
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-0NFMXQ3MV4
142.250.74.72200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-0NFMXQ3MV4
IP 142.250.74.72:0
File type ASCII text, with very long lines (19467)
Hash 8f6645fb7b58efa2a3310f44c7493d10
4d513ccbdedeaa73a40b53c2b71737d222fe09d9
00601af8ef2a459a54af2def1e9862533bc88bba07ab59f14bdf7594a2092704
GET /gtag/js?id=G-0NFMXQ3MV4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jan 2023 02:29:24 GMT
expires: Fri, 27 Jan 2023 02:29:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77191
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 37994a613d275a8b9882e482c05a148a
5afb51ccfaabda9c87f66f49c252b83d7486856b
a4d56968096c504330c8278de0cddbb8f444079f88a5cf8939424e3bc2525740
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 82e3abc4a7b17efedca67cf215f4bb60
e20e55d87591af7db3a4bcfc429048f85e389b85
df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5f57a83befb5510821576265e691190f
136d15f2cbbc6416d808afcb8f48a19b346937fc
b3d3b78aaea9273c95224d6242a3817bac9be7fc46800e741da32bba13db5fa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 27 Jan 2023 01:46:59 GMT
expires: Fri, 27 Jan 2023 03:46:59 GMT
cache-control: public, max-age=7200
age: 2546
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5f57a83befb5510821576265e691190f
136d15f2cbbc6416d808afcb8f48a19b346937fc
b3d3b78aaea9273c95224d6242a3817bac9be7fc46800e741da32bba13db5fa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5f57a83befb5510821576265e691190f
136d15f2cbbc6416d808afcb8f48a19b346937fc
b3d3b78aaea9273c95224d6242a3817bac9be7fc46800e741da32bba13db5fa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5f57a83befb5510821576265e691190f
136d15f2cbbc6416d808afcb8f48a19b346937fc
b3d3b78aaea9273c95224d6242a3817bac9be7fc46800e741da32bba13db5fa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5f57a83befb5510821576265e691190f
136d15f2cbbc6416d808afcb8f48a19b346937fc
b3d3b78aaea9273c95224d6242a3817bac9be7fc46800e741da32bba13db5fa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c8a0d6bc80301700d6fb1d520beb8b49
f33a1a1e491fcd6ca31360b28b092457a2d48f23
ef0535b52ccb717c1200d5974ea8841b92f655234d67ace0e71c1ec7f5fbb3f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j99&a=1766016481&t=pageview&_s=1&dl=https%3A%2F%2Fwww.xn--eckfca4feb.xn--tckwe%2F&ul=en-us&de=UTF-8&dt=%E4%B8%AD%E5%8F%97%E5%B0%82%E9%96%80%E3%80%90%EF%BC%B3%EF%BC%B3%EF%BC%AA%E3%80%91%E7%AE%97%E6%95%B0%E7%89%B9%E5%8C%96%E5%A1%BE%20%7C%20%EF%BC%97%E4%BA%BA%E3%81%AB%EF%BC%95%E4%BA%BA%E3%81%8C%E6%99%BA%E8%BE%AF%E5%92%8C%E6%AD%8C%E5%B1%B1%E3%81%AB%20%7C%20%E5%AE%8C%E5%85%A8%E7%B4%B9%E4%BB%8B%E5%88%B6&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IADAAEABAAAAACAAI~&jid=1405368797&gjid=460863269&cid=1092598613.1674786564&tid=UA-79976331-1&_gid=2059133762.1674786565&_r=1&_slc=1&z=1075594476
142.250.74.110200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1766016481&t=pageview&_s=1&dl=https%3A%2F%2Fwww.xn--eckfca4feb.xn--tckwe%2F&ul=en-us&de=UTF-8&dt=%E4%B8%AD%E5%8F%97%E5%B0%82%E9%96%80%E3%80%90%EF%BC%B3%EF%BC%B3%EF%BC%AA%E3%80%91%E7%AE%97%E6%95%B0%E7%89%B9%E5%8C%96%E5%A1%BE%20%7C%20%EF%BC%97%E4%BA%BA%E3%81%AB%EF%BC%95%E4%BA%BA%E3%81%8C%E6%99%BA%E8%BE%AF%E5%92%8C%E6%AD%8C%E5%B1%B1%E3%81%AB%20%7C%20%E5%AE%8C%E5%85%A8%E7%B4%B9%E4%BB%8B%E5%88%B6&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IADAAEABAAAAACAAI~&jid=1405368797&gjid=460863269&cid=1092598613.1674786564&tid=UA-79976331-1&_gid=2059133762.1674786565&_r=1&_slc=1&z=1075594476
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=1766016481&t=pageview&_s=1&dl=https%3A%2F%2Fwww.xn--eckfca4feb.xn--tckwe%2F&ul=en-us&de=UTF-8&dt=%E4%B8%AD%E5%8F%97%E5%B0%82%E9%96%80%E3%80%90%EF%BC%B3%EF%BC%B3%EF%BC%AA%E3%80%91%E7%AE%97%E6%95%B0%E7%89%B9%E5%8C%96%E5%A1%BE%20%7C%20%EF%BC%97%E4%BA%BA%E3%81%AB%EF%BC%95%E4%BA%BA%E3%81%8C%E6%99%BA%E8%BE%AF%E5%92%8C%E6%AD%8C%E5%B1%B1%E3%81%AB%20%7C%20%E5%AE%8C%E5%85%A8%E7%B4%B9%E4%BB%8B%E5%88%B6&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IADAAEABAAAAACAAI~&jid=1405368797&gjid=460863269&cid=1092598613.1674786564&tid=UA-79976331-1&_gid=2059133762.1674786565&_r=1&_slc=1&z=1075594476 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.xn--eckfca4feb.xn--tckwe
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.xn--eckfca4feb.xn--tckwe
date: Fri, 27 Jan 2023 02:29:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-0NFMXQ3MV4&cid=1092598613.1674786564>m=2oe1p0&aip=1&z=810775107
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-0NFMXQ3MV4&cid=1092598613.1674786564>m=2oe1p0&aip=1&z=810775107
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-0NFMXQ3MV4&cid=1092598613.1674786564>m=2oe1p0&aip=1&z=810775107 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 27 Jan 2023 02:29:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c8a0d6bc80301700d6fb1d520beb8b49
f33a1a1e491fcd6ca31360b28b092457a2d48f23
ef0535b52ccb717c1200d5974ea8841b92f655234d67ace0e71c1ec7f5fbb3f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.xn--eckfca4feb.xn--tckwe/favicon.ico
142.250.74.19200 OK 733 B URL HTTP/2 www.xn--eckfca4feb.xn--tckwe/favicon.ico
IP 142.250.74.19:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 3a62f2ccffcca791065c72476e0b8dd2
631e085857f5e0789bb9533d0b6b97264885acc6
5430b2d4fb77ce692ebd03b3ad83f6a1b1700c39e9f1adec7c7aa80d3d982b57
GET /favicon.ico HTTP/1.1
Host: www.xn--eckfca4feb.xn--tckwe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Cookie: _ga_0NFMXQ3MV4=GS1.1.1674786564.1.0.1674786564.60.0.0; _ga=GA1.1.1092598613.1674786564
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Fri, 27 Jan 2023 02:29:25 GMT
date: Fri, 27 Jan 2023 02:29:25 GMT
cache-control: private, max-age=86400
last-modified: Thu, 26 Jan 2023 13:18:16 GMT
etag: W/"900ddd540a5ae6b07c504b7afa376fa02b7ad726b4802fa21d670f8db0157008"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 733
server: GSE
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f4c8e17a668764556ab61c7c31e53c7
ada5ee5917ab9faf3d55a6da1d5bfc3077e42de2
8ac89ed8b6650ea140c2eac1b1dd61f8498e97e278e6bd6debfd803a588e2468
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-79976331-1&cid=1092598613.1674786564&jid=1405368797&gjid=460863269&_gid=2059133762.1674786565&_u=IADAAEAAAAAAACAAI~&z=1458501122
173.194.221.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-79976331-1&cid=1092598613.1674786564&jid=1405368797&gjid=460863269&_gid=2059133762.1674786565&_u=IADAAEAAAAAAACAAI~&z=1458501122
IP 173.194.221.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-79976331-1&cid=1092598613.1674786564&jid=1405368797&gjid=460863269&_gid=2059133762.1674786565&_u=IADAAEAAAAAAACAAI~&z=1458501122 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.xn--eckfca4feb.xn--tckwe
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.xn--eckfca4feb.xn--tckwe
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 27 Jan 2023 02:29:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-0NFMXQ3MV4&cid=1092598613.1674786564>m=2oe1p0&aip=1
173.194.221.154204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-0NFMXQ3MV4&cid=1092598613.1674786564>m=2oe1p0&aip=1
IP 173.194.221.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-0NFMXQ3MV4&cid=1092598613.1674786564>m=2oe1p0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xn--eckfca4feb.xn--tckwe
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://www.xn--eckfca4feb.xn--tckwe
date: Fri, 27 Jan 2023 02:29:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f4c8e17a668764556ab61c7c31e53c7
ada5ee5917ab9faf3d55a6da1d5bfc3077e42de2
8ac89ed8b6650ea140c2eac1b1dd61f8498e97e278e6bd6debfd803a588e2468
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.analytics.google.com/g/collect?v=2&tid=G-0NFMXQ3MV4>m=2oe1p0&_p=1766016481&_gaz=1&cid=1092598613.1674786564&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674786564&sct=1&seg=0&dl=https%3A%2F%2Fwww.xn--eckfca4feb.xn--tckwe%2F&dt=&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-0NFMXQ3MV4>m=2oe1p0&_p=1766016481&_gaz=1&cid=1092598613.1674786564&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674786564&sct=1&seg=0&dl=https%3A%2F%2Fwww.xn--eckfca4feb.xn--tckwe%2F&dt=&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-0NFMXQ3MV4>m=2oe1p0&_p=1766016481&_gaz=1&cid=1092598613.1674786564&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674786564&sct=1&seg=0&dl=https%3A%2F%2Fwww.xn--eckfca4feb.xn--tckwe%2F&dt=&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xn--eckfca4feb.xn--tckwe
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.xn--eckfca4feb.xn--tckwe
date: Fri, 27 Jan 2023 02:29:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3ebf9d7211aba4c70b84fb470a61b414
28fe29a24e47d6abda88eeeb5e22eddda03c7fca
a8276e099d9d8452b65b70d161a459fae25afb37cea7eff9cc5563b7de972acc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-79976331-1&cid=1092598613.1674786564&jid=1405368797&_u=IADAAEAAAAAAACAAI~&z=1715084406
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-79976331-1&cid=1092598613.1674786564&jid=1405368797&_u=IADAAEAAAAAAACAAI~&z=1715084406
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-79976331-1&cid=1092598613.1674786564&jid=1405368797&_u=IADAAEAAAAAAACAAI~&z=1715084406 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 27 Jan 2023 02:29:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 97ccaa279f6ade845b71b57615d40388
5186089108dca0136feab418da66a9e027c7e427
515128c713e98c9a0546c35d9a1e0719057136509b5b2312e4af56a9acc80ec2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12419
Expires: Fri, 27 Jan 2023 05:56:24 GMT
Date: Fri, 27 Jan 2023 02:29:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12419
Expires: Fri, 27 Jan 2023 05:56:24 GMT
Date: Fri, 27 Jan 2023 02:29:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12419
Expires: Fri, 27 Jan 2023 05:56:24 GMT
Date: Fri, 27 Jan 2023 02:29:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12419
Expires: Fri, 27 Jan 2023 05:56:24 GMT
Date: Fri, 27 Jan 2023 02:29:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12419
Expires: Fri, 27 Jan 2023 05:56:24 GMT
Date: Fri, 27 Jan 2023 02:29:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:15:25 GMT
age: 69240
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 869cdfba2637cc932ce387317a3c485e
51d87a5223d87c959bf27b2a825dce0a28f52ada
6dc4247dd3110836195f9962463bd8265be89633e9e589bf19955991751c26fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5669
x-amzn-requestid: 17f6235c-d495-4813-9453-407331e0dcad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1ZSH4fIAMFxeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c3b-67ff5c7f416727670e7c3b21;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:04:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KGNpzuI2ny_1LH90atWa09SPYG7Ovolbv_KvL8nC6fUk59z-6TFsMQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 03:05:04 GMT
age: 84261
etag: "51d87a5223d87c959bf27b2a825dce0a28f52ada"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b8fa26c-af88-46ea-a5c6-1122db65d6d4.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b8fa26c-af88-46ea-a5c6-1122db65d6d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f3605538118d3aaef721a03d482b0f9a
2e2e770d552a05a0f24f4bbb1110266440b2bf76
1011d275125968599a8dd082810deca07e82770efad760b3f1ebf7f74ebab78e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b8fa26c-af88-46ea-a5c6-1122db65d6d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9063
x-amzn-requestid: 8eb82d16-63f8-4e6e-b9fe-1795c7703c03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIgq2EbSoAMFUwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce178-67a0958d7cd1f132605d93be;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:10:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: aTjiRrFeeC6zT_NzPDvKNs-aV__tUniMFfbwxsn1eIf3NQzXxgYETA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:47:53 GMT
age: 67292
etag: "2e2e770d552a05a0f24f4bbb1110266440b2bf76"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e7158416f60576804ccff03307319fe
a342f94625e913fa6b8d862a59979f1e3ad80dd1
5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5737
x-amzn-requestid: 23239d1f-0228-4722-b826-40dc8c9a4af2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVzDbEacIAMFZtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d23215-1604c24e272fbb657b9925cc;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:56:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -_8PZoms7W6Lvw__KsoTwL_CzjfyWChzoSWDc9yCk9zCR8cTs87oNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 16:31:35 GMT
age: 35870
etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f238e33-a6e3-479a-920f-92a9c7bf1a06.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f238e33-a6e3-479a-920f-92a9c7bf1a06.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a3d856f57bcfd0bb18253cd77dd6541b
9d9680fb1a9232bb2b42b824dc11633666bfa31a
f2a03384e72a4d3350ee6addc49d6a507837eb195647016ea001e846eaccb0e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f238e33-a6e3-479a-920f-92a9c7bf1a06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6055
x-amzn-requestid: dd44b3ab-6248-419a-995a-f3aaf59dae77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLRhMFPYIAMF91g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdfc6d-4df410b022dbbb55297e6ac7;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 03:18:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: c02qyu1rphr_LpUAQQRaTxlNGeEl-yKmVpshfKoWlsfKWiiciJURAw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 08:45:22 GMT
age: 63843
etag: "9d9680fb1a9232bb2b42b824dc11633666bfa31a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e96f3ea585b5fa8ed6446ed16e2b4b2
f90c205f370a2426dffe3c21b24bfa551b385556
6967ba25887f87200fcb39a3e6f065fd27596b2ebcf0d33a2751c655d6e724f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4272
x-amzn-requestid: 90778100-cfb9-46c5-b75d-caafc1fdbae9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEMjeEB1oAMFl8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb27af-5743a4b077fde951558d49bd;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 23:45:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ev8Pkhb87rHNaINJOl0VO5ze6SbLktZjmFANNbIOnVs74H8saNsmOg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 12:34:55 GMT
age: 50070
etag: "f90c205f370a2426dffe3c21b24bfa551b385556"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjOUHswFRjxeKLF7Uf3yuZWhj1ag43N3bLMfEhZfgtg_XEfMGVOwLSA72lGypz3IetdvYNbytIRAXWHfBy6qs4OdNCSJM4s8NlKg6dk-yJDWRUKfHCWX20BeUpdR6M99AXaaVxwBw2co66wThse_Lfbud-WohxBzLcf3FSAXcSOQ8rcyEztPBk0mGqz/w480-h240-p-k-no-nu/%EF%BC%B3%E3%82%B7%E3%83%8D%E3%83%9E.PNG
216.58.207.193200 OK 174 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjOUHswFRjxeKLF7Uf3yuZWhj1ag43N3bLMfEhZfgtg_XEfMGVOwLSA72lGypz3IetdvYNbytIRAXWHfBy6qs4OdNCSJM4s8NlKg6dk-yJDWRUKfHCWX20BeUpdR6M99AXaaVxwBw2co66wThse_Lfbud-WohxBzLcf3FSAXcSOQ8rcyEztPBk0mGqz/w480-h240-p-k-no-nu/%EF%BC%B3%E3%82%B7%E3%83%8D%E3%83%9E.PNG
IP 216.58.207.193:0
File type PNG image data, 480 x 240, 8-bit/color RGB, non-interlaced\012- data
Size 174 kB (174286 bytes)
Hash e6205b1c24f2f34223317e4a1d7a8707
7cd6101bdfcb7042160f527733b84d3c64973412
f77abe38183a7fe098303959c05a65b1db028e9a873971612ffd571350ef5d92
GET /img/b/R29vZ2xl/AVvXsEjOUHswFRjxeKLF7Uf3yuZWhj1ag43N3bLMfEhZfgtg_XEfMGVOwLSA72lGypz3IetdvYNbytIRAXWHfBy6qs4OdNCSJM4s8NlKg6dk-yJDWRUKfHCWX20BeUpdR6M99AXaaVxwBw2co66wThse_Lfbud-WohxBzLcf3FSAXcSOQ8rcyEztPBk0mGqz/w480-h240-p-k-no-nu/%EF%BC%B3%E3%82%B7%E3%83%8D%E3%83%9E.PNG HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "va3ee"
expires: Sat, 28 Jan 2023 02:29:25 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="____.PNG";filename*=UTF-8''%EF%BC%B3%E3%82%B7%E3%83%8D%E3%83%9E.PNG
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 02:29:25 GMT
server: fife
content-length: 174286
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=ee66931390
172.64.168.22200 OK 198 kB URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=ee66931390
IP 172.64.168.22:0
File type ASCII text, with very long lines (26500)
Size 198 kB (197490 bytes)
Hash 3337e1f74413f8595b39e75833c3fc6c
f7a5878585fed19c1f0cc3557b0cef4154036388
42fe74d361327acff2ea95e59410e319c75510cc12aafd2d1972078ec907be6d
GET /releases/v5.15.4/css/free-v4-shims.min.css?token=ee66931390 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Origin: https://www.xn--eckfca4feb.xn--tckwe
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 02:29:24 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 43f56e539b5c147f3a1a5a878be02240.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: -_Dtwm8BIog7ZNfpw1-tJqZtYQV3FTlsUTsoL3fEsLu96DwgKFz41A==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ha5GqetYzZeIMvwCYHUUCKp81udX2di%2Btq73Zf3ucunUiJd7gB48sTtBPEv1OMK5lEqF9koV5EGFXolr8E8Wgb09F%2BBpdEgLIgvv0igJPPgPz%2FPdtfXbM7fo86c%2F4ckVTnO5mCtKBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78fe0f7df86b745b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhk-zl31yCWHSm4LxeTO1rw5SnX3UoEkSh6k_WzG9FTEDrrsutIYTXgXeoTLlRQJU_BFBjGc2b0sfarCY1ve90u_cHIBuTz8v4-f7ShWmmK6K5KHS9w4dgw1c3Nu-iRJoEdXMGfPKAUn8QvpcmfbAvKo2FIWSZZ5p_r0sXzTGkHjuByFVDDzkupfrnk/w480-h240-p-k-no-nu/%E3%83%88%E3%83%AC%E3%83%90%E3%83%88_1.PNG
216.58.207.193200 OK 167 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhk-zl31yCWHSm4LxeTO1rw5SnX3UoEkSh6k_WzG9FTEDrrsutIYTXgXeoTLlRQJU_BFBjGc2b0sfarCY1ve90u_cHIBuTz8v4-f7ShWmmK6K5KHS9w4dgw1c3Nu-iRJoEdXMGfPKAUn8QvpcmfbAvKo2FIWSZZ5p_r0sXzTGkHjuByFVDDzkupfrnk/w480-h240-p-k-no-nu/%E3%83%88%E3%83%AC%E3%83%90%E3%83%88_1.PNG
IP 216.58.207.193:0
File type PNG image data, 480 x 240, 8-bit/color RGB, non-interlaced\012- data
Size 167 kB (166865 bytes)
Hash 7555fef1815b193ede7a0b3edd6a60ac
fe183bcfa200154d55e487d846d1c372ccef2b54
497fd8462111b706840c016d5b79a409eb66bc7e6d03b30e91f90e672a7f5d75
GET /img/b/R29vZ2xl/AVvXsEhk-zl31yCWHSm4LxeTO1rw5SnX3UoEkSh6k_WzG9FTEDrrsutIYTXgXeoTLlRQJU_BFBjGc2b0sfarCY1ve90u_cHIBuTz8v4-f7ShWmmK6K5KHS9w4dgw1c3Nu-iRJoEdXMGfPKAUn8QvpcmfbAvKo2FIWSZZ5p_r0sXzTGkHjuByFVDDzkupfrnk/w480-h240-p-k-no-nu/%E3%83%88%E3%83%AC%E3%83%90%E3%83%88_1.PNG HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vab50"
expires: Sat, 28 Jan 2023 02:29:25 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="_____1.PNG";filename*=UTF-8''%E3%83%88%E3%83%AC%E3%83%90%E3%83%88_1.PNG
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 02:29:25 GMT
server: fife
content-length: 166865
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgtiHOijL7cxcnwYKcT8WrHlKjSHa3hff85nh-8J60taNXQrHNcnSiERUEaze__arGrxVAQKZtnM_QwD_ZJrUxUYNqjI798G2IBKQnzDfOBg3rcX03tGwA1eaecMsjGfs6-Rh4Opdif5xtD5Y7OK1oFuaEsPT_FwbilXBjolxOykgZeStoptmkUhEHf/s600/2023_%E6%99%BA%E8%BE%AF%E5%AE%9F%E7%B8%BE.PNG
216.58.207.193200 OK 256 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgtiHOijL7cxcnwYKcT8WrHlKjSHa3hff85nh-8J60taNXQrHNcnSiERUEaze__arGrxVAQKZtnM_QwD_ZJrUxUYNqjI798G2IBKQnzDfOBg3rcX03tGwA1eaecMsjGfs6-Rh4Opdif5xtD5Y7OK1oFuaEsPT_FwbilXBjolxOykgZeStoptmkUhEHf/s600/2023_%E6%99%BA%E8%BE%AF%E5%AE%9F%E7%B8%BE.PNG
IP 216.58.207.193:0
File type PNG image data, 600 x 416, 8-bit/color RGB, non-interlaced\012- data
Size 256 kB (255842 bytes)
Hash f81cea5e25762c1abd8c8294a011f415
4080bd6f6b16c8c601607dc9eebf4473108e656d
4c0a57d36264ea849cd87bd7c8791e1e82b12a1002a9caa352ae8cb1542b492d
GET /img/b/R29vZ2xl/AVvXsEgtiHOijL7cxcnwYKcT8WrHlKjSHa3hff85nh-8J60taNXQrHNcnSiERUEaze__arGrxVAQKZtnM_QwD_ZJrUxUYNqjI798G2IBKQnzDfOBg3rcX03tGwA1eaecMsjGfs6-Rh4Opdif5xtD5Y7OK1oFuaEsPT_FwbilXBjolxOykgZeStoptmkUhEHf/s600/2023_%E6%99%BA%E8%BE%AF%E5%AE%9F%E7%B8%BE.PNG HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vab97"
expires: Sat, 28 Jan 2023 02:29:25 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2023_____.PNG";filename*=UTF-8''2023_%E6%99%BA%E8%BE%AF%E5%AE%9F%E7%B8%BE.PNG
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 02:29:25 GMT
server: fife
content-length: 255842
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5f57a83befb5510821576265e691190f
136d15f2cbbc6416d808afcb8f48a19b346937fc
b3d3b78aaea9273c95224d6242a3817bac9be7fc46800e741da32bba13db5fa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 02:29:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj9ZYmvnaNYdIdle7NEtikIHHha-5wXQDAXezmQWFgSAZxAMPygh71evhAHZbo4jJqNPHE5WcLxF5myDddtxoe7BnZv1HqsdlXqph0bXVCVjfeUJhBwZ1aPpMf8iajMfn8NVWicSXgFb6gQ7oLx0wmaIp63ww1uLLYS5of-fcBoTwZJ2qpMrknZqRUj/w480-h240-p-k-no-nu/%E3%83%88%E3%83%AC%E3%83%90%E3%83%88_2.PNG
216.58.207.193200 OK 162 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj9ZYmvnaNYdIdle7NEtikIHHha-5wXQDAXezmQWFgSAZxAMPygh71evhAHZbo4jJqNPHE5WcLxF5myDddtxoe7BnZv1HqsdlXqph0bXVCVjfeUJhBwZ1aPpMf8iajMfn8NVWicSXgFb6gQ7oLx0wmaIp63ww1uLLYS5of-fcBoTwZJ2qpMrknZqRUj/w480-h240-p-k-no-nu/%E3%83%88%E3%83%AC%E3%83%90%E3%83%88_2.PNG
IP 216.58.207.193:0
File type PNG image data, 480 x 240, 8-bit/color RGB, non-interlaced\012- data
Size 162 kB (162514 bytes)
Hash d15b6fdbdc59ccd1954816b9597a7f80
8dfb246e8cd7c8fb8e6b05858483fa5304f28c19
2b25369e567991675ea45d6c678b5abec071e2c6bb22978766c1e3942397217b
GET /img/b/R29vZ2xl/AVvXsEj9ZYmvnaNYdIdle7NEtikIHHha-5wXQDAXezmQWFgSAZxAMPygh71evhAHZbo4jJqNPHE5WcLxF5myDddtxoe7BnZv1HqsdlXqph0bXVCVjfeUJhBwZ1aPpMf8iajMfn8NVWicSXgFb6gQ7oLx0wmaIp63ww1uLLYS5of-fcBoTwZJ2qpMrknZqRUj/w480-h240-p-k-no-nu/%E3%83%88%E3%83%AC%E3%83%90%E3%83%88_2.PNG HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vab4c"
expires: Sat, 28 Jan 2023 02:29:25 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="_____2.PNG";filename*=UTF-8''%E3%83%88%E3%83%AC%E3%83%90%E3%83%88_2.PNG
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 02:29:25 GMT
server: fife
content-length: 162514
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiBgkbU9KocDmSrX9C8U9LyHQrpAmAoyZnqpfSc0vBwv88ERCi_IWTNdI4Uu0WtXjK6dFinAc3CWNTpNqf5w56FPFUrRZDeIdqgD9rJVevrFdcAkS8bzwVFOnKUEQk3IE_J4vNF26j22YOMJxiT7mInJix6ncXyLL5GxuBgoJTTed8HMuqKgWYCfE5Q/s600/%E5%B9%B4%E9%96%93%E3%83%90%E3%83%88%E3%83%A9%E3%83%B3.PNG
216.58.207.193200 OK 124 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiBgkbU9KocDmSrX9C8U9LyHQrpAmAoyZnqpfSc0vBwv88ERCi_IWTNdI4Uu0WtXjK6dFinAc3CWNTpNqf5w56FPFUrRZDeIdqgD9rJVevrFdcAkS8bzwVFOnKUEQk3IE_J4vNF26j22YOMJxiT7mInJix6ncXyLL5GxuBgoJTTed8HMuqKgWYCfE5Q/s600/%E5%B9%B4%E9%96%93%E3%83%90%E3%83%88%E3%83%A9%E3%83%B3.PNG
IP 216.58.207.193:0
File type PNG image data, 600 x 300, 8-bit/color RGB, non-interlaced\012- data
Size 124 kB (124111 bytes)
Hash 9d18996db2c1324e9ab46f3b6193a027
f8991470f157b9f0edd726dd900c2998083a092e
5a4cefadc4706e8c8a82f7e45c17ad71d69164d05aabc07a91f3e381efde8e0b
GET /img/b/R29vZ2xl/AVvXsEiBgkbU9KocDmSrX9C8U9LyHQrpAmAoyZnqpfSc0vBwv88ERCi_IWTNdI4Uu0WtXjK6dFinAc3CWNTpNqf5w56FPFUrRZDeIdqgD9rJVevrFdcAkS8bzwVFOnKUEQk3IE_J4vNF26j22YOMJxiT7mInJix6ncXyLL5GxuBgoJTTed8HMuqKgWYCfE5Q/s600/%E5%B9%B4%E9%96%93%E3%83%90%E3%83%88%E3%83%A9%E3%83%B3.PNG HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "va9d6"
expires: Sat, 28 Jan 2023 02:29:25 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="______.PNG";filename*=UTF-8''%E5%B9%B4%E9%96%93%E3%83%90%E3%83%88%E3%83%A9%E3%83%B3.PNG
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 02:29:25 GMT
server: fife
content-length: 124111
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgNan7TouI4_GueaL8X4OQHRfTDZEnWk27gDkZu9l50zKQ6SlrzG4LUGPclm-7GOelofGJOq4Ou0TeF3Jt_2s3PBfgBzfO-EUjGxBQKQMl7PhaPjT9xo0JGGjqF0TqZkRsvqD5LbTBWsfLQz45FKzB38GQ8r42SAWT-IryaPTluNCI4sTsWsE2n-6LX/s600/bosyu2023_15.PNG
216.58.207.193200 OK 138 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgNan7TouI4_GueaL8X4OQHRfTDZEnWk27gDkZu9l50zKQ6SlrzG4LUGPclm-7GOelofGJOq4Ou0TeF3Jt_2s3PBfgBzfO-EUjGxBQKQMl7PhaPjT9xo0JGGjqF0TqZkRsvqD5LbTBWsfLQz45FKzB38GQ8r42SAWT-IryaPTluNCI4sTsWsE2n-6LX/s600/bosyu2023_15.PNG
IP 216.58.207.193:0
File type PNG image data, 600 x 416, 8-bit/color RGB, non-interlaced\012- data
Size 138 kB (137808 bytes)
Hash a744f01f770f8b31686fadacdd19b6f3
43f3546de1b0daac4c049109b0ed13729498fb6e
facd28e6cdaaef3159ec76abedbe455a24a378c1215300cfe9f7a5b073edeb6f
GET /img/b/R29vZ2xl/AVvXsEgNan7TouI4_GueaL8X4OQHRfTDZEnWk27gDkZu9l50zKQ6SlrzG4LUGPclm-7GOelofGJOq4Ou0TeF3Jt_2s3PBfgBzfO-EUjGxBQKQMl7PhaPjT9xo0JGGjqF0TqZkRsvqD5LbTBWsfLQz45FKzB38GQ8r42SAWT-IryaPTluNCI4sTsWsE2n-6LX/s600/bosyu2023_15.PNG HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "va8a8"
expires: Sat, 28 Jan 2023 02:29:25 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="bosyu2023_15.PNG"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 02:29:25 GMT
server: fife
content-length: 137808
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/a/AVvXsEh-ev6CibZDxE2FI_51QeJnx61rALpZe8YcGeO4xZx_FhetBgKR6bW-plrFkrSJ0s4uwL8rBGSU-Hc5m3LAVAXKOgpKZdx4HxDWdKTkOtGu9Vf4ymFr8GDEeiJXpXT2Lg4KDEvvTNVih9zyXOpcs7_EVwu0gYepBtrBWV6VtPq7BBndg3ufAkgr_3R-=s1260
216.58.207.193200 OK 106 kB URL HTTP/2 blogger.googleusercontent.com/img/a/AVvXsEh-ev6CibZDxE2FI_51QeJnx61rALpZe8YcGeO4xZx_FhetBgKR6bW-plrFkrSJ0s4uwL8rBGSU-Hc5m3LAVAXKOgpKZdx4HxDWdKTkOtGu9Vf4ymFr8GDEeiJXpXT2Lg4KDEvvTNVih9zyXOpcs7_EVwu0gYepBtrBWV6VtPq7BBndg3ufAkgr_3R-=s1260
IP 216.58.207.193:0
File type PNG image data, 1260 x 394, 8-bit/color RGB, non-interlaced\012- data
Size 106 kB (105740 bytes)
Hash 67ce4b4c25188de8623fbb41888f3e7f
89867e7dbbb045398a472c628c6cf5b0b2fb9db7
f2411d1379c8aafa8e083892b044f9520f15b9a79484592346f3ba241960dedc
GET /img/a/AVvXsEh-ev6CibZDxE2FI_51QeJnx61rALpZe8YcGeO4xZx_FhetBgKR6bW-plrFkrSJ0s4uwL8rBGSU-Hc5m3LAVAXKOgpKZdx4HxDWdKTkOtGu9Vf4ymFr8GDEeiJXpXT2Lg4KDEvvTNVih9zyXOpcs7_EVwu0gYepBtrBWV6VtPq7BBndg3ufAkgr_3R-=s1260 HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "va3fe"
expires: Sat, 28 Jan 2023 02:29:25 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="_____.PNG";filename*=UTF-8''%E3%83%88%E3%83%83%E3%83%97%E7%94%BB%E5%83%8F.PNG
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 02:29:25 GMT
server: fife
content-length: 105740
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi5Zk9G3vTk7dhae2SkUXGzvH77qaJoIDTC-U8O_zEwAEyFOikHPLj_-o8y5jC3E9VKQwR07PNzqHr308fx91LNXqm0XApup5-P-fdWkXoonIW5fOqDS68x56lwe5KI5InfwhFLGqWw9AnK9VBLrXZQBG6euQXlK9s3MyhrmrLxFV7mzG2t8oDL-bSk/s600/LINE%E5%95%8F%E3%81%84%E5%90%88%E3%82%8F%E3%81%9B%E3%83%90%E3%83%8A%E3%83%BC.jpg
216.58.207.193200 OK 52 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi5Zk9G3vTk7dhae2SkUXGzvH77qaJoIDTC-U8O_zEwAEyFOikHPLj_-o8y5jC3E9VKQwR07PNzqHr308fx91LNXqm0XApup5-P-fdWkXoonIW5fOqDS68x56lwe5KI5InfwhFLGqWw9AnK9VBLrXZQBG6euQXlK9s3MyhrmrLxFV7mzG2t8oDL-bSk/s600/LINE%E5%95%8F%E3%81%84%E5%90%88%E3%82%8F%E3%81%9B%E3%83%90%E3%83%8A%E3%83%BC.jpg
IP 216.58.207.193:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 600x214, components 3\012- data
Hash 56deed8447c395faa148c925072f13c6
000fcfe3d5787e353b0f17b2dc13e8cb6e0bad65
10a7adceffcdc9c58632841a05b19d6aa464514be28697e701994d713b38c528
GET /img/b/R29vZ2xl/AVvXsEi5Zk9G3vTk7dhae2SkUXGzvH77qaJoIDTC-U8O_zEwAEyFOikHPLj_-o8y5jC3E9VKQwR07PNzqHr308fx91LNXqm0XApup5-P-fdWkXoonIW5fOqDS68x56lwe5KI5InfwhFLGqWw9AnK9VBLrXZQBG6euQXlK9s3MyhrmrLxFV7mzG2t8oDL-bSk/s600/LINE%E5%95%8F%E3%81%84%E5%90%88%E3%82%8F%E3%81%9B%E3%83%90%E3%83%8A%E3%83%BC.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "va3c5"
expires: Sat, 28 Jan 2023 02:29:25 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="LINE________.jpg";filename*=UTF-8''LINE%E5%95%8F%E3%81%84%E5%90%88%E3%82%8F%E3%81%9B%E3%83%90%E3%83%8A%E3%83%BC.jpg
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 02:29:25 GMT
server: fife
content-length: 51925
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh626oNlW-MNqnMeeAcSbWePwuvUnrWQK-kyuus8JV4L15KNh_ilEfGC3lEWQR95KFiz6ZETzKHAgatF03tagtrtJCYx2dv5x5y7uv-sDyyPHrDJZwH61vJBfK9c7kn2beKp4wKvXTDj-Onj0VriU6ftrpqPC0HT7PHe6ZrhKubFkktSHbJUZu_ZHXh/s600/bosyu2023.PNG
216.58.207.193200 OK 192 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh626oNlW-MNqnMeeAcSbWePwuvUnrWQK-kyuus8JV4L15KNh_ilEfGC3lEWQR95KFiz6ZETzKHAgatF03tagtrtJCYx2dv5x5y7uv-sDyyPHrDJZwH61vJBfK9c7kn2beKp4wKvXTDj-Onj0VriU6ftrpqPC0HT7PHe6ZrhKubFkktSHbJUZu_ZHXh/s600/bosyu2023.PNG
IP 216.58.207.193:0
File type PNG image data, 600 x 416, 8-bit/color RGB, non-interlaced\012- data
Size 192 kB (192078 bytes)
Hash f2e918c3b18227558420570b05689f18
79e874636c045b3bd0c1b387f17e9f18bbbcc619
dce322a594612954c6097e7fd66106b862c620e4c6e928293a24ba2b2cc9de01
GET /img/b/R29vZ2xl/AVvXsEh626oNlW-MNqnMeeAcSbWePwuvUnrWQK-kyuus8JV4L15KNh_ilEfGC3lEWQR95KFiz6ZETzKHAgatF03tagtrtJCYx2dv5x5y7uv-sDyyPHrDJZwH61vJBfK9c7kn2beKp4wKvXTDj-Onj0VriU6ftrpqPC0HT7PHe6ZrhKubFkktSHbJUZu_ZHXh/s600/bosyu2023.PNG HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "va8a3"
expires: Sat, 28 Jan 2023 02:29:25 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="bosyu2023.PNG"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 02:29:25 GMT
server: fife
content-length: 192078
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEicOi4lOOIPo0IerP7GPlyc0d5YSy04RlmsPINhsl5KNXcOiGR3yprBMg8C9ugBs18TTfkI5KsFM9VSU4-IF3eCsuXsOblpN6PPyy9cgOavsQff-oLHjN8oVLtHvIjdx0qCRrxTkIgRxjIAFNt8fyjvfIcq4_cnypZ3xab5Lp0iDvsSXkhbdZ-q3dZl/s600/%E3%81%8A%E5%95%8F%E3%81%84%E5%90%88%E3%82%8F%E3%81%9B%E3%83%90%E3%83%8A%E3%83%BC.png
216.58.207.193200 OK 22 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEicOi4lOOIPo0IerP7GPlyc0d5YSy04RlmsPINhsl5KNXcOiGR3yprBMg8C9ugBs18TTfkI5KsFM9VSU4-IF3eCsuXsOblpN6PPyy9cgOavsQff-oLHjN8oVLtHvIjdx0qCRrxTkIgRxjIAFNt8fyjvfIcq4_cnypZ3xab5Lp0iDvsSXkhbdZ-q3dZl/s600/%E3%81%8A%E5%95%8F%E3%81%84%E5%90%88%E3%82%8F%E3%81%9B%E3%83%90%E3%83%8A%E3%83%BC.png
IP 216.58.207.193:0
File type PNG image data, 600 x 161, 8-bit/color RGBA, non-interlaced\012- data
Hash 14f6532fbf6a5ad2715d6eae1856f95a
04295f6cecd58e6fca744b04b30e051e5b758c34
0ed49bd4b9b6c7c091ef2860b2a3b80497f1a7568e5a3aefd0a24cb273a175f4
GET /img/b/R29vZ2xl/AVvXsEicOi4lOOIPo0IerP7GPlyc0d5YSy04RlmsPINhsl5KNXcOiGR3yprBMg8C9ugBs18TTfkI5KsFM9VSU4-IF3eCsuXsOblpN6PPyy9cgOavsQff-oLHjN8oVLtHvIjdx0qCRrxTkIgRxjIAFNt8fyjvfIcq4_cnypZ3xab5Lp0iDvsSXkhbdZ-q3dZl/s600/%E3%81%8A%E5%95%8F%E3%81%84%E5%90%88%E3%82%8F%E3%81%9B%E3%83%90%E3%83%8A%E3%83%BC.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "va3c3"
expires: Sat, 28 Jan 2023 02:29:25 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="_________.png";filename*=UTF-8''%E3%81%8A%E5%95%8F%E3%81%84%E5%90%88%E3%82%8F%E3%81%9B%E3%83%90%E3%83%8A%E3%83%BC.png
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 02:29:25 GMT
server: fife
content-length: 21723
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgppsxp-iOHAy1VCmDpWnrLRbjU405G_2SXxiw24n-30YXUBPO9EUynU2EI-L7MI-6eXmg7nooviGRUkKsJTKZg20adEpBmzRlo6oToBtTtZAciR1AM6fdTHajXWlpbnyWsyMkrf1LYC_D37ichk3ib_HdX_qo5sYgP2QyzaFMaOWP4_kpmtCEoPvOb/s600/%E7%AE%97%E3%83%90%E3%83%88%EF%BD%A5%E8%A6%81%E3%83%88%E3%83%AC.PNG
216.58.207.193200 OK 331 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgppsxp-iOHAy1VCmDpWnrLRbjU405G_2SXxiw24n-30YXUBPO9EUynU2EI-L7MI-6eXmg7nooviGRUkKsJTKZg20adEpBmzRlo6oToBtTtZAciR1AM6fdTHajXWlpbnyWsyMkrf1LYC_D37ichk3ib_HdX_qo5sYgP2QyzaFMaOWP4_kpmtCEoPvOb/s600/%E7%AE%97%E3%83%90%E3%83%88%EF%BD%A5%E8%A6%81%E3%83%88%E3%83%AC.PNG
IP 216.58.207.193:0
File type PNG image data, 600 x 416, 8-bit/color RGB, non-interlaced\012- data
Size 331 kB (331194 bytes)
Hash cedb8fbff365896ac8a02c73b808bfc8
68388c86cb64e9f1423be36328b7a95a0ec60e17
510907d9d50b0156a7d7ed1dc5b8cf6b9aa6a6d4f90d1eb82a6b593f9a511ca4
GET /img/b/R29vZ2xl/AVvXsEgppsxp-iOHAy1VCmDpWnrLRbjU405G_2SXxiw24n-30YXUBPO9EUynU2EI-L7MI-6eXmg7nooviGRUkKsJTKZg20adEpBmzRlo6oToBtTtZAciR1AM6fdTHajXWlpbnyWsyMkrf1LYC_D37ichk3ib_HdX_qo5sYgP2QyzaFMaOWP4_kpmtCEoPvOb/s600/%E7%AE%97%E3%83%90%E3%83%88%EF%BD%A5%E8%A6%81%E3%83%88%E3%83%AC.PNG HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "va3ea"
expires: Sat, 28 Jan 2023 02:29:25 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="_______.PNG";filename*=UTF-8''%E7%AE%97%E3%83%90%E3%83%88%EF%BD%A5%E8%A6%81%E3%83%88%E3%83%AC.PNG
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 02:29:25 GMT
server: fife
content-length: 331194
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj_unHivCVVDBkFadqEDkrFDFSiuqsFCI2KjtPonE__BKtUeCT1FPA39DrdPtiqfgY04hyYxn3U19ZmpOvuYfOftpdztNkBz7FH8L_B2RMjBlUaZM3nfP2Y0chmRAdh27yTqTkS6M9UYR-xZVQZroXXfqU1V6CTOM37UQ4VXEnlxSHAXa6n-GFAQUj4/w480-h240-p-k-no-nu/%E3%83%88%E3%83%AC%E3%83%90%E3%83%88_3.PNG
216.58.207.193200 OK 172 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj_unHivCVVDBkFadqEDkrFDFSiuqsFCI2KjtPonE__BKtUeCT1FPA39DrdPtiqfgY04hyYxn3U19ZmpOvuYfOftpdztNkBz7FH8L_B2RMjBlUaZM3nfP2Y0chmRAdh27yTqTkS6M9UYR-xZVQZroXXfqU1V6CTOM37UQ4VXEnlxSHAXa6n-GFAQUj4/w480-h240-p-k-no-nu/%E3%83%88%E3%83%AC%E3%83%90%E3%83%88_3.PNG
IP 216.58.207.193:0
File type PNG image data, 480 x 240, 8-bit/color RGB, non-interlaced\012- data
Size 172 kB (172205 bytes)
Hash aa35e7e10549231e92b8e8e6a3ff6d1c
243bb3d2e598b15643ccd48f21eb28cf4c03351a
00f96a31bfd99c4d9968c99a2ec8d694eb809de7a50fbb0c8498b7666aad2a63
GET /img/b/R29vZ2xl/AVvXsEj_unHivCVVDBkFadqEDkrFDFSiuqsFCI2KjtPonE__BKtUeCT1FPA39DrdPtiqfgY04hyYxn3U19ZmpOvuYfOftpdztNkBz7FH8L_B2RMjBlUaZM3nfP2Y0chmRAdh27yTqTkS6M9UYR-xZVQZroXXfqU1V6CTOM37UQ4VXEnlxSHAXa6n-GFAQUj4/w480-h240-p-k-no-nu/%E3%83%88%E3%83%AC%E3%83%90%E3%83%88_3.PNG HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vab4e"
expires: Sat, 28 Jan 2023 02:29:25 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="_____3.PNG";filename*=UTF-8''%E3%83%88%E3%83%AC%E3%83%90%E3%83%88_3.PNG
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 27 Jan 2023 02:29:25 GMT
server: fife
content-length: 172205
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=ee66931390
172.64.168.22200 OK 2.3 MB URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=ee66931390
IP 172.64.168.22:0
File type ASCII text, with very long lines (60130)
Size 2.3 MB (2296164 bytes)
Hash e0e37e4c80a835cd1fbfac65c8fd4ca4
0f3ba6f4eefc70e71afc40f21f12d80668e816c9
3048d99fd872fc2b91145ba4a13f71de8e3e1b688b8a2a5d55b3b7bf112c5841
GET /releases/v5.15.4/css/free.min.css?token=ee66931390 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Origin: https://www.xn--eckfca4feb.xn--tckwe
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 02:29:24 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b300247d165f158108c6e9c9fc082006.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 1HJWmLgVFqpYIoszt5SaQBnD03wDDjnDqtKdAealFgaH5KHF55A6wg==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JwyQuWxe9sooKG13mzzlgVQeg3xBbRuBS47n2ZCJMuFROZyWo6fTr5mCbgVB3D7aGrJSkUfouMrJvRc6Z9r1rISm6qhcFdDL5XjDYrGchUfxb6a5Sq9l4psA4ySpFYjp1hpT39gPKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78fe0f7df859745b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kit.fontawesome.com/ee66931390.js
104.18.23.52200 OK 0 B URL HTTP/2 kit.fontawesome.com/ee66931390.js
IP 104.18.23.52:0
GET /ee66931390.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xn--eckfca4feb.xn--tckwe
Connection: keep-alive
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 02:29:24 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fz4JgdXrhKVlKaGVqF9i
cf-cache-status: MISS
server: cloudflare
cf-ray: 78fe0f7be9280b51-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=ee66931390
172.64.168.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=ee66931390
IP 172.64.168.22:0
GET /releases/v5.15.4/css/free-v4-font-face.min.css?token=ee66931390 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xn--eckfca4feb.xn--tckwe/
Origin: https://www.xn--eckfca4feb.xn--tckwe
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 02:29:25 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"f2e0b2680d9b0bcb6e0039c4424e5a59"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fdcbbd5c4c7c5e8b036965d289e584e2.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P3
x-amz-cf-id: WbOQyPtz5_3hfRkwmx8bEhckCNN8MUURHXR7TMFAt8UFajWhDrgdig==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aoamWdYy%2FdtnJ6jzHp7KvIZ70tMGwxSaL6ZG%2FrNvjoyBkZXxY%2FfheQ9rCRkEZHkwX%2BGSPZhVcnxGmENx%2Fw67lm2dusCdXP84kZX8IjNUN%2BxWIjlrDIOYp737uRFGa7dsd%2B1HoaxmrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78fe0f7df86a745b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2