Overview

URL marmenorpersona.legal/p/sitios-donde-puedes-firmar-espana.html
IP172.67.170.196
ASNCLOUDFLARENET
Location United States
Report completed2022-09-24 14:12:52 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-24 2 marmenorpersona.legal/p/sitios-donde-puedes-firmar-espana.html Phishing
2022-09-24 2 marmenorpersona.legal/p/sitios-donde-puedes-firmar-espana.html Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (31)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-24 04:21:50 UTC 23.36.77.32
mnemonic passive DNS www.tickcounter.com (4) 126581 2013-05-31 12:03:39 UTC 2022-09-22 15:50:58 UTC 172.67.75.64
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-24 10:17:28 UTC 93.184.220.29
mnemonic passive DNS ocsp.pki.goog (23) 175 2017-06-14 07:23:31 UTC 2022-09-24 04:23:20 UTC 142.250.74.3
mnemonic passive DNS 4.bp.blogspot.com (1) 11215 2013-05-06 20:18:52 UTC 2022-09-24 04:23:50 UTC 142.250.74.161
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-24 05:36:42 UTC 52.35.74.102
mnemonic passive DNS apis.google.com (1) 105 2013-05-30 23:17:44 UTC 2022-09-24 05:06:24 UTC 142.250.74.174
mnemonic passive DNS www.blogger.com (2) 8975 2012-05-22 07:35:03 UTC 2022-09-24 04:23:50 UTC 216.58.207.201
mnemonic passive DNS fonts.gstatic.com (4) 0 2014-08-29 13:43:22 UTC 2022-09-24 04:21:47 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-09-24 07:25:21 UTC 142.250.74.10
mnemonic passive DNS img-getpocket.cdn.mozilla.net (5) 1631 2017-09-01 03:40:57 UTC 2022-09-24 04:22:29 UTC 34.120.237.76
mnemonic passive DNS mt.googleapis.com (1) 25409 2015-09-24 13:46:28 UTC 2022-09-24 10:05:57 UTC 142.250.74.46
mnemonic passive DNS resources.blogblog.com (5) 13274 2017-01-30 04:47:40 UTC 2022-09-24 04:23:50 UTC 216.58.207.201
mnemonic passive DNS 1.bp.blogspot.com (2) 8403 2013-05-06 20:18:52 UTC 2022-09-24 04:37:30 UTC 142.250.74.161
mnemonic passive DNS translate.google.com (1) 1156 2012-05-30 01:30:32 UTC 2022-09-24 04:24:16 UTC 142.250.74.46
mnemonic passive DNS pagead2.googlesyndication.com (1) 101 2021-02-20 15:52:05 UTC 2022-09-24 08:55:39 UTC 142.250.74.98
mnemonic passive DNS www.google.com (2) 7 2016-08-04 12:36:31 UTC 2022-09-24 09:10:07 UTC 142.250.74.164
mnemonic passive DNS marmenorpersona.legal (2) 0 2020-12-23 11:00:20 UTC 2022-09-13 10:37:13 UTC 172.67.170.196 Unknown ranking
mnemonic passive DNS e1.o.lencr.org (1) 6159 2021-08-20 07:36:30 UTC 2022-09-24 06:20:21 UTC 23.36.77.32
mnemonic passive DNS blogger.googleusercontent.com (3) 16485 2012-05-25 17:41:01 UTC 2022-09-24 06:17:30 UTC 142.250.74.33
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-24 04:22:33 UTC 142.250.74.72
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-24 09:41:35 UTC 13.224.245.4
mnemonic passive DNS play.google.com (1) 34 2018-05-12 00:28:37 UTC 2022-09-24 06:39:49 UTC 216.58.207.206
mnemonic passive DNS ssl.gstatic.com (1) 0 2016-11-22 23:58:12 UTC 2022-09-24 10:02:12 UTC 142.250.74.99 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS translate.googleapis.com (2) 1005 2014-07-21 13:19:59 UTC 2022-09-24 07:18:12 UTC 142.250.74.74
mnemonic passive DNS www.gstatic.com (2) 0 2016-07-26 09:37:06 UTC 2022-09-24 10:03:04 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-24 04:26:56 UTC 13.224.245.54
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-24 04:22:23 UTC 34.117.237.239
mnemonic passive DNS 3.bp.blogspot.com (1) 11048 2013-07-04 04:18:40 UTC 2022-09-24 04:23:50 UTC 142.250.74.161
mnemonic passive DNS 2.bp.blogspot.com (1) 11071 2013-07-04 03:01:31 UTC 2022-09-24 08:58:36 UTC 142.250.74.161
mnemonic passive DNS upload.wikimedia.org (3) 2215 2012-05-21 09:39:45 UTC 2022-09-24 12:37:44 UTC 91.198.174.208


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 172.67.170.196

Date UQ / IDS / BL URL IP
2022-09-24 14:12:52 +0000
0 - 0 - 2 marmenorpersona.legal/p/sitios-donde-puedes-f (...) 172.67.170.196

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-12-04 14:17:46 +0000
0 - 0 - 6 www.empresascnpj.com/s/empresa/elizania-perei (...) 188.114.97.1
2022-12-04 14:15:41 +0000
0 - 0 - 2 pr.ygenfcowc.site/index.php 188.114.96.1
2022-12-04 14:15:20 +0000
0 - 0 - 1 dcedydro.gq/ 104.21.24.116
2022-12-04 14:14:55 +0000
0 - 0 - 2 evacdir.com/beards.cheapness/dovetails?ZG93bm (...) 104.21.29.59
2022-12-04 14:13:27 +0000
0 - 0 - 11 www.sotwe.com/hashtag/%E5%AE%9A%E6%90%9E%E8%A (...) 172.67.169.216

Last 1 reports on domain: marmenorpersona.legal

Date UQ / IDS / BL URL IP
2022-09-24 14:12:52 +0000
0 - 0 - 2 marmenorpersona.legal/p/sitios-donde-puedes-f (...) 172.67.170.196

No other reports with similar screenshot



JavaScript

Executed Scripts (79)


Executed Evals (5)

#1 JavaScript::Eval (size: 15578, repeated: 1) - SHA256: 82b81c86cdae578664003b993458bc63c9de6f989bde32d1671110605cbbb93f

                                        /* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var c = function(h) {
            return h
        },
        Y = this || self,
        y = function(h, U) {
            if (h = (U = Y.trustedTypes, null), !U || !U.createPolicy) return h;
            try {
                h = U.createPolicy("bg", {
                    createHTML: c,
                    createScript: c,
                    createScriptURL: c
                })
            } catch (w) {
                Y.console && Y.console.error(w.message)
            }
            return h
        };
    (0, eval)(function(h, U) {
        return (U = y()) && 1 === h.eval(U.createScript("1")) ? function(w) {
            return U.createScript(w)
        } : function(w) {
            return "" + w
        }
    }(Y)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var p=function(h,U){if(h.v)return hi(h,h.P);return(U=v(true,8,h),U)&128&&(U^=128,h=v(true,2,h),U=(U<<2)+(h|0)),U},T=function(h,U,c){c=this;try{Uu(U,this,h)}catch(Y){E(this,Y),U(function(A){A(c.F)})}},X=function(h,U,c,Y,A,w){if(!U.S){if(3<(h=m(419,((0==(Y=m((A=void 0,h&&h[0]===R&&(A=h[2],c=h[1],h=void 0),418),U),Y.length)&&(w=m(168,U)>>3,Y.push(c,w>>8&255,w&255),void 0!=A&&Y.push(A&255)),c="",h)&&(h.message&&(c+=h.message),h.stack&&(c+=":"+h.stack)),U)),h)){c=(h-=(c=c.slice(0,(h|0)-3),(c.length|0)+3),wH(c)),A=U.j,U.j=U;try{q(U,23,u(c.length,2).concat(c),9)}finally{U.j=A}}I(419,U,h)}},YC=function(h,U){if(U=(h=f.trustedTypes,null),!h||!h.createPolicy)return U;try{U=h.createPolicy("bg",{createHTML:cv,createScript:cv,createScriptURL:cv})}catch(c){f.console&&f.console.error(c.message)}return U},zq=function(h,U,c,Y,A,w){function y(){if(Y.j==Y){if(Y.K){var z=[D,c,U,void 0,A,w,arguments];if(2==h)var g=V(Y,(H(z,Y),false),false);else if(1==h){var r=!Y.h.length;H(z,Y),r&&V(Y,false,false)}else g=yF(Y,z);return g}A&&w&&A.removeEventListener(w,y,Z)}}return y},Ai=function(h,U){return h(function(c){c(U)}),[function(){return U}]},E=function(h,U){h.F=((h.F?h.F+"~":"E:")+U.message+":"+U.stack).slice(0,2048)},i4=function(h,U,c,Y){for(c=(Y=p(U),0);0<h;h--)c=c<<8|N(U);I(Y,U,c)},pl=function(h,U,c,Y){return m(408,(I(108,(vv(h,((Y=m(108,h),h.W)&&Y<h.Z?(I(108,h,h.Z),rH(h,U)):I(108,h,U),c)),h),Y),h))},wH=function(h,U,c,Y,A){for(A=(U=(h=h.replace(/\\r\\n/g,"\\n"),[]),c=0);c<h.length;c++)Y=h.charCodeAt(c),128>Y?U[A++]=Y:(2048>Y?U[A++]=Y>>6|192:(55296==(Y&64512)&&c+1<h.length&&56320==(h.charCodeAt(c+1)&64512)?(Y=65536+((Y&1023)<<10)+(h.charCodeAt(++c)&1023),U[A++]=Y>>18|240,U[A++]=Y>>12&63|128):U[A++]=Y>>12|224,U[A++]=Y>>6&63|128),U[A++]=Y&63|128);return U},Eu=function(h,U){return h[U]<<24|h[(U|0)+1]<<16|h[(U|0)+2]<<8|h[(U|0)+3]},Tq=function(h,U,c,Y){function A(){}return{invoke:(Y=xC(h,function(w){A&&(U&&K(U),c=w,A(),A=void 0)},(c=void 0,!!U))[0],function(w,y,z,g){function r(){c(function(x){K(function(){w(x)})},z)}if(!y)return y=Y(z),w&&w(y),y;c?r():(g=A,A=function(){(g(),K)(r)})})}},e=function(h,U){for(U=[];h--;)U.push(255*Math.random()|0);return U},I=function(h,U,c){if(108==h||168==h)U.K[h]?U.K[h].concat(c):U.K[h]=M9(U,c);else{if(U.S&&142!=h)return;158==h||23==h||190==h||418==h||77==h?U.K[h]||(U.K[h]=SD(U,c,h,38)):U.K[h]=SD(U,c,h,41)}142==h&&(U.U=v(false,32,U),U.J=void 0)},b=function(h,U,c){c[I(U,h,c),Ou]=2796},q=function(h,U,c,Y,A,w){if(h.j==h)for(w=m(U,h),23==U?(U=function(y,z,g,r){if(r=((z=w.length,z)|0)-4>>3,w.eN!=r){r=[0,0,(w.eN=r,g=(r<<3)-4,A)[1],A[2]];try{w.kR=Ri(Eu(w,(g|0)+4),r,Eu(w,g))}catch(x){throw x;}}w.push(w.kR[z&7]^y)},A=m(77,h)):U=function(y){w.push(y)},Y&&U(Y&255),h=c.length,Y=0;Y<h;Y++)U(c[Y])},k,mu=function(h,U,c){return U.g(function(Y){c=Y},false,h),c},Uu=function(h,U,c,Y,A){for((U.Qc=((U.qI=su,U).Zs=(U.dd=q9,U[n]),u4)(U.H,{get:function(){return this.concat()}}),U).Hs=W[U.H](U.Qc,{value:{value:{}}}),Y=[],A=0;128>A;A++)Y[A]=String.fromCharCode(A);V(U,true,(H((H([(H((b(U,(b((b(U,(I(((b(U,(b(U,(b(U,(U.br=(b(U,(I(335,U,(I(190,(b(U,103,(I(158,U,[160,(b((b(U,318,(b(U,436,(b((b(U,114,(b(U,33,(I((b(U,260,(b(U,222,(b(U,242,(I((b(U,133,(b((b(U,215,(b(U,398,(b(U,(b((b(U,(I(23,(b(U,(I(418,U,((I(168,U,(I(108,(U.tZ=((U.Fu=false,A=window.performance||{},U).S=((U.N=(U.G=8001,U.D=void 0,U.X=[],0),U.hZ=(U.h=[],function(w){this.j=w}),U.Y=1,U).F=(U.Z=0,U.B=25,U.j=(U.J=void 0,U),(U.u=0,U).L=null,void 0),false),(U.s=(U.yc=[],0),(U.P=(U.i=false,void 0),U).W=(U.OB=0,[]),U).U=(U.V=[],U.C=(U.o=0,U.K=[],U.v=void 0,0),U.R=void 0,void 0),A.timeOrigin||(A.timing||{}).navigationStart||0),U),0),0)),b)(U,91,function(w,y,z,g){z=(g=(z=p(w),p(w)),y=p(w),g=m(g,w),m(z,w)==g),I(y,w,+z)}),[])),179),function(w,y,z,g,r){I((z=(y=p((z=(g=(r=p(w),p(w)),p)(w),w)),y=m(y,w),m(z,w)),g=m(g,w),r),w,zq(y,z,g,w))}),U),e(4)),486),function(w){QF(w,4)}),U),507,function(w){l4(w,4)}),462),function(w,y,z){J(false,y,true,w)||(y=p(w),z=p(w),I(z,w,function(g){return eval(g)}(oi(m(y,w.j)))))}),function(w,y,z,g){I((z=(y=p(w),g=N(w),p)(w),z),w,m(y,w)>>>g)})),function(w,y,z,g,r){0!==(z=(y=m((r=(g=m((z=p((r=p(w),w)),y=p(w),g=p(w),g),w),m)(r,w.j),y),w),m(z,w)),r)&&(g=zq(1,g,y,w,r,z),r.addEventListener(z,g,Z),I(246,w,[r,z,g]))})),I(385,U,0),U),266,function(w,y,z,g,r,x,M,O,S,C,Q,F){function a(l,G){for(;S<l;)g|=N(w)<<S,S+=8;return S-=l,G=g&(1<<l)-1,g>>=l,G}for(x=(Q=(C=(S=(z=p(w),g=0),(a(3)|0)+1),a(5)),r=M=0,[]);r<Q;r++)y=a(1),x.push(y),M+=y?0:1;for(O=(M=((M|0)-1).toString(2).length,[]),r=0;r<Q;r++)x[r]||(O[r]=a(M));for(M=0;M<Q;M++)x[M]&&(O[M]=p(w));for(F=[];C--;)F.push(m(p(w),w));b(w,z,function(l,G,P,L,gH){for(G=(gH=[],0),L=[];G<Q;G++){if(!x[P=O[G],G]){for(;P>=L.length;)L.push(p(l));P=L[P]}gH.push(P)}l.P=M9(l,(l.v=M9(l,F.slice()),gH))})}),function(w,y,z,g,r,x){J(false,y,true,w)||(z=Ii(w.j),y=z.KJ,x=z.jN,r=z.A,z=z.O,g=z.length,x=0==g?new x[r]:1==g?new x[r](z[0]):2==g?new x[r](z[0],z[1]):3==g?new x[r](z[0],z[1],z[2]):4==g?new x[r](z[0],z[1],z[2],z[3]):2(),I(y,w,x))})),77),U,[0,0,0]),function(){})),U.LJ=0,I(419,U,2048),function(w,y,z,g,r,x,M){for(y=(M=(x=m(237,(z=(g=(r=p(w),X$)(w),""),w)),x.length),0);g--;)y=((y|0)+(X$(w)|0))%M,z+=Y[x[y]];I(r,w,z)})),function(w,y,z,g,r){for(g=(r=(y=X$((z=p(w),w)),0),[]);r<y;r++)g.push(N(w));I(z,w,g)})),296),U,U),function(w,y,z,g){y=(z=(g=(z=(y=p(w),p)(w),p)(w),m)(z,w),m)(y,w),I(g,w,y in z|0)})),function(w,y,z,g){I((z=m((y=(g=(y=(z=p(w),p)(w),p)(w),m(y,w)),z),w),g),w,z[y])})),U),76,function(w,y,z){(z=0!=(y=(z=p(w),p(w)),m(z,w)),y=m(y,w),z)&&I(108,w,y)}),function(w){QF(w,1)})),function(w,y,z,g){I((z=(g=(y=p(w),p(w)),p(w)),z),w,m(y,w)||m(g,w))})),U),510,function(w,y,z,g){if(y=w.yc.pop()){for(z=N(w);0<z;z--)g=p(w),y[g]=w.K[g];w.K=(y[419]=(y[418]=w.K[418],w).K[419],y)}else I(108,w,w.Z)}),b(U,113,function(w,y,z,g,r){r=(z=p((y=p(w),w)),p)(w),w.j==w&&(g=m(y,w),r=m(r,w),z=m(z,w),g[z]=r,142==y&&(w.J=void 0,2==z&&(w.U=v(false,32,w),w.J=void 0)))}),0),0]),function(w){i4(4,w)})),I(369,U,477),U),[]),f)),I(408,U,{}),397),function(w,y,z,g,r,x){if(!J(true,y,true,w)){if("object"==(w=(g=(r=m((y=m((x=p((g=(r=(y=p(w),p(w)),p(w)),w)),y),w),r),w),m)(g,w),m(x,w)),fl(y))){for(z in x=[],y)x.push(z);y=x}for(x=0,z=y.length,g=0<g?g:1;x<z;x+=g)r(y.slice(x,(x|0)+(g|0)),w)}}),0),85),function(w,y,z){(y=fl((y=m((z=(y=p(w),p(w)),y),w),y)),I)(z,w,y)}),431),function(w,y,z,g){!J(false,y,true,w)&&(y=Ii(w),z=y.jN,g=y.A,w.j==w||g==w.hZ&&z==w)&&(I(y.KJ,w,g.apply(z,y.O)),w.o=w.T())}),254),function(w,y){rH((y=m(p(w),w),w.j),y)}),U).IO=0,246),U,0),71),function(w,y){w=m((y=p(w),y),w.j),w[0].removeEventListener(w[1],w[2],Z)}),b(U,468,function(w,y,z){z=(y=p(w),p(w)),I(z,w,""+m(y,w))}),U),58,function(w,y,z,g){g=(y=m((z=(g=p(w),p(w)),z),w),m(g,w)),I(z,w,y+g)}),449),function(w){l4(w,3)}),[Ou]),U),d),c],U),[jD,h]),U),true))},hi=function(h,U){return U=U.create().shift(),h.v.create().length||h.P.create().length||(h.v=void 0,h.P=void 0),U},SD=function(h,U,c,Y,A,w,y,z){return(z=W[h.H]((U=[-74,93,-46,-30,9,-35,U,-89,(w=Gq,y=Y&7,40),87],h.Qc)),z)[h.H]=function(g){A=(y+=6+7*Y,y&=7,g)},z.concat=function(g){return(g=(A=(g=(g=c%16+1,3*c*c*g+U[y+27&7]*c*g+(w()|0)*g+54*A*A-162*c*c*A-5022*c*A)-g*A- -4752*A+y,void 0),U[g]),U)[(y+45&7)+(Y&2)]=g,U[y+(Y&2)]=93,g},z},rH=function(h,U){I(108,h,(h.yc.push(h.K.slice()),h.K[108]=void 0,U))},m=function(h,U){if(void 0===(U=U.K[h],U))throw[R,30,h];if(U.value)return U.create();return U.create(3*h*h+93*h+-88),U.prototype},Ii=function(h,U,c,Y,A,w){for(Y=p((c=((A=(w=h[F$]||{},p)(h),w.KJ=p(h),w).O=[],h.j==h?(N(h)|0)-1:1),h)),U=0;U<c;U++)w.O.push(p(h));for(;c--;)w.O[c]=m(w.O[c],h);return(w.jN=m(Y,h),w).A=m(A,h),w},v=function(h,U,c,Y,A,w,y,z,g,r,x,M,O,S){if(y=m(108,c),y>=c.Z)throw[R,31];for(O=(g=(S=y,c).Zs.length,U),z=0;0<O;)A=S>>3,M=S%8,w=c.W[A],r=8-(M|0),r=r<O?r:O,h&&(Y=c,Y.J!=S>>6&&(Y.J=S>>6,x=m(142,Y),Y.D=Ri(Y.J,[0,0,x[1],x[2]],Y.U)),w^=c.D[A&g]),S+=r,z|=(w>>8-(M|0)-(r|0)&(1<<r)-1)<<(O|0)-(r|0),O-=r;return I(108,c,(h=z,(y|0)+(U|0))),h},DN=function(h,U,c,Y){for(;h.h.length;){c=(h.L=null,h.h.pop());try{Y=yF(h,c)}catch(A){E(h,A)}if(U&&h.L){(U=h.L,U)(function(){V(h,true,true)});break}}return Y},V=function(h,U,c,Y,A,w){if(h.h.length){h.i=(h.i&&0(),true),h.Fu=c;try{w=h.T(),h.C=w,h.o=w,h.R=0,Y=DN(h,c),A=h.T()-h.C,h.s+=A,A<(U?0:10)||0>=h.B--||(A=Math.floor(A),h.V.push(254>=A?A:254))}finally{h.i=false}return Y}},Hv=function(h,U){(U.push(h[0]<<24|h[1]<<16|h[2]<<8|h[3]),U).push(h[4]<<24|h[5]<<16|h[6]<<8|h[7]),U.push(h[8]<<24|h[9]<<16|h[10]<<8|h[11])},M9=function(h,U,c){return(c=W[h.H](h.Hs),c)[h.H]=function(){return U},c.concat=function(Y){U=Y},c},Ri=function(h,U,c,Y,A){for(A=(U=U[Y=U[2]|0,3]|0,0);14>A;A++)h=h>>>8|h<<24,h+=c|0,c=c<<3|c>>>29,h^=Y+1890,U=U>>>8|U<<24,U+=Y|0,c^=h,Y=Y<<3|Y>>>29,U^=A+1890,Y^=U;return[c>>>24&255,c>>>16&255,c>>>8&255,c>>>0&255,h>>>24&255,h>>>16&255,h>>>8&255,h>>>0&255]},J=function(h,U,c,Y,A,w,y,z,g){if(((((w=(g=(A=(c||Y.R++,0<Y.N&&Y.i&&Y.Fu&&1>=Y.u&&!Y.v&&!Y.L&&(!c||1<Y.G-U)&&0==document.hidden),z=(y=4==Y.R)||A?Y.T():Y.o,z)-Y.o,g>>14),Y).U&&(Y.U^=w*(g<<2)),Y).Y+=w,Y).j=w||Y.j,y)||A)Y.o=z,Y.R=0;if(!A||z-Y.C<Y.N-(h?255:c?5:2))return false;return!(((I((h=m(c?168:108,(Y.G=U,Y)),108),Y,Y.Z),Y.h).push([VF,h,c?U+1:U]),Y).L=K,0)},xC=function(h,U,c,Y){return(Y=t[h.substring(0,3)+"_"])?Y(h.substring(3),U,c):Ai(U,h)},l4=function(h,U,c,Y,A){q(h,((c=m((Y=(c=p((A=U&3,U&=4,h)),p(h)),c),h),U)&&(c=wH(""+c)),A&&q(h,Y,u(c.length,2)),Y),c)},ai=function(h,U,c){if(3==h.length){for(c=0;3>c;c++)U[c]+=h[c];for(c=[13,8,13,12,16,(h=0,5),3,10,15];9>h;h++)U[3](U,h%3,c[h])}},t,f=this||self,Z={passive:true,capture:true},QF=function(h,U,c,Y){q(h,(c=p((Y=p(h),h)),c),u(m(Y,h),U))},cv=function(h){return h},fl=function(h,U,c){if((c=typeof h,"object")==c)if(h){if(h instanceof Array)return"array";if(h instanceof Object)return c;if("[object Window]"==(U=Object.prototype.toString.call(h),U))return"object";if("[object Array]"==U||"number"==typeof h.length&&"undefined"!=typeof h.splice&&"undefined"!=typeof h.propertyIsEnumerable&&!h.propertyIsEnumerable("splice"))return"array";if("[object Function]"==U||"undefined"!=typeof h.call&&"undefined"!=typeof h.propertyIsEnumerable&&!h.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==c&&"undefined"==typeof h.call)return"object";return c},u4=function(h,U){return W[h](W.prototype,{call:U,console:U,floor:U,replace:U,stack:U,splice:U,document:U,pop:U,propertyIsEnumerable:U,length:U,prototype:U,parent:U})},K=f.requestIdleCallback?function(h){requestIdleCallback(function(){h()},{timeout:4})}:f.setImmediate?function(h){setImmediate(h)}:function(h){setTimeout(h,0)},X$=function(h,U){return(U=N(h),U)&128&&(U=U&127|N(h)<<7),U},N=function(h){return h.v?hi(h,h.P):v(true,8,h)},u=function(h,U,c,Y){for(c=(Y=(U|0)-1,[]);0<=Y;Y--)c[(U|0)-1-(Y|0)]=h>>8*Y&255;return c},H=function(h,U){U.h.splice(0,0,h)},ZN=function(h,U,c,Y){try{Y=h[((U|0)+2)%3],h[U]=(h[U]|0)-(h[((U|0)+1)%3]|0)-(Y|0)^(1==U?Y<<c:Y>>>c)}catch(A){throw A;}},vv=function(h,U,c,Y,A,w){if(!h.F){h.u++;try{for(A=(Y=(c=0,h.Z),void 0);--U;)try{if((w=void 0,h).v)A=hi(h,h.v);else{if((c=m(108,h),c)>=Y)break;A=(w=(I(168,h,c),p(h)),m(w,h))}J(false,(A&&A[N9]&2048?A(h,U):X([R,21,w],h,0),U),false,h)}catch(y){m(369,h)?X(y,h,22):I(369,h,y)}if(!U){if(h.vs){vv(h,(h.u--,446149057662));return}X([R,33],h,0)}}catch(y){try{X(y,h,22)}catch(z){E(h,z)}}h.u--}},yF=function(h,U,c,Y,A){if(c=U[0],c==B)h.B=25,h.I(U);else if(c==n){Y=U[1];try{A=h.F||h.I(U)}catch(w){E(h,w),A=h.F}Y(A)}else if(c==VF)h.I(U);else if(c==d)h.I(U);else if(c==jD){try{for(A=0;A<h.X.length;A++)try{Y=h.X[A],Y[0][Y[1]](Y[2])}catch(w){}}catch(w){}(0,U[1])((h.X=[],function(w,y){h.g(w,true,y)}),function(w){(w=!h.h.length,H([N9],h),w)&&V(h,false,true)})}else{if(c==D)return A=U[2],I(371,h,U[6]),I(408,h,A),h.I(U);c==N9?(h.W=[],h.K=null,h.V=[]):c==Ou&&"loading"===f.document.readyState&&(h.L=function(w,y){function z(){y||(y=true,w())}(y=false,f).document.addEventListener("DOMContentLoaded",z,Z),f.addEventListener("load",z,Z)})}},F$=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),d=((T.prototype.oO=void 0,(T.prototype.vs=false,T).prototype).Ws=void 0,[]),Ou=(T.prototype.l="toString",[]),B=[],n=[],VF=[],N9=[],R={},D=[],jD=[],W=((Hv,e,ZN,function(){})(ai),R.constructor),Gq=((((k=(T.prototype.H="create",T.prototype),k).EB=function(){return Math.floor(this.s+(this.T()-this.C))},k).T=(window.performance||{}).now?function(){return this.tZ+window.performance.now()}:function(){return+new Date},k).pJ=function(h,U,c){return((U=(U^=U<<13,U^=U>>17,(U^U<<5)&c))||(U=1),h)^U},k.JZ=function(){return Math.floor(this.T())},void 0),q9=(((k.g=function(h,U,c,Y,A){if((c="array"===fl(c)?c:[c],this).F)h(this.F);else try{Y=[],A=!this.h.length,H([B,Y,c],this),H([n,h,Y],this),U&&!A||V(this,true,U)}catch(w){E(this,w),h(this.F)}},k.Ps=function(h,U,c,Y,A,w){for(Y=w=0,c=[];Y<h.length;Y++)for(w+=U,A=A<<U|h[Y];7<w;)w-=8,c.push(A>>w&255);return c},k).UB=function(h,U,c,Y,A){for(A=Y=0;Y<h.length;Y++)A+=h.charCodeAt(Y),A+=A<<10,A^=A>>6;return Y=new (h=(A+=A<<3,A^=A>>11,A)+(A<<15)>>>0,Number)(h&(1<<U)-1),Y[0]=(h>>>U)%c,Y},T.prototype).I=function(h,U){return U=(h={},Gq=function(){return h==U?-88:-31},{}),function(c,Y,A,w,y,z,g,r,x,M,O,S,C,Q,F){h=(z=h,U);try{if(M=c[0],M==d){C=c[1];try{for(w=(Y=(S=atob(C),Q=[],0),0);w<S.length;w++)g=S.charCodeAt(w),255<g&&(Q[Y++]=g&255,g>>=8),Q[Y++]=g;I(142,this,(this.Z=(this.W=Q,this.W).length<<3,[0,0,0]))}catch(a){X(a,this,17);return}vv(this,8001)}else if(M==B)c[1].push(m(419,this),m(23,this).length,m(158,this).length,m(190,this).length),I(408,this,c[2]),this.K[366]&&pl(this,m(366,this),8001);else{if(M==n){this.j=(F=u((m(158,(Y=c[2],this)).length|0)+2,2),x=this.j,this);try{A=m(418,this),0<A.length&&q(this,158,u(A.length,2).concat(A),10),q(this,158,u(this.Y,1),109),q(this,158,u(this[n].length,1)),S=0,S+=m(385,this)&2047,y=m(23,this),S-=(m(158,this).length|0)+5,4<y.length&&(S-=(y.length|0)+3),0<S&&q(this,158,u(S,2).concat(e(S)),15),4<y.length&&q(this,158,u(y.length,2).concat(y),156)}finally{this.j=x}if(O=(((w=e(2).concat(m(158,this)),w)[1]=w[0]^6,w)[3]=w[1]^F[0],w[4]=w[1]^F[1],this.wd(w)))O="!"+O;else for(S=0,O="";S<w.length;S++)r=w[S][this.l](16),1==r.length&&(r="0"+r),O+=r;return m((m(158,(m(23,(I(419,this,(Q=O,Y.shift())),this)).length=Y.shift(),this)).length=Y.shift(),190),this).length=Y.shift(),Q}if(M==VF)pl(this,c[1],c[2]);else if(M==D)return pl(this,c[1],8001)}}finally{h=z}}}(),/./),su,Kl=(T.prototype[T.prototype.wd=(T.prototype.cs=0,T.prototype.T3=0,function(h,U,c,Y){if(c=window.btoa){for(Y="",U=0;U<h.length;U+=8192)Y+=String.fromCharCode.apply(null,h.slice(U,U+8192));h=c(Y).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else h=void 0;return h}),jD]=[0,0,1,1,0,1,1],d).pop.bind(T.prototype[B]),oi=function(h,U){return(U=YC())&&1===h.eval(U.createScript("1"))?function(c){return U.createScript(c)}:function(c){return""+c}}((su=u4((q9[T.prototype.l]=Kl,T.prototype).H,{get:Kl}),T.prototype.rd=void 0,f));(40<(t=f.botguard||(f.botguard={}),t).m||(t.m=41,t.bg=Tq,t.a=xC),t).YBO_=function(h,U,c){return c=new T(h,U),[function(Y){return mu(Y,c)}]};}).call(this);'));
}).call(this);
                                    

#2 JavaScript::Eval (size: 64, repeated: 1) - SHA256: 3755a8c0633fef887d8f3e30674dfbef87ddb8b872bf69663731ed531f6a6ed0

                                        0,
function(w, y, z) {
    I((z = (y = (z = p(w), p)(w), w.K[z] && m(z, w)), y), w, z)
}
                                    

#3 JavaScript::Eval (size: 19434, repeated: 1) - SHA256: 08e19512ea8c3b504ed2951f68213f37499b36556c45988fc65c089db5fc821c

                                        (function() {
    var p = function(h, U) {
            if (h.v) return hi(h, h.P);
            return (U = v(true, 8, h), U) & 128 && (U ^= 128, h = v(true, 2, h), U = (U << 2) + (h | 0)), U
        },
        T = function(h, U, c) {
            c = this;
            try {
                Uu(U, this, h)
            } catch (Y) {
                E(this, Y), U(function(A) {
                    A(c.F)
                })
            }
        },
        X = function(h, U, c, Y, A, w) {
            if (!U.S) {
                if (3 < (h = m(419, ((0 == (Y = m((A = void 0, h && h[0] === R && (A = h[2], c = h[1], h = void 0), 418), U), Y.length) && (w = m(168, U) >> 3, Y.push(c, w >> 8 & 255, w & 255), void 0 != A && Y.push(A & 255)), c = "", h) && (h.message && (c += h.message), h.stack && (c += ":" + h.stack)), U)), h)) {
                    c = (h -= (c = c.slice(0, (h | 0) - 3), (c.length | 0) + 3), wH(c)), A = U.j, U.j = U;
                    try {
                        q(U, 23, u(c.length, 2).concat(c), 9)
                    } finally {
                        U.j = A
                    }
                }
                I(419, U, h)
            }
        },
        YC = function(h, U) {
            if (U = (h = f.trustedTypes, null), !h || !h.createPolicy) return U;
            try {
                U = h.createPolicy("bg", {
                    createHTML: cv,
                    createScript: cv,
                    createScriptURL: cv
                })
            } catch (c) {
                f.console && f.console.error(c.message)
            }
            return U
        },
        zq = function(h, U, c, Y, A, w) {
            function y() {
                if (Y.j == Y) {
                    if (Y.K) {
                        var z = [D, c, U, void 0, A, w, arguments];
                        if (2 == h) var g = V(Y, (H(z, Y), false), false);
                        else if (1 == h) {
                            var r = !Y.h.length;
                            H(z, Y), r && V(Y, false, false)
                        } else g = yF(Y, z);
                        return g
                    }
                    A && w && A.removeEventListener(w, y, Z)
                }
            }
            return y
        },
        Ai = function(h, U) {
            return h(function(c) {
                c(U)
            }), [function() {
                return U
            }]
        },
        E = function(h, U) {
            h.F = ((h.F ? h.F + "~" : "E:") + U.message + ":" + U.stack).slice(0, 2048)
        },
        i4 = function(h, U, c, Y) {
            for (c = (Y = p(U), 0); 0 < h; h--) c = c << 8 | N(U);
            I(Y, U, c)
        },
        pl = function(h, U, c, Y) {
            return m(408, (I(108, (vv(h, ((Y = m(108, h), h.W) && Y < h.Z ? (I(108, h, h.Z), rH(h, U)) : I(108, h, U), c)), h), Y), h))
        },
        wH = function(h, U, c, Y, A) {
            for (A = (U = (h = h.replace(/\r\n/g, "\n"), []), c = 0); c < h.length; c++) Y = h.charCodeAt(c), 128 > Y ? U[A++] = Y : (2048 > Y ? U[A++] = Y >> 6 | 192 : (55296 == (Y & 64512) && c + 1 < h.length && 56320 == (h.charCodeAt(c + 1) & 64512) ? (Y = 65536 + ((Y & 1023) << 10) + (h.charCodeAt(++c) & 1023), U[A++] = Y >> 18 | 240, U[A++] = Y >> 12 & 63 | 128) : U[A++] = Y >> 12 | 224, U[A++] = Y >> 6 & 63 | 128), U[A++] = Y & 63 | 128);
            return U
        },
        Eu = function(h, U) {
            return h[U] << 24 | h[(U | 0) + 1] << 16 | h[(U | 0) + 2] << 8 | h[(U | 0) + 3]
        },
        Tq = function(h, U, c, Y) {
            function A() {}
            return {
                invoke: (Y = xC(h, function(w) {
                    A && (U && K(U), c = w, A(), A = void 0)
                }, (c = void 0, !!U))[0], function(w, y, z, g) {
                    function r() {
                        c(function(x) {
                            K(function() {
                                w(x)
                            })
                        }, z)
                    }
                    if (!y) return y = Y(z), w && w(y), y;
                    c ? r() : (g = A, A = function() {
                        (g(), K)(r)
                    })
                })
            }
        },
        e = function(h, U) {
            for (U = []; h--;) U.push(255 * Math.random() | 0);
            return U
        },
        I = function(h, U, c) {
            if (108 == h || 168 == h) U.K[h] ? U.K[h].concat(c) : U.K[h] = M9(U, c);
            else {
                if (U.S && 142 != h) return;
                158 == h || 23 == h || 190 == h || 418 == h || 77 == h ? U.K[h] || (U.K[h] = SD(U, c, h, 38)) : U.K[h] = SD(U, c, h, 41)
            }
            142 == h && (U.U = v(false, 32, U), U.J = void 0)
        },
        b = function(h, U, c) {
            c[I(U, h, c), Ou] = 2796
        },
        q = function(h, U, c, Y, A, w) {
            if (h.j == h)
                for (w = m(U, h), 23 == U ? (U = function(y, z, g, r) {
                        if (r = ((z = w.length, z) | 0) - 4 >> 3, w.eN != r) {
                            r = [0, 0, (w.eN = r, g = (r << 3) - 4, A)[1], A[2]];
                            try {
                                w.kR = Ri(Eu(w, (g | 0) + 4), r, Eu(w, g))
                            } catch (x) {
                                throw x;
                            }
                        }
                        w.push(w.kR[z & 7] ^ y)
                    }, A = m(77, h)) : U = function(y) {
                        w.push(y)
                    }, Y && U(Y & 255), h = c.length, Y = 0; Y < h; Y++) U(c[Y])
        },
        k, mu = function(h, U, c) {
            return U.g(function(Y) {
                c = Y
            }, false, h), c
        },
        Uu = function(h, U, c, Y, A) {
            for ((U.Qc = ((U.qI = su, U).Zs = (U.dd = q9, U[n]), u4)(U.H, {get: function() {
                        return this.concat()
                    }
                }), U).Hs = W[U.H](U.Qc, {
                    value: {
                        value: {}
                    }
                }), Y = [], A = 0; 128 > A; A++) Y[A] = String.fromCharCode(A);
            V(U, true, (H((H([(H((b(U, (b((b(U, (I(((b(U, (b(U, (b(U, (U.br = (b(U, (I(335, U, (I(190, (b(U, 103, (I(158, U, [160, (b((b(U, 318, (b(U, 436, (b((b(U, 114, (b(U, 33, (I((b(U, 260, (b(U, 222, (b(U, 242, (I((b(U, 133, (b((b(U, 215, (b(U, 398, (b(U, (b((b(U, (I(23, (b(U, (I(418, U, ((I(168, U, (I(108, (U.tZ = ((U.Fu = false, A = window.performance || {}, U).S = ((U.N = (U.G = 8001, U.D = void 0, U.X = [], 0), U.hZ = (U.h = [], function(w) {
                this.j = w
            }), U.Y = 1, U).F = (U.Z = 0, U.B = 25, U.j = (U.J = void 0, U), (U.u = 0, U).L = null, void 0), false), (U.s = (U.yc = [], 0), (U.P = (U.i = false, void 0), U).W = (U.OB = 0, []), U).U = (U.V = [], U.C = (U.o = 0, U.K = [], U.v = void 0, 0), U.R = void 0, void 0), A.timeOrigin || (A.timing || {}).navigationStart || 0), U), 0), 0)), b)(U, 91, function(w, y, z, g) {
                z = (g = (z = p(w), p(w)), y = p(w), g = m(g, w), m(z, w) == g), I(y, w, +z)
            }), [])), 179), function(w, y, z, g, r) {
                I((z = (y = p((z = (g = (r = p(w), p(w)), p)(w), w)), y = m(y, w), m(z, w)), g = m(g, w), r), w, zq(y, z, g, w))
            }), U), e(4)), 486), function(w) {
                QF(w, 4)
            }), U), 507, function(w) {
                l4(w, 4)
            }), 462), function(w, y, z) {
                J(false, y, true, w) || (y = p(w), z = p(w), I(z, w, function(g) {
                    return eval(g)
                }(oi(m(y, w.j)))))
            }), function(w, y, z, g) {
                I((z = (y = p(w), g = N(w), p)(w), z), w, m(y, w) >>> g)
            })), function(w, y, z, g, r) {
                0 !== (z = (y = m((r = (g = m((z = p((r = p(w), w)), y = p(w), g = p(w), g), w), m)(r, w.j), y), w), m(z, w)), r) && (g = zq(1, g, y, w, r, z), r.addEventListener(z, g, Z), I(246, w, [r, z, g]))
            })), I(385, U, 0), U), 266, function(w, y, z, g, r, x, M, O, S, C, Q, F) {
                function a(l, G) {
                    for (; S < l;) g |= N(w) << S, S += 8;
                    return S -= l, G = g & (1 << l) - 1, g >>= l, G
                }
                for (x = (Q = (C = (S = (z = p(w), g = 0), (a(3) | 0) + 1), a(5)), r = M = 0, []); r < Q; r++) y = a(1), x.push(y), M += y ? 0 : 1;
                for (O = (M = ((M | 0) - 1).toString(2).length, []), r = 0; r < Q; r++) x[r] || (O[r] = a(M));
                for (M = 0; M < Q; M++) x[M] && (O[M] = p(w));
                for (F = []; C--;) F.push(m(p(w), w));
                b(w, z, function(l, G, P, L, gH) {
                    for (G = (gH = [], 0), L = []; G < Q; G++) {
                        if (!x[P = O[G], G]) {
                            for (; P >= L.length;) L.push(p(l));
                            P = L[P]
                        }
                        gH.push(P)
                    }
                    l.P = M9(l, (l.v = M9(l, F.slice()), gH))
                })
            }), function(w, y, z, g, r, x) {
                J(false, y, true, w) || (z = Ii(w.j), y = z.KJ, x = z.jN, r = z.A, z = z.O, g = z.length, x = 0 == g ? new x[r] : 1 == g ? new x[r](z[0]) : 2 == g ? new x[r](z[0], z[1]) : 3 == g ? new x[r](z[0], z[1], z[2]) : 4 == g ? new x[r](z[0], z[1], z[2], z[3]) : 2(), I(y, w, x))
            })), 77), U, [0, 0, 0]), function() {})), U.LJ = 0, I(419, U, 2048), function(w, y, z, g, r, x, M) {
                for (y = (M = (x = m(237, (z = (g = (r = p(w), X$)(w), ""), w)), x.length), 0); g--;) y = ((y | 0) + (X$(w) | 0)) % M, z += Y[x[y]];
                I(r, w, z)
            })), function(w, y, z, g, r) {
                for (g = (r = (y = X$((z = p(w), w)), 0), []); r < y; r++) g.push(N(w));
                I(z, w, g)
            })), 296), U, U), function(w, y, z, g) {
                y = (z = (g = (z = (y = p(w), p)(w), p)(w), m)(z, w), m)(y, w), I(g, w, y in z | 0)
            })), function(w, y, z, g) {
                I((z = m((y = (g = (y = (z = p(w), p)(w), p)(w), m(y, w)), z), w), g), w, z[y])
            })), U), 76, function(w, y, z) {
                (z = 0 != (y = (z = p(w), p(w)), m(z, w)), y = m(y, w), z) && I(108, w, y)
            }), function(w) {
                QF(w, 1)
            })), function(w, y, z, g) {
                I((z = (g = (y = p(w), p(w)), p(w)), z), w, m(y, w) || m(g, w))
            })), U), 510, function(w, y, z, g) {
                if (y = w.yc.pop()) {
                    for (z = N(w); 0 < z; z--) g = p(w), y[g] = w.K[g];
                    w.K = (y[419] = (y[418] = w.K[418], w).K[419], y)
                } else I(108, w, w.Z)
            }), b(U, 113, function(w, y, z, g, r) {
                r = (z = p((y = p(w), w)), p)(w), w.j == w && (g = m(y, w), r = m(r, w), z = m(z, w), g[z] = r, 142 == y && (w.J = void 0, 2 == z && (w.U = v(false, 32, w), w.J = void 0)))
            }), 0), 0]), function(w) {
                i4(4, w)
            })), I(369, U, 477), U), []), f)), I(408, U, {}), 397), function(w, y, z, g, r, x) {
                if (!J(true, y, true, w)) {
                    if ("object" == (w = (g = (r = m((y = m((x = p((g = (r = (y = p(w), p(w)), p(w)), w)), y), w), r), w), m)(g, w), m(x, w)), fl(y))) {
                        for (z in x = [], y) x.push(z);
                        y = x
                    }
                    for (x = 0, z = y.length, g = 0 < g ? g : 1; x < z; x += g) r(y.slice(x, (x | 0) + (g | 0)), w)
                }
            }), 0), 85), function(w, y, z) {
                (y = fl((y = m((z = (y = p(w), p(w)), y), w), y)), I)(z, w, y)
            }), 431), function(w, y, z, g) {
                !J(false, y, true, w) && (y = Ii(w), z = y.jN, g = y.A, w.j == w || g == w.hZ && z == w) && (I(y.KJ, w, g.apply(z, y.O)), w.o = w.T())
            }), 254), function(w, y) {
                rH((y = m(p(w), w), w.j), y)
            }), U).IO = 0, 246), U, 0), 71), function(w, y) {
                w = m((y = p(w), y), w.j), w[0].removeEventListener(w[1], w[2], Z)
            }), b(U, 468, function(w, y, z) {
                z = (y = p(w), p(w)), I(z, w, "" + m(y, w))
            }), U), 58, function(w, y, z, g) {
                g = (y = m((z = (g = p(w), p(w)), z), w), m(g, w)), I(z, w, y + g)
            }), 449), function(w) {
                l4(w, 3)
            }), [Ou]), U), d), c], U), [jD, h]), U), true))
        },
        hi = function(h, U) {
            return U = U.create().shift(), h.v.create().length || h.P.create().length || (h.v = void 0, h.P = void 0), U
        },
        SD = function(h, U, c, Y, A, w, y, z) {
            return (z = W[h.H]((U = [-74, 93, -46, -30, 9, -35, U, -89, (w = Gq, y = Y & 7, 40), 87], h.Qc)), z)[h.H] = function(g) {
                A = (y += 6 + 7 * Y, y &= 7, g)
            }, z.concat = function(g) {
                return (g = (A = (g = (g = c % 16 + 1, 3 * c * c * g + U[y + 27 & 7] * c * g + (w() | 0) * g + 54 * A * A - 162 * c * c * A - 5022 * c * A) - g * A - -4752 * A + y, void 0), U[g]), U)[(y + 45 & 7) + (Y & 2)] = g, U[y + (Y & 2)] = 93, g
            }, z
        },
        rH = function(h, U) {
            I(108, h, (h.yc.push(h.K.slice()), h.K[108] = void 0, U))
        },
        m = function(h, U) {
            if (void 0 === (U = U.K[h], U)) throw [R, 30, h];
            if (U.value) return U.create();
            return U.create(3 * h * h + 93 * h + -88), U.prototype
        },
        Ii = function(h, U, c, Y, A, w) {
            for (Y = p((c = ((A = (w = h[F$] || {}, p)(h), w.KJ = p(h), w).O = [], h.j == h ? (N(h) | 0) - 1 : 1), h)), U = 0; U < c; U++) w.O.push(p(h));
            for (; c--;) w.O[c] = m(w.O[c], h);
            return (w.jN = m(Y, h), w).A = m(A, h), w
        },
        v = function(h, U, c, Y, A, w, y, z, g, r, x, M, O, S) {
            if (y = m(108, c), y >= c.Z) throw [R, 31];
            for (O = (g = (S = y, c).Zs.length, U), z = 0; 0 < O;) A = S >> 3, M = S % 8, w = c.W[A], r = 8 - (M | 0), r = r < O ? r : O, h && (Y = c, Y.J != S >> 6 && (Y.J = S >> 6, x = m(142, Y), Y.D = Ri(Y.J, [0, 0, x[1], x[2]], Y.U)), w ^= c.D[A & g]), S += r, z |= (w >> 8 - (M | 0) - (r | 0) & (1 << r) - 1) << (O | 0) - (r | 0), O -= r;
            return I(108, c, (h = z, (y | 0) + (U | 0))), h
        },
        DN = function(h, U, c, Y) {
            for (; h.h.length;) {
                c = (h.L = null, h.h.pop());
                try {
                    Y = yF(h, c)
                } catch (A) {
                    E(h, A)
                }
                if (U && h.L) {
                    (U = h.L, U)(function() {
                        V(h, true, true)
                    });
                    break
                }
            }
            return Y
        },
        V = function(h, U, c, Y, A, w) {
            if (h.h.length) {
                h.i = (h.i && 0(), true), h.Fu = c;
                try {
                    w = h.T(), h.C = w, h.o = w, h.R = 0, Y = DN(h, c), A = h.T() - h.C, h.s += A, A < (U ? 0 : 10) || 0 >= h.B-- || (A = Math.floor(A), h.V.push(254 >= A ? A : 254))
                } finally {
                    h.i = false
                }
                return Y
            }
        },
        Hv = function(h, U) {
            (U.push(h[0] << 24 | h[1] << 16 | h[2] << 8 | h[3]), U).push(h[4] << 24 | h[5] << 16 | h[6] << 8 | h[7]), U.push(h[8] << 24 | h[9] << 16 | h[10] << 8 | h[11])
        },
        M9 = function(h, U, c) {
            return (c = W[h.H](h.Hs), c)[h.H] = function() {
                return U
            }, c.concat = function(Y) {
                U = Y
            }, c
        },
        Ri = function(h, U, c, Y, A) {
            for (A = (U = U[Y = U[2] | 0, 3] | 0, 0); 14 > A; A++) h = h >>> 8 | h << 24, h += c | 0, c = c << 3 | c >>> 29, h ^= Y + 1890, U = U >>> 8 | U << 24, U += Y | 0, c ^= h, Y = Y << 3 | Y >>> 29, U ^= A + 1890, Y ^= U;
            return [c >>> 24 & 255, c >>> 16 & 255, c >>> 8 & 255, c >>> 0 & 255, h >>> 24 & 255, h >>> 16 & 255, h >>> 8 & 255, h >>> 0 & 255]
        },
        J = function(h, U, c, Y, A, w, y, z, g) {
            if (((((w = (g = (A = (c || Y.R++, 0 < Y.N && Y.i && Y.Fu && 1 >= Y.u && !Y.v && !Y.L && (!c || 1 < Y.G - U) && 0 == document.hidden), z = (y = 4 == Y.R) || A ? Y.T() : Y.o, z) - Y.o, g >> 14), Y).U && (Y.U ^= w * (g << 2)), Y).Y += w, Y).j = w || Y.j, y) || A) Y.o = z, Y.R = 0;
            if (!A || z - Y.C < Y.N - (h ? 255 : c ? 5 : 2)) return false;
            return !(((I((h = m(c ? 168 : 108, (Y.G = U, Y)), 108), Y, Y.Z), Y.h).push([VF, h, c ? U + 1 : U]), Y).L = K, 0)
        },
        xC = function(h, U, c, Y) {
            return (Y = t[h.substring(0, 3) + "_"]) ? Y(h.substring(3), U, c) : Ai(U, h)
        },
        l4 = function(h, U, c, Y, A) {
            q(h, ((c = m((Y = (c = p((A = U & 3, U &= 4, h)), p(h)), c), h), U) && (c = wH("" + c)), A && q(h, Y, u(c.length, 2)), Y), c)
        },
        ai = function(h, U, c) {
            if (3 == h.length) {
                for (c = 0; 3 > c; c++) U[c] += h[c];
                for (c = [13, 8, 13, 12, 16, (h = 0, 5), 3, 10, 15]; 9 > h; h++) U[3](U, h % 3, c[h])
            }
        },
        t, f = this || self,
        Z = {
            passive: true,
            capture: true
        },
        QF = function(h, U, c, Y) {
            q(h, (c = p((Y = p(h), h)), c), u(m(Y, h), U))
        },
        cv = function(h) {
            return h
        },
        fl = function(h, U, c) {
            if ((c = typeof h, "object") == c)
                if (h) {
                    if (h instanceof Array) return "array";
                    if (h instanceof Object) return c;
                    if ("[object Window]" == (U = Object.prototype.toString.call(h), U)) return "object";
                    if ("[object Array]" == U || "number" == typeof h.length && "undefined" != typeof h.splice && "undefined" != typeof h.propertyIsEnumerable && !h.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == U || "undefined" != typeof h.call && "undefined" != typeof h.propertyIsEnumerable && !h.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == c && "undefined" == typeof h.call) return "object";
            return c
        },
        u4 = function(h, U) {
            return W[h](W.prototype, {
                call: U,
                console: U,
                floor: U,
                replace: U,
                stack: U,
                splice: U,
                document: U,
                pop: U,
                propertyIsEnumerable: U,
                length: U,
                prototype: U,
                parent: U
            })
        },
        K = f.requestIdleCallback ? function(h) {
            requestIdleCallback(function() {
                h()
            }, {
                timeout: 4
            })
        } : f.setImmediate ? function(h) {
            setImmediate(h)
        } : function(h) {
            setTimeout(h, 0)
        },
        X$ = function(h, U) {
            return (U = N(h), U) & 128 && (U = U & 127 | N(h) << 7), U
        },
        N = function(h) {
            return h.v ? hi(h, h.P) : v(true, 8, h)
        },
        u = function(h, U, c, Y) {
            for (c = (Y = (U | 0) - 1, []); 0 <= Y; Y--) c[(U | 0) - 1 - (Y | 0)] = h >> 8 * Y & 255;
            return c
        },
        H = function(h, U) {
            U.h.splice(0, 0, h)
        },
        ZN = function(h, U, c, Y) {
            try {
                Y = h[((U | 0) + 2) % 3], h[U] = (h[U] | 0) - (h[((U | 0) + 1) % 3] | 0) - (Y | 0) ^ (1 == U ? Y << c : Y >>> c)
            } catch (A) {
                throw A;
            }
        },
        vv = function(h, U, c, Y, A, w) {
            if (!h.F) {
                h.u++;
                try {
                    for (A = (Y = (c = 0, h.Z), void 0); --U;) try {
                        if ((w = void 0, h).v) A = hi(h, h.v);
                        else {
                            if ((c = m(108, h), c) >= Y) break;
                            A = (w = (I(168, h, c), p(h)), m(w, h))
                        }
                        J(false, (A && A[N9] & 2048 ? A(h, U) : X([R, 21, w], h, 0), U), false, h)
                    } catch (y) {
                        m(369, h) ? X(y, h, 22) : I(369, h, y)
                    }
                    if (!U) {
                        if (h.vs) {
                            vv(h, (h.u--, 446149057662));
                            return
                        }
                        X([R, 33], h, 0)
                    }
                } catch (y) {
                    try {
                        X(y, h, 22)
                    } catch (z) {
                        E(h, z)
                    }
                }
                h.u--
            }
        },
        yF = function(h, U, c, Y, A) {
            if (c = U[0], c == B) h.B = 25, h.I(U);
            else if (c == n) {
                Y = U[1];
                try {
                    A = h.F || h.I(U)
                } catch (w) {
                    E(h, w), A = h.F
                }
                Y(A)
            } else if (c == VF) h.I(U);
            else if (c == d) h.I(U);
            else if (c == jD) {
                try {
                    for (A = 0; A < h.X.length; A++) try {
                        Y = h.X[A], Y[0][Y[1]](Y[2])
                    } catch (w) {}
                } catch (w) {}(0, U[1])((h.X = [], function(w, y) {
                    h.g(w, true, y)
                }), function(w) {
                    (w = !h.h.length, H([N9], h), w) && V(h, false, true)
                })
            } else {
                if (c == D) return A = U[2], I(371, h, U[6]), I(408, h, A), h.I(U);
                c == N9 ? (h.W = [], h.K = null, h.V = []) : c == Ou && "loading" === f.document.readyState && (h.L = function(w, y) {
                    function z() {
                        y || (y = true, w())
                    }(y = false, f).document.addEventListener("DOMContentLoaded", z, Z), f.addEventListener("load", z, Z)
                })
            }
        },
        F$ = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        d = ((T.prototype.oO = void 0, (T.prototype.vs = false, T).prototype).Ws = void 0, []),
        Ou = (T.prototype.l = "toString", []),
        B = [],
        n = [],
        VF = [],
        N9 = [],
        R = {},
        D = [],
        jD = [],
        W = ((Hv, e, ZN, function() {})(ai), R.constructor),
        Gq = ((((k = (T.prototype.H = "create", T.prototype), k).EB = function() {
            return Math.floor(this.s + (this.T() - this.C))
        }, k).T = (window.performance || {}).now ? function() {
            return this.tZ + window.performance.now()
        } : function() {
            return +new Date
        }, k).pJ = function(h, U, c) {
            return ((U = (U ^= U << 13, U ^= U >> 17, (U ^ U << 5) & c)) || (U = 1), h) ^ U
        }, k.JZ = function() {
            return Math.floor(this.T())
        }, void 0),
        q9 = (((k.g = function(h, U, c, Y, A) {
            if ((c = "array" === fl(c) ? c : [c], this).F) h(this.F);
            else try {
                Y = [], A = !this.h.length, H([B, Y, c], this), H([n, h, Y], this), U && !A || V(this, true, U)
            } catch (w) {
                E(this, w), h(this.F)
            }
        }, k.Ps = function(h, U, c, Y, A, w) {
            for (Y = w = 0, c = []; Y < h.length; Y++)
                for (w += U, A = A << U | h[Y]; 7 < w;) w -= 8, c.push(A >> w & 255);
            return c
        }, k).UB = function(h, U, c, Y, A) {
            for (A = Y = 0; Y < h.length; Y++) A += h.charCodeAt(Y), A += A << 10, A ^= A >> 6;
            return Y = new(h = (A += A << 3, A ^= A >> 11, A) + (A << 15) >>> 0, Number)(h & (1 << U) - 1), Y[0] = (h >>> U) % c, Y
        }, T.prototype).I = function(h, U) {
            return U = (h = {}, Gq = function() {
                    return h == U ? -88 : -31
                }, {}),
                function(c, Y, A, w, y, z, g, r, x, M, O, S, C, Q, F) {
                    h = (z = h, U);
                    try {
                        if (M = c[0], M == d) {
                            C = c[1];
                            try {
                                for (w = (Y = (S = atob(C), Q = [], 0), 0); w < S.length; w++) g = S.charCodeAt(w), 255 < g && (Q[Y++] = g & 255, g >>= 8), Q[Y++] = g;
                                I(142, this, (this.Z = (this.W = Q, this.W).length << 3, [0, 0, 0]))
                            } catch (a) {
                                X(a, this, 17);
                                return
                            }
                            vv(this, 8001)
                        } else if (M == B) c[1].push(m(419, this), m(23, this).length, m(158, this).length, m(190, this).length), I(408, this, c[2]), this.K[366] && pl(this, m(366, this), 8001);
                        else {
                            if (M == n) {
                                this.j = (F = u((m(158, (Y = c[2], this)).length | 0) + 2, 2), x = this.j, this);
                                try {
                                    A = m(418, this), 0 < A.length && q(this, 158, u(A.length, 2).concat(A), 10), q(this, 158, u(this.Y, 1), 109), q(this, 158, u(this[n].length, 1)), S = 0, S += m(385, this) & 2047, y = m(23, this), S -= (m(158, this).length | 0) + 5, 4 < y.length && (S -= (y.length | 0) + 3), 0 < S && q(this, 158, u(S, 2).concat(e(S)), 15), 4 < y.length && q(this, 158, u(y.length, 2).concat(y), 156)
                                } finally {
                                    this.j = x
                                }
                                if (O = (((w = e(2).concat(m(158, this)), w)[1] = w[0] ^ 6, w)[3] = w[1] ^ F[0], w[4] = w[1] ^ F[1], this.wd(w))) O = "!" + O;
                                else
                                    for (S = 0, O = ""; S < w.length; S++) r = w[S][this.l](16), 1 == r.length && (r = "0" + r), O += r;
                                return m((m(158, (m(23, (I(419, this, (Q = O, Y.shift())), this)).length = Y.shift(), this)).length = Y.shift(), 190), this).length = Y.shift(), Q
                            }
                            if (M == VF) pl(this, c[1], c[2]);
                            else if (M == D) return pl(this, c[1], 8001)
                        }
                    } finally {
                        h = z
                    }
                }
        }(), /./),
        su, Kl = (T.prototype[T.prototype.wd = (T.prototype.cs = 0, T.prototype.T3 = 0, function(h, U, c, Y) {
            if (c = window.btoa) {
                for (Y = "", U = 0; U < h.length; U += 8192) Y += String.fromCharCode.apply(null, h.slice(U, U + 8192));
                h = c(Y).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else h = void 0;
            return h
        }), jD] = [0, 0, 1, 1, 0, 1, 1], d).pop.bind(T.prototype[B]),
        oi = function(h, U) {
            return (U = YC()) && 1 === h.eval(U.createScript("1")) ? function(c) {
                return U.createScript(c)
            } : function(c) {
                return "" + c
            }
        }((su = u4((q9[T.prototype.l] = Kl, T.prototype).H, {get: Kl
        }), T.prototype.rd = void 0, f));
    (40 < (t = f.botguard || (f.botguard = {}), t).m || (t.m = 41, t.bg = Tq, t.a = xC), t).YBO_ = function(h, U, c) {
        return c = new T(h, U), [function(Y) {
            return mu(Y, c)
        }]
    };
}).call(this);
                                    

#4 JavaScript::Eval (size: 22, repeated: 1) - SHA256: e305e4a9f1526070c2c93d1248512d6460115b8db421e150919978d6f2df61a2

                                        0,
function(w) {
    i4(1, w)
}
                                    

#5 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 45f5e5195f57ae43fbd3dacdbdf1de261f7a716f6241be91b64b0a1e990cdc75

                                        0,
function(w) {
    i4(2, w)
}
                                    

Executed Writes (4)

#1 JavaScript::Write (size: 382, repeated: 1) - SHA256: ed5190be636529fe44951890e8fa47120431aae198c2f6684fd65620546c2fff

                                        < head > < meta http - equiv = "Content-Type"
content = "text/html; charset=UTF8" > < link rel = "stylesheet"
type = "text/css"
href = "https://translate.googleapis.com/translate_static/css/translateelement.css" > < /head><body scroll="no" style="margin:0px;overflow:hidden" dir="ltr" marginHeight=0 marginWidth=0 leftMargin=0 topMargin=0 border=0><div id=":1.menuBody" class="goog-te-menu"></div > < /body>
                                    

#2 JavaScript::Write (size: 2866, repeated: 1) - SHA256: 1419aab7d963a21ca0982e1e4b3f456213feb0796dc4fe021eb23f8264b1c178

                                        < head > < meta http - equiv = "Content-Type"
content = "text/html; charset=UTF8" > < link rel = "stylesheet"
type = "text/css"
href = "https://translate.googleapis.com/translate_static/css/translateelement.css" > < /head><body class="goog-te-banner" scroll="no" border=0 dir="ltr"><table border=0 cellspacing=0 cellpadding=0 width=100% height=100%><tr valign=middle><td width=1 nowrap><a href="https:/ / translate.google.com " class="
goog - logo - link " target="
_blank "><img src="
https: //www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png" alt="Google Oversetter"></a></td><td width=1><img src="https://www.google.com/images/cleardot.gif" width="9" height="15" title="Innholdet p� denne sikre siden sendes til Google via en sikker tilkobling for � bli oversatt." alt="Innholdet p� denne sikre siden sendes til Google via en sikker tilkobling for � bli oversatt." style="background-image:url(https://translate.googleapis.com/translate_static/img/te_ctrl3.gif);background-position:-56px 0px;margin:0 4px"></td><td class="goog-te-banner-margin"></td><td><table border=0 cellspacing=0 cellpadding=0 height=100%><tr id=":2.promptSection" style="display:none" valign=middle><td nowrap><span class="goog-te-banner-content">Vis denne siden p�: <span id=":2.promptTargetLang"></span></span></td><td class="goog-te-banner-margin"></td><td nowrap><div class="goog-te-button"><div><button id=":2.confirm"><b>Oversett</b></button></div></div></td><td class="goog-te-banner-margin"></td><td nowrap><div class="goog-te-button"><div><button id=":2.noAutoPopup"></button></div></div></td></tr><tr id=":2.progressSection" style="display:none" valign=middle><td><span class="goog-te-banner-content">Oversettelse p�g�r&nbsp;<span dir="ltr">(<b id=":2.progressValue"></b>%)</span>&nbsp;<img src="https://translate.googleapis.com/translate_static/img/loading.gif"></span></td><td class="goog-te-banner-margin"></td><td nowrap><div class="goog-te-button"><div><button id=":2.cancel">Avbryt</button></div></div></td></tr><tr id=":2.finishSection" style="display:none"><td><span class="goog-te-banner-content">Oversatt til: <span id=":2.finishTargetLang"></span></span></td><td class="goog-te-banner-margin"></td><td nowrap><div class="goog-te-button"><div><button id=":2.restore">Vis original</button></div></div></td></tr><tr id=":2.errorSection" style="display:none" valign=middle><td><span id=":2.errorContent" class="goog-te-banner-content"></span></td></tr></table></td><td class="goog-te-banner-margin"></td><td width=1 id="options"></td><td width=1><a id=":2.close" class="goog-close-link" href="javascript:void(0)" title="Lukk"><img src="https://www.google.com/images/cleardot.gif" width="15" height="15" alt="Lukk" style="background-image:url(https://translate.googleapis.com/translate_static/img/te_ctrl3.gif);background-position:-28px 0px"></a></td></tr></table></body>
                                    

#3 JavaScript::Write (size: 382, repeated: 1) - SHA256: c68c84b340115ef05318c4438aed24d3cd6198fdac59ac30dc7bac98452fda69

                                        < head > < meta http - equiv = "Content-Type"
content = "text/html; charset=UTF8" > < link rel = "stylesheet"
type = "text/css"
href = "https://translate.googleapis.com/translate_static/css/translateelement.css" > < /head><body scroll="no" style="margin:0px;overflow:hidden" dir="ltr" marginHeight=0 marginWidth=0 leftMargin=0 topMargin=0 border=0><div id=":3.menuBody" class="goog-te-menu"></div > < /body>
                                    

#4 JavaScript::Write (size: 382, repeated: 1) - SHA256: b55d620fbd4437f635943e51960611f5154c58146c88bf93dbe3419546f4903e

                                        < head > < meta http - equiv = "Content-Type"
content = "text/html; charset=UTF8" > < link rel = "stylesheet"
type = "text/css"
href = "https://translate.googleapis.com/translate_static/css/translateelement.css" > < /head><body scroll="no" style="margin:0px;overflow:hidden" dir="ltr" marginHeight=0 marginWidth=0 leftMargin=0 topMargin=0 border=0><div id=":4.menuBody" class="goog-te-menu"></div > < /body>
                                    


HTTP Transactions (82)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         13.224.245.4
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 14:05:41 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ba3cc0531c92002d06a895bfb6e3f54.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR62-C3
X-Amz-Cf-Id: cfUKAWLJcLN4khEr_2y3lw_ajLG4lGnhipcmPY4iqMv3VwRdEoT7kA==
Age: 419


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8512
Expires: Sat, 24 Sep 2022 16:34:32 GMT
Date: Sat, 24 Sep 2022 14:12:40 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.224.245.54
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 24 Sep 2022 04:13:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a3e4fc96eb3662731567c2fe42feda9a.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR62-C3
x-amz-cf-id: tlw5B80GqqkAM8AmlgJiwLAxKIe59lTgd9V1PV-JQEabDbo_GbyOaQ==
age: 35977
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /p/sitios-donde-puedes-firmar-espana.html HTTP/1.1 
Host: marmenorpersona.legal
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         172.67.170.196
HTTP/1.1 301 Moved Permanently
                                        
Date: Sat, 24 Sep 2022 14:12:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 24 Sep 2022 15:12:40 GMT
Location: https://marmenorpersona.legal/p/sitios-donde-puedes-firmar-espana.html
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=93OY2Kw%2BXeTVbbKEJMC3P%2FLnzGSJMUsIpg0pd%2FeEY5pMbT5hqJ2kEdQRWPE2bFBxTHH7morIm1jKZVvXa7Gw7wi9ybd%2FX4AokQLJP6wqujAh1crwtGbZPEJdsuXKbti2lV1H3SVN%2BZQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fc1dcb8b421c02-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 24 Sep 2022 14:12:40 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /p/sitios-donde-puedes-firmar-espana.html HTTP/1.1 
Host: marmenorpersona.legal
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         172.67.170.196
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
                                        
date: Sat, 24 Sep 2022 14:12:40 GMT
location: http://www.marmenorpersona.legal/p/sitios-donde-puedes-firmar-espana.html
x-xss-protection: 0
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F1wbYeNm5aIz9cir3BhwO3VS5GVFN%2FWVmLnrRrND5dkSfxyUK77ExI7VSZibVI2ldqQdAh2anGCvPKzzmISyHBX5rEil%2FtrHxz5Z2MEVhsgkqu2iOnIMM4MX74UFXvagaGXmGWtLL2A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74fc1dcbd97cb529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   268
Md5:    353eb0910aff4840fc902c5e707f2180
Sha1:   14a5b51158ce7726cab0a07490a5b4f65006c749
Sha256: 094865be847d1801a0e4a4a7a87afe7d8921f250ce9b021c433d389a701d79a1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         13.224.245.4
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sat, 24 Sep 2022 13:20:46 GMT
Expires: Sat, 24 Sep 2022 13:51:24 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 25ef9a7ab53a2ce8c41854fb4c1b243e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR62-C3
X-Amz-Cf-Id: 6x-Ga3rJ2y-YX7bAc9er8bWLaoyp8erIwHN46hfz5sKtIZAQpOb3bg==
Age: 3115


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5076
Cache-Control: 'max-age=158059'
Date: Sat, 24 Sep 2022 14:12:41 GMT
Last-Modified: Sat, 24 Sep 2022 12:48:05 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/1416043673-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56913
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 02:21:33 GMT
expires: Thu, 21 Sep 2023 02:21:33 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 21 Sep 2022 00:51:51 GMT
age: 301868
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2221)
Size:   56913
Md5:    c6aef9cbd2abf926a23970b70f8a24c2
Sha1:   78972b4f41a7d2580c383da41e3a472c4cfc647a
Sha256: 111111066b8f3fddcd24cedce8c4e8b93a1d9e9b8e3f5f2959172da5adda14b6
                                        
                                            GET /js/platform.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Sat, 24 Sep 2022 14:12:41 GMT
expires: Sat, 24 Sep 2022 14:12:41 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1277)
Size:   20361
Md5:    b5a31516be83fe4f962609045d824f88
Sha1:   939a49a9858bf23561279f9ca2d1941d3256c66f
Sha256: edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 07:10:12 GMT
expires: Fri, 22 Sep 2023 07:10:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 21 Sep 2022 22:56:47 GMT
age: 198149
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35959)
Size:   7776
Md5:    5aa2d3297bdc86bc81322aedecbb5e79
Sha1:   1c0a3c007e41726e167e79b70ddea76198650884
Sha256: feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
                                        
                                            GET /img/widgets/subscribe-yahoo.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 05:58:50 GMT
expires: Thu, 29 Sep 2022 05:58:50 GMT
cache-control: public, max-age=604800
last-modified: Thu, 22 Sep 2022 04:51:59 GMT
age: 202431
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Size:   580
Md5:    79f602b6ac18bee79b4e2353a6674010
Sha1:   28accf82263aa1a11bb821439d4d185865662530
Sha256: bbf9b924cc32bff4738bb54d86905476349f90c8b20f748633e56f64379d553e
                                        
                                            GET /img/widgets/subscribe-netvibes.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 01:25:18 GMT
expires: Thu, 29 Sep 2022 01:25:18 GMT
cache-control: public, max-age=604800
last-modified: Wed, 21 Sep 2022 22:56:47 GMT
age: 218843
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Size:   1445
Md5:    c52a5f4ecb6be5d7e93b23ef4122ee4e
Sha1:   4e698a5f455daf3a8ea1e219b1998079f0546716
Sha256: 71b8ad79c680b3e5d452a792c3b418b23f739a0a34005e0f37ec674f4c78cb5d
                                        
                                            GET /img/icon18_edit_allbkg.gif HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 18:39:38 GMT
expires: Wed, 28 Sep 2022 18:39:38 GMT
cache-control: public, max-age=604800
last-modified: Wed, 21 Sep 2022 13:53:25 GMT
age: 243183
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18\012- data
Size:   162
Md5:    c991641178ff05adf0d004298b5eafa9
Sha1:   d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
Sha256: ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
                                        
                                            GET /img/icon_feed12.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 08:37:14 GMT
expires: Thu, 29 Sep 2022 08:37:14 GMT
cache-control: public, max-age=604800
last-modified: Thu, 22 Sep 2022 06:54:41 GMT
age: 192927
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 12 x 12, 8-bit colormap, non-interlaced\012- data
Size:   500
Md5:    44e7355a788fd1082deff0018883758e
Sha1:   50e3a28a44978e85d13c30522e0c71c8d0b24675
Sha256: 3cd341f37642f8a58b0fe14c2645913449c0ffe10be6ba0986275bfef29bc319
                                        
                                            GET /img/widgets/arrow_dropdown.gif HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 141
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 22:20:08 GMT
expires: Wed, 28 Sep 2022 22:20:08 GMT
cache-control: public, max-age=604800
last-modified: Wed, 21 Sep 2022 03:52:09 GMT
age: 229953
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 13 x 10\012- data
Size:   141
Md5:    2964a07d60a4e76b299130fb1b4115f6
Sha1:   3b72dcc19f3ad685513eaba612e07e0ed495f2e1
Sha256: 28ab89f0285c48d2faed701905c185c302f2b389584a52ceaa76a91ea64dc3a7
                                        
                                            GET /-MQuocq7OzfU/UiXwUY81yQI/AAAAAAAAB0Q/h6-R_R2-buI/s1600/face.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.161
HTTP/2 200 OK
content-type: image/png
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="face.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 881
x-xss-protection: 0
date: Sat, 24 Sep 2022 10:32:49 GMT
expires: Fri, 10 Jun 2022 10:58:53 GMT
cache-control: public, max-age=86400, no-transform
age: 13192
etag: "v745"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size:   881
Md5:    db49153d9c4abe2909112c917b074aa0
Sha1:   0a6ff9e1dc2d7a6b804d09d451d2e92f61d97992
Sha256: 531b49ef710fe9eee7ef55cbb1d573a15d6ba93a7ca2bb51c8f69758bdb7ac30
                                        
                                            GET /-B0wCtNXYV3U/UiX1VnAQSrI/AAAAAAAAB6Q/ILY3m0NJVE8/s1600/Twitter+NEW.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.161
HTTP/2 200 OK
content-type: image/png
                                        
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Twitter NEW.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1425
x-xss-protection: 0
date: Sat, 24 Sep 2022 10:32:49 GMT
expires: Wed, 17 Nov 2021 05:43:09 GMT
cache-control: public, max-age=86400, no-transform
age: 13192
etag: "v7a4"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size:   1425
Md5:    35f257ed251e50185c38e1eeade2ad7a
Sha1:   ad6f9acdcea47a2884ecd0242315c6c8cd90110b
Sha256: b437ade6e7a87c553b3ad31963293e7d15bf8ff4e65f66a63fe8802b7a36ddb0
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   2397
Md5:    5c072bcc9c76d774a3f6cad221f8a2a8
Sha1:   951391c3e2c8a646f906b01eb0f2ad0eb4bb6b5d
Sha256: 78038d6a2d5d9e5b23bc0e3eec5dc2d50de10631329deae6e353a3b61b892ae4
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-wEQIbCHykM0/YVxsGA1knZI/AAAAAAAAA3Y/ZM6ZiFQKg0AnxXRs9Xa65O6g0GVgio9GgCLcBGAsYHQ/w72-h72-p-k-no-nu/WhatsApp%2BImage%2B2021-10-05%2Bat%2B2.37.31%2BPM.jpeg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
etag: "v377"
expires: Sun, 25 Sep 2022 14:12:41 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="WhatsApp Image 2021-10-05 at 2.37.31 PM.jpeg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 24 Sep 2022 14:12:41 GMT
server: fife
content-length: 3655
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   3655
Md5:    76267237b18314a476a4b042531d6660
Sha1:   34f16e330724d9d3d74e8d6dc299cb58ade17caa
Sha256: b83089f1cc3e1a93c2084b59ec13194c359db2cadc725c519678fb1fe3f02825
                                        
                                            GET /-keDf-EJ2SDE/YECvygpLrMI/AAAAAAAAAa4/7RJPk44OEF0PSGaIoD4YL_UaOB135NmjACK4BGAYYCw/s1000/ILP-mar-menorMesa%2Bde%2Btrabajo%2B6.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
etag: "v1af"
expires: Sun, 25 Sep 2022 14:12:41 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ILP-mar-menorMesa de trabajo 6.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 24 Sep 2022 14:12:41 GMT
server: fife
content-length: 84433
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, resolution (DPI), density 66x66, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1000x193, components 3\012- data
Size:   84433
Md5:    0805a4da830f1270a76faa876020dee7
Sha1:   9297557b6517a52b4969be14e4bf42e3e5b00222
Sha256: 3c2a4a1c774753d2792d7476e8981f9ce79968a010f1bd12bf26d734a12bd6ec
                                        
                                            GET /-OeBP4Xy3Ftc/YPGE6UnXQlI/AAAAAAAAAso/z8NpjhzWVsEKqdOZhnLJnAbL6safHkfgACLcBGAsYHQ/WhatsApp%2BImage%2B2021-07-15%2Bat%2B23.31.16.jpeg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
etag: "v2cb"
expires: Sun, 25 Sep 2022 14:12:41 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="WhatsApp Image 2021-07-15 at 23.31.16.jpeg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 24 Sep 2022 14:12:41 GMT
server: fife
content-length: 68630
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 459x512, components 3\012- data
Size:   68630
Md5:    d4bd2a752329af9eaf5fb676b0e98213
Sha1:   089dce3108ae86c4f1900ebd9d8c0f0cb412f967
Sha256: 4b1bf6a9d20820a53412814f4f5eb7a405a2b3d5f6255a2cd89996bd6468e98b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wikipedia/commons/thumb/a/a5/Instagram_icon.png/40px-Instagram_icon.png HTTP/1.1 
Host: upload.wikimedia.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         91.198.174.208
HTTP/2 200 OK
content-type: image/png
                                        
date: Sat, 24 Sep 2022 09:03:08 GMT
content-length: 3747
last-modified: Tue, 12 May 2020 14:26:14 GMT
etag: f49100e0c45ab22eb7aa3087ba31fc6a
server: ATS/8.0.8
age: 18573
x-cache: cp3053 hit, cp3051 miss
x-cache-status: hit-local
server-timing: cache;desc="hit-local", host;desc="cp3051"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 86400, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 86400, "failure_fraction": 0.05, "success_fraction": 0.0}
accept-ch: Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version
permissions-policy: interest-cohort=(),ch-ua-arch=(self "intake-analytics.wikimedia.org"),ch-ua-bitness=(self "intake-analytics.wikimedia.org"),ch-ua-full-version-list=(self "intake-analytics.wikimedia.org"),ch-ua-model=(self "intake-analytics.wikimedia.org"),ch-ua-platform-version=(self "intake-analytics.wikimedia.org")
x-client-ip: 91.90.42.154
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size:   3747
Md5:    f49100e0c45ab22eb7aa3087ba31fc6a
Sha1:   c95795b1a6cec1f1e3d96712c1857fa85d0e0769
Sha256: 6d3dfae3fe51d30f5f8a783e80caa017611acfa772fcb448268ad1926bb7cafa
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qT3wMSBGGk35r84mrEIM/Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.35.74.102
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: t/jg1gOkibvu9mNjdp9+1LuOJ8w=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wikipedia/commons/1/19/WhatsApp_logo-color-vertical.svg HTTP/1.1 
Host: upload.wikimedia.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         91.198.174.208
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sat, 24 Sep 2022 02:12:00 GMT
server: ATS/8.0.8
etag: W/d7f00521710c48c78e8ab3a4d573466f
x-object-meta-sha1base36: 5uam9v4ge5qadoeeiz6ogzo84pee1fa
last-modified: Tue, 13 Mar 2018 13:18:17 GMT
content-encoding: gzip
vary: Accept-Encoding
age: 43241
x-cache: cp3063 hit, cp3051 hit/65
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3051"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 86400, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 86400, "failure_fraction": 0.05, "success_fraction": 0.0}
accept-ch: Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version
permissions-policy: interest-cohort=(),ch-ua-arch=(self "intake-analytics.wikimedia.org"),ch-ua-bitness=(self "intake-analytics.wikimedia.org"),ch-ua-full-version-list=(self "intake-analytics.wikimedia.org"),ch-ua-model=(self "intake-analytics.wikimedia.org"),ch-ua-platform-version=(self "intake-analytics.wikimedia.org")
x-client-ip: 91.90.42.154
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
content-length: 9600
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size:   9600
Md5:    4fca81fbcec2fec73b30bbc937e82a78
Sha1:   7dd7743b4df136ed6c140a2e29ba546ce00d8067
Sha256: 369101050b3f065e7bb226523e1cda69f560c2cb7c0f814f64c0b7c78a35c879
                                        
                                            GET /wikipedia/commons/thumb/5/5a/Telegram_2019_simple_logo.svg/512px-Telegram_2019_simple_logo.svg.png HTTP/1.1 
Host: upload.wikimedia.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         91.198.174.208
HTTP/2 200 OK
content-type: image/png
                                        
date: Sat, 24 Sep 2022 13:18:18 GMT
content-length: 19249
content-disposition: inline;filename*=UTF-8''Telegram_2019_simple_logo.svg.png
last-modified: Thu, 31 Mar 2022 10:49:22 GMT
etag: 38b56c1fe2fa2ddd7edaae2e018b48e9
server: ATS/8.0.8
age: 3263
x-cache: cp3051 hit, cp3051 miss
x-cache-status: hit-local
server-timing: cache;desc="hit-local", host;desc="cp3051"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 86400, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 86400, "failure_fraction": 0.05, "success_fraction": 0.0}
accept-ch: Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version
permissions-policy: interest-cohort=(),ch-ua-arch=(self "intake-analytics.wikimedia.org"),ch-ua-bitness=(self "intake-analytics.wikimedia.org"),ch-ua-full-version-list=(self "intake-analytics.wikimedia.org"),ch-ua-model=(self "intake-analytics.wikimedia.org"),ch-ua-platform-version=(self "intake-analytics.wikimedia.org")
x-client-ip: 91.90.42.154
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size:   19249
Md5:    38b56c1fe2fa2ddd7edaae2e018b48e9
Sha1:   9a42028731adc6c8058208ae8fcc53f078973c0a
Sha256: e3db4883e03e795c56830eb96c638361ef2c520f2ba6d2b25767be2a6e3e6838
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /translate_static/css/translateelement.css HTTP/1.1 
Host: translate.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.74
HTTP/2 200 OK
content-type: text/css
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 13:30:46 GMT
expires: Sat, 24 Sep 2022 14:30:46 GMT
cache-control: public, max-age=3600
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
age: 2515
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18670)
Size:   3619
Md5:    897ba9a21d9625286674da769dacc2e2
Sha1:   84b4923ab7dee562395160824d53496314499b77
Sha256: 696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "7A97B221809ED133EAB99579E2E74F63DD4F1ABCE67B3EE4BC833D895487295C"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8452
Expires: Sat, 24 Sep 2022 16:33:33 GMT
Date: Sat, 24 Sep 2022 14:12:41 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /_/translate_http/_/js/k=translate_http.tr.no.99e50R6b4a4.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpjUhGxFCXN4e2-zoCcY3WdFh3Ocw/m=el_main HTTP/1.1 
Host: translate.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.74
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 93858
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 20:39:31 GMT
expires: Fri, 22 Sep 2023 20:39:31 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 21 Sep 2022 21:14:53 GMT
age: 149590
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1613)
Size:   93858
Md5:    abe5dfbfca8f0907abb1bab1f3597906
Sha1:   ec03951a1465e01b2d4170e1c9aeaf34d21d16d0
Sha256: 4e9df864bff28fb550b7f19254a3d007ba4db0c3cdd7071cc9e6b5d8418d4238
                                        
                                            GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1 
Host: translate.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.46
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 24 Sep 2022 14:12:41 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+096; expires=Mon, 23-Sep-2024 14:12:41 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (560)
Size:   84696
Md5:    8df70e4b626caf111777ded0f9b85967
Sha1:   623871d7a200cddb52412edc04a74e57842249c0
Sha256: c4ec293461aa9e4e294893d4da543095e28cfb6ddc00b030c77ba13a2737501f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/js/google_top_exp.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.98
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 67
x-xss-protection: 0
date: Fri, 23 Sep 2022 22:16:52 GMT
expires: Fri, 07 Oct 2022 22:16:52 GMT
cache-control: public, max-age=1209600
age: 57350
etag: 13036835877489095579
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   67
Md5:    9bbc3ca32ec951a484589ce0e6b4db73
Sha1:   753d6f6183b33b2dee5dde2208fca91c17f5bb13
Sha256: b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /images/cleardot.gif HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Sat, 24 Sep 2022 14:12:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff
Sha1:   56d45f8a17f5078a20af9962c992ca4678450765
Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /images/branding/product/1x/translate_24dp.png HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 14:35:30 GMT
expires: Fri, 22 Sep 2023 14:35:30 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
age: 171432
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   846
Md5:    e9cd262114358f26b7608b56905185dc
Sha1:   6dbde0a96deaab2b529723ce26c62043cf9180ab
Sha256: 5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
                                        
                                            GET /images/branding/product/2x/translate_24dp.png HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 23:19:36 GMT
expires: Sat, 23 Sep 2023 23:19:36 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
age: 53586
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   1842
Md5:    c69c796362406f9e11c7f4bf5bb628da
Sha1:   e489ce95ab56208090868882113d7416abf46775
Sha256: 4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/a/AVvXsEhL9RxDEot_S54N3hacCjRhJuzjbUZIFvpMIks1xFhlP6FMfzqXd5VbQx3TXizZpHIcAcxoX1U0dBo9PhhJI8AvX7JrY1-_viYoHc7uNRmhXFfS9PFndos0Z9vX4_MjoPk-t0CGLGyzeiG56_ae2o24ZVaDxAJvAjeVl5NQJ3HEGKcZ0y2UIKd4Uxvf=w72-h72-p-k-no-nu HTTP/1.1 
Host: blogger.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.33
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
etag: "v3cc"
expires: Sun, 25 Sep 2022 14:12:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="WhatsApp Image 2021-11-19 at 2.30.49 PM.jpeg"
vary: Origin
x-content-type-options: nosniff
date: Sat, 24 Sep 2022 14:12:42 GMT
server: fife
content-length: 6847
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   6847
Md5:    275f8d9498e7bba8c2157fe08dfd51ed
Sha1:   758bcfdcc1cda688c5197d2003982b2ca24b7646
Sha256: 4dac4c010f41e08034cd638bb438a510155e4f32853919bed97b734cf979ce81
                                        
                                            GET /img/b/R29vZ2xl/AVvXsEjHUoWZi_EdWhFujwP7AEYiOD3Smw_r5GiQRSVpQJd2aqsFdXDxfe_dIkZsDxq3zXBZ7CsJ1MKDNG_BAaPaoaWwp3slh_R-iUG-Bw5L4vDEbzUVzDWVmiGpugR7FrGwywjXHxmAIrgk5f4IcIU5eF_Q2H8U6n_O_Ppj_ztahp-lJTM3hKgJaMGvw5rP/w72-h72-p-k-no-nu/6be85c51-830f-4178-b278-ce237bb50879.jpg HTTP/1.1 
Host: blogger.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.33
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
etag: "v400"
expires: Sun, 25 Sep 2022 14:12:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="6be85c51-830f-4178-b278-ce237bb50879.jpg"
vary: Origin
x-content-type-options: nosniff
date: Sat, 24 Sep 2022 14:12:42 GMT
server: fife
content-length: 2452
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   2452
Md5:    be5019b0f1eaa2f0e5573c5ce495de80
Sha1:   acac64902752926dcf34cc46c6f5ef81f2898c42
Sha256: b89c44b5f70a82e221f873a028aab91bc81b61dbfcb0c41347dba60fb9cac672
                                        
                                            GET /static/files/js/output.2e6e8c4eb8d0.js HTTP/1.1 
Host: www.tickcounter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tickcounter.com/widget/countdown/2557638
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.75.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 24 Sep 2022 14:12:42 GMT
vary: Accept-Encoding
last-modified: Sun, 14 Aug 2022 09:34:13 GMT
x-clacks-overhead: GNU Terry Pratchett
cache-control: max-age=14400
cf-cache-status: HIT
age: 878105
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B6tRvCbmOqYyZuqNWELrJvT5zZYb4q6zIKmNhDIH5cKyDThI%2BcVaLXb9dtFdpi5%2FzOHRMsykimiVvRDj5qBfvYixmmtSl%2BJsZ0Tg9QIeWCSstlZiUEdJk5chaTtWJyF3DS6ZWhQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74fc1dd52c2e0b61-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65445)
Size:   58700
Md5:    92587d88f76c2094587483080efbcfc7
Sha1:   8a50e6a189f9d35fca23d2808591e77c1fc99f44
Sha256: 576f745c0f5bb28240300d2817b2b4b1efb57cc51566c45e28b92c1fc9ae21fc
                                        
                                            GET /widget/countdown/2557638 HTTP/1.1 
Host: www.tickcounter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.75.64
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Sat, 24 Sep 2022 14:12:42 GMT
vary: Accept-Encoding
expires: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
referrer-policy: same-origin
cross-origin-opener-policy: same-origin
x-clacks-overhead: GNU Terry Pratchett
cf-cache-status: MISS
last-modified: Sat, 24 Sep 2022 14:12:42 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0AD5IbHZ3ALiiS42j8XdBYbg9zqPnKoF5AYiFqSGnLOP8%2F2cWD3do2GLYEKVTHaGq3L9zD3LM7FVvGNfzglPgiv2tyhOTCBfVvOfGl9egy9Opu2EZg6Fp9TSb0P1ek7a1geDRZA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74fc1dd28a0a0b61-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (17498)
Size:   7943
Md5:    9e65c509675a9a76af2443d4c549414e
Sha1:   cb8ed0703b8fb17fe0a8469efbe888bbc8fdfc19
Sha256: 569d67dfc0b636697ed667816b69ceab6f5b5feefef16c9a49bb9196eb659b01
                                        
                                            POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1 
Host: play.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2974
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.206
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-encoding: gzip
date: Sat, 24 Sep 2022 14:12:42 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+527; expires=Mon, 23-Sep-2024 14:12:42 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sat, 24 Sep 2022 14:12:42 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   131
Md5:    babb6f090aeebc6f421624475b4aefff
Sha1:   06079b7547949822c118224e51604f4c5ebf80c8
Sha256: b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 14:12:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=UA-84290842-2 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 24 Sep 2022 14:12:42 GMT
expires: Sat, 24 Sep 2022 14:12:42 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43300
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   43300
Md5:    c064ba570e6dbedb63669e672f8cd453
Sha1:   ec63708ab50adc622eff19d8999b768a7a16cffc
Sha256: 86426988b4b5db4eb933b3944e888c6c860205626c2d013f7db7bcd3d388f0df
                                        
                                            GET /img/b/R29vZ2xl/AVvXsEiFOwtzhRhOPKUiTW7G17bpvtaiGZd4UbZiVfa2Id-3ZxtZJAR7asdwMqbQxTFjv0ex8cXK1l6zwQ_LVpOPrvpqCSPucgXjpnxjE94yPAVfzTkDBfKtf1Ew1qh38DBr-Ewr08Vvpn792HCGZJxQ993Msa4hVdRTII24Hdr-F61OnXu9unbeCXif0Jvi/w640-h640/WhatsApp%20Image%202022-09-16%20at%2012.12.24.jpeg HTTP/1.1 
Host: blogger.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.33
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
etag: "v45a"
expires: Sun, 25 Sep 2022 14:12:42 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="WhatsApp Image 2022-09-16 at 12.12.24.jpeg"
vary: Origin
x-content-type-options: nosniff
date: Sat, 24 Sep 2022 14:12:42 GMT
server: fife
content-length: 184618
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 239914
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 239914
last-modified: Wed, 11 May 2022 19:24:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size:   15860
Md5:    e9f5aaf547f165386cd313b995dddd8e
Sha1:   acdef5603c2387b0e5bffd744b679a24a8bc1968
Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
                                        
                                            GET /css?family=Roboto:300,400,500,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Sep 2022 14:12:42 GMT
date: Sat, 24 Sep 2022 14:12:42 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1780)
Size:   18760
Md5:    f0b385dc2e5660a6b59c1014e33b4d96
Sha1:   30fa652b4e580956ea372119bd68566834f6ceaf
Sha256: eaaa8f8b5e9241d67e4fae005cf50b98df4a7b43f4dc0e0692ab599e1a53555a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11628
Expires: Sat, 24 Sep 2022 17:26:30 GMT
Date: Sat, 24 Sep 2022 14:12:42 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11628
Expires: Sat, 24 Sep 2022 17:26:30 GMT
Date: Sat, 24 Sep 2022 14:12:42 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11628
Expires: Sat, 24 Sep 2022 17:26:30 GMT
Date: Sat, 24 Sep 2022 14:12:42 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11628
Expires: Sat, 24 Sep 2022 17:26:30 GMT
Date: Sat, 24 Sep 2022 14:12:42 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7963
x-amzn-requestid: cadfa4ff-473d-4927-bdf6-3aad64cddf18
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQbHTCIAMFfZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2735-41d711e5210099aa6273dd86;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: g0NS7XamCzSMKmm1-mLnWLwUuBoJczvwSmTb0c_7klsY78wbrg4bRw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:57:25 GMT
age: 58517
etag: "d2180d40ceb16924a87a41aad90dedb0bb912085"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7963
Md5:    5a4b36e1bf29c9c82f069cdd3c50874c
Sha1:   d2180d40ceb16924a87a41aad90dedb0bb912085
Sha256: aab96d28ea8e21e6d37449eba400cac45acced1825ebdb27853d17ae4f993b00
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: N7TwxCLUL8qnvm3YuZ6CGyJquVerc266VvZ1g8j5RxGpQXoUJwhULg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:51:16 GMT
age: 58886
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10032
Md5:    aa150280eb113504d61a25935c0f0127
Sha1:   ed04f74fbb4c77b21e2babc51a82857f5e23d169
Sha256: 07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6386
x-amzn-requestid: 4380489e-d0ba-4f67-ac4f-67619ba34422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shGHryIAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-005f9c783c7722f16c178026;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RuUOjTDRTkcaGFf_hTWrHZ89edOajgGUdl5PjbaUV7CUppat6IYsRg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:27 GMT
age: 59055
etag: "f6f926be6e265a597aaede424f05fcd7c76fcc20"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6386
Md5:    d8d9af95acfc8b9b431eb1e020157f6d
Sha1:   f6f926be6e265a597aaede424f05fcd7c76fcc20
Sha256: 0b61d6cb0e0908cb8d303b9e951e2854166bd232e0291b5d698a6b757c064e88
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10279
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4V65GTXIAMF9-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HfslSWhSAKRjZr-qqajVm6bKf9jGt2pXq8N8GlXgyTwRxWqw0y-CgA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 05:14:28 GMT
age: 32295
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10279
Md5:    8ea5f06ad31f0cedd2cb5c6df82f35f4
Sha1:   60a83a1618ffae06e49ca3002bac1db9980dcfe8
Sha256: 5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
                                        
                                            GET /cdn-cgi/trace HTTP/1.1 
Host: www.tickcounter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/plain, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tickcounter.com/widget/countdown/2557638
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.75.64
HTTP/2 200 OK
content-type: text/plain
                                        
date: Sat, 24 Sep 2022 14:12:42 GMT
access-control-allow-origin: *
server: cloudflare
cf-ray: 74fc1dd67d3a0b61-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   8582
Md5:    e68009d3d873bdd033210d738d61e0b3
Sha1:   9e9dd0e7d87d6f7e7f3cd8fe8b2afb0f2f0fd758
Sha256: 4930eae4683ad89e6e70665fc0edf41e4c479fb8fbd0411b1e7146475c551379
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9935
x-amzn-requestid: 9eb8463d-172a-40a2-8eed-3c97b1260afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQ5FARoAMFXQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2738-3709a2f22ecc033532223b26;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:38:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e5eETCL5yFnoG4HPx0Qv8hjGnlXx5vOL4syMx9uato8nuIHkSvMezg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:58:23 GMT
age: 58460
etag: "a30f9044330824e70dde0dcc785890d981e6fdf5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9935
Md5:    55d224ac83a417772c98bc5080fb6689
Sha1:   a30f9044330824e70dde0dcc785890d981e6fdf5
Sha256: b2ea4dea200109019a65834b98e31e8fac718a199513810a2819858be2b4470a
                                        
                                            GET /vt/icon/name=icons/onion/SHARED-mymaps-pin-container-bg_4x.png,icons/onion/SHARED-mymaps-pin-container_4x.png,icons/onion/1899-blank-shape_pin_4x.png&highlight=ff000000,0288D1&scale=2.0 HTTP/1.1 
Host: mt.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.46
HTTP/2 200 OK
content-type: image/png
                                        
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-security-policy: script-src 'none'; object-src 'none'; base-uri 'none'
x-content-type-options: nosniff
x-server-version-bin: CggIBBCLo7CZBg==
server: scaffolding on HTTPServer2
content-length: 980
x-xss-protection: 0
x-frame-options: SAMEORIGIN
date: Fri, 23 Sep 2022 17:32:19 GMT
expires: Wed, 07 Jun 2023 22:22:41 GMT
cache-control: public, max-age=22222222
age: 74424
server-timing: gfet4t7; dur=0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Size:   980
Md5:    1c35128c26299a39bcaae4acb9c04f0c
Sha1:   527082158709755f24753d2e926030d50df97a88
Sha256: e2d09246c364f928ce2aed8cc7e36ba71301f8104d3f027be10b1a493b0983ef
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 14:52:00 GMT
expires: Thu, 21 Sep 2023 14:52:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
age: 256843
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size:   15344
Md5:    5d4aeb4e5f5ef754e307d7ffaef688bd
Sha1:   06db651cdf354c64a7383ea9c77024ef4fb4cef8
Sha256: 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 00:48:31 GMT
expires: Sat, 23 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 134652
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size:   15552
Md5:    285467176f7fe6bb6a9c6873b3dad2cc
Sha1:   ea04e4ff5142ddd69307c183def721a160e0a64e
Sha256: 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
                                        
                                            GET /ui/v1/star/star4.png HTTP/1.1 
Host: ssl.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gstatic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         142.250.74.99
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
vary: Origin
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gstatic-ui-assets
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="gstatic-ui-assets"
report-to: {"group":"gstatic-ui-assets","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gstatic-ui-assets"}]}
content-length: 294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 01:53:33 GMT
expires: Sun, 24 Sep 2023 01:53:33 GMT
cache-control: public, max-age=31536000
age: 44350
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced\012- data
Size:   294
Md5:    c3e38fc01d8bd2d4a1150aa6b4414852
Sha1:   e4d1abd103711b8e2d863b75815f893f602b7561
Sha256: e5b7b36c80b9444eefd181c2862412165e771328f66b0b95ee96d6c59957d13e
                                        
                                            GET /static/js/loader.js HTTP/1.1 
Host: www.tickcounter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.75.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 24 Sep 2022 14:12:41 GMT
vary: Accept-Encoding
last-modified: Sun, 14 Aug 2022 09:34:17 GMT
x-clacks-overhead: GNU Terry Pratchett
cache-control: max-age=14400
cf-cache-status: HIT
age: 957135
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ewy6eKc6kl85qxaLKtPYbW10ScVIlHDDUEvTp2xSmVAfJxjHiGje9ouuFaxsoGIsthIk0xiXVkqTnZQ1h4wG%2F1%2BEkIbSHm4qld0kbVrLMafa2%2FxNrd4gGDTCEq8y7mq3gEE9ox0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74fc1dd249d00b61-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /maps/d/embed?mid=1mknjPR8RQqJ5N3vAjYVUii0WugWkAFY7 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marmenorpersona.legal/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 24 Sep 2022 14:12:42 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info.", CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: unsafe-none
content-security-policy: script-src 'nonce-94ve1M45KSc612lGLyZY0Q' 'unsafe-inline' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri /maps/d/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=r-ulTuCGV6lXNZhsvaCn4np8EhGA1dnpIEDDd6UCW-GG5ey9X2RtNRma-0FICK3vik1DLylmc4cm8vo0k9cQNJyyhmJNAfN-TSQ6WalNWwi10BkTdAEiaOIUhX0Igl7STpqtXgA0g4Xhw2XC7rTqJo79Jk9Ok66EDzvF5IxWJ24; expires=Sun, 26-Mar-2023 14:12:41 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none NID=511=ZlD4xAquTx9E-DrofetWQGNE8BKi8ZS0FaXl0V9kOsDPMXnirX6xNYoEoqkXjni50b5aoleIimx56jTtttBYEkKHdhU3yOxpYjn70VcduaWdtu69CXJWQJj1CpBpjqvj2uRfNz5m6DLKqPbLwEbi9bZVvQZj3l6nvnYTszn9MfI; expires=Sun, 26-Mar-2023 14:12:41 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---