galvsgames.blogspot.com.br/http:/galvsgames.blogspot.com.br/2011/12/adobe-photoshop-cs5-1204.html'
302 Moved Temporarily 224 B URL HTTP/1.1 galvsgames.blogspot.com.br/http:/galvsgames.blogspot.com.br/2011/12/adobe-photoshop-cs5-1204.html'
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 7556c2cf7b1586809ce7908a8e056cd4
db7c324025d2ffb6c5bba82dc321d002ceff7ea9
5745ca19dce7d4cd126cb0f3584fd6cbb2b43cd349433cb1feddf6c41faca07b
GET /http:/galvsgames.blogspot.com.br/2011/12/adobe-photoshop-cs5-1204.html' HTTP/1.1
Host: galvsgames.blogspot.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://galvsgames.blogspot.com/http:/galvsgames.blogspot.com.br/2011/12/adobe-photoshop-cs5-1204.html'
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 06 Jan 2023 23:57:38 GMT
Expires: Fri, 06 Jan 2023 23:57:38 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 224
Server: GSE
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ce8af3d72e7e9af609039abee59c8b87
8e1b16591fbc632df35f15e23da55ee86af31bc3
52edddbda4a3a3b778f61a491b21e6ea439e9d8024189e636b1f37b2dd7226fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52EDDDBDA4A3A3B778F61A491B21E6EA439E9D8024189E636B1F37B2DD7226FC"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5742
Expires: Sat, 07 Jan 2023 01:33:20 GMT
Date: Fri, 06 Jan 2023 23:57:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 326898eb925368408f6f42ee173b9d89
b8b20ee34b7e7b139e7729b8e46a54ea25f54ac8
96c2c75f700ab55649882111713ca3cfb2eaf08e404c2bc245a641dc12ae168a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96C2C75F700AB55649882111713CA3CFB2EAF08E404C2BC245A641DC12AE168A"
Last-Modified: Wed, 04 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6629
Expires: Sat, 07 Jan 2023 01:48:07 GMT
Date: Fri, 06 Jan 2023 23:57:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 600f7ba6e1a6fbbd176cd2df19b1e4d9
cdd72b25fd91ee980aba193b12e890096e4fe852
860214860947dfbe26099f018747154823b175fceb2821a390cc655da191a6d0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "860214860947DFBE26099F018747154823B175FCEB2821A390CC655DA191A6D0"
Last-Modified: Thu, 05 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6163
Expires: Sat, 07 Jan 2023 01:40:22 GMT
Date: Fri, 06 Jan 2023 23:57:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 06 Jan 2023 23:48:04 GMT
content-type: application/json
age: 575
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: d+dHqGuig8yRfgMTamW06YH8bnFAXy0CWKsq/VS9tRUwO/ZhI9RiIZk8pKWnsr5cbRHnuxP6RrXecFoMrsjEoA==
x-amz-request-id: G92588P6H2NVB582
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 06 Jan 2023 23:02:22 GMT
age: 3317
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 06 Jan 2023 23:57:39 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
galvsgames.blogspot.com/http:/galvsgames.blogspot.com.br/2011/12/adobe-photoshop-cs5-1204.html'
404 Not Found 16 kB URL HTTP/1.1 galvsgames.blogspot.com/http:/galvsgames.blogspot.com.br/2011/12/adobe-photoshop-cs5-1204.html'
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4320)
Hash fdc5c4eb97745de7efa90eee122f8b37
20f9910f49faf0b4ab2af965c33d416aba169540
4453d0ac0177084220efbcb92b69341124fafe39b4f579aea63aaf6976ed5161
GET /http:/galvsgames.blogspot.com.br/2011/12/adobe-photoshop-cs5-1204.html' HTTP/1.1
Host: galvsgames.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Fri, 06 Jan 2023 23:57:39 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 15731
Server: GSE
dl.dropbox.com/u/53952260/blogger.js
301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/53952260/blogger.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/53952260/blogger.js
date: Fri, 06 Jan 2023 23:57:39 GMT
server: envoy
x-dropbox-request-id: 45e7340a54cb4f2da0c5469f83aa70e5
content-length: 0
dl.dropbox.com/u/53952260/data-post.js
301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/53952260/data-post.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/53952260/data-post.js
date: Fri, 06 Jan 2023 23:57:39 GMT
server: envoy
x-dropbox-request-id: a097538032ed485894b3a354c305c716
content-length: 0
dl.dropbox.com/u/16265358/downloadsgratis/style.css
301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/16265358/downloadsgratis/style.css
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/style.css HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/16265358/downloadsgratis/style.css
date: Fri, 06 Jan 2023 23:57:39 GMT
server: envoy
x-dropbox-request-id: 85729d5c14644233b4b18dbdc29df46a
content-length: 0
dl.dropbox.com/u/16265358/downloadsgratis/jquery.js
301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/16265358/downloadsgratis/jquery.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/jquery.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/16265358/downloadsgratis/jquery.js
date: Fri, 06 Jan 2023 23:57:39 GMT
server: envoy
x-dropbox-request-id: 8c6a38002ed740a48c3f1d8bc5872a56
content-length: 0
dl.dropbox.com/u/16265358/downloadsgratis/jquery.flexislider.js
301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/16265358/downloadsgratis/jquery.flexislider.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/jquery.flexislider.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/16265358/downloadsgratis/jquery.flexislider.js
date: Fri, 06 Jan 2023 23:57:39 GMT
server: envoy
x-dropbox-request-id: d5446ff7978346868f9220c51b0d301c
content-length: 0
galvsgames.blogspot.com/js/cookienotice.js
200 OK 2.0 kB URL HTTP/1.1 galvsgames.blogspot.com/js/cookienotice.js
IP
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: galvsgames.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/http:/galvsgames.blogspot.com.br/2011/12/adobe-photoshop-cs5-1204.html'
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:38 GMT
Expires: Fri, 13 Jan 2023 23:57:38 GMT
Cache-Control: public, max-age=604800
Last-Modified: Fri, 06 Jan 2023 19:52:14 GMT
Content-Type: text/javascript
Age: 1
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 493bdf2105c24403ce1c6397c51f4a79
9ce5b52185255782e7fa7633594a275bad03ad81
9321ead4868f245d85e1eb9e2c343a11a4bb26567af1ccf0aca7d66285150bd6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e785236ca882ce17097cf1cb116dfc37
20d645e7ce9b64a52ed76965eca4ab4e5051680b
6af28e70aea8a37a26659b0236321e1693e082df794fadda691cdb1d0b839770
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.3.2/jquery.min.js
200 OK 20 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.3.2/jquery.min.js
IP
File type ASCII text, with very long lines (39660)
Hash 6ad9e9100f68042a634e403e56e3744a
3d148af6eb9f86b03d5a815f4fb3a49c7b2df356
72bbdea3217793991ab87a6c7cb165d267551810d3d88b5fd2fd489748d04b7a
GET /ajax/libs/jquery/1.3.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 19926
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 05 Jan 2023 09:58:45 GMT
Expires: Fri, 05 Jan 2024 09:58:45 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 136734
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
ocsp.digicert.com/
200 OK 471 B IP
Hash bb124e2a88852c3427c589b38ffbd50f
6b0e24a487cf6253dcdc642c5b9ac4d1e560be7c
a05e9ab8d068a8bed12d94ed777b94828612c8b16db9da608e9971475bf0409e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3363
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:57:39 GMT
Last-Modified: Fri, 06 Jan 2023 23:01:36 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash bb124e2a88852c3427c589b38ffbd50f
6b0e24a487cf6253dcdc642c5b9ac4d1e560be7c
a05e9ab8d068a8bed12d94ed777b94828612c8b16db9da608e9971475bf0409e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3041
Cache-Control: max-age=168470
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:57:39 GMT
Etag: "63b898a8-1d7"
Expires: Sun, 08 Jan 2023 22:45:29 GMT
Last-Modified: Fri, 06 Jan 2023 21:54:48 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash bb124e2a88852c3427c589b38ffbd50f
6b0e24a487cf6253dcdc642c5b9ac4d1e560be7c
a05e9ab8d068a8bed12d94ed777b94828612c8b16db9da608e9971475bf0409e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3363
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:57:39 GMT
Last-Modified: Fri, 06 Jan 2023 23:01:36 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jan 2023 08:10:46 GMT
expires: Fri, 05 Jan 2024 08:10:46 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 05 Jan 2023 01:52:49 GMT
content-type: text/css
age: 143213
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP
File type ASCII text, with very long lines (1429)
Hash 1cc36f699291ba29dab9ec0f885b281b
d536f8bda7d333c21eae8e3d816d690402adb90c
6b20ce0ec6b6c57b33e8118f8d5d3c501ede61b8589ebab71d411b81d0fae994
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20933
date: Fri, 06 Jan 2023 23:57:39 GMT
expires: Fri, 06 Jan 2023 23:57:39 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "4fcbc207c89b8c6c"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/3675762886-widgets.js
200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/3675762886-widgets.js
IP
File type ASCII text, with very long lines (2221)
Hash 05af587c82e2eb4eb2caa22ffae2168b
b5cf524b74f41124ccad34edff003b33f58a0662
6e23f93233f37dbe5f9ad92a416df7627e553b7ffa4b92e81e3b7e5880eb125a
GET /static/v1/widgets/3675762886-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56471
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 16:14:34 GMT
expires: Sat, 06 Jan 2024 16:14:34 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 04 Jan 2023 15:54:00 GMT
content-type: text/javascript
age: 27785
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e785236ca882ce17097cf1cb116dfc37
20d645e7ce9b64a52ed76965eca4ab4e5051680b
6af28e70aea8a37a26659b0236321e1693e082df794fadda691cdb1d0b839770
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 06 Jan 2023 23:08:12 GMT
age: 2967
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5ddd48b55142ea746fa6165da9c75916
a2e4ddea65431b1b1bddbcbf257874fddd7cc332
f6f85f03bb7716bf8d960e8cd94b66495040371cc68c1642f4a30e0f95e7c27e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 43c8442b7447debab97b0f6bc973e23a
38a5f1869cff7f6ddbfd3a24e57a3da7851ba3b0
4eb7adc914570287dde1317395d1d95b07271c8fe20b97a8928025c292c47dba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6171
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:57:39 GMT
Last-Modified: Fri, 06 Jan 2023 22:14:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
galvsgames.blogspot.com/http:/galvsgames.blogspot.com/ncr/2011/12/adobe-photoshop-cs5-1204.html'
404 Not Found 16 kB URL HTTP/1.1 galvsgames.blogspot.com/http:/galvsgames.blogspot.com/ncr/2011/12/adobe-photoshop-cs5-1204.html'
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4323)
Hash 4452c26352944291eca4ed54d762683c
09505866eee97b214239ef4a79ad52048e9ee585
3fe46dffc7eac538a4c89ec12e0008ff2dafa52d2f5d3cafb09ce1ee7f7c75e4
GET /http:/galvsgames.blogspot.com/ncr/2011/12/adobe-photoshop-cs5-1204.html' HTTP/1.1
Host: galvsgames.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/http:/galvsgames.blogspot.com.br/2011/12/adobe-photoshop-cs5-1204.html'
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Fri, 06 Jan 2023 23:57:39 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 15736
Server: GSE
i45.tinypic.com/33cm7w8.jpg
301 Moved Permanently 0 B URL HTTP/1.1 i45.tinypic.com/33cm7w8.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /33cm7w8.jpg HTTP/1.1
Host: i45.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:02 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WgOhFcunV5fJA_uRmPPX2yE2k4QAnTEwcmEV2uoFHJtArWZmziGJRQ==
Age: 34778
i48.tinypic.com/dmyw05.jpg
301 Moved Permanently 0 B URL HTTP/1.1 i48.tinypic.com/dmyw05.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dmyw05.jpg HTTP/1.1
Host: i48.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:02 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4Mtoz-VbVmSa--5UYqg38iNEQbAWLF7bx8AIqSkmh6QJiCXLytLzow==
Age: 34778
i46.tinypic.com/301q0r4.jpg
301 Moved Permanently 0 B URL HTTP/1.1 i46.tinypic.com/301q0r4.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /301q0r4.jpg HTTP/1.1
Host: i46.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 18:45:46 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 69HAYoBc_E6CHGsvYIFYKroNYHYUrnC9WR3gzV-wd8NqY7V2Cw3Mgg==
Age: 18714
i49.tinypic.com/11v1c3a.jpg
301 Moved Permanently 0 B URL HTTP/1.1 i49.tinypic.com/11v1c3a.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /11v1c3a.jpg HTTP/1.1
Host: i49.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FEO2V0hmpiUbR4I8RXqt1sKgNrE96PSymIqYYbvIzqIt_Me-DRDgaQ==
Age: 34777
i47.tinypic.com/14xms83.jpg
301 Moved Permanently 0 B URL HTTP/1.1 i47.tinypic.com/14xms83.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /14xms83.jpg HTTP/1.1
Host: i47.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QT-Dx5Ert5_DnM49Y1UrwGOV9zNOu-WL7dmgv90J0s157GaNR2csgA==
Age: 34777
i47.tinypic.com/1zlb3ar.jpg
301 Moved Permanently 0 B URL HTTP/1.1 i47.tinypic.com/1zlb3ar.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1zlb3ar.jpg HTTP/1.1
Host: i47.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AwBNjeKlyMDFX8IUunmFzfxi7MWxfoHBTN2ZnAhR3SkvdGmEzfTHTw==
Age: 34777
i47.tinypic.com/13z5u9y.jpg
301 Moved Permanently 0 B URL HTTP/1.1 i47.tinypic.com/13z5u9y.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /13z5u9y.jpg HTTP/1.1
Host: i47.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: q91YRnOwRcki38QSWH2PhK6JveJJ5WXDch82WE_61j75Y94FzHVCmA==
Age: 34777
i49.tinypic.com/28hhnbs.jpg
301 Moved Permanently 0 B URL HTTP/1.1 i49.tinypic.com/28hhnbs.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /28hhnbs.jpg HTTP/1.1
Host: i49.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: goiCUwSBqHItoN0VZtJ6sktYAp3UsY7o0ZGBSFDCdM3-LI5jmchIkA==
Age: 34777
i47.tinypic.com/530gae.jpg
301 Moved Permanently 0 B URL HTTP/1.1 i47.tinypic.com/530gae.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /530gae.jpg HTTP/1.1
Host: i47.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0ewZwS7mDZr-U18jR1Wp6bc5W_29qlDqmDivk_CFxw9M_0qdoirT8A==
Age: 34777
i46.tinypic.com/rm681s.jpg
301 Moved Permanently 0 B URL HTTP/1.1 i46.tinypic.com/rm681s.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rm681s.jpg HTTP/1.1
Host: i46.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:17 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xAsQ3bP5eQg8R4Po_BgGv4ckhW5bgV7I6uuPIZwehQW_qeHNErmhew==
Age: 34763
i48.tinypic.com/334jhpl.jpg
301 Moved Permanently 0 B URL HTTP/1.1 i48.tinypic.com/334jhpl.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /334jhpl.jpg HTTP/1.1
Host: i48.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YP3IkVKLimU3ux3SZLzF3b6Au7YjHTOvL-_hHn-NQgt9ITH9Ns2ynA==
Age: 34777
i48.tinypic.com/zwnb6w.jpg
301 Moved Permanently 0 B URL HTTP/1.1 i48.tinypic.com/zwnb6w.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zwnb6w.jpg HTTP/1.1
Host: i48.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XZNmGFQl-332YNPlkcdv029RtGUQ0G6l0jqa-KfDSC-iXy41kxcenQ==
Age: 34777
3.bp.blogspot.com/-M-KjtpPDFlI/T1N74M9AtiI/AAAAAAAAAxw/SwkjtlXdCLo/s1600/ajax-loader.gif
200 OK 4.0 kB URL HTTP/1.1 3.bp.blogspot.com/-M-KjtpPDFlI/T1N74M9AtiI/AAAAAAAAAxw/SwkjtlXdCLo/s1600/ajax-loader.gif
IP
File type GIF image data, version 89a, 128 x 15\012- data
Hash 022fa5075d5c96188f13a7009486cad9
6bd2a4404f36fba40a04ed91af8a0458454fb330
acccc31dbf746699a0d02ae545cf89a194d7158732cb5a88f4a514e04ea3fc1d
GET /-M-KjtpPDFlI/T1N74M9AtiI/AAAAAAAAAxw/SwkjtlXdCLo/s1600/ajax-loader.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="ajax-loader.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3951
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:38 GMT
Expires: Sat, 07 Jan 2023 23:57:38 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v39f"
Content-Type: image/gif
Age: 1
4.bp.blogspot.com/-Nh_Zqg7om5o/USj0Yk0DvnI/AAAAAAAAC28/9-PiA66u2cc/s1600/anigif468.gif
200 OK 31 kB URL HTTP/1.1 4.bp.blogspot.com/-Nh_Zqg7om5o/USj0Yk0DvnI/AAAAAAAAC28/9-PiA66u2cc/s1600/anigif468.gif
IP
File type GIF image data, version 89a, 468 x 60\012- data
Hash 747ed0b8eb91c58312cd64e51a6d963a
bc216e844d740ff75574f0bd30329fafd707ba2b
c38a152f8de299f04953980e7814e7107a48c7d798c2e245358d6ca3772cdc8d
GET /-Nh_Zqg7om5o/USj0Yk0DvnI/AAAAAAAAC28/9-PiA66u2cc/s1600/anigif468.gif HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anigif468.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 30963
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vd42"
Content-Type: image/gif
Age: 0
2.bp.blogspot.com/-0OVh8pIH44M/T70-bFrd7uI/AAAAAAAAAM4/4y0aBRAahzQ/s1600/alu.jpg
200 OK 41 kB URL HTTP/1.1 2.bp.blogspot.com/-0OVh8pIH44M/T70-bFrd7uI/AAAAAAAAAM4/4y0aBRAahzQ/s1600/alu.jpg
IP
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 468x60, components 3\012- data
Hash c6279ca08b059d9633e1f6bcbe9a7d25
1771927292059596b52c0a6af9f4ad1a818386bf
b7427fbbb50f432a2e13ebb473f44788134c0d1e020b5822d74caf2349177d69
GET /-0OVh8pIH44M/T70-bFrd7uI/AAAAAAAAAM4/4y0aBRAahzQ/s1600/alu.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="alu.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 40845
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vce"
Content-Type: image/jpeg
Age: 0
2.bp.blogspot.com/-dQ5XQ44LFhs/USPeMFEMakI/AAAAAAAACwo/t2RkqDIGbKQ/s1600/anigif180x40.gif
200 OK 39 kB URL HTTP/1.1 2.bp.blogspot.com/-dQ5XQ44LFhs/USPeMFEMakI/AAAAAAAACwo/t2RkqDIGbKQ/s1600/anigif180x40.gif
IP
File type GIF image data, version 89a, 180 x 40\012- data
Hash e2ae1a1f3f141529f58a1f7705b72d6a
46e958a78f622bb7180ed9137dbab1f6805adaaf
038556e78e730f9d168d7114bdb5401be8af67089d4894ed0c6786abf9ed5308
GET /-dQ5XQ44LFhs/USPeMFEMakI/AAAAAAAACwo/t2RkqDIGbKQ/s1600/anigif180x40.gif HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anigif180x40.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 39317
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vd47"
Content-Type: image/gif
Age: 1
i50.tinypic.com/50sfx5.gif
301 Moved Permanently 0 B URL HTTP/1.1 i50.tinypic.com/50sfx5.gif
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /50sfx5.gif HTTP/1.1
Host: i50.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:13 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UaUCz1J-V8_DBDzn1R9Eu9bZ5HQxOhK_RTyWUfb0mkBOFpitYxfQAQ==
Age: 34768
3.bp.blogspot.com/-6KdmIOXBPsc/URlgHo_TCvI/AAAAAAAAAjE/8lfrm0DtUOg/s1600/bangifwex.gif
200 OK 22 kB URL HTTP/1.1 3.bp.blogspot.com/-6KdmIOXBPsc/URlgHo_TCvI/AAAAAAAAAjE/8lfrm0DtUOg/s1600/bangifwex.gif
IP
File type GIF image data, version 89a, 180 x 40\012- data
Hash 74dda25b108671974e590323961353c2
47ae8fb03e9ee48fc83cb168ee4878bb1355ba41
30f3cfde798de4d899017e0f3ed3a9553c53588ef0faca19034daf8108038161
GET /-6KdmIOXBPsc/URlgHo_TCvI/AAAAAAAAAjE/8lfrm0DtUOg/s1600/bangifwex.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bangifwex.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 21905
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v3a2"
Content-Type: image/gif
Age: 1
1.bp.blogspot.com/-ChYI3I2_DH4/T4jJrab6PMI/AAAAAAAAARM/p8UoTdPOTGA/s1600/Banner+180x40.gif.gif
404 Not Found 832 B URL HTTP/1.1 1.bp.blogspot.com/-ChYI3I2_DH4/T4jJrab6PMI/AAAAAAAAARM/p8UoTdPOTGA/s1600/Banner+180x40.gif.gif
IP
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-ChYI3I2_DH4/T4jJrab6PMI/AAAAAAAAARM/p8UoTdPOTGA/s1600/Banner+180x40.gif.gif HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Fri, 06 Jan 2023 23:57:40 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0
2.bp.blogspot.com/--j4B-aHjDdk/USUmB0zU9HI/AAAAAAAACyw/dnQCFgc07GA/s1600/teste180.png
200 OK 11 kB URL HTTP/1.1 2.bp.blogspot.com/--j4B-aHjDdk/USUmB0zU9HI/AAAAAAAACyw/dnQCFgc07GA/s1600/teste180.png
IP
File type PNG image data, 180 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash ded5f09db00f2d10cfadd49704737f62
b970d353e890f720a2656e6c555a363f8b32dff6
a365b50f3da6098942a6747d3d4b4af7d7fea50285abbc1d1190e6bf8db0842c
GET /--j4B-aHjDdk/USUmB0zU9HI/AAAAAAAACyw/dnQCFgc07GA/s1600/teste180.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="teste180.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 10809
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vb2c"
Content-Type: image/png
Age: 1
i43.tinypic.com/33dbajt.png
301 Moved Permanently 0 B URL HTTP/1.1 i43.tinypic.com/33dbajt.png
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /33dbajt.png HTTP/1.1
Host: i43.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:14 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZNoJo_eLRs9LooIV0BowGz0H8BAwCrsxzJMpzSPOA0tIsuwl4BppqA==
Age: 34767
img822.imageshack.us/img822/3210/bannerbsc.gif
404 Not Found 168 B URL HTTP/1.1 img822.imageshack.us/img822/3210/bannerbsc.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img822/3210/bannerbsc.gif HTTP/1.1
Host: img822.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
i1138.photobucket.com/albums/n535/a-70/5-2.png
301 Moved Permanently 167 B URL HTTP/1.1 i1138.photobucket.com/albums/n535/a-70/5-2.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/n535/a-70/5-2.png HTTP/1.1
Host: i1138.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i1138.photobucket.com/albums/n535/a-70/5-2.png
X-Cache: Redirect from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: oWadO1UXxJsBYEjBcFm-7d_tcqRAkYuvTvTGpduQ7CysmPX3EH9rmg==
Vary: Origin
img706.imageshack.us/img706/4189/bannergamesthematrix.gif
404 Not Found 168 B URL HTTP/1.1 img706.imageshack.us/img706/4189/bannergamesthematrix.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img706/4189/bannergamesthematrix.gif HTTP/1.1
Host: img706.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
4.bp.blogspot.com/-u6aoxm3uWHs/TchtfKtPw4I/AAAAAAAABeo/wkgxJfw1eGk/s1600/Banner+gif+180x40gif.gif
404 Not Found 832 B URL HTTP/1.1 4.bp.blogspot.com/-u6aoxm3uWHs/TchtfKtPw4I/AAAAAAAABeo/wkgxJfw1eGk/s1600/Banner+gif+180x40gif.gif
IP
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-u6aoxm3uWHs/TchtfKtPw4I/AAAAAAAABeo/wkgxJfw1eGk/s1600/Banner+gif+180x40gif.gif HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Fri, 06 Jan 2023 23:57:40 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0
i1138.photobucket.com/albums/n535/a-70/180x404pngN.png
301 Moved Permanently 167 B URL HTTP/1.1 i1138.photobucket.com/albums/n535/a-70/180x404pngN.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/n535/a-70/180x404pngN.png HTTP/1.1
Host: i1138.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i1138.photobucket.com/albums/n535/a-70/180x404pngN.png
X-Cache: Redirect from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QTho1bT2cLgP2jqZPfvPzt_vy-CyilxHvW2pG0UxV--REGwYNGLRWQ==
Vary: Origin
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MYu3fmOhA+9rm7/Ex77jwA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3oqipSzRtx1uq/aoVDZUyvlB8AU=
i1201.photobucket.com/albums/bb356/doors121/anigif.gif
301 Moved Permanently 167 B URL HTTP/1.1 i1201.photobucket.com/albums/bb356/doors121/anigif.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/bb356/doors121/anigif.gif HTTP/1.1
Host: i1201.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i1201.photobucket.com/albums/bb356/doors121/anigif.gif
X-Cache: Redirect from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: w6Fkias3hCpRTJYx3Yf2rozBI9SxIPFMyHi1kl_TQqWbEbPXZbb5fA==
Vary: Origin
tinypic.com/images/goodbye.jpg
200 OK 16 kB URL HTTP/1.1 tinypic.com/images/goodbye.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x300, components 3\012- data
Hash 32af06ac4b80d728f7e4c8780eb6b6d7
dd3198f4361e94f2c3606474e04a629e42402d02
f610dc2752e938d77dab1c4e9fb1f0f7f53b25e527d130ce4e034b7de09da053
GET /images/goodbye.jpg HTTP/1.1
Host: tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 15616
Connection: keep-alive
Last-Modified: Wed, 18 Sep 2019 21:23:53 GMT
Server: AmazonS3
Date: Fri, 06 Jan 2023 05:46:55 GMT
ETag: "32af06ac4b80d728f7e4c8780eb6b6d7"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MTQVc9OFg3JqkgYMSnkBEQrIrdbFcL8SY9jmWNfoqBx0mU_HRl9uxg==
Age: 65524
i1307.photobucket.com/albums/s600/caio184/180x40_zps1358ba52.jpg
301 Moved Permanently 167 B URL HTTP/1.1 i1307.photobucket.com/albums/s600/caio184/180x40_zps1358ba52.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/s600/caio184/180x40_zps1358ba52.jpg HTTP/1.1
Host: i1307.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i1307.photobucket.com/albums/s600/caio184/180x40_zps1358ba52.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eF_ykLrwRCfyz67AHoHczOJKqilpnfad05sYr6S6mOgMIVmh3h41WQ==
Vary: Origin
i1138.photobucket.com/albums/n535/a-70/5-2.png
200 OK 3.4 kB URL HTTP/2 i1138.photobucket.com/albums/n535/a-70/5-2.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6049c41fc32663778a5d86ba9566951b
55e78b2e56e62b0c10fd6ba01384d96a1a040218
97231ebf2f607a8959ea91e46703eeded895ed0915eb69c58063818669e9ee6e
GET /albums/n535/a-70/5-2.png HTTP/1.1
Host: i1138.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 3390
date: Fri, 06 Jan 2023 23:57:39 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="5-2.webp"
expires: Sat, 06 Jan 2024 23:57:39 GMT
server: photobucket
x-amzn-trace-id: Root=1-63b8b573-1869808f780aabe939a62e90
x-request-id: yM38TJNDBpEYOOnPVK1T2
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3w_VDAeAJZZRVAPjMJE730oS7idHQuJOWHeN8R_xRk7_uRY7ncCTlA==
age: 1
vary: Accept, Origin
X-Firefox-Spdy: h2
i1138.photobucket.com/albums/n535/a-70/180x404pngN.png
200 OK 2.8 kB URL HTTP/2 i1138.photobucket.com/albums/n535/a-70/180x404pngN.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 483dbab8ffd6d2812fc73bdda510e352
8c196bca12a1a17074cd707b6253566b649be56e
fd64cbebc9d8312bf443052f5ad5d0b55b33756274b0da92dceb9425e5371df1
GET /albums/n535/a-70/180x404pngN.png HTTP/1.1
Host: i1138.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 2770
date: Fri, 06 Jan 2023 23:57:39 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="180x404pngN.webp"
expires: Sat, 06 Jan 2024 23:57:39 GMT
server: photobucket
x-amzn-trace-id: Root=1-63b8b573-44bc5dc03299f6e9270b358d
x-request-id: FBlrgxpHalo6v7fUPzITk
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aBiezslanhW3vuTJDO73cSrlSNZhz6uN9SPqlMTEb343erpKU8x9pg==
age: 1
vary: Accept, Origin
X-Firefox-Spdy: h2
i1201.photobucket.com/albums/bb356/doors121/anigif.gif
200 OK 9.4 kB URL HTTP/2 i1201.photobucket.com/albums/bb356/doors121/anigif.gif
IP
File type GIF image data, version 89a, 180 x 40\012- data
Hash 0731aeb59c1ddf082894a0dc1dfc88a0
c3a7c601d50c9e043cc9114a1f03d03577cee37d
10d45fe5f93e49ec6f7499c385e9be0b772fdafc0cefd3effd25a83eaf364671
GET /albums/bb356/doors121/anigif.gif HTTP/1.1
Host: i1201.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 9366
date: Fri, 06 Jan 2023 23:57:39 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="anigif.gif"
expires: Sat, 06 Jan 2024 23:57:39 GMT
server: photobucket
x-amzn-trace-id: Root=1-63b8b573-50756dd569e8769320a5882a
x-request-id: U56h4W7eOnnhKbN2RtGal
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -9QbXoRvIXQcGxmld9qiyWs7xAkby5EdqaI9cG8Cj0ArEZaCm1gR7g==
age: 1
vary: Accept, Origin
X-Firefox-Spdy: h2
www.loogix.com/img/res/1/3/6/0/8/9/1360892286118026.gif
301 Moved Permanently 185 B URL HTTP/1.1 www.loogix.com/img/res/1/3/6/0/8/9/1360892286118026.gif
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash a68b24962bbce3b3f05231f7e3f0c860
16c65b914c09af12031433a6b19f474b15667647
662eef7c5ba51c4a4095c852a1418b9b186a906d4cdfb5bf18378dde86fee585
GET /img/res/1/3/6/0/8/9/1360892286118026.gif HTTP/1.1
Host: www.loogix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx/1.12.0
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: http://freegifmaker.me/img/res/1/3/6/0/8/9/1360892286118026.gif
i1307.photobucket.com/albums/s600/caio184/180x40_zps1358ba52.jpg
200 OK 4.0 kB URL HTTP/2 i1307.photobucket.com/albums/s600/caio184/180x40_zps1358ba52.jpg
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0ff79b7588272dcb0c226668c7d83440
ba5ab72fe67a516976ec2cb882f53d7e3bf94ac6
9f78cfe41926366d9f8d0beeff1a9e7bb30285aaeb3fb5bfde2c045b02b1ca1c
GET /albums/s600/caio184/180x40_zps1358ba52.jpg HTTP/1.1
Host: i1307.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 3996
date: Fri, 06 Jan 2023 23:57:39 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="180x40_zps1358ba52.webp"
expires: Sat, 06 Jan 2024 23:57:39 GMT
server: photobucket
x-amzn-trace-id: Root=1-63b8b573-00bcc7b2349eab710a7d7f14
x-request-id: Xd5z1K6MkxiD0M4HdbEra
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NUzBMzdKgb7afBhs6vmiUJDKxMGknK0JtLY3HTTf6ktXtu4JRbVW8w==
age: 1
vary: Accept, Origin
X-Firefox-Spdy: h2
dl.dropbox.com/u/16265358/downloadsgratis/print.css
301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/16265358/downloadsgratis/print.css
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/print.css HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/16265358/downloadsgratis/print.css
date: Fri, 06 Jan 2023 23:57:40 GMT
server: envoy
x-dropbox-request-id: 2d759d3ce9124bfa982c4a23e2bf1c54
content-length: 0
img13.imageshack.us/img13/1986/180x40l.png
404 Not Found 168 B URL HTTP/1.1 img13.imageshack.us/img13/1986/180x40l.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img13/1986/180x40l.png HTTP/1.1
Host: img13.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0790db21e0dbda812497eb7f8551e28d
cd70c52bec33102cd0d34e404914dabec39b12a4
0c79b14a1631994a2c73e01a4e9d1db08669eed59801851de26b7643b3e612ec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:57:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img716.imageshack.us/img716/6825/banerza.gif
404 Not Found 168 B URL HTTP/1.1 img716.imageshack.us/img716/6825/banerza.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img716/6825/banerza.gif HTTP/1.1
Host: img716.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
img801.imageshack.us/img801/4453/180x40p.gif
404 Not Found 168 B URL HTTP/1.1 img801.imageshack.us/img801/4453/180x40p.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img801/4453/180x40p.gif HTTP/1.1
Host: img801.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
mersone.com/img/180x40.png
301 Moved Permanently 0 B URL HTTP/1.1 mersone.com/img/180x40.png
IP
ASN #133201 ABCDE GROUP COMPANY LIMITED
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/180x40.png HTTP/1.1
Host: mersone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 06 Jan 2023 23:58:19 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.mersone.com/img/180x40.png
img14.imageshack.us/img14/8378/m76to.png
404 Not Found 168 B URL HTTP/1.1 img14.imageshack.us/img14/8378/m76to.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img14/8378/m76to.png HTTP/1.1
Host: img14.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
img39.imageshack.us/img39/6307/180.gif
404 Not Found 168 B URL HTTP/1.1 img39.imageshack.us/img39/6307/180.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img39/6307/180.gif HTTP/1.1
Host: img39.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
freegifmaker.me/img/res/1/3/6/0/8/9/1360892286118026.gif
200 OK 29 kB URL HTTP/1.1 freegifmaker.me/img/res/1/3/6/0/8/9/1360892286118026.gif
IP
File type GIF image data, version 89a, 120 x 60\012- data
Hash 2dc4cb9de4c78c521a9a2a98b4872604
0b89bda1bed844ec8b695672623f8dc7c30b11ca
e921824eca54c225403e8c8e4663bdbcc98dd7ede88c0c6566828986ec036166
GET /img/res/1/3/6/0/8/9/1360892286118026.gif HTTP/1.1
Host: freegifmaker.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Cache-Control: max-age=604800
Content-Encoding: gzip
Content-Type: image/gif
Date: Fri, 06 Jan 2023 23:57:40 GMT
Display: staticcontent_sol
Etag: "511d917e-7a6c-gzip"
Expires: Fri, 13 Jan 2023 23:57:40 GMT
Last-Modified: Wed, 04 Jan 2023 23:19:01 GMT
Response: 200
Server: nginx/1.12.0
Vary: Accept-Encoding,Origin
X-Middleton-Display: staticcontent_sol
X-Middleton-Response: 200
X-Ua-Compatible: IE=edge
Transfer-Encoding: chunked
dl.dropbox.com/u/16265358/downloadsgratis/print.css
404 Not Found 4.2 kB URL HTTP/2 dl.dropbox.com/u/16265358/downloadsgratis/print.css
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23665)
Hash f897700409fd949b941309bead7a1b19
a6ae129d45c1e6ddf8d9e13313b1c397f38bd68b
e14a578dd2c6e9401f219764ab9647febd521bc497c84a019747bfceb9699b62
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/print.css HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:57:39 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 97049571072540f9a3e84e16ffbcfc81
X-Firefox-Spdy: h2
3.bp.blogspot.com/-Ff25IViP5y4/T1fueMKlz2I/AAAAAAAAAD0/ygWbIDyE3mQ/s1600/bt-busca.png
200 OK 641 B URL HTTP/1.1 3.bp.blogspot.com/-Ff25IViP5y4/T1fueMKlz2I/AAAAAAAAAD0/ygWbIDyE3mQ/s1600/bt-busca.png
IP
File type PNG image data, 41 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash f9e72e37ef55a034fc13a90693211616
107a263948e79d2fb1e4c73f74946a33cc6b8d6d
a1aebc2b56e930b4c2bc0956983135119626cd53d21734842853f5397983d2eb
GET /-Ff25IViP5y4/T1fueMKlz2I/AAAAAAAAAD0/ygWbIDyE3mQ/s1600/bt-busca.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bt-busca.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 641
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v3d"
Content-Type: image/png
Age: 1
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 13:19:58 GMT
Expires: Fri, 20 Jan 2023 13:19:58 GMT
Cache-Control: public, max-age=1209600
Age: 38262
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
lh3.googleusercontent.com/_4UmhaKWZHqo/TcnV8laz9iI/AAAAAAAABpU/7v178TNqBVs/PUBLICIADE%20125X125%20-%20ANUNCIE%20AQUI.png
404 Not Found 832 B URL HTTP/2 lh3.googleusercontent.com/_4UmhaKWZHqo/TcnV8laz9iI/AAAAAAAABpU/7v178TNqBVs/PUBLICIADE%20125X125%20-%20ANUNCIE%20AQUI.png
IP
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /_4UmhaKWZHqo/TcnV8laz9iI/AAAAAAAABpU/7v178TNqBVs/PUBLICIADE%20125X125%20-%20ANUNCIE%20AQUI.png HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Fri, 06 Jan 2023 23:57:40 GMT
server: fife
content-length: 832
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i48.tinypic.com/mh6qag.png
301 Moved Permanently 0 B URL HTTP/1.1 i48.tinypic.com/mh6qag.png
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mh6qag.png HTTP/1.1
Host: i48.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:01 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uOubbMI3iMj5nixOl9ALsDQMx5JzRGfd4f-wZpBCBPaUuBLZcyGhrA==
Age: 34779
dl.dropbox.com/u/16265358/downloadsgratis/style.css
404 Not Found 4.2 kB URL HTTP/2 dl.dropbox.com/u/16265358/downloadsgratis/style.css
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23665)
Hash f897700409fd949b941309bead7a1b19
a6ae129d45c1e6ddf8d9e13313b1c397f38bd68b
e14a578dd2c6e9401f219764ab9647febd521bc497c84a019747bfceb9699b62
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/style.css HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:57:39 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: e690d3d0a4c04e05b1803ab93ab8ebfb
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/blogger.js
404 Not Found 4.7 kB URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP
Hash c98e34b3540d110f4f646eeb2355bc59
641b94ee71324058c37a83df33a496231107509e
0224ac4387e47012fed5c7f2963cd720433de9d46e6d00c3f1f363d6cfc88904
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:57:39 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 3c73b8df9e1a4290b7e1b35289a60c82
X-Firefox-Spdy: h2
www2.cbox.ws/box/?boxid=2298837&boxtag=ppawfz&sec=form
200 OK 2.4 kB URL HTTP/1.1 www2.cbox.ws/box/?boxid=2298837&boxtag=ppawfz&sec=form
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1141)
Hash b8319685fae4d76d8e9882d5b916b3df
157e1cc1e25a0b66dd6680a283d7551011e1980b
ca12dc2921390b45fc4d55df8aa743fbd8714bf00df902f9da1a16afb52de66f
GET /box/?boxid=2298837&boxtag=ppawfz&sec=form HTTP/1.1
Host: www2.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI DSP COR NID CURa OUR NOR"
Expires: Sat, 06 Jan 2024 23:57:39 GMT
Cache-Control: public, max-age=31536000
X-Cache: HIT
Content-Encoding: gzip
www2.cbox.ws/box/?boxid=2298837&boxtag=ppawfz&sec=main
200 OK 2.9 kB URL HTTP/1.1 www2.cbox.ws/box/?boxid=2298837&boxtag=ppawfz&sec=main
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (715), with CRLF, LF line terminators
Hash 0fdf3ea478723cbef466a2c5ab2690f1
45e7d1a9ed37dea50194ea20283e54de5d6b0bc1
1322212881c798d72c207338b4b52f22fd1ad0e880b535cf3455f3ae17656c81
GET /box/?boxid=2298837&boxtag=ppawfz&sec=main HTTP/1.1
Host: www2.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI DSP COR NID CURa OUR NOR"
Cache-Control: public, must-revalidate, max-age=5
Last-Modified: Fri, 06 Jan 2023 23:57:39 GMT
X-Cache: HIT
Content-Encoding: gzip
1.bp.blogspot.com/-qtpuCD7-x7A/T1N3g--tS2I/AAAAAAAAAvQ/RfGE71amaic/s1600/linha-menu.jpg
200 OK 589 B URL HTTP/1.1 1.bp.blogspot.com/-qtpuCD7-x7A/T1N3g--tS2I/AAAAAAAAAvQ/RfGE71amaic/s1600/linha-menu.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 3x47, components 3\012- data
Hash 6cf31b1a0c26e66dff61337f68e65d7d
a0b772c3c941ff6862d5086eb215be19b555beb4
47c71c4e709e635de9e340c001f13bc230cabe085d74593ab55f7f8755b8b76e
GET /-qtpuCD7-x7A/T1N3g--tS2I/AAAAAAAAAvQ/RfGE71amaic/s1600/linha-menu.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="linha-menu.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 589
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2f4"
Content-Type: image/jpeg
Age: 1
img607.imageshack.us/img607/7357/bannerhd.gif
404 Not Found 168 B URL HTTP/1.1 img607.imageshack.us/img607/7357/bannerhd.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img607/7357/bannerhd.gif HTTP/1.1
Host: img607.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
i47.tinypic.com/9au5ut.jpg
301 Moved Permanently 0 B URL HTTP/1.1 i47.tinypic.com/9au5ut.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /9au5ut.jpg HTTP/1.1
Host: i47.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:03 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Uz1y6X2BIYppmxCukdBsKuIWF9WCQBemhU3OC8aC6FJexi2KezIHVQ==
Age: 34778
lh4.ggpht.com/_Q_rlZm67eb0/TIsOVnQClNI/AAAAAAAAAQ8/ASRPDYTMMvE/anuncie.png
200 OK 1.9 kB URL HTTP/1.1 lh4.ggpht.com/_Q_rlZm67eb0/TIsOVnQClNI/AAAAAAAAAQ8/ASRPDYTMMvE/anuncie.png
IP
File type PNG image data, 485 x 85, 8-bit/color RGB, non-interlaced\012- data
Hash d85c9afd61a3530a2bc6ea3503331622
061f234b06d0a20d9473bbe60b13492f4590e2b7
c1a3ba2c9b2837d756f04639232a40343fecfcdc70454cb1f98b8f57ee642ed9
GET /_Q_rlZm67eb0/TIsOVnQClNI/AAAAAAAAAQ8/ASRPDYTMMvE/anuncie.png HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anuncie.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1890
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Fri, 06 Jan 2023 14:30:39 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 1
ETag: "v10f"
Content-Type: image/png
dl.dropbox.com/u/77549632/Aplicandroid/120x60.png
404 Not Found 4.2 kB URL HTTP/2 dl.dropbox.com/u/77549632/Aplicandroid/120x60.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23665)
Hash f897700409fd949b941309bead7a1b19
a6ae129d45c1e6ddf8d9e13313b1c397f38bd68b
e14a578dd2c6e9401f219764ab9647febd521bc497c84a019747bfceb9699b62
GET /u/77549632/Aplicandroid/120x60.png HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:57:39 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 064365fcc3d84808a98ccd3753eef647
X-Firefox-Spdy: h2
4.bp.blogspot.com/-rBbnpVXFubc/T1ffooT_p8I/AAAAAAAAAC0/RhyfIULNoyw/s1600/topo-widgth.png
200 OK 1.0 kB URL HTTP/1.1 4.bp.blogspot.com/-rBbnpVXFubc/T1ffooT_p8I/AAAAAAAAAC0/RhyfIULNoyw/s1600/topo-widgth.png
IP
File type PNG image data, 195 x 58, 8-bit/color RGB, non-interlaced\012- data
Hash bbdbf89cdb15a21b23db4de35eeff6f5
9d8cf6487b22f4ee9bf81e769a7ccde020567d44
e6469698e02f473e4f2f40aef009514048e26441db3d1b72b85556eb01c96f0e
GET /-rBbnpVXFubc/T1ffooT_p8I/AAAAAAAAAC0/RhyfIULNoyw/s1600/topo-widgth.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="topo-widgth.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1048
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:40 GMT
Expires: Sat, 07 Jan 2023 23:57:40 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2d"
Content-Type: image/png
Age: 0
3.bp.blogspot.com/-hYKwP-RNfEk/T1N5I866XsI/AAAAAAAAAv4/BaPERAGUcfM/s1600/repeat-widgth.jpg
200 OK 506 B URL HTTP/1.1 3.bp.blogspot.com/-hYKwP-RNfEk/T1N5I866XsI/AAAAAAAAAv4/BaPERAGUcfM/s1600/repeat-widgth.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 195x8, components 3\012- data
Hash b51654ccb43b186e61c0562919408f53
c559ef23bd82693054772b2ad2065348d9711bdd
2de5c59257b5898d07bb49b0701d36573790844c6bcd16b80deb88e29c388c09
GET /-hYKwP-RNfEk/T1N5I866XsI/AAAAAAAAAv4/BaPERAGUcfM/s1600/repeat-widgth.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="repeat-widgth.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 506
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:39 GMT
Expires: Sat, 07 Jan 2023 23:57:39 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2fe"
Content-Type: image/jpeg
Age: 1
2.bp.blogspot.com/-Ab5ps5669hg/T1fyKih6V6I/AAAAAAAAAEE/YdjgD6F7zXU/s1600/seta-bulet.png
200 OK 613 B URL HTTP/1.1 2.bp.blogspot.com/-Ab5ps5669hg/T1fyKih6V6I/AAAAAAAAAEE/YdjgD6F7zXU/s1600/seta-bulet.png
IP
File type PNG image data, 156 x 17, 8-bit/color RGB, non-interlaced\012- data
Hash f79b85ec18877584022d6a2950c11711
d162e64ee865dc98fbd235e2582e9b4d72207d5d
3f76aec3328012b10ffc57e8db533f5fcad3bfad769b8b2f5bf4af3bc63ef7b8
GET /-Ab5ps5669hg/T1fyKih6V6I/AAAAAAAAAEE/YdjgD6F7zXU/s1600/seta-bulet.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="seta-bulet.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 613
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:40 GMT
Expires: Sat, 07 Jan 2023 23:57:40 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v41"
Content-Type: image/png
Age: 0
static.cbox.ws/styles/v4s12_2.css?20171204
200 OK 821 B URL HTTP/1.1 static.cbox.ws/styles/v4s12_2.css?20171204
IP
File type ASCII text, with CRLF line terminators
Hash 397f662777eee115629ddb45d48b76a0
b4004a2274b6afdb571ac91ac5db940523d3d2a2
c0268b480357ad08e36f933dd0080b98ceb47bec23ae3498eeb01af5a50e5b82
GET /styles/v4s12_2.css?20171204 HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www2.cbox.ws/
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5a250fb0-93a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 18495186
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JITaDLkdDKoExEG5sLqhHSjkbwiqXbFJvFAuQJ%2Fo102M3tRKKmnBVdOIVMAotEEBI7WZHnL%2Fh8BoCQGzxJ%2BR4%2BjAH60fF%2BVPmo7U3%2F1Lxo1ogRXCAy9QiiVs7Kn3KMT5pQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 785865b8aac9b515-OSL
alt-svc: h2=":443"; ma=60
i50.tinypic.com/y1641.png
301 Moved Permanently 0 B URL HTTP/1.1 i50.tinypic.com/y1641.png
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /y1641.png HTTP/1.1
Host: i50.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 06 Jan 2023 14:18:18 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YlbJTOvyuGtrtOEmWsGyfBeNYA448tCr3mYvEN-xgfb-jqQ5MV9miA==
Age: 34762
static.cbox.ws/jsc/jsc_1593163307.js
200 OK 17 kB URL HTTP/1.1 static.cbox.ws/jsc/jsc_1593163307.js
IP
File type ASCII text, with very long lines (538)
Hash d145f5920028cd6628fd2a489864f740
30754798a738b79a9a39c7f2c1f4f3d366e494b2
f534b4a63d6e14e118b76f38c76615b6f759542f1cc987664141ebf760d7e6fe
GET /jsc/jsc_1593163307.js HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www2.cbox.ws
Connection: keep-alive
Referer: http://www2.cbox.ws/
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: application/x-javascript
Content-Length: 16559
Connection: keep-alive
Last-Modified: Fri, 26 Jun 2020 09:21:54 GMT
ETag: "5ef5be32-40af"
Content-Encoding: gzip
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
CF-Cache-Status: HIT
Age: 19187083
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DcEvGJEGWFi%2FR3nVc53flGtXZnKgDrCAKdjvvSUSFoNkgbKPuQRcAGBQz0Ev5s%2BTYuxpieyFmSYejmRVWW%2BfGA3QWi2xJuw9J7Lko5ijMp87E%2BekihmhiMI%2BeuuLVYMkcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 785865b8ad99b521-OSL
alt-svc: h2=":443"; ma=60
img716.imageshack.us/img716/6825/banerza.gif
404 Not Found 168 B URL HTTP/1.1 img716.imageshack.us/img716/6825/banerza.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img716/6825/banerza.gif HTTP/1.1
Host: img716.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
img822.imageshack.us/img822/3210/bannerbsc.gif
404 Not Found 168 B URL HTTP/1.1 img822.imageshack.us/img822/3210/bannerbsc.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img822/3210/bannerbsc.gif HTTP/1.1
Host: img822.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
img801.imageshack.us/img801/4453/180x40p.gif
404 Not Found 168 B URL HTTP/1.1 img801.imageshack.us/img801/4453/180x40p.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img801/4453/180x40p.gif HTTP/1.1
Host: img801.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
img706.imageshack.us/img706/4189/bannergamesthematrix.gif
404 Not Found 168 B URL HTTP/1.1 img706.imageshack.us/img706/4189/bannergamesthematrix.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img706/4189/bannergamesthematrix.gif HTTP/1.1
Host: img706.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
img13.imageshack.us/img13/1986/180x40l.png
404 Not Found 168 B URL HTTP/1.1 img13.imageshack.us/img13/1986/180x40l.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img13/1986/180x40l.png HTTP/1.1
Host: img13.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
img14.imageshack.us/img14/8378/m76to.png
404 Not Found 168 B URL HTTP/1.1 img14.imageshack.us/img14/8378/m76to.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img14/8378/m76to.png HTTP/1.1
Host: img14.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
img39.imageshack.us/img39/6307/180.gif
404 Not Found 168 B URL HTTP/1.1 img39.imageshack.us/img39/6307/180.gif
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img39/6307/180.gif HTTP/1.1
Host: img39.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
dl.dropbox.com/u/16265358/downloadsgratis/style.css
404 Not Found 4.4 kB URL HTTP/2 dl.dropbox.com/u/16265358/downloadsgratis/style.css
IP
Hash cb0c69ef95d6bb98775d7a75e01460ba
039d3fa91cb2b203a2333337408ed1b20f35cb7d
a2a27322b328dbe60e3a46bc68dfcaa13cfa41d68e8b3a18a4f2ecf9558f8aaa
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/style.css HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:57:39 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 3a5a36d8af684b86828082a23eba5c81
X-Firefox-Spdy: h2
i.imgur.com/TLnpH.jpg
200 OK 12 kB IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 195x1500, components 3\012- data
Hash 53e2f3ac58ebd5965e0d92a29f551aba
5cb684f29d9666d2366168a3e85cbf8da2541b19
6aec073343ab9fca0758d33209018b6ba76c325d03a9afdc14d94ffa00fbd012
GET /TLnpH.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 04 Mar 2012 14:12:56 GMT
etag: "53e2f3ac58ebd5965e0d92a29f551aba"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 06 Jan 2023 23:57:40 GMT
age: 611548
x-served-by: cache-iad-kcgs7200162-IAD, cache-bma1660-BMA
x-cache: HIT, HIT
x-cache-hits: 10, 1
x-timer: S1673049461.633815,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 11643
X-Firefox-Spdy: h2
www.mersone.com/img/180x40.png
200 OK 789 B URL HTTP/1.1 www.mersone.com/img/180x40.png
IP
ASN #133201 ABCDE GROUP COMPANY LIMITED
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with CRLF line terminators
Hash c7965742e95b5e75999abf371810b196
a0057b2347a05212651922f02cda00fae919d2e9
7ed68e979c6af0e99d54e6fcf701cfcd49247908772b9990816274b558560771
GET /img/180x40.png HTTP/1.1
Host: www.mersone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 06 Jan 2023 23:58:19 GMT
Content-Type: text/html
Content-Length: 789
Connection: keep-alive
cur.cursors-4u.net/cursors/cur-2/cur117.cur
301 Moved Permanently 169 B URL HTTP/1.1 cur.cursors-4u.net/cursors/cur-2/cur117.cur
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd6987d71fad7058a993a9028dc40454
3ed872fa3a00837bb008ad9d201850e2ea57a79f
f0e759f444eb3a324b621f0548919424455e81441d42ea6bc6bcd2b24fce1b92
GET /cursors/cur-2/cur117.cur HTTP/1.1
Host: cur.cursors-4u.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx/1.16.1
Date: Fri, 06 Jan 2023 23:57:40 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://cur.cursors-4u.net/cursors/cur-2/cur117.cur
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a86bc0de199dc42d233b988a675a5522
53dfbd1fd41824737ed9ef6bc6a55cfb67a0f373
4d86dd990a772ae74a6beff56dc0496162ff18bbaf7aa0552f1108d305e0056c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D86DD990A772AE74A6BEFF56DC0496162FF18BBAF7AA0552F1108D305E0056C"
Last-Modified: Thu, 05 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17296
Expires: Sat, 07 Jan 2023 04:45:56 GMT
Date: Fri, 06 Jan 2023 23:57:40 GMT
Connection: keep-alive
dl.dropbox.com/u/16265358/downloadsgratis/jquery.flexislider.js
404 Not Found 4.5 kB URL HTTP/2 dl.dropbox.com/u/16265358/downloadsgratis/jquery.flexislider.js
IP
Hash 5aef4801103f9bad6bfd532a957189d9
6bf8bc0774e911b81d1c7ffbc13a6572a6b4db55
bf521b621a102c6cc06c7a75e55f45e76e4db30f0058a5800a9bacc2ea3ac05e
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/jquery.flexislider.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:57:39 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: a38186948350402881e1e28b46dff3d3
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/blogger.js
404 Not Found 8.5 kB URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP
Hash 3da47b4c02798feaa3c1921bff5d4715
dc0047a05092b771c8493a346da3c036a92fc51c
c72d0216564ed11f7d144d283540539a19b36e057b4d3cdbfa2d569e082f97eb
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:57:40 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: a676ac65d2ea4f36b1715e345021ff9c
X-Firefox-Spdy: h2
www.search-blogger.com/
301 Moved Permanently 178 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 27181302eba676d4a386d528deb7bc8a
7d2cb61e26ebadcf231d53a8f6051b070509288d
59f63d057541bb65e384d154da24cc0f7db6215cd679c6bef7c69c1a05fcfca7
GET / HTTP/1.1
Host: www.search-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.search-blogger.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 06 Jan 2023 23:57:41 GMT
Expires: Fri, 06 Jan 2023 23:57:41 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 178
Server: GSE
resources.blogblog.com/img/navbar/icons_orange.png
200 OK 915 B URL HTTP/2 resources.blogblog.com/img/navbar/icons_orange.png
IP
File type PNG image data, 46 x 20, 8-bit colormap, non-interlaced\012- data
Hash 87f25844d23ac1ee03604e668f5c1797
85d440947d70a78672740ff7e8062f68ce9d99a3
d70c36f2f61b735573caa3dd5a1602e19916701bb88d99ff4527cd2c89fa8b72
GET /img/navbar/icons_orange.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 915
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jan 2023 22:01:03 GMT
expires: Thu, 12 Jan 2023 22:01:03 GMT
cache-control: public, max-age=604800
last-modified: Thu, 05 Jan 2023 19:52:55 GMT
content-type: image/png
age: 93398
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/navbar/arrows-blue.png
200 OK 104 B URL HTTP/2 resources.blogblog.com/img/navbar/arrows-blue.png
IP
File type PNG image data, 19 x 4, 8-bit/color RGBA, non-interlaced\012- data
Hash 38c95719e05f4184a301768d8de91e09
d0ed1147d46f2cf592584239a5a101d6f2abb588
259ece79a45ad7ecbcf6fb0669de61aa6a01ebedaba47a7e88283435e0e6b1be
GET /img/navbar/arrows-blue.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 104
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 16:14:39 GMT
expires: Fri, 13 Jan 2023 16:14:39 GMT
cache-control: public, max-age=604800
last-modified: Thu, 05 Jan 2023 19:52:55 GMT
content-type: image/png
age: 27782
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-iJ3C8AKLxm4/T1N7bhlm6qI/AAAAAAAAAxg/n2BPrgk-8DE/s1600/favicon.ico
200 OK 901 B URL HTTP/1.1 1.bp.blogspot.com/-iJ3C8AKLxm4/T1N7bhlm6qI/AAAAAAAAAxg/n2BPrgk-8DE/s1600/favicon.ico
IP
File type PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Hash 1faebdd934cd440713dc96a93e3b2167
f3afc1c543e9e7af578b31d5f0164cbd688a2785
21852554c799d5a240c8a941583b55025aa407232d1adc8c1e00d9c256974c58
GET /-iJ3C8AKLxm4/T1N7bhlm6qI/AAAAAAAAAxg/n2BPrgk-8DE/s1600/favicon.ico HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="favicon.ico.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 901
X-XSS-Protection: 0
Date: Fri, 06 Jan 2023 23:57:40 GMT
Expires: Sat, 07 Jan 2023 23:57:40 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v318"
Content-Type: image/png
Age: 1
cur.cursors-4u.net/cursors/cur-2/cur117.cur
200 OK 4.3 kB URL HTTP/1.1 cur.cursors-4u.net/cursors/cur-2/cur117.cur
IP
File type MS Windows cursor resource - 1 icon, 32x32, hotspot @4x3\012- data
Hash 656887271e880767e13b793fdfb999e0
f895990846e42fccb5ad9a17a0a8195fa75ce5c4
c6d483fbf356de40b7504dd92947fa16ccf1805ec70ff45615fba182c7ecd50c
GET /cursors/cur-2/cur117.cur HTTP/1.1
Host: cur.cursors-4u.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Fri, 06 Jan 2023 23:57:41 GMT
Content-Type: application/octet-stream
Content-Length: 4286
Last-Modified: Wed, 27 Feb 2013 17:42:42 GMT
Connection: keep-alive
ETag: "512e4592-10be"
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6705
Expires: Sat, 07 Jan 2023 01:49:26 GMT
Date: Fri, 06 Jan 2023 23:57:41 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6705
Expires: Sat, 07 Jan 2023 01:49:26 GMT
Date: Fri, 06 Jan 2023 23:57:41 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6705
Expires: Sat, 07 Jan 2023 01:49:26 GMT
Date: Fri, 06 Jan 2023 23:57:41 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e832123ea0c92a446b5894e75efc86ae
bb438ca635b43819701067ef07a3d910ad29a0c7
e1b0c6cd873f304de15664f96af6b6914e13fbbfb3e2179ba43369e116446773
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 93353c3e-1b26-424c-b4c6-0d113703edd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eFvpBFGvIAMFobw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b22c9f-1d07cff31ae39320693642f0;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 01:00:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: skIlgzeKmjJ2Wsx2QeubgMvO7chgpPNZYqW4E_xhRgkCtDEhAfBp4w==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 07:33:22 GMT
age: 59059
etag: "bb438ca635b43819701067ef07a3d910ad29a0c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5c619dc-4aba-44fa-b20f-5156f0b5ce48.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5c619dc-4aba-44fa-b20f-5156f0b5ce48.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5196aa81157b1c7f02a2aeec700cb184
f298bf34671800af23c78a4dcc14ff0ed60f48e8
ecdaf55df4565409bd6f6cb66a7272e9a6f3cee750437df658d4412827e0d042
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5c619dc-4aba-44fa-b20f-5156f0b5ce48.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10809
x-amzn-requestid: 6871f0ab-096d-42bc-82c4-ed72871efd30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d4DgmF_EIAMF_Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63acb2d0-551e264261f23a0f3afa9213;Sampled=0
x-amzn-remapped-date: Wed, 28 Dec 2022 21:19:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BoHEdJaS8XPY5eqT7q4mdxypOsnxpFgvMoB5O8iKkMSiNicBZgz5mw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 21:49:53 GMT
age: 7668
etag: "f298bf34671800af23c78a4dcc14ff0ed60f48e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f422f55-b598-4b18-ad6c-d64bb470b0c5.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f422f55-b598-4b18-ad6c-d64bb470b0c5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4dd5fc3111e49a998f6c1c8e8ef049
54c51c4566a514b9d8567a34e5b6f7dfd6614fa6
f05de119c3ddf9ad7bec9189889f9a8ddbd4aa764ce71d8ef8c839163faf5825
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f422f55-b598-4b18-ad6c-d64bb470b0c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7569
x-amzn-requestid: 45c4580d-6e09-4b37-991d-62a479e2f8df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eJ4DGExkIAMF_5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b3d3ad-69ed220f00ec899e1d7852aa;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 07:05:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VEt2UgPgvn8nnbu2YTvxxgpHFqhhuQny_CgH4x3FLZA2pmZVcYqqBQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 13:26:07 GMT
age: 37894
etag: "54c51c4566a514b9d8567a34e5b6f7dfd6614fa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4459605-f609-4708-9d2f-a9847e75083d.jpeg
200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4459605-f609-4708-9d2f-a9847e75083d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b9a1ed2794a7736b50852eb3686003c
86eca466bc7f92bf08faa14e0e81689014e956a8
5e5ebb24253d640719db3e8c27d4de71405173004e1be4df49af7c493fb504b8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4459605-f609-4708-9d2f-a9847e75083d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9314
x-amzn-requestid: d7733987-847e-446f-ab4e-8f4022e5ca2b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eP6aOH9joAMFzeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b63dda-4b395435357054a273ce94e8;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 03:02:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rQQBSZ09w7R-z2Hq7swh5LQhpSsGpdnmLkTYPa3t_f2sHWgmkdO7Zg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 03:13:29 GMT
age: 74652
etag: "86eca466bc7f92bf08faa14e0e81689014e956a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528de87e-4c51-4e2a-90d5-fa6c5a52a300.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528de87e-4c51-4e2a-90d5-fa6c5a52a300.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c3735c87d612da35bd07f0397b95799a
47a017ef6a57d5ec43482308cda3e15f35bfacf6
e075dd0433540b3c35030bd9312273e1ed472ab1a25cfe2912086d35e6019a60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528de87e-4c51-4e2a-90d5-fa6c5a52a300.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10420
x-amzn-requestid: 3feb5ad5-2b7c-48b5-8a0d-f780c780a72e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eP6bPHGNoAMFQYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b63de1-3d6b89744fc025f2770caaf1;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 03:02:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: HO5g694cJLUDm7L75ZDxrLYWowwIpwHYyXKEIN9PItTp0PR932AqmQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 04:28:00 GMT
age: 70181
etag: "47a017ef6a57d5ec43482308cda3e15f35bfacf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a51093b-a234-4694-9280-6ea68de36744.jpeg
200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a51093b-a234-4694-9280-6ea68de36744.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b970a91b8b2e02c08da490ad7a897a79
0b25447121c9d5d1c276cde893549234ab1d0448
e528ef574f793d899cd41ec3d2f954bc1a3658f4c8faedc04206aaf0c530e2e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a51093b-a234-4694-9280-6ea68de36744.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5815
x-amzn-requestid: c2634739-191d-47c0-98bb-2c91f0d7e5ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d_-8mEtSoAMF1Fg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63afdeb6-55946d3d7784a69409205dfc;Sampled=0
x-amzn-remapped-date: Sat, 31 Dec 2022 07:03:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -th5qESR6innpF94Jxt76YClWg6POsf_bL0RBQBRgIhcrNCR6S88rQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 04:04:50 GMT
age: 71571
etag: "0b25447121c9d5d1c276cde893549234ab1d0448"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.search-blogger.com/
301 Moved Permanently 178 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 27181302eba676d4a386d528deb7bc8a
7d2cb61e26ebadcf231d53a8f6051b070509288d
59f63d057541bb65e384d154da24cc0f7db6215cd679c6bef7c69c1a05fcfca7
GET / HTTP/1.1
Host: www.search-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.search-blogger.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 06 Jan 2023 23:57:41 GMT
Expires: Fri, 06 Jan 2023 23:57:41 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 178
Server: GSE
ocsp.pki.goog/s/gts1d4/EbmBDfRBee4
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/EbmBDfRBee4
IP
Hash 4580aea00cd8225f8cd9260793e2fcf3
d584e67b37ec22eeb28046c3785869aebfe2756e
2ed97dc421764e0d975351b730ce6422b49896ab2d0c86c953c9441691b3239f
POST /s/gts1d4/EbmBDfRBee4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 23:57:41 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.search-blogger.com/
200 OK 6.4 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4098)
Hash 60e2a30e6933c4a3cd94e5efb3f1431c
821ad5c218875ec6adac1f00db9fedffbe7a3f39
4d4a8bf175dca71b287c6c3ade533976a5c7aba46c5b57a395723b1866f498c4
GET / HTTP/1.1
Host: www.search-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Fri, 06 Jan 2023 23:57:41 GMT
date: Fri, 06 Jan 2023 23:57:41 GMT
cache-control: private, max-age=0
last-modified: Tue, 27 Dec 2022 20:37:40 GMT
etag: W/"c9cff2eb4c54eb86665a350562d75729b20f27840da43e8732f583e0c7ceb817"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 6408
server: GSE
X-Firefox-Spdy: h2
www.search-blogger.com/js/cookienotice.js
200 OK 2.0 kB URL HTTP/2 www.search-blogger.com/js/cookienotice.js
IP
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: www.search-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.search-blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Fri, 06 Jan 2023 23:57:41 GMT
expires: Fri, 13 Jan 2023 23:57:41 GMT
cache-control: public, max-age=604800
last-modified: Fri, 06 Jan 2023 22:52:23 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
widgets.amung.us/small/13/1336.png
200 OK 330 B URL HTTP/2 widgets.amung.us/small/13/1336.png
IP
File type PNG image data, 80 x 15, 8-bit colormap, non-interlaced\012- data
Hash 4251429324ee1f130982fbefc36f03b7
98cf3082666b6774b8d3d29eb9abcfd53a2daa05
9b84e7c55564be12f64f1377802ae47f64b7c57c712d7aa0c1f47c67f43b4796
GET /small/13/1336.png HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.search-blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 06 Jan 2023 23:57:41 GMT
content-type: image/png
content-length: 330
last-modified: Sun, 13 Jun 2010 09:48:30 GMT
etag: "4c14a96e-14a"
expires: Sat, 17 Dec 2022 08:38:32 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 1869549
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 785865c11df80a23-ARN
X-Firefox-Spdy: h2
www.search-blogger.com/
200 OK 6.4 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4098)
Hash 60e2a30e6933c4a3cd94e5efb3f1431c
821ad5c218875ec6adac1f00db9fedffbe7a3f39
4d4a8bf175dca71b287c6c3ade533976a5c7aba46c5b57a395723b1866f498c4
GET / HTTP/1.1
Host: www.search-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Fri, 06 Jan 2023 23:57:41 GMT
date: Fri, 06 Jan 2023 23:57:41 GMT
cache-control: private, max-age=0
last-modified: Tue, 27 Dec 2022 20:37:40 GMT
etag: W/"c9cff2eb4c54eb86665a350562d75729b20f27840da43e8732f583e0c7ceb817"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 6408
server: GSE
X-Firefox-Spdy: h2
whos.amung.us/swidget/26ri8qf50jwy
307 Temporary Redirect 335 B URL HTTP/2 whos.amung.us/swidget/26ri8qf50jwy
IP
File type PNG image data, 80 x 15, 8-bit colormap, non-interlaced\012- data
Hash 9fc13eb32d41be4d4eca7af7a097ee90
46598289e4fad273a53bcd7f5f68457f2896223c
5c1d93ee243aa169073e29fb5366c4aaf04699e66919678c3ec84859dfe23d40
GET /swidget/26ri8qf50jwy HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.search-blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
date: Fri, 06 Jan 2023 23:57:42 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/small/13/1315.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 785865c1ce520a23-ARN
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/data-post.js
404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/data-post.js
IP
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:57:39 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 1052285d69f447fe819be3be379bf084
X-Firefox-Spdy: h2
dl.dropbox.com/u/16265358/downloadsgratis/jquery.js
404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/16265358/downloadsgratis/jquery.js
IP
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/jquery.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:57:39 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 27778af65c9f4462857c4a92ef06a8b9
X-Firefox-Spdy: h2
whos.amung.us/swidget/26ri8qf50jwy
307 Temporary Redirect 0 B URL HTTP/2 whos.amung.us/swidget/26ri8qf50jwy
IP
GET /swidget/26ri8qf50jwy HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.search-blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Fri, 06 Jan 2023 23:57:41 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/small/13/1336.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 785865c03d8c0a23-ARN
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/data-post.js
404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/data-post.js
IP
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/53952260/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:57:40 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: f03e53c8ec1e43ac9b9853f5afe772be
X-Firefox-Spdy: h2
dl.dropbox.com/u/77549632/Aplicandroid/120x60.png
404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/77549632/Aplicandroid/120x60.png
IP
GET /u/77549632/Aplicandroid/120x60.png HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://galvsgames.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:57:40 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 902aeb61f53c4b20aeeef41633cd3ad8
X-Firefox-Spdy: h2
dl.dropbox.com/u/16265358/downloadsgratis/jquery.flexislider.js
404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/16265358/downloadsgratis/jquery.flexislider.js
IP
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/16265358/downloadsgratis/jquery.flexislider.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:57:39 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: df795c65b1ee4ea0b0d40b5a5abe6a31
X-Firefox-Spdy: h2
dl.dropbox.com/u/53952260/blogger.js
404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/53952260/blogger.js
IP
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/53952260/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://galvsgames.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 06 Jan 2023 23:57:40 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: c6051022ea194b56b36b32388af396b1
X-Firefox-Spdy: h2
172.217.21.161
104.22.75.171
3.66.136.156
156.224.142.48
23.36.76.226
93.184.220.29
151.101.84.193