r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3885
Expires: Tue, 04 Oct 2022 14:12:34 GMT
Date: Tue, 04 Oct 2022 13:07:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 12:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nmq65jaQcttX-MfjzVZFfXsqt_3i3taEX9WRvFrjut2XsoaIeTaSpA==
Age: 1245
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 74134730f642b6f6dfeca3ecc61a329e
668914cc93cceb123d199a45df13ad764704fa84
d681a4c2e20a6019c7e2d980cbfa77b34db9356899099296c3b8b4263ca5fb5f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D681A4C2E20A6019C7E2D980CBFA77B34DB9356899099296C3B8B4263CA5FB5F"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15523
Expires: Tue, 04 Oct 2022 17:26:32 GMT
Date: Tue, 04 Oct 2022 13:07:49 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rb0JQH06fyt2W2ngb1QrSF+uP/dGjzTwg0TIfKM53kUOswaYmAfvp6LjLOObRzfM2VsENEbkzUM=
x-amz-request-id: DGPYEHXN8EWXGFM0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 04 Oct 2022 12:51:21 GMT
age: 988
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:07:49 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 04 Oct 2022 12:29:33 GMT
Expires: Tue, 04 Oct 2022 13:17:17 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: u0BMnz3sjuvvMnpOXdkBi1tscBTDuPybKCkA8EV3smUQJOS6nVhojg==
Age: 2296
quarantinoderose.blogspot.com/2022/05/juegos-de-saltar-en-roblox-roblox-lista.html
301 Moved Permanently 220 B URL HTTP/1.1 quarantinoderose.blogspot.com/2022/05/juegos-de-saltar-en-roblox-roblox-lista.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash d4a7308f1909f0e323ad46586f0156b2
d5ca0b7bff1cc8cd5be4d650e74a989438df7140
3d43b588c10f8cd398b5efe1564cd89a0c1a18585ccadbbf11269ea0229dc9ad
GET /2022/05/juegos-de-saltar-en-roblox-roblox-lista.html HTTP/1.1
Host: quarantinoderose.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://quarantinoderose.blogspot.com/2022/05/juegos-de-saltar-en-roblox-roblox-lista.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Tue, 04 Oct 2022 13:07:49 GMT
Expires: Tue, 04 Oct 2022 13:07:49 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 220
Server: GSE
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 938ca8d04dae51b68f67cb6b99851772
8a3956985c77128a745c8b50bf63ba9a1085d195
f5e23e685fda24bd65f31a39291ab9006074bf8c0b946de073297129515fe571
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 16ebfb2aa621547ecf581e26fc828a7d
f78993331f6f5b8af6409a9ad2fc50b77070f68a
0f81fd1d6be9ccc04b74f0348aafe642c7b9ab7dffb7e8a679b5d67cc2e5fac3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3388
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:49 GMT
Last-Modified: Tue, 04 Oct 2022 12:11:21 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DFDVaTgjY+X1IDRBZOWGHg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 026IOijMQG0p9P+28fIydkFSRZU=
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 938ca8d04dae51b68f67cb6b99851772
8a3956985c77128a745c8b50bf63ba9a1085d195
f5e23e685fda24bd65f31a39291ab9006074bf8c0b946de073297129515fe571
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
quarantinoderose.blogspot.com/2022/05/juegos-de-saltar-en-roblox-roblox-lista.html
200 OK 46 kB URL HTTP/2 quarantinoderose.blogspot.com/2022/05/juegos-de-saltar-en-roblox-roblox-lista.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10323)
Hash 607fa0d994b065feffec4f6ba4676912
5913365f23c5d67b4248f812a52744f54fed8567
083c838771f4dce90c68a0006d66685182dd586a9d821ed8fcc7f76fd7e60875
GET /2022/05/juegos-de-saltar-en-roblox-roblox-lista.html HTTP/1.1
Host: quarantinoderose.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Tue, 04 Oct 2022 13:07:50 GMT
date: Tue, 04 Oct 2022 13:07:50 GMT
cache-control: private, max-age=0
last-modified: Mon, 03 Oct 2022 00:28:41 GMT
etag: W/"b5d18974436b9248a92701c6ef98aeabc7e6e7285a95a1b0ca25664bd63e8068"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 46500
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i1.wp.com/i.ytimg.com/vi/W1aFEtn-O0w/maxresdefault.jpg
302 Found 138 B URL HTTP/2 i1.wp.com/i.ytimg.com/vi/W1aFEtn-O0w/maxresdefault.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /i.ytimg.com/vi/W1aFEtn-O0w/maxresdefault.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 04 Oct 2022 13:07:50 GMT
content-type: text/html
content-length: 138
location: https://i.ytimg.com/vi/W1aFEtn-O0w/maxresdefault.jpg
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 589d830dbd20c3dcf601bf7a2fe7fd29
e6fc4f0062189aee4c8616949f86571db0a92ff5
10137bb52117be557fae9e1cf90fdf106786da04f6d799b19e2c3100aeafdd61
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i1.wp.com/i.ytimg.com/vi/POxqc2IdvwM/maxresdefault.jpg
302 Found 138 B URL HTTP/2 i1.wp.com/i.ytimg.com/vi/POxqc2IdvwM/maxresdefault.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /i.ytimg.com/vi/POxqc2IdvwM/maxresdefault.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 04 Oct 2022 13:07:50 GMT
content-type: text/html
content-length: 138
location: https://i.ytimg.com/vi/POxqc2IdvwM/maxresdefault.jpg
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP
File type ASCII text, with very long lines (1441)
Hash f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 02:06:45 GMT
expires: Sat, 30 Sep 2023 02:06:45 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 29 Sep 2022 23:51:35 GMT
content-type: text/javascript
age: 385265
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a068d9fec672f97ef7d20969d5925877
e921c48a1686bb8157c902d76a08c5b55507505d
954a24ce791bcf1686f2077da5f25015a3298a838035ffc8322282b213553592
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/792789798-widgets.js
200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/792789798-widgets.js
IP
File type ASCII text, with very long lines (2221)
Hash 02e6bf311e18828a522b4d3a4079084f
a63cd373fa23b4fe11f938d57737e6bfa1ebe789
25d469843aa09be2473931d33aaa37b65ac371874bd98ca84ec780bead3e33e4
GET /static/v1/widgets/792789798-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56804
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 02:15:20 GMT
expires: Tue, 03 Oct 2023 02:15:20 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 03 Oct 2022 00:49:27 GMT
content-type: text/javascript
age: 125550
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
200 OK 20 kB URL HTTP/2 apis.google.com/js/platform.js
IP
File type ASCII text, with very long lines (1277)
Hash b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Tue, 04 Oct 2022 13:07:50 GMT
expires: Tue, 04 Oct 2022 13:07:50 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ba9ef0c50e7620672d6f76aefd565aad
732ed324db4ae23ae4d1673b0402672415db4edf
5ee71b7ce1f34397dd6af1b51acd28a364c8bb39f4498651a8d464b8be490fd6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15816, version 1.0\012- data
Hash 2735a3a69b509faf3577afd25bdf552e
8621aff863b67040010ccc183da5b9079ce6fd1d
b4d07892cde715d50bb69c1982df496385d1dfd8f9d1867c31f19a3c8634cfae
GET /s/roboto/v20/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://quarantinoderose.blogspot.com
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 06:03:10 GMT
expires: Wed, 04 Oct 2023 06:03:10 GMT
cache-control: public, max-age=31536000
age: 25480
last-modified: Wed, 24 Jul 2019 01:19:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ba9ef0c50e7620672d6f76aefd565aad
732ed324db4ae23ae4d1673b0402672415db4edf
5ee71b7ce1f34397dd6af1b51acd28a364c8bb39f4498651a8d464b8be490fd6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 589d830dbd20c3dcf601bf7a2fe7fd29
e6fc4f0062189aee4c8616949f86571db0a92ff5
10137bb52117be557fae9e1cf90fdf106786da04f6d799b19e2c3100aeafdd61
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
200 OK 64 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
IP
File type ASCII text, with very long lines (580)
Hash 68ad53bc8ffceaff0e27d07690609326
2ee4ea5dcef485ec718acf208b54d4cd371ea2b7
9ce1a6286c578c295fca51a75dfa9246c18534699119d4bf23c349a22a8deff1
GET /_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 64328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 06:56:17 GMT
expires: Thu, 28 Sep 2023 06:56:17 GMT
cache-control: public, max-age=31536000
age: 540693
last-modified: Sat, 30 Jul 2022 15:17:53 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs
200 OK 5.6 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs
IP
File type ASCII text, with very long lines (3295)
Hash add1c094467a85397dd1dcba79647c16
0c10daefd2c177b97572b707d64e262ece9de222
e7b42344ded3823cfd449cbeafe5f885022b6e883dad06c56ffb84a6f389c0fb
GET /_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 5608
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 05:33:57 GMT
expires: Sun, 01 Oct 2023 05:33:57 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 30 Jul 2022 15:17:53 GMT
content-type: text/javascript; charset=UTF-8
age: 286433
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15736, version 1.0\012- data
Hash 479970ffb74f2117317f9d24d9e317fe
81c796737cbe44d4a719777f0aff14b73a3efb1e
48c3fa6f86c54f1d9bb519220713d4b0a1f8cd1a589a3c03b9fa82e98ecb13e3
GET /s/roboto/v20/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://quarantinoderose.blogspot.com
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 13:35:36 GMT
expires: Sun, 01 Oct 2023 13:35:36 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 Jul 2019 01:18:36 GMT
content-type: font/woff2
age: 257534
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 129fe858bf2aa7291fd2c6dd4cf9d226
e3e048b964b851ebbdcfb5bd80ebdbad13720cf6
addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i1.wp.com/andro4all.com/hero/2020/08/mejores-juegos-de-Roblox-que-tienes-que-probar.jpg?width=1200&aspect_ratio=1200:631
200 OK 68 kB URL HTTP/2 i1.wp.com/andro4all.com/hero/2020/08/mejores-juegos-de-Roblox-que-tienes-que-probar.jpg?width=1200&aspect_ratio=1200:631
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x857, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dda3ef83744f8736a58814cb876457e5
4882b77aa729a1092df43c9bf89f2d180216b62c
d6e83b6175eb6956172155139175a622a7da725e5dffce5c250a161d583ea2a5
GET /andro4all.com/hero/2020/08/mejores-juegos-de-Roblox-que-tienes-que-probar.jpg?width=1200&aspect_ratio=1200:631 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:07:50 GMT
content-type: image/webp
content-length: 68078
last-modified: Tue, 04 Oct 2022 13:07:50 GMT
expires: Fri, 04 Oct 2024 01:07:50 GMT
cache-control: public, max-age=63115200
link: <http://andro4all.com/hero/2020/08/mejores-juegos-de-Roblox-que-tienes-que-probar.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "3aeb68cb766e9bdb"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 53e0e5a2455fedae0d6308f91d41e445
237c2856f8a89ae3673ea909164557d65268c463
ddba9b3842f879168185b6607551069b312c44de4ec015ca4b43ad154d190bc8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/POxqc2IdvwM/maxresdefault.jpg
200 OK 83 kB URL HTTP/2 i.ytimg.com/vi/POxqc2IdvwM/maxresdefault.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Hash db004dd85b0e14979a120503e7c92178
3c55b749d3d3680f36b7850ff625ab9efaa8b3f2
0c07f2865024fb08eb248310c5987883b89f4464112e20cf0684262f1aa74a0f
GET /vi/POxqc2IdvwM/maxresdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quarantinoderose.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 82661
date: Tue, 04 Oct 2022 13:07:50 GMT
expires: Tue, 04 Oct 2022 15:07:50 GMT
cache-control: public, max-age=7200
etag: "1489162040"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/W1aFEtn-O0w/maxresdefault.jpg
200 OK 234 kB URL HTTP/2 i.ytimg.com/vi/W1aFEtn-O0w/maxresdefault.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size 234 kB (233465 bytes)
Hash 2669f87b78852cdf1ed05d3ff40663cb
481a8bfd7dbda2b28560a1328c831a6bf903a0d0
ce81978b4e4243945f5bbcf0f47b88335c283ced105bffa814110f0d8082fbae
GET /vi/W1aFEtn-O0w/maxresdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quarantinoderose.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 233465
date: Tue, 04 Oct 2022 13:07:50 GMT
expires: Tue, 04 Oct 2022 15:07:50 GMT
cache-control: public, max-age=7200
etag: "1566844366"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
200 OK 67 B URL HTTP/2 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 67
x-xss-protection: 0
date: Mon, 03 Oct 2022 20:43:01 GMT
expires: Mon, 17 Oct 2022 20:43:01 GMT
cache-control: public, max-age=1209600
age: 59089
etag: 13036835877489095579
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bestbestfree.com/01bestbestfree.js
200 OK 4.6 kB URL HTTP/2 bestbestfree.com/01bestbestfree.js
IP
File type HTML document, ASCII text, with very long lines (6051), with CRLF line terminators
Hash f3595736e9b4159fa0cec220647bad02
6284cfdcacdf9a3e864c296186f645512c855669
fcee0f809a62bb3cffdd55df998277a941906e7517f864bffee2e63f4dcc667e
GET /01bestbestfree.js HTTP/1.1
Host: bestbestfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 13:07:50 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 15:57:35 GMT
vary: Accept-Encoding
etag: W/"61e6e36f-34b8"
expires: Tue, 01 Nov 2022 08:07:12 GMT
cache-control: public, max-age=2592000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 190838
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8L0UYqtI2HYhqISkV9mHuLUYZjYoQfK8I9%2F1Epwyq2Rc5a69rVr4Qfmh0GqvxvCJtxWRBy2w1%2Ft9tuvdmifQygMA7ea%2FQyAfGv08xJ6ErQpvkcQI5bjM8wCs%2BXQbok0Q5NnX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754e24915a64b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 53e0e5a2455fedae0d6308f91d41e445
237c2856f8a89ae3673ea909164557d65268c463
ddba9b3842f879168185b6607551069b312c44de4ec015ca4b43ad154d190bc8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/www.lavanguardia.com/files/og_thumbnail/uploads/2018/07/07/5fa432cc8831f.jpeg
200 OK 51 kB URL HTTP/2 i0.wp.com/www.lavanguardia.com/files/og_thumbnail/uploads/2018/07/07/5fa432cc8831f.jpeg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x675, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e6133a723986c9375ac31ca97a7d4fe3
600ec3e21bccec8ca348d4ffa0d8315dd4a94721
b615144e6f67e7c30e22cd09b52ff9984fb710c6b7c485e728f69929ab075f1b
GET /www.lavanguardia.com/files/og_thumbnail/uploads/2018/07/07/5fa432cc8831f.jpeg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:07:50 GMT
content-type: image/webp
content-length: 51082
last-modified: Tue, 04 Oct 2022 13:07:50 GMT
expires: Fri, 04 Oct 2024 01:07:50 GMT
cache-control: public, max-age=63115200
link: <http://www.lavanguardia.com/files/og_thumbnail/uploads/2018/07/07/5fa432cc8831f.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "af74446ce06043a0"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/abctech.news/wp-content/uploads/2022/01/Markers-in-Find-The-Markers-Location-Guide-EMXCki6-5.jpg
200 OK 38 kB URL HTTP/2 i0.wp.com/abctech.news/wp-content/uploads/2022/01/Markers-in-Find-The-Markers-Location-Guide-EMXCki6-5.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 774x431, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash aba99cfd440253ba15276330afb2fdbb
1a5f9ab08763468001cd5df13228a4fa177cb688
6726a3a1ad8b1777801411a7c3906687659bab1d0787f0ce7f75d8bdd5baf483
GET /abctech.news/wp-content/uploads/2022/01/Markers-in-Find-The-Markers-Location-Guide-EMXCki6-5.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:07:50 GMT
content-type: image/webp
content-length: 38006
last-modified: Tue, 04 Oct 2022 13:07:50 GMT
expires: Fri, 04 Oct 2024 01:07:50 GMT
cache-control: public, max-age=63115200
link: <http://abctech.news/wp-content/uploads/2022/01/Markers-in-Find-The-Markers-Location-Guide-EMXCki6-5.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "e580d73bc7808e8a"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
200 OK 34 kB URL HTTP/2 www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
IP
File type ASCII text, with very long lines (2800)
Hash 3d5823c8d54c6fbfa1c2111ad8b5e177
2df748e9879f3f9b8dcf4104d5074b152881d37e
b8e63d9f4ae8fff2900f481c5b9f813af7b74aed8cd9398049ce3cceb0afc629
GET /feedback/js/help/prod/service/lazy.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/product-feedback-gathering
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="product-feedback-gathering"
report-to: {"group":"product-feedback-gathering","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/product-feedback-gathering"}]}
content-length: 33850
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 12:48:30 GMT
expires: Tue, 04 Oct 2022 13:38:30 GMT
cache-control: public, max-age=3000
last-modified: Thu, 29 Sep 2022 21:00:43 GMT
content-type: text/javascript
age: 1160
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5a013e946c8aa13fd23be3fdf2adce9a
77121ee971f6ff35a81594668bc5b098958afac7
b3b4a018e019fecf6ea9e57ec4f65a84545fae55ab2455638eaa47631bca1df8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B3B4A018E019FECF6EA9E57EC4F65A84545FAE55AB2455638EAA47631BCA1DF8"
Last-Modified: Sun, 02 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15711
Expires: Tue, 04 Oct 2022 17:29:42 GMT
Date: Tue, 04 Oct 2022 13:07:51 GMT
Connection: keep-alive
i1.wp.com/i.blogs.es/301650/el-juego-del-calamar-muneca-1633501539/1366_2000.jpeg
200 OK 39 kB URL HTTP/2 i1.wp.com/i.blogs.es/301650/el-juego-del-calamar-muneca-1633501539/1366_2000.jpeg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cfd175cb4c16563abccae08dbc527830
7a5e1ace182c630aef9e46274d3530d47e6774ba
db1741c78af0229a02f3c80f40ded74705e1eff5285fb2573ddc058ab7b1fca4
GET /i.blogs.es/301650/el-juego-del-calamar-muneca-1633501539/1366_2000.jpeg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:07:51 GMT
content-type: image/webp
content-length: 38886
last-modified: Tue, 04 Oct 2022 13:07:51 GMT
expires: Fri, 04 Oct 2024 01:07:51 GMT
cache-control: public, max-age=63115200
link: <http://i.blogs.es/301650/el-juego-del-calamar-muneca-1633501539/1366_2000.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "26b80cfc9c71128d"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b45b15bb651cc185ea82d91a51f06b5a
44987727be72bb12b4e4fc4fac50145835512750
f0b61426de169cf2efde87ac98d5123ea785004ad05c05932a099b644b2fdf64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
200 OK 667 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP
File type ASCII text, with very long lines (1034), with no line terminators
Hash 82b8f5bab5ac40a212da17a4b0d35e37
e7e689b272a7857e19c6eee1e8ccdab4e41bbe23
56a0c27e76fceab964c875719ffdff753bcb13e9d48c8692f71605707c843d7d
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 04 Oct 2022 13:07:51 GMT
date: Tue, 04 Oct 2022 13:07:51 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 667
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=5570758357265903883&zx=eb209b9c-e643-4631-836f-c7bb3a1d545e
200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=5570758357265903883&zx=eb209b9c-e643-4631-836f-c7bb3a1d545e
IP
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=5570758357265903883&zx=eb209b9c-e643-4631-836f-c7bb3a1d545e HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 04 Oct 2022 13:07:51 GMT
last-modified: Tue, 04 Oct 2022 13:07:51 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
accompanycollapse.com/bc8d59f796233b632b8846bc72a15192/invoke.js
200 OK 9.8 kB URL HTTP/1.1 accompanycollapse.com/bc8d59f796233b632b8846bc72a15192/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (27014), with no line terminators
Hash 7c6b7caaafe1ef75f18a9180d565f336
e972b020862d86b65cea34bfe4537dea38d82404
26aa242b7d3b47654cd3d84727b2826eac6fad9147a3481a75d71de8a469cee2
GET /bc8d59f796233b632b8846bc72a15192/invoke.js HTTP/1.1
Host: accompanycollapse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 13:07:51 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d04e725c347ae94ff69dd89118c58ffd
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
i0.wp.com/news.xbox.com/es-latam/wp-content/uploads/sites/4/2021/02/ROBLOX_FREEZE_TAG_ROCKY_MOUNTAINS_001.jpg?resize=1200%2C675&ssl=1
200 OK 48 kB URL HTTP/2 i0.wp.com/news.xbox.com/es-latam/wp-content/uploads/sites/4/2021/02/ROBLOX_FREEZE_TAG_ROCKY_MOUNTAINS_001.jpg?resize=1200%2C675&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x675, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 92aa1f28aa3a4804a2ce4a8849f5a36f
9a99826075b8352701912460c7cea8a2bab9db89
6b4fee71bd577f5ba0754b6131def0756446856d82c74e45ffadbeb20cf4e464
GET /news.xbox.com/es-latam/wp-content/uploads/sites/4/2021/02/ROBLOX_FREEZE_TAG_ROCKY_MOUNTAINS_001.jpg?resize=1200%2C675&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:07:51 GMT
content-type: image/webp
content-length: 48266
last-modified: Tue, 04 Oct 2022 13:07:51 GMT
expires: Fri, 04 Oct 2024 01:07:51 GMT
cache-control: public, max-age=63115200
link: <https://news.xbox.com/es-latam/wp-content/uploads/sites/4/2021/02/ROBLOX_FREEZE_TAG_ROCKY_MOUNTAINS_001.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "204c89ef71f7e00e"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/zonaroblox.com/wp-content/uploads/mega_funny-obby-roblox.webp
200 OK 3.4 kB URL HTTP/2 i1.wp.com/zonaroblox.com/wp-content/uploads/mega_funny-obby-roblox.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 450x193, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7f2eb867f03ba93e1641cf7b644f93fc
baa12371e02c723cfc9054da7c32ee1ffcaa8686
2dfb3d8b123db6b549de991f2c17da1ee526db2f3cf9bd41136c9483341aae1a
GET /zonaroblox.com/wp-content/uploads/mega_funny-obby-roblox.webp HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:07:51 GMT
content-type: image/webp
content-length: 3370
last-modified: Tue, 04 Oct 2022 13:07:51 GMT
expires: Fri, 04 Oct 2024 01:07:51 GMT
cache-control: public, max-age=63115200
link: <http://zonaroblox.com/wp-content/uploads/mega_funny-obby-roblox.webp>; rel="canonical"
x-content-type-options: nosniff
etag: "3364307df19b4ed0"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3047
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 13:07:51 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3047
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 13:07:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 54b3ef7aa50273b78b59c24511b0c1f9
e2ea2ef6805e391c497e62e101e76a0bdecfce64
296e8954022d5160137b3e02ab5085a15cee7c23cd6d4ca61b36880706062457
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11955
x-amzn-requestid: ce6bbe93-95b0-4b6e-a8bc-012796485e67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zcqb9FUtoAMF0WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b577f-59dc0a18523f900a059aa5df;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 44jC1Ww19YUJjZHw9_3cSSR5Y7nw5df412G-RxWFTcbRz1XDKaT3zQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:35 GMT
age: 55396
etag: "e2ea2ef6805e391c497e62e101e76a0bdecfce64"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.blogger.com/comment/frame/5570758357265903883?po=1492070170811728047&hl=en&skin=contempo&blogspotRpcToken=5046857
200 OK 23 kB URL HTTP/2 www.blogger.com/comment/frame/5570758357265903883?po=1492070170811728047&hl=en&skin=contempo&blogspotRpcToken=5046857
IP
Hash 3a75ef87a06d78c174a940467d306adb
705cca88738edb5c37090ad0043aa17c3752d878
fd0672e3fcd8d6cfcd714854b5b1b44fe05b7440c5cc2dd5de9875d3f99c3ae1
GET /comment/frame/5570758357265903883?po=1492070170811728047&hl=en&skin=contempo&blogspotRpcToken=5046857 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 04 Oct 2022 13:07:50 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport, script-src 'nonce-wtfs5pNdgw7WFzzKRCIvbw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/BloggerCommentUi/cspreport/allowlist
cross-origin-resource-policy: same-site
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=qYVcP_pJqVpPCyrZnRk-9V5jo-N82UR3ZAwgh-2QJOSZqqfBSsISkr49o8D3PNg2D2uGGT2PrYG6w9IVCsGFOySsUztXYR6dR-0b8i_UirtJmQRNub5QfrVo1lggrOi7QstnzUw-6k4QvYCIwDwhyWA6QD_WJ-jlYcsv2vhHeDk; expires=Wed, 05-Apr-2023 13:07:50 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6c6882c60d7ca6f918c77104e3ad1d52
20ef861be49c652a938e0145e4ca3a60159367e2
861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: O1yNc4H21kixhUEE7099oNqs7a5ZnJBBjlZbsbmLvaXyzXzrK0dL3w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:33 GMT
age: 55398
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8c08f8066cc732de8befd6ccd629a95
22aab05208a01ae5def4d63dc145085630f57bcb
f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DOS5kVEVqBrCVMKRw07fX-6HDgWVb9lJwkVM2pXs0PQHys6CBJUVfQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 55411
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
i1.wp.com/encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcSkLXvrBU18KgaABVbXltG5eaAQFNuOmc8tfA&usqp=CAU
404 Not Found 6.4 kB URL HTTP/2 i1.wp.com/encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcSkLXvrBU18KgaABVbXltG5eaAQFNuOmc8tfA&usqp=CAU
IP
Hash 7280ecdea1227ef4305d516f7b60571c
4877467f8132f81a8b547ddd7b339652b6ea4070
8824266b5d043aa9c9623a6b3606fcdc69dae589ccb49df7c1cd7edae6cc1299
GET /encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcSkLXvrBU18KgaABVbXltG5eaAQFNuOmc8tfA&usqp=CAU HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Tue, 04 Oct 2022 13:07:50 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 8
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SGeDEPoXxsTV5UwkZnn3MJPbjhHhrKSsueHPxVapV_7Icl6daFk3oA==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 55411
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 5051734aa47e871f30936254a98cebee
38ecb55e50d18f22f54e1ebc0bf5d70f6912cc97
45727a8f22a365165d5bfd7b562ee3fe43cb02f918228bcd6441deb4a33bd421
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 13:07:51 GMT
Last-Modified: Tue, 04 Oct 2022 11:28:53 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BGDKqqC7O3HRFIhAhGckvz9rIcyDAYQ4fa_9Bt4dxvL-PL_i0rvHBQ==
Age: 5938
simplewebanalysis.com/stats
200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP
File type ASCII text, with no line terminators
Hash e1bb292efca615e6a8b310c77b588399
0f6de571cfd57149325fcfe9ecbc1cd812f53d73
26760ecb78e008abfa55a3bfed9e9887a0b8a57a26631f3af6b158c2c56d2efc
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quarantinoderose.blogspot.com
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 13:07:51 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://quarantinoderose.blogspot.com
access-control-allow-credentials: true
set-cookie: uid_id2=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9:1:1; expires=Fri, 01 Oct 2032 13:07:51 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 50286903b1552c5e10b5bb6fd180ff72
08136163cefbdbbe6b6b5e2bdf52932110cba789
694e9c4f0de7d7649cd48152b8433881d13d89f8389e98186b43b6db45d20f82
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "694E9C4F0DE7D7649CD48152B8433881D13D89F8389E98186B43B6DB45D20F82"
Last-Modified: Tue, 04 Oct 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1862
Expires: Tue, 04 Oct 2022 13:38:53 GMT
Date: Tue, 04 Oct 2022 13:07:51 GMT
Connection: keep-alive
i0.wp.com/mundoentrenamiento.com/wp-content/uploads/2020/10/sesion-de-juegos-tradicionales-en-educacion-fisica.png
200 OK 32 kB URL HTTP/2 i0.wp.com/mundoentrenamiento.com/wp-content/uploads/2020/10/sesion-de-juegos-tradicionales-en-educacion-fisica.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash acf4f718c92ee3b525ea49621949d060
b3bb3d78827055371dc2a7316021f9ff07b8d67a
24025e1c49a3f597972f0e017f1b2dbac0505115a7ad63af3ee5bb9c892f9873
GET /mundoentrenamiento.com/wp-content/uploads/2020/10/sesion-de-juegos-tradicionales-en-educacion-fisica.png HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:07:51 GMT
content-type: image/webp
content-length: 32110
last-modified: Sun, 02 Oct 2022 00:51:16 GMT
expires: Tue, 01 Oct 2024 12:51:16 GMT
cache-control: public, max-age=63115200
link: <http://mundoentrenamiento.com/wp-content/uploads/2020/10/sesion-de-juegos-tradicionales-en-educacion-fisica.png>; rel="canonical"
x-content-type-options: nosniff
etag: "a2507a4cd32cfb9c"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 129fe858bf2aa7291fd2c6dd4cf9d226
e3e048b964b851ebbdcfb5bd80ebdbad13720cf6
addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 129fe858bf2aa7291fd2c6dd4cf9d226
e3e048b964b851ebbdcfb5bd80ebdbad13720cf6
addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Tue, 04 Oct 2022 13:07:51 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+307; expires=Thu, 03-Oct-2024 13:07:51 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Tue, 04 Oct 2022 13:07:51 GMT
cache-control: private
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2974
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 04 Oct 2022 13:07:51 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+935; expires=Thu, 03-Oct-2024 13:07:51 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Tue, 04 Oct 2022 13:07:51 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 12:31:58 GMT
expires: Sun, 01 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 261353
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 00:48:31 GMT
expires: Sat, 30 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 389960
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i1.wp.com/reader021.docslide.net/reader021/html5/20170731/55cf9cd5550346d033ab3446/bg1.png
200 OK 11 kB URL HTTP/2 i1.wp.com/reader021.docslide.net/reader021/html5/20170731/55cf9cd5550346d033ab3446/bg1.png
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 612x424, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b740606da6090b2c7af4e152145893ae
1c55e44544f18cead0680b39f0fbce176e031656
a68c0cb3d4c23a93fec3eb53025b46b7bc3d2f94f5ce1253f6bad38b2f77ed8e
GET /reader021.docslide.net/reader021/html5/20170731/55cf9cd5550346d033ab3446/bg1.png HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:07:51 GMT
content-type: image/webp
content-length: 11098
last-modified: Tue, 04 Oct 2022 13:07:51 GMT
expires: Fri, 04 Oct 2024 01:07:51 GMT
cache-control: public, max-age=63115200
link: <http://reader021.docslide.net/reader021/html5/20170731/55cf9cd5550346d033ab3446/bg1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "a9c36487c026a59e"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcS77D73wC4EV-gvG0v8TWAyr1OzVpocD0SkHQ&usqp=CAU
404 Not Found 2.9 kB URL HTTP/2 i1.wp.com/encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcS77D73wC4EV-gvG0v8TWAyr1OzVpocD0SkHQ&usqp=CAU
IP
Hash b471e1daa7d134bc01b1b20a9798cc94
270beb7351fb1f8fc22c0f77822450b7884fd0db
2283f004ec5f6aba4267a70565142537c55642dcd15625031e99286bc0842c49
GET /encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcS77D73wC4EV-gvG0v8TWAyr1OzVpocD0SkHQ&usqp=CAU HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Tue, 04 Oct 2022 13:07:51 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 8
X-Firefox-Spdy: h2
knockoutantipathy.com/da/ce/88/dace887d039f088ae0d9952a8b8cb060.js
200 OK 13 kB URL HTTP/1.1 knockoutantipathy.com/da/ce/88/dace887d039f088ae0d9952a8b8cb060.js
IP
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37139), with no line terminators
Hash aadfdb7733ed609f4fc91d21fa20c7e9
fd52e541947d4747f5eca5f8ff6d05368cb1af0d
603f625bed8f3f92a83ad47ea1e7b5b8e7d3c88e707927ab360c00dd4ad40932
Analyzer Verdict Alert quad9 Sinkholed
GET /da/ce/88/dace887d039f088ae0d9952a8b8cb060.js HTTP/1.1
Host: knockoutantipathy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 04 Oct 2022 13:07:51 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8dba601312a89b68954d98e1b182b631
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
knockoutantipathy.com/watch.1246664170449.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22juegos%22%2C%22de%22%2C%22saltar%22%2C%22en%22%2C%22roblox%22%2C%22roblox%22%2C%22lista%22%2C%22de%22%2C%22todos%22%2C%22los%22%2C%22comandos%22%2C%22y%22%2C%22como%22%2C%22usarlos%22%2C%22-%22%2C%22quarantino%22%2C%22derose%22%5D&refer=https%3A%2F%2Fquarantinoderose.blogspot.com%2F2022%2F05%2Fjuegos-de-saltar-en-roblox-roblox-lista.html&tz=0&dev=r&res=12.31&uuid=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9%3A1%3A1
307 Temporary Redirect 0 B URL HTTP/1.1 knockoutantipathy.com/watch.1246664170449.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22juegos%22%2C%22de%22%2C%22saltar%22%2C%22en%22%2C%22roblox%22%2C%22roblox%22%2C%22lista%22%2C%22de%22%2C%22todos%22%2C%22los%22%2C%22comandos%22%2C%22y%22%2C%22como%22%2C%22usarlos%22%2C%22-%22%2C%22quarantino%22%2C%22derose%22%5D&refer=https%3A%2F%2Fquarantinoderose.blogspot.com%2F2022%2F05%2Fjuegos-de-saltar-en-roblox-roblox-lista.html&tz=0&dev=r&res=12.31&uuid=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9%3A1%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1246664170449.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22juegos%22%2C%22de%22%2C%22saltar%22%2C%22en%22%2C%22roblox%22%2C%22roblox%22%2C%22lista%22%2C%22de%22%2C%22todos%22%2C%22los%22%2C%22comandos%22%2C%22y%22%2C%22como%22%2C%22usarlos%22%2C%22-%22%2C%22quarantino%22%2C%22derose%22%5D&refer=https%3A%2F%2Fquarantinoderose.blogspot.com%2F2022%2F05%2Fjuegos-de-saltar-en-roblox-roblox-lista.html&tz=0&dev=r&res=12.31&uuid=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9%3A1%3A1 HTTP/1.1
Host: knockoutantipathy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quarantinoderose.blogspot.com
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.9
Date: Tue, 04 Oct 2022 13:07:51 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://quarantinoderose.blogspot.com
Access-Control-Allow-Origin: https://quarantinoderose.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://knockoutantipathy.com/watch.1246664170449.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22juegos%22%2C%22de%22%2C%22saltar%22%2C%22en%22%2C%22roblox%22%2C%22roblox%22%2C%22lista%22%2C%22de%22%2C%22todos%22%2C%22los%22%2C%22comandos%22%2C%22y%22%2C%22como%22%2C%22usarlos%22%2C%22-%22%2C%22quarantino%22%2C%22derose%22%5D&refer=https%3A%2F%2Fquarantinoderose.blogspot.com%2F2022%2F05%2Fjuegos-de-saltar-en-roblox-roblox-lista.html&tz=0&dev=r&res=12.31&uuid=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9%3A1%3A1&shu=3a337c137c4f010910cc94fc56f83c38e754291d5daa5a342eec1ade616ffc92b31b6b258748717a81dd49076e041231178d45794c1b49cbf951fe52be54f3930adf8843b0f7e6c324374b7cbe44fc52dd2e71&pst=1664888931&rmtc=t
Set-Cookie: u_pl=15928454; expires=Wed, 05 Oct 2022 13:07:51 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.Sce1W9cbvStfVtb_1A75KK-aQYpKrdq3eLAdeXmssSU; expires=Tue, 04 Oct 2022 13:08:51 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f3616e5698e1232a350a80ba10055f10
Strict-Transport-Security: max-age=0; includeSubdomains
knockoutantipathy.com/watch.1246664170449.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22juegos%22%2C%22de%22%2C%22saltar%22%2C%22en%22%2C%22roblox%22%2C%22roblox%22%2C%22lista%22%2C%22de%22%2C%22todos%22%2C%22los%22%2C%22comandos%22%2C%22y%22%2C%22como%22%2C%22usarlos%22%2C%22-%22%2C%22quarantino%22%2C%22derose%22%5D&refer=https%3A%2F%2Fquarantinoderose.blogspot.com%2F2022%2F05%2Fjuegos-de-saltar-en-roblox-roblox-lista.html&tz=0&dev=r&res=12.31&uuid=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9%3A1%3A1&shu=3a337c137c4f010910cc94fc56f83c38e754291d5daa5a342eec1ade616ffc92b31b6b258748717a81dd49076e041231178d45794c1b49cbf951fe52be54f3930adf8843b0f7e6c324374b7cbe44fc52dd2e71&pst=1664888931&rmtc=t
200 OK 2.1 kB URL HTTP/1.1 knockoutantipathy.com/watch.1246664170449.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22juegos%22%2C%22de%22%2C%22saltar%22%2C%22en%22%2C%22roblox%22%2C%22roblox%22%2C%22lista%22%2C%22de%22%2C%22todos%22%2C%22los%22%2C%22comandos%22%2C%22y%22%2C%22como%22%2C%22usarlos%22%2C%22-%22%2C%22quarantino%22%2C%22derose%22%5D&refer=https%3A%2F%2Fquarantinoderose.blogspot.com%2F2022%2F05%2Fjuegos-de-saltar-en-roblox-roblox-lista.html&tz=0&dev=r&res=12.31&uuid=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9%3A1%3A1&shu=3a337c137c4f010910cc94fc56f83c38e754291d5daa5a342eec1ade616ffc92b31b6b258748717a81dd49076e041231178d45794c1b49cbf951fe52be54f3930adf8843b0f7e6c324374b7cbe44fc52dd2e71&pst=1664888931&rmtc=t
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document, ASCII text, with very long lines (2623)
Hash 36d211006dd8f0bcf95cfe8563bf5b46
160d11e4392553c52bc1ac165da871c51d85cfa5
ab2b2b7835b2f7d81ec60772b7a8f6614a430b88ebccc746394dddd9a2cb523f
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1246664170449.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22juegos%22%2C%22de%22%2C%22saltar%22%2C%22en%22%2C%22roblox%22%2C%22roblox%22%2C%22lista%22%2C%22de%22%2C%22todos%22%2C%22los%22%2C%22comandos%22%2C%22y%22%2C%22como%22%2C%22usarlos%22%2C%22-%22%2C%22quarantino%22%2C%22derose%22%5D&refer=https%3A%2F%2Fquarantinoderose.blogspot.com%2F2022%2F05%2Fjuegos-de-saltar-en-roblox-roblox-lista.html&tz=0&dev=r&res=12.31&uuid=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9%3A1%3A1&shu=3a337c137c4f010910cc94fc56f83c38e754291d5daa5a342eec1ade616ffc92b31b6b258748717a81dd49076e041231178d45794c1b49cbf951fe52be54f3930adf8843b0f7e6c324374b7cbe44fc52dd2e71&pst=1664888931&rmtc=t HTTP/1.1
Host: knockoutantipathy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quarantinoderose.blogspot.com
Referer: https://quarantinoderose.blogspot.com/
Connection: keep-alive
Cookie: u_pl=15928454; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNTkyODQ1NCwiayI6ImJjOGQ1OWY3OTYyMzNiNjMyYjg4NDZiYzcyYTE1MTkyIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxMzY2MzI0LCJwaWQiOjEzODg5NiwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMCwiYWlkIjo1LCJwdCI6NCwicGsiOiJrZWQwanFuaXN6IiwiY3BrcyI6eyAiMjkiOiJkYWNlODg3ZDAzOWYwODhhZTBkOTk1MmE4YjhjYjA2MCIsIjI4IjoiNDQxMDhkMTgwNTU3Njk0NzYwMTVmNDI0MmNmN2QyMmQifSwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3F1YXJhbnRpbm9kZXJvc2UuYmxvZ3Nwb3QuY29tLzIwMjIvMDUvanVlZ29zLWRlLXNhbHRhci1lbi1yb2Jsb3gtcm9ibG94LWxpc3RhLmh0bWwifX0.Sce1W9cbvStfVtb_1A75KK-aQYpKrdq3eLAdeXmssSU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 04 Oct 2022 13:07:52 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://quarantinoderose.blogspot.com
Access-Control-Allow-Origin: https://quarantinoderose.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9:1:1; expires=Tue, 11 Oct 2022 13:07:52 GMT; secure; SameSite=None
iprcd2435efc16e4b7ffbf0ed18e75f6ccd5=3569806; expires=Tue, 04 Oct 2022 17:07:52 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 05 Oct 2022 13:07:52 GMT; secure; SameSite=None
uncs=1; expires=Wed, 05 Oct 2022 13:07:52 GMT; secure; SameSite=None
pdhtkv5=true; expires=Wed, 05 Oct 2022 13:07:52 GMT; secure; SameSite=None
uncs5=1; expires=Wed, 05 Oct 2022 13:07:52 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7b3282a6fefc78986e6caa69ac5569a1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5a81efbd7f92e8ab877070b2f9cd6247
389efbc67268d7460da1c041ecd8bd3de503bced
08f20e6c48dc1f16fb405a6e21df212677b34c1dcaf75335d163a3d1e18c40bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08F20E6C48DC1F16FB405A6E21DF212677B34C1DCAF75335D163A3D1E18C40BC"
Last-Modified: Sun, 02 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4699
Expires: Tue, 04 Oct 2022 14:26:11 GMT
Date: Tue, 04 Oct 2022 13:07:52 GMT
Connection: keep-alive
creepingbrings.com/sfp.js
200 OK 172 kB URL HTTP/2 creepingbrings.com/sfp.js
IP
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size 172 kB (171498 bytes)
Hash 01da0d582547fe591e041488009e45f7
19ee53fce19c6b3d624b15115012d3853c7c39a3
57e3f7c177ead1f7feefe1782ff093547f5a6429a14c0a96923e9c68a0c67d4b
GET /sfp.js HTTP/1.1
Host: creepingbrings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 13:07:52 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: f4b8f686f70d9ee3702cb4b9b47ead5a
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 04 Oct 2022 13:07:51 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8bTzAMx2RDbzeqxoDwgDw9TEgnxGHKL5K5oNtXYPZS%2BxTYWDRi4mby3%2BWefeCeC1VDuaPLUpm1e8pTnmAk5cPvtV7uTbzg0EOJPfrsyVwY8gcy7gimg%2BGuP5W9k4aQW4Knj98h0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754e24999d7a0686-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i1.wp.com/www.permohonan.my/wp-content/uploads/2018/04/kerangka-kasar-penulisan-sejarah-pt3.jpg
200 OK 40 kB URL HTTP/2 i1.wp.com/www.permohonan.my/wp-content/uploads/2018/04/kerangka-kasar-penulisan-sejarah-pt3.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x723, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 196364e6c1f5cbcfc0b2b99f091f438a
fc03f17764d57e28105d972c80698d9996da9285
7334c4290e85d399343f49ef63118e547052d275e80d1fd2e87eeac90056793c
GET /www.permohonan.my/wp-content/uploads/2018/04/kerangka-kasar-penulisan-sejarah-pt3.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:07:52 GMT
content-type: image/webp
content-length: 40184
last-modified: Tue, 04 Oct 2022 13:07:52 GMT
expires: Fri, 04 Oct 2024 01:07:52 GMT
cache-control: public, max-age=63115200
link: <http://www.permohonan.my/wp-content/uploads/2018/04/kerangka-kasar-penulisan-sejarah-pt3.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ac93a01804a144f7"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash edec9323540293b99ece306037d35de7
e7540f9962a6c7ee91168eee1e0fe343d5f5406e
5cf16c168d74a28dc30c0edf93edd09366a8c8609ac36e352e056580f7b24a20
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5CF16C168D74A28DC30C0EDF93EDD09366A8C8609AC36E352E056580F7B24A20"
Last-Modified: Mon, 03 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13994
Expires: Tue, 04 Oct 2022 17:01:06 GMT
Date: Tue, 04 Oct 2022 13:07:52 GMT
Connection: keep-alive
s10.histats.com/js15_as.js
200 OK 4.4 kB URL HTTP/2 s10.histats.com/js15_as.js
IP
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 13:07:30 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 626164588
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2
i0.wp.com/cdn2.myminifactory.com/assets/images/post/e499e222-cover_resize.jpg
200 OK 67 kB URL HTTP/2 i0.wp.com/cdn2.myminifactory.com/assets/images/post/e499e222-cover_resize.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1643x1000, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b08a9cd5c813c5d7d307df4bc2aa17b0
d31651a6ee862c1b8a8636749232ab8dbe7d211a
84147510f3fcaddeaf3d061596f2185338677d5167293de50f14b0a033d3af8b
GET /cdn2.myminifactory.com/assets/images/post/e499e222-cover_resize.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:07:53 GMT
content-type: image/webp
content-length: 66590
last-modified: Tue, 04 Oct 2022 13:07:53 GMT
expires: Fri, 04 Oct 2024 01:07:53 GMT
cache-control: public, max-age=63115200
link: <http://cdn2.myminifactory.com/assets/images/post/e499e222-cover_resize.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a1b8a08e988b8ee6"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/br.atsit.in/es/wp-content/uploads/2021/10/como-jugar-al-minijuego-squid-game-en-roblox-en-ios-android-y-windows-7.jpg
200 OK 47 kB URL HTTP/2 i0.wp.com/br.atsit.in/es/wp-content/uploads/2021/10/como-jugar-al-minijuego-squid-game-en-roblox-en-ios-android-y-windows-7.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c6a962cd8d15791423d999c18094ff0c
16cc914d32e82f128f44ebc33b4f23d6748d88fc
4cfb8851bdbaca36fb8eee1805147333adcdf66e554f19507a2913203f5d67d0
GET /br.atsit.in/es/wp-content/uploads/2021/10/como-jugar-al-minijuego-squid-game-en-roblox-en-ios-android-y-windows-7.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:07:53 GMT
content-type: image/webp
content-length: 46752
last-modified: Tue, 04 Oct 2022 13:07:53 GMT
expires: Fri, 04 Oct 2024 01:07:53 GMT
cache-control: public, max-age=63115200
link: <http://br.atsit.in/es/wp-content/uploads/2021/10/como-jugar-al-minijuego-squid-game-en-roblox-en-ios-android-y-windows-7.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "925fe0ca004158ef"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
s4.histats.com/stats/0.php?4647587&@f16&@g1&@h1&@i1&@j1664888872277&@k0&@l1&@mJuegos%20De%20Saltar%20En%20Roblox%20%3A%20Roblox%20Lista%20De%20Todos%20Los%20Comandos%20Y%20Como%20Usarlos%20-%20Quarantino%20DeRose&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-127716405&@b3:1664888872&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fquarantinoderose.blogspot.com%2F2022%2F05%2Fjuegos-de-saltar-en-roblox-roblox-lista.html&@w
200 OK 51 B URL HTTP/1.1 s4.histats.com/stats/0.php?4647587&@f16&@g1&@h1&@i1&@j1664888872277&@k0&@l1&@mJuegos%20De%20Saltar%20En%20Roblox%20%3A%20Roblox%20Lista%20De%20Todos%20Los%20Comandos%20Y%20Como%20Usarlos%20-%20Quarantino%20DeRose&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-127716405&@b3:1664888872&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fquarantinoderose.blogspot.com%2F2022%2F05%2Fjuegos-de-saltar-en-roblox-roblox-lista.html&@w
IP
File type ASCII text, with no line terminators
Hash 725b4dbb48c7c28649c9c722ac88b2a4
91f991c386412d8ba8a6509642ea48e6e25a54cb
bca34ec1f732d5547a67aa013798cb581156dc40f509c2b6c5401420a905fde7
GET /stats/0.php?4647587&@f16&@g1&@h1&@i1&@j1664888872277&@k0&@l1&@mJuegos%20De%20Saltar%20En%20Roblox%20%3A%20Roblox%20Lista%20De%20Todos%20Los%20Comandos%20Y%20Como%20Usarlos%20-%20Quarantino%20DeRose&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-127716405&@b3:1664888872&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fquarantinoderose.blogspot.com%2F2022%2F05%2Fjuegos-de-saltar-en-roblox-roblox-lista.html&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 13:07:53 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 51
Connection: close
i0.wp.com/www.myinformasi.net/wp-content/uploads/2021/02/PicsArt_02-16-11.43.53.jpg
200 OK 127 kB URL HTTP/2 i0.wp.com/www.myinformasi.net/wp-content/uploads/2021/02/PicsArt_02-16-11.43.53.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1080x575, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 127 kB (127432 bytes)
Hash 6c11a73f23a6ae6ba05becfc7fc60393
82bd687d6fd4a8de267cffdd868e5958a51bbbfb
ba35d8692dd3c466af6b84260d653d1d5f877c868a6114b149b086f5d0ecfc49
GET /www.myinformasi.net/wp-content/uploads/2021/02/PicsArt_02-16-11.43.53.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:07:54 GMT
content-type: image/webp
content-length: 127432
last-modified: Tue, 04 Oct 2022 13:07:54 GMT
expires: Fri, 04 Oct 2024 01:07:54 GMT
cache-control: public, max-age=63115200
link: <http://www.myinformasi.net/wp-content/uploads/2021/02/PicsArt_02-16-11.43.53.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "793ab1c89190564b"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 330a54973c6803084afff8e22fdc650d
59986d6e103903fe988a943c2e97189a0adac1ce
bcc948b36dad8f333fa6454a13d4df6f940d5b2d2ddbca330a3848831b81a576
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0bjq-KFdxpJgiCTbNKluVRNEJxDxoxJ27pRQLoKM-sPuBC_wDFesYq1qChV3oYYkyLkCqItUahREmbeq3ceO1eLWQyBGEimk0O9SqQCzhlzlhMxY4kMz9Fi9M7PdVjUJCH=w300-h168-p-k-no-nu
200 OK 37 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0bjq-KFdxpJgiCTbNKluVRNEJxDxoxJ27pRQLoKM-sPuBC_wDFesYq1qChV3oYYkyLkCqItUahREmbeq3ceO1eLWQyBGEimk0O9SqQCzhlzlhMxY4kMz9Fi9M7PdVjUJCH=w300-h168-p-k-no-nu
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x168, components 3\012- data
Hash d81f7accb3ed8a040ad5a0ac5f884a15
c00f859b9f73e5e5c8d33417c11c23ca6b9bbf12
8eceef94621e4ac5691efb65f44b3d4ade83e81172f8f5cfc55b36609bf95a01
GET /blogger_img_proxy/ANbyha0bjq-KFdxpJgiCTbNKluVRNEJxDxoxJ27pRQLoKM-sPuBC_wDFesYq1qChV3oYYkyLkCqItUahREmbeq3ceO1eLWQyBGEimk0O9SqQCzhlzlhMxY4kMz9Fi9M7PdVjUJCH=w300-h168-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Wed, 05 Oct 2022 13:07:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 04 Oct 2022 13:07:55 GMT
server: fife
content-length: 37266
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4bd610954d1cad0675c2010a63e9c018
bd7e8708e02d74c5d7534a48221c9314530917f6
3b51bf349c5fc0841b5ee253093aa1dfabb8271f84bbb0eee07836dec331c1cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3B51BF349C5FC0841B5EE253093AA1DFABB8271F84BBB0EEE07836DEC331C1CD"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3404
Expires: Tue, 04 Oct 2022 14:04:39 GMT
Date: Tue, 04 Oct 2022 13:07:55 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 330a54973c6803084afff8e22fdc650d
59986d6e103903fe988a943c2e97189a0adac1ce
bcc948b36dad8f333fa6454a13d4df6f940d5b2d2ddbca330a3848831b81a576
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
unseenreport.com/pxf.gif?uuid=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=dace887d039f088ae0d9952a8b8cb060&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=13
200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=dace887d039f088ae0d9952a8b8cb060&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=13
IP
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=dace887d039f088ae0d9952a8b8cb060&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=13 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 04 Oct 2022 13:07:55 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3324a289a4e5e445c5e571c9fdbc378d
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f133665e2ba8880e51f8f0737946ac61
c6789cf41eaf7c476c6275175c4bf219189df62b
0319e2660c01bf61ab73bddd7c560fd666277abaed3fd37c22524878c48b822a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0319E2660C01BF61AB73BDDD7C560FD666277ABAED3FD37C22524878C48B822A"
Last-Modified: Tue, 04 Oct 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3592
Expires: Tue, 04 Oct 2022 14:07:49 GMT
Date: Tue, 04 Oct 2022 13:07:57 GMT
Connection: keep-alive
steamlargelyjustified.com/sbar.json?key=dace887d039f088ae0d9952a8b8cb060&uuid=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9%3A1%3A1
200 OK 4.2 kB URL HTTP/1.1 steamlargelyjustified.com/sbar.json?key=dace887d039f088ae0d9952a8b8cb060&uuid=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9%3A1%3A1
IP
File type JSON data\012- , ASCII text, with very long lines (5821), with no line terminators
Hash cc8ce97790b9c3a03c43294569f0c40b
ee59dab3b1a8fe5a9c278ff310d64dfc7b8dd32e
d25b13edbe25fd58841d990b21286599cc77202203eb6c19358a268f5340810a
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=dace887d039f088ae0d9952a8b8cb060&uuid=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9%3A1%3A1 HTTP/1.1
Host: steamlargelyjustified.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quarantinoderose.blogspot.com
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 04 Oct 2022 13:07:57 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://quarantinoderose.blogspot.com
Access-Control-Allow-Origin: https://quarantinoderose.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16032438; expires=Wed, 05 Oct 2022 13:07:57 GMT; secure; SameSite=None
uid_id2=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9:1:1; expires=Tue, 11 Oct 2022 13:07:57 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 05 Oct 2022 13:07:57 GMT; secure; SameSite=None
uncs=1; expires=Wed, 05 Oct 2022 13:07:57 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 05 Oct 2022 13:07:57 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 05 Oct 2022 13:07:57 GMT; secure; SameSite=None
slecdace887d039f088ae0d9952a8b8cb060=[3364903]; expires=Tue, 04 Oct 2022 13:08:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7cea1c9693c930e8117f14140f97bbad
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.digicert.com/
200 OK 280 B IP
Hash a1c45d147edffcf7edf9a2a6efcc27d1
3377fb5f6ff4311aa5ba6087dd389074fae7279c
5658f0c18fb7b3e8c28473d83dddae2d7672c70746004f49a04e9d00582bf587
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5662
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:07:57 GMT
Last-Modified: Tue, 04 Oct 2022 11:33:35 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
steamlargelyjustified.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxR%2Bt3uzhC9%2BTshcFwxwEFdzZ7p5f3UYIxrgS3PwwUcxNq6tqZsqt7mqqqqcn62UxGHIc%2F4PeN7tZokEUxJtRZgM5LAgZT3Nw%2FwdRcvIgM1kc%2FUDx%2Bbx67%2FA%2Br%2BrOXnFCfBR0dvGy3pFK0Y1W3a%2B9ejMIztW2ZFYMa8Oo%2FXG7ea5mBm%2FE7br%2FWu1dwbb1RugHvh%2F4QW1TGtHVw405CZk%2FiIN67NebYT1oNTE0%2F8W28GCpBz44Ic9D8unqI28Nkk2Qpd9eFHbb6fz1d9JCUacNBvzww2w702WGdDl2jYdudniqhrZPNh9CZwcLu9CDf4SJnBLv8UMk2eGpSSSD%2FYXPREFkSPj%2FUQ4mEGoCSSdg%2BjYkf0IAxnHlKrL03hVtSnrrGUvn7JSsPv0DspyS1d%2FWkKXfXFByWLuhVeGkziyG3QpyOIHsTZAXR3A7K5DlEZj7HJL%2FQjaebiFL969apSH57GVG47grQrEe0jBcb%2Fq8sx41WvF6i3eDkPNANGi8CEjKCWR3AiVGoNZDMT%2FSQ9H1UOQeUj6rsSAIOj5n1I9ixhq8I5I29wPa6QY08NsRCjbfYQSXj8DUCMzsIje72JYjmOJn2H4Fy1dg3ZR473%2BGAa9QCoLSEpSUoJQEpSMoB9UBVza01T2ubJEEpz087Y1qrF1vjx5o1xMZ2ctPyHOL8P7ED9gWsxqnTERRh%2FuNuOtHERU%2Bj%2BNWSKMkYonf9mFlBWlXFqvuyClZmzWRyylZOTtCQo9g1RGYXAMtXgItx53QB%2B2Pm5GPnewn1xdFZp3Oc5oowQV1%2FZSyvsyErWfCgesKuVuFu%2BXtqRPywsJa4%2BYrEOz4%2FCfJ5env9%2F8CMxVyU%2BFT%2BYigp%2B6Or%2BuS7F%2FXpSXfXc2dTOUOnb%2F5DUedOPPVe%2BJWqQ2%2FdNGO7r%2FF5sR8fPCBsG6LZlxmPUu%2BviA5F2ZTGybIj5fsRyK5Vtj%2BhcJkRb517e3NS2luhLVSZxNQOSXk8TGYnJL%2FfX%2Bw%2BM4vfnEH0kxgigppcUxOC1IfgeW7sPnSv9VnYNRSk%2BQeyqIamzBZXipJoMQS06SC%2FRdOlvOevYueOQvqbiNLKwxMhYGqQNUItjgzdrk5Pv9rY1FIlDdOlPH2E2XUl8%2FCtXJW6zQaPm3HraDToaKTNMOo2w44pWGzHbbbtAFnp%2BxNf%2F1vAAAA%2F%2F8BAAD%2F%2F2zfpmCZBAAA
200 OK 7 B URL HTTP/1.1 steamlargelyjustified.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxR%2Bt3uzhC9%2BTshcFwxwEFdzZ7p5f3UYIxrgS3PwwUcxNq6tqZsqt7mqqqqcn62UxGHIc%2F4PeN7tZokEUxJtRZgM5LAgZT3Nw%2FwdRcvIgM1kc%2FUDx%2Bbx67%2FA%2Br%2BrOXnFCfBR0dvGy3pFK0Y1W3a%2B9ejMIztW2ZFYMa8Oo%2FXG7ea5mBm%2FE7br%2FWu1dwbb1RugHvh%2F4QW1TGtHVw405CZk%2FiIN67NebYT1oNTE0%2F8W28GCpBz44Ic9D8unqI28Nkk2Qpd9eFHbb6fz1d9JCUacNBvzww2w702WGdDl2jYdudniqhrZPNh9CZwcLu9CDf4SJnBLv8UMk2eGpSSSD%2FYXPREFkSPj%2FUQ4mEGoCSSdg%2BjYkf0IAxnHlKrL03hVtSnrrGUvn7JSsPv0DspyS1d%2FWkKXfXFByWLuhVeGkziyG3QpyOIHsTZAXR3A7K5DlEZj7HJL%2FQjaebiFL969apSH57GVG47grQrEe0jBcb%2Fq8sx41WvF6i3eDkPNANGi8CEjKCWR3AiVGoNZDMT%2FSQ9H1UOQeUj6rsSAIOj5n1I9ixhq8I5I29wPa6QY08NsRCjbfYQSXj8DUCMzsIje72JYjmOJn2H4Fy1dg3ZR473%2BGAa9QCoLSEpSUoJQEpSMoB9UBVza01T2ubJEEpz087Y1qrF1vjx5o1xMZ2ctPyHOL8P7ED9gWsxqnTERRh%2FuNuOtHERU%2Bj%2BNWSKMkYonf9mFlBWlXFqvuyClZmzWRyylZOTtCQo9g1RGYXAMtXgItx53QB%2B2Pm5GPnewn1xdFZp3Oc5oowQV1%2FZSyvsyErWfCgesKuVuFu%2BXtqRPywsJa4%2BYrEOz4%2FCfJ5env9%2F8CMxVyU%2BFT%2BYigp%2B6Or%2BuS7F%2FXpSXfXc2dTOUOnb%2F5DUedOPPVe%2BJWqQ2%2FdNGO7r%2FF5sR8fPCBsG6LZlxmPUu%2BviA5F2ZTGybIj5fsRyK5Vtj%2BhcJkRb517e3NS2luhLVSZxNQOSXk8TGYnJL%2FfX%2Bw%2BM4vfnEH0kxgigppcUxOC1IfgeW7sPnSv9VnYNRSk%2BQeyqIamzBZXipJoMQS06SC%2FRdOlvOevYueOQvqbiNLKwxMhYGqQNUItjgzdrk5Pv9rY1FIlDdOlPH2E2XUl8%2FCtXJW6zQaPm3HraDToaKTNMOo2w44pWGzHbbbtAFnp%2BxNf%2F1vAAAA%2F%2F8BAAD%2F%2F2zfpmCZBAAA
IP
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxR%2Bt3uzhC9%2BTshcFwxwEFdzZ7p5f3UYIxrgS3PwwUcxNq6tqZsqt7mqqqqcn62UxGHIc%2F4PeN7tZokEUxJtRZgM5LAgZT3Nw%2FwdRcvIgM1kc%2FUDx%2Bbx67%2FA%2Br%2BrOXnFCfBR0dvGy3pFK0Y1W3a%2B9ejMIztW2ZFYMa8Oo%2FXG7ea5mBm%2FE7br%2FWu1dwbb1RugHvh%2F4QW1TGtHVw405CZk%2FiIN67NebYT1oNTE0%2F8W28GCpBz44Ic9D8unqI28Nkk2Qpd9eFHbb6fz1d9JCUacNBvzww2w702WGdDl2jYdudniqhrZPNh9CZwcLu9CDf4SJnBLv8UMk2eGpSSSD%2FYXPREFkSPj%2FUQ4mEGoCSSdg%2BjYkf0IAxnHlKrL03hVtSnrrGUvn7JSsPv0DspyS1d%2FWkKXfXFByWLuhVeGkziyG3QpyOIHsTZAXR3A7K5DlEZj7HJL%2FQjaebiFL969apSH57GVG47grQrEe0jBcb%2Fq8sx41WvF6i3eDkPNANGi8CEjKCWR3AiVGoNZDMT%2FSQ9H1UOQeUj6rsSAIOj5n1I9ixhq8I5I29wPa6QY08NsRCjbfYQSXj8DUCMzsIje72JYjmOJn2H4Fy1dg3ZR473%2BGAa9QCoLSEpSUoJQEpSMoB9UBVza01T2ubJEEpz087Y1qrF1vjx5o1xMZ2ctPyHOL8P7ED9gWsxqnTERRh%2FuNuOtHERU%2Bj%2BNWSKMkYonf9mFlBWlXFqvuyClZmzWRyylZOTtCQo9g1RGYXAMtXgItx53QB%2B2Pm5GPnewn1xdFZp3Oc5oowQV1%2FZSyvsyErWfCgesKuVuFu%2BXtqRPywsJa4%2BYrEOz4%2FCfJ5env9%2F8CMxVyU%2BFT%2BYigp%2B6Or%2BuS7F%2FXpSXfXc2dTOUOnb%2F5DUedOPPVe%2BJWqQ2%2FdNGO7r%2FF5sR8fPCBsG6LZlxmPUu%2BviA5F2ZTGybIj5fsRyK5Vtj%2BhcJkRb517e3NS2luhLVSZxNQOSXk8TGYnJL%2FfX%2Bw%2BM4vfnEH0kxgigppcUxOC1IfgeW7sPnSv9VnYNRSk%2BQeyqIamzBZXipJoMQS06SC%2FRdOlvOevYueOQvqbiNLKwxMhYGqQNUItjgzdrk5Pv9rY1FIlDdOlPH2E2XUl8%2FCtXJW6zQaPm3HraDToaKTNMOo2w44pWGzHbbbtAFnp%2BxNf%2F1vAAAA%2F%2F8BAAD%2F%2F2zfpmCZBAAA HTTP/1.1
Host: steamlargelyjustified.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Cookie: u_pl=16032438; uid_id2=ca99fe2e-2a22-40d7-8359-5df12dd1e3a9:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdace887d039f088ae0d9952a8b8cb060=[3364903]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 04 Oct 2022 13:07:57 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 011d3f9ca5a795ea38b48d3df55ce0b1
Strict-Transport-Security: max-age=0; includeSubdomains
i1.wp.com/p16-sign-va.tiktokcdn.com/tos-maliva-avt-0068/7800f6fabba7d96dd8c338beecb54bc3~c5_720x720.jpeg?x-expires=1647882000&x-signature=fLqCP8PyXiCD6et%2BfIp5ZFL52Tg%3D
403 Forbidden 0 B URL HTTP/2 i1.wp.com/p16-sign-va.tiktokcdn.com/tos-maliva-avt-0068/7800f6fabba7d96dd8c338beecb54bc3~c5_720x720.jpeg?x-expires=1647882000&x-signature=fLqCP8PyXiCD6et%2BfIp5ZFL52Tg%3D
IP
GET /p16-sign-va.tiktokcdn.com/tos-maliva-avt-0068/7800f6fabba7d96dd8c338beecb54bc3~c5_720x720.jpeg?x-expires=1647882000&x-signature=fLqCP8PyXiCD6et%2BfIp5ZFL52Tg%3D HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
server: nginx
date: Tue, 04 Oct 2022 13:07:50 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 7
X-Firefox-Spdy: h2
i1.wp.com/cdn.computerhoy.com/sites/navi.axelspringer.es/public/styles/480/public/media/image/2021/03/roblox-2281389.jpg?itok=0rmaEy11
404 Not Found 0 B URL HTTP/2 i1.wp.com/cdn.computerhoy.com/sites/navi.axelspringer.es/public/styles/480/public/media/image/2021/03/roblox-2281389.jpg?itok=0rmaEy11
IP
GET /cdn.computerhoy.com/sites/navi.axelspringer.es/public/styles/480/public/media/image/2021/03/roblox-2281389.jpg?itok=0rmaEy11 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
server: nginx
date: Tue, 04 Oct 2022 13:07:51 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 5
X-Firefox-Spdy: h2
i1.wp.com/mechord.com/asset/artists/lefthanded_6053648bbcedb.jpg
400 Bad Request 0 B URL HTTP/2 i1.wp.com/mechord.com/asset/artists/lefthanded_6053648bbcedb.jpg
IP
GET /mechord.com/asset/artists/lefthanded_6053648bbcedb.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
server: nginx
date: Tue, 04 Oct 2022 13:07:55 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 7
X-Firefox-Spdy: h2
i1.wp.com/encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcSV9GVgr3skhIW90Evh-WcePejyGkvcJzmjbA&usqp=CAU
404 Not Found 0 B URL HTTP/2 i1.wp.com/encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcSV9GVgr3skhIW90Evh-WcePejyGkvcJzmjbA&usqp=CAU
IP
GET /encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcSV9GVgr3skhIW90Evh-WcePejyGkvcJzmjbA&usqp=CAU HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Tue, 04 Oct 2022 13:07:50 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 8
X-Firefox-Spdy: h2
i0.wp.com/www.tiktok.com/api/img/?itemId=7059782927906917637&location=0&aid=1988
400 Bad Request 0 B URL HTTP/2 i0.wp.com/www.tiktok.com/api/img/?itemId=7059782927906917637&location=0&aid=1988
IP
GET /www.tiktok.com/api/img/?itemId=7059782927906917637&location=0&aid=1988 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quarantinoderose.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
server: nginx
date: Tue, 04 Oct 2022 13:07:50 GMT
content-type: text/html; charset=utf-8
x-nc: HIT arn 4
X-Firefox-Spdy: h2
142.250.74.161
52.29.95.124
23.36.76.226
93.184.220.29
46.105.201.240
104.21.18.186
158.69.251.190