r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11340
Expires: Sat, 04 Feb 2023 09:46:41 GMT
Date: Sat, 04 Feb 2023 06:37:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9161
Expires: Sat, 04 Feb 2023 09:10:22 GMT
Date: Sat, 04 Feb 2023 06:37:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 06:36:14 GMT
content-type: application/json
age: 87
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11003
Expires: Sat, 04 Feb 2023 09:41:04 GMT
Date: Sat, 04 Feb 2023 06:37:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PXMi4+yBvKCYSBaAsMrakRvkxrwJ8gxdRtJf3zx0R3r7/GW7I/e/YQcYvGqSSyGXNLDr0bJ2jYY=
x-amz-request-id: 51W20BGX53AEX19C
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 05:52:43 GMT
age: 2698
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:37:41 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 05:49:07 GMT
age: 2914
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
maymaycn.blogspot.com.es/
142.250.74.1302 Moved Temporarily 176 B URL HTTP/1.1 maymaycn.blogspot.com.es/
IP 142.250.74.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ca9119351ae9ad2b442f70eef95d7408
8a3d154dbb0e99d62520efcd0405b3281f095797
92cb483d399301b2ac116c39aa73ecf9572282719e033c40ce8048ef84dcf822
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: maymaycn.blogspot.com.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://maymaycn.blogspot.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sat, 04 Feb 2023 06:37:41 GMT
Expires: Sat, 04 Feb 2023 06:37:41 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 176
Server: GSE
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9933
Expires: Sat, 04 Feb 2023 09:23:14 GMT
Date: Sat, 04 Feb 2023 06:37:41 GMT
Connection: keep-alive
push.services.mozilla.com/
34.210.191.84101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.191.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5I6cIIQ/Rvwk/mPeH9b1pw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pg5uAvCRJX38mTrNtv1L5R2XXvA=
fonts.googleapis.com/css?family=Oswald
142.250.74.106200 OK 495 B URL HTTP/1.1 fonts.googleapis.com/css?family=Oswald
IP 142.250.74.106:0
Hash a4a32d3d207b2c021587e24e97d9a668
7eba49938cae3f0f1a7204f8ea5c1e24c21397df
2b5c3cdc80fd6a3c61185c1667e7a0fef0d1ce49066bafe2da8cdeba79301933
GET /css?family=Oswald HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 04 Feb 2023 06:37:43 GMT
Date: Sat, 04 Feb 2023 06:37:43 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f73b25b85b47513c518f27e63d9a3938
9d71acd2fc1875bac9399e56b6508f4d5cd31a35
fc6073a0b633a99bc296ceb5afc65e32e77cbe1875cbc2ab22ba4a7869853f56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/plusone.js
142.250.74.46200 OK 21 kB URL HTTP/1.1 apis.google.com/js/plusone.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1429)
Hash f8971f3ad662af35a2ca6871f8c78482
35a0b814d6ecec8deacc9aea87ce9be62b15d92b
a438d380bab44504b1ff13673a0e041c6ac6645d03926e7f076465d1fe049765
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Access-Control-Allow-Origin: *
Content-Security-Policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="gapi-team"
Report-To: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
Timing-Allow-Origin: *
Content-Length: 20950
Date: Sat, 04 Feb 2023 06:37:43 GMT
Expires: Sat, 04 Feb 2023 06:37:43 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "9dea963ca1c75dde"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 03:28:44 GMT
expires: Fri, 02 Feb 2024 03:28:44 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Feb 2023 15:52:00 GMT
content-type: text/css
age: 184139
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.5.1/jquery.min.js
142.250.74.170200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.5.1/jquery.min.js
IP 142.250.74.170:0
File type Unicode text, UTF-8 text, with very long lines (65168)
Hash f921c0047bf389cc3c5d823afddce4d6
78adc31e0706b72df9d3a38af7fb90d6093fa330
d3b3a3b6918847317a77b2991b2f610b8260a21bd1b6769eedbff63c960080eb
GET /ajax/libs/jquery/1.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29839
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 13:07:29 GMT
expires: Fri, 02 Feb 2024 13:07:29 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 149414
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f73b25b85b47513c518f27e63d9a3938
9d71acd2fc1875bac9399e56b6508f4d5cd31a35
fc6073a0b633a99bc296ceb5afc65e32e77cbe1875cbc2ab22ba4a7869853f56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 994e21b70c95eb7dd513bcc9fb3cb36e
30265438e8ccb5c0b74c2b9c673e18fdcd210a33
660ebe5cefd5ac620b17399879db991ffecefe28d5b209cda648eec005e0ec83
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-I0XNc6hfi-0/TyBCBjgsxOI/AAAAAAAABbQ/Y9xUAiFkHj4/s000/facebook.png
142.250.74.161200 OK 962 B URL HTTP/1.1 2.bp.blogspot.com/-I0XNc6hfi-0/TyBCBjgsxOI/AAAAAAAABbQ/Y9xUAiFkHj4/s000/facebook.png
IP 142.250.74.161:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 309c914e1eb6c78cb9f0f1a657ac6f6c
1420eda2b39793997f150dc59da379a318dae97c
9b769c4e88643bdb97e4944d6e19e16664040308f121dc76e369e9b0cf037cea
GET /-I0XNc6hfi-0/TyBCBjgsxOI/AAAAAAAABbQ/Y9xUAiFkHj4/s000/facebook.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="facebook.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 962
X-XSS-Protection: 0
Date: Sat, 04 Feb 2023 06:37:43 GMT
Expires: Fri, 03 Feb 2023 14:53:41 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5b4"
Content-Type: image/png
Age: 0
1.bp.blogspot.com/-NajukmmRw2Q/TyBCBqxzceI/AAAAAAAABbY/MqTbTg2Y29U/s000/gplus.png
142.250.74.161200 OK 1.8 kB URL HTTP/1.1 1.bp.blogspot.com/-NajukmmRw2Q/TyBCBqxzceI/AAAAAAAABbY/MqTbTg2Y29U/s000/gplus.png
IP 142.250.74.161:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash fa838f175bae2ce0845ebfa1bd39988c
2e3f62a21bb2a0c0fc467482d6b5a838a1230562
ecf23a1b00dcecadb87469b1214a99f381f1f23f3688f28626206ea3680faada
GET /-NajukmmRw2Q/TyBCBqxzceI/AAAAAAAABbY/MqTbTg2Y29U/s000/gplus.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5b6"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gplus.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 1788
X-XSS-Protection: 0
apis.google.com/js/platform.js
142.250.74.46200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1429)
Hash 2354fa28c58e16af89e7da6224aeca93
6bd3430a81730ed77c5d53f5406ddb40306ecabd
dc35ae752b7be035bd3a3bd4ae205e41afce5fa8f88e1bfe0e9524610df10f3b
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Sat, 04 Feb 2023 06:37:43 GMT
expires: Sat, 04 Feb 2023 06:37:43 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "03884666a30c671f"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-LTN3U2S0k_E/TyBCBSbxbOI/AAAAAAAABbI/HysREZilG8U/s000/twitter.png
142.250.74.161200 OK 963 B URL HTTP/1.1 3.bp.blogspot.com/-LTN3U2S0k_E/TyBCBSbxbOI/AAAAAAAABbI/HysREZilG8U/s000/twitter.png
IP 142.250.74.161:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash a5672a72538626bac5c6c3cd7c0e9294
9e6917aee95beb6405716cd61197e6d36f832e81
d57575f80fbb3d5a929ba7d43e78a7a1b7b66e7a907c99bcab754a96afbc4f14
GET /-LTN3U2S0k_E/TyBCBSbxbOI/AAAAAAAABbI/HysREZilG8U/s000/twitter.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="twitter.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 963
X-XSS-Protection: 0
Date: Sat, 04 Feb 2023 06:37:43 GMT
Expires: Wed, 01 Feb 2023 06:43:12 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5b2"
Content-Type: image/png
Age: 0
3.bp.blogspot.com/-RlMWpg8AKI0/TyBCCNWjSII/AAAAAAAABbw/9-bADFpnSVQ/s000/email.png
142.250.74.161200 OK 1.1 kB URL HTTP/1.1 3.bp.blogspot.com/-RlMWpg8AKI0/TyBCCNWjSII/AAAAAAAABbw/9-bADFpnSVQ/s000/email.png
IP 142.250.74.161:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash f4093f3e5c8b6a854a1f8a6408f42664
f9f5d50543bc37d5438aeec15441c0e6b85f22f0
de9273c6f19d6109edeb685c9f1df3668ed87fb9d9139e40b812248813ceac92
GET /-RlMWpg8AKI0/TyBCCNWjSII/AAAAAAAABbw/9-bADFpnSVQ/s000/email.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="email.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1125
X-XSS-Protection: 0
Date: Sat, 04 Feb 2023 06:37:43 GMT
Expires: Sun, 29 Jan 2023 05:42:14 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5bc"
Content-Type: image/png
Age: 0
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
142.250.74.46200 OK 53 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
IP 142.250.74.46:0
File type ASCII text, with very long lines (1448)
Hash 0352bb776d2cb7e28ed4294ef240bc8e
8a00fccf1aa5746c76e7c9053a9d64d0be917de5
3f6a4eab3c990f88af494e19777e6f8131065e9d2a412806579eaeb7c8e51fa7
GET /_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 52558
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 09:17:40 GMT
expires: Sat, 03 Feb 2024 09:17:40 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 07 Jan 2023 15:19:07 GMT
content-type: text/javascript; charset=UTF-8
age: 76803
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-jCeDKl35XuU/TyBCBN4SvwI/AAAAAAAABaw/9qzgok4AFqU/s000/search.png
142.250.74.161200 OK 548 B URL HTTP/1.1 1.bp.blogspot.com/-jCeDKl35XuU/TyBCBN4SvwI/AAAAAAAABaw/9qzgok4AFqU/s000/search.png
IP 142.250.74.161:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash bd704b3a6d7df8d5c0a1a74a69dc5920
75457ae96a220b0498796fd8f80ce053366ed892
8fa74f5c6d3bbfaf7e7e0c7b576933263f1dd4c983c9a5c0d09e169d69bf08ad
GET /-jCeDKl35XuU/TyBCBN4SvwI/AAAAAAAABaw/9qzgok4AFqU/s000/search.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="search.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 548
X-XSS-Protection: 0
Date: Sat, 04 Feb 2023 06:37:43 GMT
Expires: Thu, 02 Feb 2023 14:32:52 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5ac"
Content-Type: image/png
Age: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_1?le=scs
142.250.74.46200 OK 18 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_1?le=scs
IP 142.250.74.46:0
File type ASCII text, with very long lines (3295)
Hash 58e086ff2f95790fe801095d5e34a194
eec94818eeb8bf0aec0533f281f7ec2a390788de
4b80ee907c521f469175205f790b68532bee8c27a00b708753ab57e6ead9d4ed
GET /_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_1?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 18008
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 06:54:18 GMT
expires: Tue, 30 Jan 2024 06:54:18 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 07 Jan 2023 15:19:07 GMT
content-type: text/javascript; charset=UTF-8
age: 431005
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fmaymaycongnghiepnhh%20&layout=standard&show_faces=true&width=80&action=like&colorscheme=light&height=30
157.240.205.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fmaymaycongnghiepnhh%20&layout=standard&show_faces=true&width=80&action=like&colorscheme=light&height=30
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fmaymaycongnghiepnhh%20&layout=standard&show_faces=true&width=80&action=like&colorscheme=light&height=30 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fmaymaycongnghiepnhh%20&layout=standard&show_faces=true&width=80&action=like&colorscheme=light&height=30
Content-Type: text/plain
Server: proxygen-bolt
Date: Sat, 04 Feb 2023 06:37:43 GMT
Connection: keep-alive
Content-Length: 0
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.98200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.98:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Fri, 03 Feb 2023 09:56:41 GMT
Expires: Fri, 17 Feb 2023 09:56:41 GMT
Cache-Control: public, max-age=1209600
Age: 74462
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
3.bp.blogspot.com/-9BNTThbONJ4/TyBB_lgtFaI/AAAAAAAABZg/UZERlCLN0dc/s000/menu-primary-bg.png
142.250.74.161200 OK 228 B URL HTTP/1.1 3.bp.blogspot.com/-9BNTThbONJ4/TyBB_lgtFaI/AAAAAAAABZg/UZERlCLN0dc/s000/menu-primary-bg.png
IP 142.250.74.161:0
File type PNG image data, 2 x 36, 8-bit/color RGB, non-interlaced\012- data
Hash a6cd873b4f9bc6493b303f50674d3223
d7c10968d2338c8ecfbee598582bc8b9a1872951
f9865ef497a68e5801edfaf9e8ed2adaad1f62ab878baa8288a2cf7b71374f57
GET /-9BNTThbONJ4/TyBB_lgtFaI/AAAAAAAABZg/UZERlCLN0dc/s000/menu-primary-bg.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="menu-primary-bg.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 228
X-XSS-Protection: 0
Date: Sat, 04 Feb 2023 06:37:43 GMT
Expires: Sat, 04 Feb 2023 09:07:43 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v598"
Content-Type: image/png
Age: 0
2.bp.blogspot.com/-SP_4u2uge34/TyBCAqa7OzI/AAAAAAAABaY/-AcgXA6wgFA/s000/featured-next.png
142.250.74.161200 OK 623 B URL HTTP/1.1 2.bp.blogspot.com/-SP_4u2uge34/TyBCAqa7OzI/AAAAAAAABaY/-AcgXA6wgFA/s000/featured-next.png
IP 142.250.74.161:0
File type PNG image data, 37 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash be9bc3fc91590e94b55ba57f6cc0940c
bc52521f399af98f1c628cc9d8bcbc7b1973854c
6e03b3ec90b55ebff44ac3cfa3750b85bc99800c0ebec4003effe7b4af903b1f
GET /-SP_4u2uge34/TyBCAqa7OzI/AAAAAAAABaY/-AcgXA6wgFA/s000/featured-next.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="featured-next.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 623
X-XSS-Protection: 0
Date: Sat, 04 Feb 2023 06:37:43 GMT
Expires: Thu, 02 Feb 2023 14:32:52 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5a6"
Content-Type: image/png
Age: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-pQ9y5ERedYY/TyBCAgRQVlI/AAAAAAAABaQ/8s4NBDSUmkU/s000/featured-prev.png
142.250.74.161200 OK 603 B URL HTTP/1.1 2.bp.blogspot.com/-pQ9y5ERedYY/TyBCAgRQVlI/AAAAAAAABaQ/8s4NBDSUmkU/s000/featured-prev.png
IP 142.250.74.161:0
File type PNG image data, 37 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash 88bb1e676d595fdfb053024f2ed3ac3d
14519b1e73230de3565b4f9b71164b801068e79d
538649185848128a9a01e49ca5db8a5ea0c43a216afb4fb1938cc3945fea3d3d
GET /-pQ9y5ERedYY/TyBCAgRQVlI/AAAAAAAABaQ/8s4NBDSUmkU/s000/featured-prev.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="featured-prev.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 603
X-XSS-Protection: 0
Date: Sat, 04 Feb 2023 06:37:43 GMT
Expires: Wed, 25 Jan 2023 16:04:05 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5a4"
Content-Type: image/png
Age: 0
1.bp.blogspot.com/-L4XskI6wX9s/TyBB_mJwKXI/AAAAAAAABZY/gEkcp_kygLs/s000/main-bg.png
142.250.74.161200 OK 216 B URL HTTP/1.1 1.bp.blogspot.com/-L4XskI6wX9s/TyBB_mJwKXI/AAAAAAAABZY/gEkcp_kygLs/s000/main-bg.png
IP 142.250.74.161:0
File type PNG image data, 316 x 2, 8-bit/color RGB, non-interlaced\012- data
Hash 350502e58bb6d2f669f8225543d1ca2b
8f5ee632e307a4c725943595025aeb7f54fcd2a5
217448cf59546fbe7a6e4e0ff10f0e04a0dfbe3243c0266389583df55de25059
GET /-L4XskI6wX9s/TyBB_mJwKXI/AAAAAAAABZY/gEkcp_kygLs/s000/main-bg.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="main-bg.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 216
X-XSS-Protection: 0
Date: Sat, 04 Feb 2023 06:37:43 GMT
Expires: Sat, 04 Feb 2023 09:07:43 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v596"
Content-Type: image/png
Age: 0
4.bp.blogspot.com/-WdPTn1gsCeM/TyBCA74cDRI/AAAAAAAABag/xeVUTVR3lH0/s000/widgettitle-bg.png
142.250.74.161200 OK 203 B URL HTTP/1.1 4.bp.blogspot.com/-WdPTn1gsCeM/TyBCA74cDRI/AAAAAAAABag/xeVUTVR3lH0/s000/widgettitle-bg.png
IP 142.250.74.161:0
File type PNG image data, 1 x 4, 8-bit/color RGB, non-interlaced\012- data
Hash c0401f34dcff32868a06087213c07765
947a863c5aa91c1f5c498fa576b631208ee806c0
d16c8c6d6709fbb95730dd1bce35437cad738cf4e8f4fcfcf3729aa16604b6d5
GET /-WdPTn1gsCeM/TyBCA74cDRI/AAAAAAAABag/xeVUTVR3lH0/s000/widgettitle-bg.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="widgettitle-bg.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 203
X-XSS-Protection: 0
Date: Sat, 04 Feb 2023 04:10:31 GMT
Expires: Sun, 29 Jan 2023 15:07:56 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 8832
ETag: "v5a8"
Content-Type: image/png
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2
216.58.207.227200 OK 9.8 kB URL HTTP/1.1 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9840, version 1.0\012- data
Hash afda6e429fd299054de28e1f157c683d
c1847d6f3df5fe11d5e96fd5e6a59b73ff7ed96b
81cd29d1413ecf75834fb3ce1da572fe5c39e53b22c61f5dafec5b14ed4ee12e
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://maymaycn.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 9840
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 05:24:29 GMT
Expires: Fri, 02 Feb 2024 05:24:29 GMT
Cache-Control: public, max-age=31536000
Age: 177194
Last-Modified: Mon, 18 Jul 2022 19:24:04 GMT
Content-Type: font/woff2
maymaycn.blogspot.com/
142.250.74.1200 OK 241 kB IP 142.250.74.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (20628)
Size 241 kB (241269 bytes)
Hash abaefc32f7c2b0513f70b4a665969e8f
ddb8b983438e429142d93ceaebf25635906a2b6c
5e56818e397b3a1e8f0206e208bcb79f81e9d27a9acc4311187bb5f435914584
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: maymaycn.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 04 Feb 2023 06:37:42 GMT
Date: Sat, 04 Feb 2023 06:37:42 GMT
Cache-Control: private, max-age=0
Last-Modified: Tue, 06 Dec 2022 12:42:31 GMT
ETag: W/"21befac6ff29531bbb0cd1bedb99cc7f5d9111a484b1aa0568d0a7821bb35f5d"
X-Robots-Tag: all,noodp
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 241269
Server: GSE
1.bp.blogspot.com/-qDSwvhLv02g/VDIaSGviSjI/AAAAAAAAAXg/l2vWSlEElEg/s72-c/SS-1904.png
142.250.74.161200 OK 9.2 kB URL HTTP/1.1 1.bp.blogspot.com/-qDSwvhLv02g/VDIaSGviSjI/AAAAAAAAAXg/l2vWSlEElEg/s72-c/SS-1904.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 019aad5270a258528ce8358546f124af
ba1529518e4cfa5c2ec3c3a249e49742c78c94df
102c54cf8b3703cbbbdab9359507bb0493b0d4e4056658546e5909bdc2836848
GET /-qDSwvhLv02g/VDIaSGviSjI/AAAAAAAAAXg/l2vWSlEElEg/s72-c/SS-1904.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v179"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SS-1904.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 9182
X-XSS-Protection: 0
3.bp.blogspot.com/-FLSSZFzZKww/VCtzKKmVysI/AAAAAAAAAT0/ltjXpGW79LI/s72-c/747.png
142.250.74.161200 OK 7.7 kB URL HTTP/1.1 3.bp.blogspot.com/-FLSSZFzZKww/VCtzKKmVysI/AAAAAAAAAT0/ltjXpGW79LI/s72-c/747.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 06ece4e3468fa4b5c1743e9c71249abb
56de185f4b9505a17e9d506df9ec5ecbd13ea320
6132120a8c802a639216e111661a18109e3015384a4d9348458bc25a90078a81
GET /-FLSSZFzZKww/VCtzKKmVysI/AAAAAAAAAT0/ltjXpGW79LI/s72-c/747.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v13e"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="747.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 7678
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f32763d17ee930a84421656330650bd1
688473a7c570a6e84406eef1927df94bfccd1870
33f1a840a87b8ef5136065f9be370aa640573ab68d82e8a822d48bbd2eb837c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-5wIVLweKjFE/VC-bvzKub9I/AAAAAAAAAXE/WFUdykt86v4/s72-c/ddl%2B5550.jpg
142.250.74.161200 OK 3.0 kB URL HTTP/1.1 4.bp.blogspot.com/-5wIVLweKjFE/VC-bvzKub9I/AAAAAAAAAXE/WFUdykt86v4/s72-c/ddl%2B5550.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash f88915c22337b6bb5ddef774c6b84b78
ad30c7ff916c5a56141d00b21ef100fd998fd9a8
80a481f6b580c17ee92279410d187f545cb06b62d8951018717cee233f1e0703
GET /-5wIVLweKjFE/VC-bvzKub9I/AAAAAAAAAXE/WFUdykt86v4/s72-c/ddl%2B5550.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v172"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="ddl 5550.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 3025
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f32763d17ee930a84421656330650bd1
688473a7c570a6e84406eef1927df94bfccd1870
33f1a840a87b8ef5136065f9be370aa640573ab68d82e8a822d48bbd2eb837c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-NKjVknoFYtU/U41tgrdksDI/AAAAAAAAAQY/RWTrGgueZu0/s72-c/CHO+THUE+MAY+MAY+CN.jpg
142.250.74.161200 OK 4.1 kB URL HTTP/1.1 3.bp.blogspot.com/-NKjVknoFYtU/U41tgrdksDI/AAAAAAAAAQY/RWTrGgueZu0/s72-c/CHO+THUE+MAY+MAY+CN.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 51c48756bbc8a552bb85c0e8faad9581
db1ef023ab19fe6e4294efda5e30d62d08c23d6a
ed130dcdf84c212e7bae8e7369c2dd7e99efa07f7ead71d6c94f406825df6c0d
GET /-NKjVknoFYtU/U41tgrdksDI/AAAAAAAAAQY/RWTrGgueZu0/s72-c/CHO+THUE+MAY+MAY+CN.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v107"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="CHO THUE MAY MAY CN.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 4143
X-XSS-Protection: 0
2.bp.blogspot.com/-N9gdKFfOKmI/U4azmD8hD9I/AAAAAAAAALw/aRxxQuAUFVI/s72-c/HH380A.jpg
142.250.74.161200 OK 2.8 kB URL HTTP/1.1 2.bp.blogspot.com/-N9gdKFfOKmI/U4azmD8hD9I/AAAAAAAAALw/aRxxQuAUFVI/s72-c/HH380A.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash c4d45eec536085161dc6668c6d55dc08
2faa7f9c3b17bd29515f1753aaee22684a15b62a
6326d5fbc753e994108e2daeb5203e3763af5397feea2875576f34aaf9985cce
GET /-N9gdKFfOKmI/U4azmD8hD9I/AAAAAAAAALw/aRxxQuAUFVI/s72-c/HH380A.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vbd"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="HH380A.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 2821
X-XSS-Protection: 0
www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fmaymaycongnghiepnhh&width=280&height=290&colorscheme=light&show_faces=true&header=true&stream=false&show_border=true&appId=427741470656756
157.240.205.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fmaymaycongnghiepnhh&width=280&height=290&colorscheme=light&show_faces=true&header=true&stream=false&show_border=true&appId=427741470656756
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fmaymaycongnghiepnhh&width=280&height=290&colorscheme=light&show_faces=true&header=true&stream=false&show_border=true&appId=427741470656756 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fmaymaycongnghiepnhh&width=280&height=290&colorscheme=light&show_faces=true&header=true&stream=false&show_border=true&appId=427741470656756
Content-Type: text/plain
Server: proxygen-bolt
Date: Sat, 04 Feb 2023 06:37:43 GMT
Connection: keep-alive
Content-Length: 0
maymaycn.blogspot.com/js/cookienotice.js
142.250.74.1200 OK 2.0 kB URL HTTP/1.1 maymaycn.blogspot.com/js/cookienotice.js
IP 142.250.74.1:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: maymaycn.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
Cookie: faceLike=liked
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sat, 04 Feb 2023 06:37:43 GMT
Expires: Sat, 11 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 04 Feb 2023 01:52:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
2.bp.blogspot.com/-H9DkVBUonOo/U4AcT8QBAQI/AAAAAAAAAJg/D-0XmXWyRC8/s72-c/KM-530.jpg
142.250.74.161200 OK 3.0 kB URL HTTP/1.1 2.bp.blogspot.com/-H9DkVBUonOo/U4AcT8QBAQI/AAAAAAAAAJg/D-0XmXWyRC8/s72-c/KM-530.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash c15685827c7b22261f74c105561d0183
fc336ad337c4910345d3ab85332fb68ac359a762
209e6a66479bc829429bea24bb3db6f3bcad4d54dc220667ccf9ba283b46958d
GET /-H9DkVBUonOo/U4AcT8QBAQI/AAAAAAAAAJg/D-0XmXWyRC8/s72-c/KM-530.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v99"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="KM-530.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 2974
X-XSS-Protection: 0
4.bp.blogspot.com/-rexj8cG9QSE/TyBCDDxUNrI/AAAAAAAABcY/sqBkl11oGko/s000/5.jpg
142.250.74.161200 OK 74 kB URL HTTP/1.1 4.bp.blogspot.com/-rexj8cG9QSE/TyBCDDxUNrI/AAAAAAAABcY/sqBkl11oGko/s000/5.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 960x300, components 3\012- data
Hash bbb203378792648fe44eeb9332c232fa
93e4f8f66963abb50f42fd3405d3facfcd74cd92
97cb991890d6c606f24e7a20b0d22aa0b95a2f3b4071105c0318e19fe52df4cf
GET /-rexj8cG9QSE/TyBCDDxUNrI/AAAAAAAABcY/sqBkl11oGko/s000/5.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5c6"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="5.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 73804
X-XSS-Protection: 0
lh5.googleusercontent.com/-09g8yFWIGAs/UK13NCrvSFI/AAAAAAAAEeI/BDOXSE8fg4E/s10/bullet.png
142.250.74.97200 OK 371 B URL HTTP/2 lh5.googleusercontent.com/-09g8yFWIGAs/UK13NCrvSFI/AAAAAAAAEeI/BDOXSE8fg4E/s10/bullet.png
IP 142.250.74.97:0
File type PNG image data, 8 x 10, 8-bit/color RGBA, non-interlaced\012- data
Hash e9725b646555aa7b40953b11bfd7bfe7
1d0d2f786d987a65798ee608a6c81103ab5bb45d
2fbfb43c94b1c039658f1bfad75207b267001be16a2f1061bff2752bac9d191d
GET /-09g8yFWIGAs/UK13NCrvSFI/AAAAAAAAEeI/BDOXSE8fg4E/s10/bullet.png HTTP/1.1
Host: lh5.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="bullet.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 371
x-xss-protection: 0
date: Sat, 04 Feb 2023 06:37:43 GMT
expires: Fri, 03 Feb 2023 06:09:46 GMT
cache-control: public, max-age=86400, no-transform
etag: "v11e2"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-fPak1rGXYE8/TyBCA___UMI/AAAAAAAABao/oFvueVMiV6Q/s000/widget-list.png
142.250.74.161200 OK 279 B URL HTTP/1.1 1.bp.blogspot.com/-fPak1rGXYE8/TyBCA___UMI/AAAAAAAABao/oFvueVMiV6Q/s000/widget-list.png
IP 142.250.74.161:0
File type PNG image data, 5 x 8, 8-bit/color RGBA, non-interlaced\012- data
Hash 11f4d5ea5c21e96fcf8a9585379e6d87
b1fb6cd603ed54ea48070c6e730ce18d570f5251
b7b23727b132e629e7904a37cd0cc9b87d1e268dbb57efd05cebdb472251782a
GET /-fPak1rGXYE8/TyBCA___UMI/AAAAAAAABao/oFvueVMiV6Q/s000/widget-list.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="widget-list.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 279
X-XSS-Protection: 0
Date: Sat, 04 Feb 2023 06:37:43 GMT
Expires: Thu, 02 Feb 2023 14:32:52 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5aa"
Content-Type: image/png
Age: 0
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUhiZTaR.woff2
216.58.207.227200 OK 8.1 kB URL HTTP/1.1 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUhiZTaR.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 8064, version 1.0\012- data
Hash 3e06bb1a3bd4a2fa73c644b97936f700
5781ff146237c73cf54ef3b3c38bcacb2ba92558
724067d31e2704bbf38f35de697366b2941a411cca12b104413b7977d0e71a5e
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUhiZTaR.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://maymaycn.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 8064
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 14:56:23 GMT
Expires: Fri, 02 Feb 2024 14:56:23 GMT
Cache-Control: public, max-age=31536000
Age: 142880
Last-Modified: Mon, 18 Jul 2022 19:26:25 GMT
Content-Type: font/woff2
4.bp.blogspot.com/-h_w8iZDnJUg/Ur8MCpB6i3I/AAAAAAAAAFU/WqQ-tbKiQX4/s72-c/0118.jpg
142.250.74.161200 OK 3.1 kB URL HTTP/1.1 4.bp.blogspot.com/-h_w8iZDnJUg/Ur8MCpB6i3I/AAAAAAAAAFU/WqQ-tbKiQX4/s72-c/0118.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 5b8e1428ebd0447617dcaceab6625814
d284b835e7e765adc11d50f954175bc7e99b24cb
5da1bb2bf329e795d3097bad2b09177beb80c601f8c15a9014f5b8cf3cbce222
GET /-h_w8iZDnJUg/Ur8MCpB6i3I/AAAAAAAAAFU/WqQ-tbKiQX4/s72-c/0118.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v56"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="0118.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 3060
X-XSS-Protection: 0
3.bp.blogspot.com/-K5iKkxrw810/U3_02zQCuBI/AAAAAAAAAIE/NTAngmBLpTs/s72-c/SS-A398MX-D3.jpg
142.250.74.161200 OK 2.7 kB URL HTTP/1.1 3.bp.blogspot.com/-K5iKkxrw810/U3_02zQCuBI/AAAAAAAAAIE/NTAngmBLpTs/s72-c/SS-A398MX-D3.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 904740379709694f2625bebf30e1744c
c2034ae64dd9de58fc98bc7ffbf4f59d8f8ad713
e04e1967db15369764e1b95a0c91cbbb953f2f8d358fb55365d609f53a6bafeb
GET /-K5iKkxrw810/U3_02zQCuBI/AAAAAAAAAIE/NTAngmBLpTs/s72-c/SS-A398MX-D3.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v83"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SS-A398MX-D3.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 2710
X-XSS-Protection: 0
1.bp.blogspot.com/-QLQxXgnQhqU/VCvGPgaLD9I/AAAAAAAAAV8/UMN0fzva-jg/s1600/index.jpg
142.250.74.161200 OK 155 kB URL HTTP/1.1 1.bp.blogspot.com/-QLQxXgnQhqU/VCvGPgaLD9I/AAAAAAAAAV8/UMN0fzva-jg/s1600/index.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1273x1600, components 3\012- data
Size 155 kB (155159 bytes)
Hash 309d6720f29cc8c871c75f52c07037e5
21cd6a4ede2c8ecec524b4c7beb392cef2b494b2
fce2ba9646e7311623258056e849f9f71d9ebf89754b218988837698d0e6eff7
GET /-QLQxXgnQhqU/VCvGPgaLD9I/AAAAAAAAAV8/UMN0fzva-jg/s1600/index.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v160"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="index.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 155159
X-XSS-Protection: 0
3.bp.blogspot.com/-77S5IztEgiA/TyBCACJzcgI/AAAAAAAABZ4/dWcMzpc635Q/s000/meta-separator.png
142.250.74.161200 OK 201 B URL HTTP/1.1 3.bp.blogspot.com/-77S5IztEgiA/TyBCACJzcgI/AAAAAAAABZ4/dWcMzpc635Q/s000/meta-separator.png
IP 142.250.74.161:0
File type PNG image data, 1 x 9, 8-bit/color RGBA, non-interlaced\012- data
Hash e366c87083cdbec0054001ab9c469c36
e1891409a8c95521d7d07ec9c75c2f17f4317b4a
edf347e63bdc12c5dcec5d48b14fdec7186c77d4a750afadc530e7bcb6f38e42
GET /-77S5IztEgiA/TyBCACJzcgI/AAAAAAAABZ4/dWcMzpc635Q/s000/meta-separator.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v59e"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="meta-separator.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 201
X-XSS-Protection: 0
4.bp.blogspot.com/-DB08KeTm2wc/UreWAXgfzrI/AAAAAAAAAEM/wtd3P6UanjA/s72-c/catalogue2.jpg
142.250.74.161200 OK 3.4 kB URL HTTP/1.1 4.bp.blogspot.com/-DB08KeTm2wc/UreWAXgfzrI/AAAAAAAAAEM/wtd3P6UanjA/s72-c/catalogue2.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 6e9795c231fb7a9a5c4e65048ab91d03
d5435eec2a440e584a25d701777993f5fe24bc65
a148859263bc10df45323c65fb4e4f129e7493334212ebf0572f4f066465f29d
GET /-DB08KeTm2wc/UreWAXgfzrI/AAAAAAAAAEM/wtd3P6UanjA/s72-c/catalogue2.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v127"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="catalogue2.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 3442
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4511
Cache-Control: max-age=95562
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:37:43 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 09:10:25 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
www.blogger.com/img/icon18_edit_allbkg.gif
216.58.207.233200 OK 162 B URL HTTP/1.1 www.blogger.com/img/icon18_edit_allbkg.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 162
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 03 Feb 2023 09:44:16 GMT
Expires: Fri, 10 Feb 2023 09:44:16 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 02 Feb 2023 17:53:03 GMT
Content-Type: image/gif
Age: 75207
www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fmaymaycongnghiepnhh%20&layout=standard&show_faces=true&width=80&action=like&colorscheme=light&height=30
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fmaymaycongnghiepnhh%20&layout=standard&show_faces=true&width=80&action=like&colorscheme=light&height=30
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fmaymaycongnghiepnhh%20&layout=standard&show_faces=true&width=80&action=like&colorscheme=light&height=30 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://maymaycn.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: PMniw7KyzXovYg+IrLOCfItVkCDvn4ZMebzprxAYwie48/P3vAjTIrDxJCxxpayqCTrh2pCpMUPNielbUX65mg==
content-length: 0
date: Sat, 04 Feb 2023 06:37:43 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10600
Expires: Sat, 04 Feb 2023 09:34:23 GMT
Date: Sat, 04 Feb 2023 06:37:43 GMT
Connection: keep-alive
2.bp.blogspot.com/-SQkRX1umqJA/TyBCCvsYofI/AAAAAAAABcQ/AbsJHMu9CAw/s000/4.jpg
142.250.74.161200 OK 61 kB URL HTTP/1.1 2.bp.blogspot.com/-SQkRX1umqJA/TyBCCvsYofI/AAAAAAAABcQ/AbsJHMu9CAw/s000/4.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 960x300, components 3\012- data
Hash 66638a6b278e631fdc589e5d09929b55
6c601718495d5d5733606cf14aa2b4071aa008c6
3f97f1bdef8e5bb6eab06726780883b56e979b40e48fc35f990f11a246687551
GET /-SQkRX1umqJA/TyBCCvsYofI/AAAAAAAABcQ/AbsJHMu9CAw/s000/4.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5c4"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="4.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 61045
X-XSS-Protection: 0
3.bp.blogspot.com/-KZ0Bn9yTvZs/TyBCAdWP6tI/AAAAAAAABaA/1fqmprgRJF8/s000/readmore-bg.png
142.250.74.161200 OK 233 B URL HTTP/1.1 3.bp.blogspot.com/-KZ0Bn9yTvZs/TyBCAdWP6tI/AAAAAAAABaA/1fqmprgRJF8/s000/readmore-bg.png
IP 142.250.74.161:0
File type PNG image data, 2 x 148, 8-bit/color RGBA, non-interlaced\012- data
Hash e7dd23827b3673d67df67d2613d44cae
2af77fc598b3a1361bb06f11eaaf2012ea0d79e0
0ba5adabca06b70a4b5e923c3a83ac491f13d68bb17e3ee2138413205f5a224b
GET /-KZ0Bn9yTvZs/TyBCAdWP6tI/AAAAAAAABaA/1fqmprgRJF8/s000/readmore-bg.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5a0"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="readmore-bg.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 233
X-XSS-Protection: 0
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10600
Expires: Sat, 04 Feb 2023 09:34:23 GMT
Date: Sat, 04 Feb 2023 06:37:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:00:26 GMT
age: 31037
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 06:20:04 GMT
age: 1059
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f8fa6a-620a-4d0c-aec7-0863ae11b871.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f8fa6a-620a-4d0c-aec7-0863ae11b871.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83ac46e378ad452aeb212d709ab70232
7514ed93fd2f256e5aad386fdd0ebc723785291b
e199498691268526a6ecfe58abb88ced8661272cd7ad8270811c84fb15dbb547
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f8fa6a-620a-4d0c-aec7-0863ae11b871.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 14221
x-amzn-requestid: a74ee3d4-6163-4dec-ab62-97279cf52282
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3ERhIAMFh1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-3e5d4b3d39919497215866df;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3TIbnpwYk9CIeoXeW4T-ouwV7X1y-LgKV7wB4XJwFKSKx248jIJyBQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:08:39 GMT
age: 30544
etag: "7514ed93fd2f256e5aad386fdd0ebc723785291b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 99bf0073acf75f9e04b52a96bf47797b
fa68da2c92fa89ed3dafe9915e064fca022af21f
961b77616486483e5767f214d2417275b9c995614128acab3521b6cd2f8866e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8267
x-amzn-requestid: 8bf1f9c3-4508-489e-9f45-3ce50df74b0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEW0HM6IAMFXog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd80f8-2e7c768d54981cf1634830db;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:47:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ThTL_OlFd4yMELCmSzH4ziqxa8gdYgAAbxLY9VZPVaIldOUkvFVF_Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:12:43 GMT
age: 30300
etag: "fa68da2c92fa89ed3dafe9915e064fca022af21f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: aKr85ooofBPeKkeJIDO5W_X5Rn6xnJlRHmVrs8tgBMYe3HQhobsm3w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:56:07 GMT
age: 31296
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10600
Expires: Sat, 04 Feb 2023 09:34:23 GMT
Date: Sat, 04 Feb 2023 06:37:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:44 GMT
age: 30719
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10600
Expires: Sat, 04 Feb 2023 09:34:23 GMT
Date: Sat, 04 Feb 2023 06:37:43 GMT
Connection: keep-alive
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUliZTaR.woff2
216.58.207.227200 OK 2.9 kB URL HTTP/1.1 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUliZTaR.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 2852, version 1.0\012- data
Hash f80a022c01881443e989d526b0eff94a
e9a15b808aaac5c4123136ccb8fd9e9d06dff38b
b09d99240e1b9844d3c4da110b664b6cb305ff1d554fa81098c1909260795d84
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUliZTaR.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://maymaycn.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 2852
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 03 Feb 2023 14:23:31 GMT
Expires: Sat, 03 Feb 2024 14:23:31 GMT
Cache-Control: public, max-age=31536000
Age: 58452
Last-Modified: Mon, 18 Jul 2022 19:46:40 GMT
Content-Type: font/woff2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4511
Cache-Control: max-age=95562
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:37:43 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 09:10:25 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f32763d17ee930a84421656330650bd1
688473a7c570a6e84406eef1927df94bfccd1870
33f1a840a87b8ef5136065f9be370aa640573ab68d82e8a822d48bbd2eb837c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-ksEAR-sahM4/TyBCAbs8jaI/AAAAAAAABaI/jHqilNonL7M/s000/featured-pager.png
142.250.74.161200 OK 470 B URL HTTP/1.1 3.bp.blogspot.com/-ksEAR-sahM4/TyBCAbs8jaI/AAAAAAAABaI/jHqilNonL7M/s000/featured-pager.png
IP 142.250.74.161:0
File type PNG image data, 12 x 124, 8-bit/color RGBA, non-interlaced\012- data
Hash 7e02a257afdef3f990d80f656a62154f
e34f2255c148862f2ac28fa0c770b0b0a92d6b55
aa4d7686367397bead8fd4c723d77b33bb66dfc63c83a6d28d337874fe139fa0
GET /-ksEAR-sahM4/TyBCAbs8jaI/AAAAAAAABaI/jHqilNonL7M/s000/featured-pager.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5a2"
Expires: Sun, 05 Feb 2023 06:37:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="featured-pager.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 04 Feb 2023 06:37:43 GMT
Server: fife
Content-Length: 470
X-XSS-Protection: 0
lh6.googleusercontent.com/-uxk1vSYyFSQ/UqsGmq5UOsI/AAAAAAAACRc/0jjaHqKfjJ0/s12/gngngn.gif
142.250.74.97200 OK 1.1 kB URL HTTP/2 lh6.googleusercontent.com/-uxk1vSYyFSQ/UqsGmq5UOsI/AAAAAAAACRc/0jjaHqKfjJ0/s12/gngngn.gif
IP 142.250.74.97:0
File type GIF image data, version 89a, 1 x 12\012- data
Hash 09e27c247c3e2ec704771ffc8f345e7c
6e003fe5e1bdc842426d70eeeae29b2ae3eb2b80
39b6f634fc478f209c1dcec424cca46b6b7e76782cd1bd0dc874618d930bf0b2
GET /-uxk1vSYyFSQ/UqsGmq5UOsI/AAAAAAAACRc/0jjaHqKfjJ0/s12/gngngn.gif HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v917"
expires: Sun, 05 Feb 2023 06:37:43 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="gngngn.gif"
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 04 Feb 2023 06:37:43 GMT
server: fife
content-length: 1115
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yH/l/en_US/exCjmG6feFy.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yH/l/en_US/exCjmG6feFy.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (42287)
Hash 3ae8276f44e8c96b6d55c46eda291699
42e8725947f0d8af31873a2c741a846534c0127e
da9b86898f5c6c92b7fb7404c19b795e419ca5f4454a1e3d63112330dcc387ff
GET /rsrc.php/v3iEpO4/yH/l/en_US/exCjmG6feFy.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 03 Feb 2024 18:31:12 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Ougnb0ToyWttVcRu2ikWmQ==
x-fb-debug: q0Mqu7PPro+YY0+tdKuYQm/qjAqbMoZI+zVVAoEI3QvJKu4iK04c9/4Ukox4uK3Uc5yPcycrAs3EtOMdBoCskg==
content-length: 23561
x-fb-trip-id: 1679558926
date: Sat, 04 Feb 2023 06:37:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fmaymaycongnghiepnhh&width=280&height=290&colorscheme=light&show_faces=true&header=true&stream=false&show_border=true&appId=427741470656756
157.240.205.35200 OK 18 kB URL HTTP/2 www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fmaymaycongnghiepnhh&width=280&height=290&colorscheme=light&show_faces=true&header=true&stream=false&show_border=true&appId=427741470656756
IP 157.240.205.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18592)
Hash b2ca1cc4bb8b70efaa7126f89203db99
51de1345309591da9b8cf6313ff471e74f0f8677
42cd6ec8cb84e8b6a1ae45f72d5ee20a9098ca49b5ec4888d3cdd1e101fc923d
GET /plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fmaymaycongnghiepnhh&width=280&height=290&colorscheme=light&show_faces=true&header=true&stream=false&show_border=true&appId=427741470656756 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://maymaycn.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 2s5Nr17iuYJYFUppwimg5EHJcmonn+C139111Jl5aB5PvPIT0+YWT2tX54kxeRl9d/BLZFOxnkwPXyMYiH2hXQ==
date: Sat, 04 Feb 2023 06:37:43 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 830 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (724)
Hash d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 25 Jan 2024 20:38:19 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: VgBqqW8CByBx3tjYfpl37TPxvDbALH7+wrhcEMEy00kMdtnIMID4a2bD+4XrozVCtQ+tPWV4DnP3MZ+EOrvU5Q==
content-length: 830
x-fb-trip-id: 1679558926
date: Sat, 04 Feb 2023 06:37:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (5542)
Hash 1ad15afc034f310427c81b0759603a2b
e5efd1d029dccf5fa8128c84aadb6544a4ab60e0
fedf63f655f9eef24c517c3d6762fb07b142213ba623d4a0b06614fb5d9754bd
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 31 Jan 2024 06:01:16 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: GtFa/ANPMQQnyBsHWWA6Kw==
x-fb-debug: DNp4HLoo5qFXDFXv6nhmUc1faBUTKjQsYrdr151EegnG850QGHK21N3VcaVIkS/eV4VhMBbq4U0HQ0ebYFsRzQ==
priority: u=3,i
content-length: 12334
x-fb-trip-id: 1679558926
date: Sat, 04 Feb 2023 06:37:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yt/r/uR54Z36ozn1.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 85 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yt/r/uR54Z36ozn1.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (18622)
Hash 1e5ea6e1f1a9be8d41c1878d67d96255
13604433733135a91274c754a6b3148822458480
78f6be70e64f8cb49715f286f4bf814a05e6fced4fd575b69c60fc29e44c8908
GET /rsrc.php/v3/yt/r/uR54Z36ozn1.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 03 Feb 2024 19:43:43 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Hl6m4fGpvo1BwYeNZ9liVQ==
x-fb-debug: kZjpJj0TSHMG4aVJQk+3LZNbJiEz3+IlwmT4OTi5qSuUiT7f7ki6766wGkiD9SfaTN/LK6yrvgrJeOP2xbqJ1w==
content-length: 85121
x-fb-trip-id: 1679558926
date: Sat, 04 Feb 2023 06:37:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yD/r/GL3fwyPuftm.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 1.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yD/r/GL3fwyPuftm.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (1984)
Hash 6e9da4ca37bd91ed4b55bdfd94d641e6
581d1c986cf5809cd2fc1859f732d936b53708a8
b24defbd5bcb2f39db991c8361c62e39b0f199d8d72fa9f023739defee55dbd3
GET /rsrc.php/v3/yD/r/GL3fwyPuftm.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 24 Jan 2024 19:05:30 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: bp2kyje9ke1LVb39lNZB5g==
x-fb-debug: GqtmctLOYD61RjC+Uq2pneimWyxmbcnDnE7sR3gGlrEpAvIp2044/Ujt+uGz8f1jJGKglOZafWz7hswFVwvmOA==
priority: u=3,i
content-length: 1649
x-fb-trip-id: 1679558926
date: Sat, 04 Feb 2023 06:37:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yU/r/O4UmSNWin4E.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yU/r/O4UmSNWin4E.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type C source, ASCII text, with very long lines (8848)
Hash 40fab775b9d5c0cd37478bb98c8d3fd4
3a47077aff06f1dcb1c7f15371f717bcc0501ddf
15bda90227b20a41920214b955645583399f5231147f10d3dee099fe91b442e4
GET /rsrc.php/v3/yU/r/O4UmSNWin4E.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 03 Feb 2024 05:38:20 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: QPq3dbnVwM03R4u5jI0/1A==
x-fb-debug: b4tvWsQW4Kw/RPpLS/jwdIs5QlSAyESmzCRfWqTdEtrKjbGIldtXaPmG7/7kynH/7CfNoIkWpFM2WgGUkZ32Dw==
content-length: 16342
x-fb-trip-id: 1679558926
date: Sat, 04 Feb 2023 06:37:44 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=3&s=gapi_module&action=plusone&it=mli.111,mei.9&e=abc_l0,abc_m0,abc_pplusone,abc_u0&rt=
142.250.71.35204 No Content 0 B URL HTTP/1.1 csi.gstatic.com/csi?v=3&s=gapi_module&action=plusone&it=mli.111,mei.9&e=abc_l0,abc_m0,abc_pplusone,abc_u0&rt=
IP 142.250.71.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csi?v=3&s=gapi_module&action=plusone&it=mli.111,mei.9&e=abc_l0,abc_m0,abc_pplusone,abc_u0&rt= HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: *
Date: Sat, 04 Feb 2023 06:37:43 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Wed, 21 Jan 2004 19:51:30 GMT
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 0
csi.gstatic.com/csi?v=3&s=gapi_module&action=gapi_iframes__gapi_iframes_s21&it=mli.56,mei.4&e=abc_l0,abc_m0,abc_pgapi_iframes__gapi_iframes_s21,abc_u0&rt=
142.250.71.35204 No Content 0 B URL HTTP/1.1 csi.gstatic.com/csi?v=3&s=gapi_module&action=gapi_iframes__gapi_iframes_s21&it=mli.56,mei.4&e=abc_l0,abc_m0,abc_pgapi_iframes__gapi_iframes_s21,abc_u0&rt=
IP 142.250.71.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csi?v=3&s=gapi_module&action=gapi_iframes__gapi_iframes_s21&it=mli.56,mei.4&e=abc_l0,abc_m0,abc_pgapi_iframes__gapi_iframes_s21,abc_u0&rt= HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: *
Date: Sat, 04 Feb 2023 06:37:43 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Wed, 21 Jan 2004 19:51:30 GMT
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 0
maymaycn.blogspot.com/YOUR-FAVICON-URL
142.250.74.1404 Not Found 30 kB URL HTTP/1.1 maymaycn.blogspot.com/YOUR-FAVICON-URL
IP 142.250.74.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (20628)
Hash 05e61ebc52269e2bcd7ce41aeb904245
039ec30b6d6941cd84c71fa81a90435edfcc4372
f301944442eeb444be4f5f90a7c41b88622a7747aeed5af9e49fec8fe754f9e8
Analyzer Verdict Alert fortinet Malware
GET /YOUR-FAVICON-URL HTTP/1.1
Host: maymaycn.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
Cookie: faceLike=liked
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 04 Feb 2023 06:37:44 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 29722
Server: GSE
scontent-a-hkg.xx.fbcdn.net/hphotos-prn2/t1.0-9/10342490_658543090885920_8031600182729168884_n.jpg
157.240.199.15403 Forbidden 12 B URL HTTP/2 scontent-a-hkg.xx.fbcdn.net/hphotos-prn2/t1.0-9/10342490_658543090885920_8031600182729168884_n.jpg
IP 157.240.199.15:0
File type ASCII text, with no line terminators
Hash 6da8b20dcba14383da78ef717bca965d
47e2253187a5c7c570e7c0092434ac21e980b4d2
3540a6f3c2b8f6c49b9f3dffc6e16629bf74203531524fdac1d80dc38e62f2b5
GET /hphotos-prn2/t1.0-9/10342490_658543090885920_8031600182729168884_n.jpg HTTP/1.1
Host: scontent-a-hkg.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maymaycn.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
access-control-allow-origin: *
proxy-status: http_request_error; e_clientaddr="AcJBoZEQeOEFB44naVJ2N_E7sIRxuTKT_sSl7CmllBC3hCOnfqiMLMNdjbb456IBR5aXxMTuzsCDjdyN"; e_fb_vipaddr="AcJKdsVrgM93AteThZa1zoyHIdP499WCcr9PtiwTvjb4Q54OVHh595SKfXe6Qb91DJ8syVG0Sx0"; e_fb_builduser="AcKKEr3UHYlMYXI6SFcfp89GeV0GJhmpqHpL8h6Rpb7KJxbXkJ0-wY1KMCv7V54uoxQ"; e_fb_binaryversion="AcLFsO91MYTGXjoJllb1FJZw3ByLVbvLMKug-4vi6AkhuYgVqC-VeMw6CLZfvyoQ1KQrNT9PSmtIlCjssSTS5hiYuOaZo9YqPlQ"; e_proxy="AcLL1jchZTpu12ooDxfEXy-k44zl2E4JRc6XhpU86XY9vXn-KFEWwr7dvQ2bzNxZDR_e4FGR7QndgAA"
content-type: text/plain
content-length: 12
server: proxygen-bolt
x-fb-trip-id: 1679558926
date: Sat, 04 Feb 2023 06:37:44 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2