wfaio0oi0i0.webcindario.com/oooooooooooooooo0o0o0o0o0oo0oo0o0o0oo0/run/index/login.php
5.57.226.202200 OK 1.2 kB URL HTTP/1.1 wfaio0oi0i0.webcindario.com/oooooooooooooooo0o0o0o0o0oo0oo0o0o0oo0/run/index/login.php
IP 5.57.226.202:0
ASN #29119 ServiHosting Networks S.L.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 9f8398292e46d2573f63092383fc7189
3b6ec45e34476af8d9c6fbf0fa1f0aaa6ea38562
e449a2e8826a5915ef058b5b4cb6fd47208fda49dfe105f1edd8893cd0a07cbe
Analyzer Verdict Alert fortinet Phishing
GET /oooooooooooooooo0o0o0o0o0oo0oo0o0o0oo0/run/index/login.php HTTP/1.1
Host: wfaio0oi0i0.webcindario.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: __muid=92c4aaa07fc98105ee5a291c1828454d7011ac21
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 02 Oct 2022 04:02:47 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: __muid=59bcfe9e8a9e5a4e13146d4caf6fadaf65b6354b; Domain=.webcindario.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:11 GMT; HttpOnly
X-Powered-By: Webcindario Hosting Service
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 24cdc937930ac2ef9c8f46ba1deabcc5
397417929951bf20f235d5f91510163ac213dc71
eb128aec099dbf1919ee5d965221e904ad3a2162583683cec44518640b505447
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB128AEC099DBF1919EE5D965221E904AD3A2162583683CEC44518640B505447"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4834
Expires: Sun, 02 Oct 2022 05:23:21 GMT
Date: Sun, 02 Oct 2022 04:02:47 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
18.164.68.21200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.164.68.21:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 02 Oct 2022 03:02:56 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f1b5cccb468453b067a2a271f6f316a4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: HTgFrLZjrb_gBYsy_QxaHcUM9yNyxMSNKzT3lxCsaJpH7J8onYnkeA==
Age: 3591
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
18.164.68.59200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 18.164.68.59:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 02 Oct 2022 03:37:49 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 e6606d7d3401505cbf3e6ea0e411484c.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P4
x-amz-cf-id: E76NTsW5cHp2YwMcyai4vypBV3S0dKiSotTXye_MqutEIB35u-bifQ==
age: 1771
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 04:02:47 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
wfaio0oi0i0.webcindario.com/favicon.ico
5.57.226.202200 OK 1.2 kB URL HTTP/1.1 wfaio0oi0i0.webcindario.com/favicon.ico
IP 5.57.226.202:0
ASN #29119 ServiHosting Networks S.L.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 9f8398292e46d2573f63092383fc7189
3b6ec45e34476af8d9c6fbf0fa1f0aaa6ea38562
e449a2e8826a5915ef058b5b4cb6fd47208fda49dfe105f1edd8893cd0a07cbe
GET /favicon.ico HTTP/1.1
Host: wfaio0oi0i0.webcindario.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wfaio0oi0i0.webcindario.com/oooooooooooooooo0o0o0o0o0oo0oo0o0o0oo0/run/index/login.php
Cookie: __muid=59bcfe9e8a9e5a4e13146d4caf6fadaf65b6354b
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 02 Oct 2022 04:02:47 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Webcindario Hosting Service
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a2d3925dad8ae1248c7b5d96220bd00a
8b6326da45860d5f480504e23864de0c28523b61
421d30a538dc347afc7fc8eee0fa6502aa65d789eb2353eb9c9f8bd0c5f3b3d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.164.68.21200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.164.68.21:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 02 Oct 2022 03:32:53 GMT
Expires: Sun, 02 Oct 2022 04:26:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 af877631d7eceee4a5878c04d25f5986.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: OZXS-VvnAltG4UfieYFi7e0kG6eQ6P3MB5NwhU58nSb8q1_XgpreEg==
Age: 1795
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a2d3925dad8ae1248c7b5d96220bd00a
8b6326da45860d5f480504e23864de0c28523b61
421d30a538dc347afc7fc8eee0fa6502aa65d789eb2353eb9c9f8bd0c5f3b3d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wfaio0oi0i0.webcindario.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Sun, 02 Oct 2022 02:41:09 GMT
expires: Sun, 02 Oct 2022 04:41:09 GMT
cache-control: public, max-age=7200
age: 4899
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 829e839c217bf861b8cf90c8d636f510
459714fcf0d374bdc078ef59d122d59bf9312c5f
36282e09bb25caf3d7350c4bee485cb87947aabc7d7409169caf15c2e75d8b7d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6226
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:48 GMT
Last-Modified: Sun, 02 Oct 2022 02:19:02 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c120ef4802f4eb64e93225496ba6944a
cdebb30349fa79f7ddb7d13aac47735565ac0ba2
1bcd7dc722018962f16783f0f888742a7926c0a7e466deef174f0f4fc5eb4a4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-597118-17&cid=449624706.1664683365&jid=2105136702&gjid=438047500&_gid=1492588738.1664683365&_u=YEBAAAAAAAAAAC~&z=985275697
74.125.131.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-597118-17&cid=449624706.1664683365&jid=2105136702&gjid=438047500&_gid=1492588738.1664683365&_u=YEBAAAAAAAAAAC~&z=985275697
IP 74.125.131.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-597118-17&cid=449624706.1664683365&jid=2105136702&gjid=438047500&_gid=1492588738.1664683365&_u=YEBAAAAAAAAAAC~&z=985275697 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://wfaio0oi0i0.webcindario.com
Connection: keep-alive
Referer: http://wfaio0oi0i0.webcindario.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://wfaio0oi0i0.webcindario.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 02 Oct 2022 04:02:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4f94a2722366412417efbb65aa368b8
f2942fbd2a6f0326f99c3a271de2dab12c881b15
97805013c570f1c9ad0158d99dfc6f521628bfb4b72a2a5d79526ec7b04df2f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ab779588f01243aca896d41395f8bd90
b8ef2d7cdc6366c283db0d608766a126dce37164
5531deca73d8380883740395d82457f4d39761134404876881242e2135b1546a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c120ef4802f4eb64e93225496ba6944a
cdebb30349fa79f7ddb7d13aac47735565ac0ba2
1bcd7dc722018962f16783f0f888742a7926c0a7e466deef174f0f4fc5eb4a4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
34.208.31.97101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.31.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6loPG8SExywo/+LPhxsCow==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7DnAYjVhXkXi7A5PGj+wMSm4Zu4=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3377
Expires: Sun, 02 Oct 2022 04:59:06 GMT
Date: Sun, 02 Oct 2022 04:02:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3377
Expires: Sun, 02 Oct 2022 04:59:06 GMT
Date: Sun, 02 Oct 2022 04:02:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3377
Expires: Sun, 02 Oct 2022 04:59:06 GMT
Date: Sun, 02 Oct 2022 04:02:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa35a86a2-6f2d-47bd-970a-75f2caba5ecc.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa35a86a2-6f2d-47bd-970a-75f2caba5ecc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 31c14c715893e82dd04f10bb9c863e64
55f0192d2aabb99c72ee0827013e26cd38baaf81
6f1c716bd7062a97bfe20e6fcdd3f5a7d69248d3673f517fb92b15363e936a4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa35a86a2-6f2d-47bd-970a-75f2caba5ecc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7733
x-amzn-requestid: ecc1e276-bf29-4c81-b415-065b0eea0a70
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHnEwNoAMFcOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ca-3b6b2da5041c65ed11b97e66;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: PE-7riXxL8vF5moOsmQCiKO6sKwPFErA0dYJ9RfpdVcQoAdianLv3Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:48:26 GMT
etag: "55f0192d2aabb99c72ee0827013e26cd38baaf81"
content-type: image/jpeg
age: 22463
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edded48f558f739287a040151349ef67
d63b6ba630736d32c364b0e6a369274b2389b7ff
33b4a459df0ba7b36b907ba96d74e08660cc75640c42a5748b97d18ec2e9d533
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11083
x-amzn-requestid: 53e2c961-bcc0-4977-8648-ee3c1aed9cde
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHRFWfIAMFhlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3c7-070212d7386d5efa1b4aa8d3;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Z1KmxHJh9QNfg5x0enkqOjbmiqHvg7nlQiMnuDuCRNWQUBFEiKELbw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:48:36 GMT
etag: "d63b6ba630736d32c364b0e6a369274b2389b7ff"
content-type: image/jpeg
age: 22453
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: f0791b53-3c5f-4d94-954d-992a529ebb60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPnunF35oAMFYbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63361ff6-2adb303349153ced73ccecf6;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 22:45:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RGS_T9Cwl5Vjs_bxngHRomiYppE5fLe0SnH19VEfc5-PCT5tb5ku1A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 04:40:52 GMT
age: 84117
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4043a1cb-a427-407b-90c2-59adcca462c8.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4043a1cb-a427-407b-90c2-59adcca462c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8342b284a0d5383fff1aae9375ef009
b5122a1c700e68a2322300a1e9d38453a1c3eb3a
b316b4db642e349e452b09cf49767c8b05ebd2db05f217e927065a571c9aa1fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4043a1cb-a427-407b-90c2-59adcca462c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7725
x-amzn-requestid: 2b15132c-03f8-4b9a-b3a9-2217fbfd89c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEIQHviIAMFtYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ce-749367997b2e5c9c106d8380;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BUYB6NasOkQ9eOkG3-59ioLAe206_V0Q4X-aTN-Kvv7-6fEf7zDX2Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:56:35 GMT
age: 21974
etag: "b5122a1c700e68a2322300a1e9d38453a1c3eb3a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e251a53-c5b8-4c0a-b486-8ef8a6fd4d77.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e251a53-c5b8-4c0a-b486-8ef8a6fd4d77.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6299d2938a1195b694844a0556a569b3
82123a6c3e74a7ff90b5db0cb8a333a64cefe71c
b65f713b3c94586b0d09a04b6873004d8cdfe6a13d364863fc1a6cd2d1ceac83
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e251a53-c5b8-4c0a-b486-8ef8a6fd4d77.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5503
x-amzn-requestid: e5e2b912-6deb-4736-b455-c9e37e1701ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDgdHE-oAMFq3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2cf-12a1f95320eadd1105daba75;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: zHzIjHe7MqjqSn1ejlTA-tD_gJBAizq91U3sI_prwcx7Vx4ai4B0DQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:48:26 GMT
etag: "82123a6c3e74a7ff90b5db0cb8a333a64cefe71c"
content-type: image/jpeg
age: 22463
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1a669b2-0d3a-4091-8e1b-d039baf0b678.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1a669b2-0d3a-4091-8e1b-d039baf0b678.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6ae0054af58fd05a3cc83a805fcfd23d
1aa90c115a4506342fb287e9a3dd35c13e0cc682
f48ea45cddfdfca94445b0de37f722332ad1ea499c44e658c491bf7b862936f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1a669b2-0d3a-4091-8e1b-d039baf0b678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8629
x-amzn-requestid: 56667412-f4d8-4ffa-92f2-5ee71a5d2bff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEJ_Gb7IAMF2_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3d9-75ac43520455000b6170a7b0;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:41 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -lhklpM7rZ2NAic4uCrwQlp21sW8X_mstYGEtRF_w6NXke54N9-ttA==
via: 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:56:35 GMT
etag: "1aa90c115a4506342fb287e9a3dd35c13e0cc682"
content-type: image/jpeg
age: 21974
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 83f9407574c75ca600c57af0637cb200
4ebabbc1900b8f575e90186e2024e48097b0c8d2
1e166ac737e5c3c015e0dc0c68115ebc5eeb53958682a9b77928ddb647137ac1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/jquery/1.8.3/jquery.min.js
104.17.24.14200 OK 30 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (65483)
Hash 5cd2219f0b7714db42dc39ef1e7d9b7c
4997902ef1a2c3d2354e5c824c4ababab08db98f
de5cc0e854ad6b09da1d8185a037c412fd4077390bfd1f0b48a4eb95b2386fdb
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:53 GMT
content-type: application/javascript; charset=utf-8
content-length: 29822
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-16dc4"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 347839
expires: Fri, 22 Sep 2023 04:02:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JP3b5hvYqwFS%2BhH%2BttuzTUbf%2BqOGXDeerjomfEo0NXTXjFLPY2OkqUMiEH9H49jlK1njsK3dy66lJ%2B49qHjpIinPomp3ncUi6ldm79EkRlugCaX3ebHyC3ZRSEhgcYcJRyHY0ONR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 753a8b8c8c201bfe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/all.min.css
104.17.24.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/all.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (59119)
Hash 14e1692fd4263ccfea0b84299bdbf1f5
7783020a9ced5f32c8d38205357c7d10798be1fd
8ff0cd2d1e7f0b6203a762fb9811256d4445a3ad0d97f07102e038ba0eb3db72
GET /ajax/libs/font-awesome/5.15.4/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:53 GMT
content-type: text/css; charset=utf-8
content-length: 10462
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "613fa20b-28de"
last-modified: Mon, 13 Sep 2021 19:10:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 259039
expires: Fri, 22 Sep 2023 04:02:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=shaQ5uZ9Chsti0WWsqpI8lUbchHi2qe7VL7mJPmkNKrLDjz6z1QBbpUDWAtxJx%2FuxcPWkORIX9jAETIFy7DOTBAwnkCvTV8pDtEyPakzE58wleCl21ZhnAFBnGAQzpJlw5cA1eaF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 753a8b8c8c211bfe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c120ef4802f4eb64e93225496ba6944a
cdebb30349fa79f7ddb7d13aac47735565ac0ba2
1bcd7dc722018962f16783f0f888742a7926c0a7e466deef174f0f4fc5eb4a4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a2d3925dad8ae1248c7b5d96220bd00a
8b6326da45860d5f480504e23864de0c28523b61
421d30a538dc347afc7fc8eee0fa6502aa65d789eb2353eb9c9f8bd0c5f3b3d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7294310421616689
216.58.211.2200 OK 54 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7294310421616689
IP 216.58.211.2:0
File type ASCII text, with very long lines (2910)
Hash 79b4bda4f134ab0791e7674fe0c66a84
c9a149202e38c10d30f7e739238bc4afc9a39646
14321c9e473cba50741a0275e51aea71f6a97802d6d5bab4098f60a073d213c7
GET /pagead/js/adsbygoogle.js?client=ca-pub-7294310421616689 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Sun, 02 Oct 2022 04:02:53 GMT
expires: Sun, 02 Oct 2022 04:02:53 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 10712990599548807890
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 54363
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
measure.refinery89.com/website/619/tag_load
108.138.233.92200 OK 43 B URL HTTP/2 measure.refinery89.com/website/619/tag_load
IP 108.138.233.92:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /website/619/tag_load HTTP/1.1
Host: measure.refinery89.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hosting.miarroba.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
cache-control: max-age=0, public, s-maxage=21600
server: Microsoft-IIS/10.0
x-powered-by: PHP/7.3.7
date: Sat, 01 Oct 2022 22:35:02 GMT
x-cache: Hit from cloudfront
via: 1.1 ad61f1a3605512df66adabdba5122802.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P4
x-amz-cf-id: g90OLv7ey9AADg7R4UnQw6znqMDWOdNgyH_q-EsBeXSJFDryJtwAnQ==
age: 19670
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 585 B IP 142.250.74.3:0
Hash 4100abd59ad7e00fe8b32f6b6bed0ead
41d6c335ad3d17746dcf9085cfd6ef836fb7d4b8
2eb2b7ffa55a219151c7de1569a4abe0f0beaaad70327596ff83fb9d29ec1512
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16980, version 1.0\012- data
Hash 8a97f720d330e75ccdbda9ae0e9f5e90
8e4fee916581ab48d385187705667cebc7500afe
97d5a594e7f76c7e50045b67667fd6b74b268515efe6425097be1b2647079787
GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 21:08:02 GMT
expires: Tue, 26 Sep 2023 21:08:02 GMT
cache-control: public, max-age=31536000
age: 456891
last-modified: Mon, 09 May 2022 18:33:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
quantcast.mgr.consensu.org/choice/d5x2uDVHd7ALE/miarroba.com/choice.js
143.204.68.56200 OK 18 kB URL HTTP/2 quantcast.mgr.consensu.org/choice/d5x2uDVHd7ALE/miarroba.com/choice.js
IP 143.204.68.56:0
File type ASCII text, with very long lines (1927)
Hash 3002d122e6db15a3309d4b8374995b2b
ad2377c494cdd6943c0a91430537776828b56cd3
320747b5e6f99b3d79ec4ea29a941ca01ff588518092baf5f1ed8b85d565dcc5
GET /choice/d5x2uDVHd7ALE/miarroba.com/choice.js HTTP/1.1
Host: quantcast.mgr.consensu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 10 Feb 2021 19:12:39 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
cache-control: max-age=900
date: Sun, 02 Oct 2022 04:02:54 GMT
etag: W/"3597be182be6cb70eaa95fd7fefa67d8"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 801f161811c7af839461382eb62af1dc.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: eWJLSFzPHK5JfeIqzuJeYZfuBYksPScmU47BtI98DPmfOrX4IA_K8Q==
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/webfonts/fa-brands-400.woff2
104.17.24.14200 OK 77 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/webfonts/fa-brands-400.woff2
IP 104.17.24.14:0
File type Web Open Font Format (Version 2), TrueType, length 76736, version 331.-31196\012- data
Hash ed311c7a0ade9a75bb3ebf5a7670f31d
0613c7ebba55ee47ef302c0f7766324692f899a7
8ea8791754915a898a3100e63e32978a6d1763be6df8e73a39d3a90d691cdeef
GET /ajax/libs/font-awesome/5.15.4/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:53 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 76736
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "613fa20b-12bc0"
last-modified: Mon, 13 Sep 2021 19:10:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1072967
expires: Fri, 22 Sep 2023 04:02:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PHTnrwGKzoYEw24ka%2FXNw9Mk3J%2BN0pCYYEzI6Jb2S%2Ff5yPLL7rR4cvbfW6DrxkuooTBMHvJ%2FsIyLe0QDcDK40aYfLJ3vWjSqUvopQt3XFnBShH4x2QAdsE%2BRgYi3YBWvaKY93RPe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 753a8b8e5b860af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb2de1a6c4c76b62bd9b5844ac8f0711
205f8666f86cf5f699ed5c8252c46004492fa88e
d0f5a54640474e3d0383d5302a9899e8060456287379906d2359925c6d36c46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/ouYA9JHCAhA
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/ouYA9JHCAhA
IP 142.250.74.3:0
Hash fa60e47d46714c7bc60b45c8f387911f
8a278a10036d82fcb992266ffe58cdb997a0359c
f987f3b976aa606105feeba030164e01317372e058f2bb34e72b824f97383139
POST /s/gts1d4/ouYA9JHCAhA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:53 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/ouYA9JHCAhA
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/ouYA9JHCAhA
IP 142.250.74.3:0
Hash fa60e47d46714c7bc60b45c8f387911f
8a278a10036d82fcb992266ffe58cdb997a0359c
f987f3b976aa606105feeba030164e01317372e058f2bb34e72b824f97383139
POST /s/gts1d4/ouYA9JHCAhA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:53 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4400bfe5c55dbb6ff7ff2a8efd416919
aeb1bbe18560ded75541eb92d67ef7e1666981b0
005d73b794ce92606f1f3c32022a50d2003af899f28350eb9bf6547f84eb7bf2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "005D73B794CE92606F1F3C32022A50D2003AF899F28350EB9BF6547F84EB7BF2"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16246
Expires: Sun, 02 Oct 2022 08:33:40 GMT
Date: Sun, 02 Oct 2022 04:02:54 GMT
Connection: keep-alive
cdn.smartclip-services.com/v1/Storage-a482323/smartclip-services/ava/ava.js
130.61.96.156200 OK 129 kB URL HTTP/1.1 cdn.smartclip-services.com/v1/Storage-a482323/smartclip-services/ava/ava.js
IP 130.61.96.156:0
ASN #31898 ORACLE-BMC-31898
File type ASCII text, with very long lines (65536), with no line terminators
Size 129 kB (128920 bytes)
Hash b57151479fb31d1a2afa26339088d338
e58ef5ce764a78f960143639c4ed22287e987d4c
e72aabae7e4b6b5ecbfdb001b9238acf75b8edfc26a5db4cfb1b9d7e60229e7c
GET /v1/Storage-a482323/smartclip-services/ava/ava.js HTTP/1.1
Host: cdn.smartclip-services.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 04:02:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 21 Jun 2022 15:40:47 GMT
ETag: W/"62b1e67f-6fb0e"
Expires: Wed, 05 Oct 2022 04:02:54 GMT
Pragma: public
Cache-Control: max-age=259200, public
Content-Encoding: gzip
c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fhosting.miarroba.com&pubid=d02f0482-a50f-427c-ac01-9856371f1f6b
18.165.199.23200 OK 1.9 kB URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fhosting.miarroba.com&pubid=d02f0482-a50f-427c-ac01-9856371f1f6b
IP 18.165.199.23:0
File type JSON data\012- , ASCII text, with very long lines (1886), with no line terminators
Hash 667d96a0ee9f588d5dfa8c4e0a96f13d
503c5dff9189a0db8c50cf10d3c3cff8a0a4a4eb
3ec855995e7efe7f34d250523779ab58b65b570b24d21857af472e172d00d8ae
GET /cdn/prod/config?src=600&u=https%3A%2F%2Fhosting.miarroba.com&pubid=d02f0482-a50f-427c-ac01-9856371f1f6b HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 1886
access-control-allow-origin: https://hosting.miarroba.com
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Sun, 02 Oct 2022 01:10:45 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 3ffc494014d1d1ba7644f6707a2cf696.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P3
x-amz-cf-id: hE4pqTnFKj9JvlbFmgdOBqYBrC7OYV6y-nPQT7uR8WOGAfj8ZUT7Ag==
age: 10328
X-Firefox-Spdy: h2
des.smartclip.net/ads?type=dyn&sz=400x320&plc=75133&elementId=&cat=&ref=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&rnd=62932988
35.186.194.101200 OK 1.8 kB URL HTTP/2 des.smartclip.net/ads?type=dyn&sz=400x320&plc=75133&elementId=&cat=&ref=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&rnd=62932988
IP 35.186.194.101:0
Hash 0f74d8cb1ad508a2703381e61b49b234
d6d93e34c4fd32c3b536c404e90311814bf1a3cd
17e52ea9c8c8b2be216775700dcd6a43462c78f6d3ee10b17d4ab1f7663c7bea
GET /ads?type=dyn&sz=400x320&plc=75133&elementId=&cat=&ref=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&rnd=62932988 HTTP/1.1
Host: des.smartclip.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sun, 02 Oct 2022 04:02:53 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
sc-device-type: PC
sc-supply-network: 999999
sc-uuid: 59efaf64-6d0d-3963-4452-e80f5b5c041a
access-control-allow-credentials: true
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Sun, 02 Oct 2022 02:41:09 GMT
expires: Sun, 02 Oct 2022 04:41:09 GMT
cache-control: public, max-age=7200
age: 4905
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1c724ca5ab4316a907dc64f51f14e157
8de91d18fc5d098ab77c7b76252242c4a1677079
9653f332a55f787fb66dec99625f7ad1eccc2f1fe860c0a03e69a9e16d4f47b1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6116
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:54 GMT
Last-Modified: Sun, 02 Oct 2022 02:20:58 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json
143.204.68.55200 OK 63 kB URL HTTP/2 cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json
IP 143.204.68.55:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65512), with no line terminators
Hash 7ed09ba18375870d5c275fc84f2acefa
5baddd36ffea7d4803bc1ce8af63c4bd5ef2b044
656473654d9b9e3edf6bf4fd3dc8ba6c486d919e2fa9f4d155296681bbff6d9c
GET /GVL-v2/vendor-list-trimmed-v1.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Sun, 02 Oct 2022 03:00:36 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Sun, 02 Oct 2022 03:00:33 GMT
etag: W/"713348369662589da640d1e1195993b4"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: shxwjzwLlpop-cWVfcw6foPmTDrRxkE37bC2-C4mfKy8mV76_JZlBA==
age: 3738
X-Firefox-Spdy: h2
cdn.smartclip-services.com/v1/Storage-a482323/smartclip-services/ava/config/miarroba.js
130.61.96.156200 OK 2.4 kB URL HTTP/1.1 cdn.smartclip-services.com/v1/Storage-a482323/smartclip-services/ava/config/miarroba.js
IP 130.61.96.156:0
ASN #31898 ORACLE-BMC-31898
File type ASCII text, with very long lines (2447), with no line terminators
Hash 15c0d3b709b4d9132ce4dc3132f35059
153d102b798759e809a10b9e87167e48576b2140
bab456671bb95b2c9ba189ac07cdb7616ac1a577f6d4e54ea16cae07f887829e
GET /v1/Storage-a482323/smartclip-services/ava/config/miarroba.js HTTP/1.1
Host: cdn.smartclip-services.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 04:02:54 GMT
Content-Type: application/javascript
Content-Length: 2447
Connection: keep-alive
Last-Modified: Thu, 18 Nov 2021 17:48:08 GMT
ETag: "619691d8-98f"
Expires: Mon, 03 Oct 2022 04:02:54 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%22d5x2uDVHd7ALE%22%2C%22domain%22%3A%22hosting.miarroba.com%22%2C%22publisher%22%3A%22miarroba%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.44%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22flyxIPvcjMTiqy2%2Bqp8aCw%22%2C%22clientTimestamp%22%3A1664683370487%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-gcre15kcx7n4dlwr30xv%22%7D
18.185.19.44200 OK 2 B URL HTTP/2 audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%22d5x2uDVHd7ALE%22%2C%22domain%22%3A%22hosting.miarroba.com%22%2C%22publisher%22%3A%22miarroba%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.44%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22flyxIPvcjMTiqy2%2Bqp8aCw%22%2C%22clientTimestamp%22%3A1664683370487%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-gcre15kcx7n4dlwr30xv%22%7D
IP 18.185.19.44:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /?log=%7B%22accountId%22%3A%22d5x2uDVHd7ALE%22%2C%22domain%22%3A%22hosting.miarroba.com%22%2C%22publisher%22%3A%22miarroba%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.44%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22flyxIPvcjMTiqy2%2Bqp8aCw%22%2C%22clientTimestamp%22%3A1664683370487%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-gcre15kcx7n4dlwr30xv%22%7D HTTP/1.1
Host: audit-tcfv2.cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:54 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-d5x2uDVHd7ALE.js
143.204.68.122200 OK 209 B URL HTTP/2 rules.quantcount.com/rules-p-d5x2uDVHd7ALE.js
IP 143.204.68.122:0
Hash 3649c703b678da37479d92a9e5311095
5ce6fafe54234b0503f6d347153a14dd3252ecff
28192ac3b74187c18b1a749b4a03b877ddf36507d113f654ac9db63130a8b548
GET /rules-p-d5x2uDVHd7ALE.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 209
last-modified: Tue, 23 Aug 2022 06:03:01 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Sun, 02 Oct 2022 03:15:52 GMT
cache-control: max-age=3600
etag: "3649c703b678da37479d92a9e5311095"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4ae29ce8264e419547c36ebbfbca8ea.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: PrP2WMZf-fTkcacopbozVCLOrVddamPkm20UlA6GtA_o1b9UuqBFSw==
age: 2992
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 19 kB IP 93.184.220.29:0
Hash 42cafd1499778f7debfa6c9bf107c776
43fdf8e471eaeec78e865772d2d46a1b47e88517
5c3657c74c6a98ba90ddf947e3c9a3f8500effd2d574063767fc6450b87f5f2c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5731
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:54 GMT
Last-Modified: Sun, 02 Oct 2022 02:27:24 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 279
aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&pid=qRYK9YC3TZ6M1&cb=0&ws=1280x939&v=22.9.81452&t=1500&slots=%5B%7B%22sd%22%3A%22r89-desktop-billboard-atf-1-0%22%2C%22s%22%3A%5B%22970x250%22%2C%22728x90%22%2C%22980x250%22%2C%22980x90%22%2C%22970x90%22%2C%22960x50%22%5D%2C%22sn%22%3A%22%2F15748617%2C22667027244%2Fmiarrobacom%2FMiarrobacom-Desktop-Billboard-ATF%22%7D%5D&schain=1.0%2C1!refinery89.com%2C00114%2C1%2C%2CDigital%2520Advertising%2520Distributio%2520to%2520you%2520s.l.%2C&pubid=d02f0482-a50f-427c-ac01-9856371f1f6b&gdpre=1&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D
18.172.158.238200 OK 23 B URL HTTP/2 aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&pid=qRYK9YC3TZ6M1&cb=0&ws=1280x939&v=22.9.81452&t=1500&slots=%5B%7B%22sd%22%3A%22r89-desktop-billboard-atf-1-0%22%2C%22s%22%3A%5B%22970x250%22%2C%22728x90%22%2C%22980x250%22%2C%22980x90%22%2C%22970x90%22%2C%22960x50%22%5D%2C%22sn%22%3A%22%2F15748617%2C22667027244%2Fmiarrobacom%2FMiarrobacom-Desktop-Billboard-ATF%22%7D%5D&schain=1.0%2C1!refinery89.com%2C00114%2C1%2C%2CDigital%2520Advertising%2520Distributio%2520to%2520you%2520s.l.%2C&pubid=d02f0482-a50f-427c-ac01-9856371f1f6b&gdpre=1&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D
IP 18.172.158.238:0
File type ASCII text, with no line terminators
Hash eae5ee6c7e3134a287aa23fcd63d64f0
3b17dc8eb29b01bd80c12c7d64159d0434edfdac
745a085b52b8371ec6705413fca70a28c6d8bff0db480e6b124bd08c54e95ef8
GET /e/dtb/bid?src=600&u=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&pid=qRYK9YC3TZ6M1&cb=0&ws=1280x939&v=22.9.81452&t=1500&slots=%5B%7B%22sd%22%3A%22r89-desktop-billboard-atf-1-0%22%2C%22s%22%3A%5B%22970x250%22%2C%22728x90%22%2C%22980x250%22%2C%22980x90%22%2C%22970x90%22%2C%22960x50%22%5D%2C%22sn%22%3A%22%2F15748617%2C22667027244%2Fmiarrobacom%2FMiarrobacom-Desktop-Billboard-ATF%22%7D%5D&schain=1.0%2C1!refinery89.com%2C00114%2C1%2C%2CDigital%2520Advertising%2520Distributio%2520to%2520you%2520s.l.%2C&pubid=d02f0482-a50f-427c-ac01-9856371f1f6b&gdpre=1&gdprl=%7B%22status%22%3A%22tcfv2-success%22%7D HTTP/1.1
Host: aax-dtb-cf.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 23
server: Server
date: Sun, 02 Oct 2022 04:02:54 GMT
x-amz-rid: 4YK3MY8P5CKXWVNRRQDJ
access-control-allow-origin: https://hosting.miarroba.com
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 6d5e3d9ab9ac8268b8796ccae45ff34e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P5
x-amz-cf-id: 8tq8vKlARqH1hmPbunEo3-1ukmYqSuZJKjfrxxobwUJugVo4PNz9UA==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ac3bd9203842561ff6c0efa66a4f0c53
6e4a2cfd9c78b8f74eaed22be5d3a97e0ef4d4e6
d12d2268c2e86892041bc3c4f3a6724afc1ddafcb442d4007f32fd13ec3b9aa9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4529
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:54 GMT
Last-Modified: Sun, 02 Oct 2022 02:47:25 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 4a77f6158bb6ef630cb568ad6abfa8bd
39628bacdca3114f367678c37c3767cd6525df37
ac50ce0eceab878a31aa59fbdd8c67546abfdd98436164771a25cd57d81ee70a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5424
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:54 GMT
Last-Modified: Sun, 02 Oct 2022 02:32:30 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 313
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=14940&site_id=371828&zone_id=2031036&size_id=2&alt_size_ids=55%2C57&p_pos=atf&rp_schain=1.0,1!refinery89.com,00114,1,,,&rf=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&tk_flint=pbjs_lite_v6.29.1&x_source.tid=336dec6b-4ae3-4371-be59-f1b34abb5726&l_pb_bid_id=48c393a2eff5768&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.6938721781469792
213.19.162.51200 OK 306 B URL HTTP/1.1 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=14940&site_id=371828&zone_id=2031036&size_id=2&alt_size_ids=55%2C57&p_pos=atf&rp_schain=1.0,1!refinery89.com,00114,1,,,&rf=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&tk_flint=pbjs_lite_v6.29.1&x_source.tid=336dec6b-4ae3-4371-be59-f1b34abb5726&l_pb_bid_id=48c393a2eff5768&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.6938721781469792
IP 213.19.162.51:0
File type JSON data\012- , ASCII text, with very long lines (306), with no line terminators
Hash 13ba0bde50c153efc3485cd7e5c22ae4
96ac35f420b76f452c09c752b0a67c8b16ad70fa
4c5943a8b1582e2c49149bfb67413c9af0085b4f0e90f28e926ea929a2e4a0ba
GET /a/api/fastlane.json?account_id=14940&site_id=371828&zone_id=2031036&size_id=2&alt_size_ids=55%2C57&p_pos=atf&rp_schain=1.0,1!refinery89.com,00114,1,,,&rf=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&tk_flint=pbjs_lite_v6.29.1&x_source.tid=336dec6b-4ae3-4371-be59-f1b34abb5726&l_pb_bid_id=48c393a2eff5768&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.6938721781469792 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.4
Date: Sun, 02 Oct 2022 04:02:54 GMT
Content-Type: application/json
Content-Length: 306
Connection: keep-alive
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://hosting.miarroba.com
Pragma: no-cache
Vary: Accept-Encoding
Set-Cookie: khaos=L8QTI0K4-Q-LZU; Domain=.rubiconproject.com; Path=/; Expires=Mon, 02-Oct-2023 04:02:54 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoRPEtHKfi4FO9DtVM30fCgyiIDWrMI/OjfBQnXVhSraaKl2ffovGS89L12j9FTdL9o2B05UvZjL17KSDYsoucysqlSNZOaaDQ=; Domain=.rubiconproject.com; Path=/; Expires=Mon, 02-Oct-2023 04:02:54 GMT; Max-Age=31536000; SameSite=None; Secure
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 227396863c33e0ef3ccc9f932f1c91be
c97818d27a9abd976a43bbbf5ad0c65d45989175
7ff683124651272032cdab7f0229952906aaca1a0ef05f79447792117edf1cdb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 885
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:54 GMT
Last-Modified: Sun, 02 Oct 2022 03:48:09 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 314
bidder.criteo.com/cdb?profileId=207&av=34&wv=6.29.1&cb=77751190867
178.250.0.165204 No Content 15 kB URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=6.29.1&cb=77751190867
IP 178.250.0.165:0
Hash b5df16c6101dffc1cfbd96b03fb4ad8e
f8a00e5284cbf452048c00062b783d2719abc7a7
01e0a7e8459ee5358b4998c978bd68f3d2a0100eaffd44718f43d2bbca1da401
POST /cdb?profileId=207&av=34&wv=6.29.1&cb=77751190867 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 473
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 02 Oct 2022 04:02:54 GMT
vary: Origin
server: Finatra
timing-allow-origin: *
access-control-allow-origin: https://hosting.miarroba.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8af37548ed23452c0ba6fb365112c15
733ffacbc3a7353fb308beecec8022638b33cc48
d6601f5948ff45320695e4c428aadc5dfd1196f9f2e8b3e2e0f53b8bd3a0d73a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2244
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:54 GMT
Last-Modified: Sun, 02 Oct 2022 03:25:30 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
quantcast.mgr.consensu.org/tcfv2/cmp2.js?referer=miarroba.com
143.204.68.56200 OK 47 kB URL HTTP/2 quantcast.mgr.consensu.org/tcfv2/cmp2.js?referer=miarroba.com
IP 143.204.68.56:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 12b12c640a0b960efafe2e24acfac2ee
c07d52a6d99667f0b937deb34fc8b7940bc55239
e53519b7722728481140930e0ccba0d80c82e79bd6f1c863e7f422bd2c30c510
GET /tcfv2/cmp2.js?referer=miarroba.com HTTP/1.1
Host: quantcast.mgr.consensu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Wed, 14 Sep 2022 18:13:49 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-qc-ineu: True
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
date: Sun, 02 Oct 2022 04:02:25 GMT
cache-control: max-age=3600
etag: W/"6d50b90bdafc3d438c55bd915fd5301d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 801f161811c7af839461382eb62af1dc.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: bjJJJ5yPakjHHsHy85ElqjefIu_oPct1TLWLV2VVUhBfyBZL7hU85w==
age: 37
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
18.165.196.178200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 18.165.196.178:0
Hash dccadd756bf841fce05e869ffeedc42c
dbaa0de5c34d04cf2a527598939a93c81c8f9cb1
4bf07485809937cdfaac6025cb9d3abb7ad11c7575ccde1b7828e37ca6cf072c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 02 Oct 2022 04:02:54 GMT
Last-Modified: Sun, 02 Oct 2022 03:20:50 GMT
Server: ECS (nyb/1D04)
X-Cache: Miss from cloudfront
Via: 1.1 04bb33465149b34afca4988622dca584.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: Vmu_tqLEAsrWz2EIw1Ivavd9aE1KyLKK9Zizo4FVYBS1lwHOaswWAg==
Age: 2524
ocsp.sca1b.amazontrust.com/
18.165.196.178200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 18.165.196.178:0
Hash c9c50b3e372f8f6ac26a25d687762401
e051d8001cabd264a084df0ac9e0e86c8fa35f2f
6aa6fb6dd54f9ed4ab969d54bd4f5b45e6bf831ef47e7e90249c159af031888a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 02 Oct 2022 04:02:54 GMT
Last-Modified: Sun, 02 Oct 2022 03:54:11 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 19d5615c4d307c11803beb015d8f6562.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: bSErnwCXgHQowRF4Hy-CnrPQU_Rv6_LAz1LDxyvRw0MssEpZZ2UzbA==
Age: 523
ib.adnxs.com/ut/v3/prebid
37.252.172.249200 OK 145 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.172.249:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 79edaed2952c2b7e7215e570c3ae9896
222682b7813c5ab681a3ffd57e84f7771da7e11e
49908b0a99168bce8233b28974663e9ee4ce3117b15255cbc2fa5439fb48f98c
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 851
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 02 Oct 2022 04:02:54 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 145
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://hosting.miarroba.com
AN-X-Request-Uuid: 0d1b01a8-df55-4993-b5d7-30b919494f23
Set-Cookie: icu=ChgI5cV5EAoYASABKAEw7prkmQY4AUABSAEQ7prkmQYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 31-Dec-2022 04:02:54 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=6617406365664465028; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 31-Dec-2022 04:02:54 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 534.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5e72c151f92f97748c7ba304f9c0c580
c4d8652b8e531ec0f0535e901641983ed5934f2f
62e3774f286ae716a38aeae0168cb7298d37c6b97bc98cf139648be697d1ec16
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4953
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:54 GMT
Last-Modified: Sun, 02 Oct 2022 02:40:21 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ad.360yield.com/pb
52.29.42.196204 No Content 0 B IP 52.29.42.196:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 647
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 02 Oct 2022 04:02:54 GMT
access-control-allow-origin: https://hosting.miarroba.com
set-cookie: tuuid=0ef91356-76b0-4c25-8b9e-c2da61150484; Expires=Sat, 31 Dec 2022 04:02:54 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1664683374; Expires=Sat, 31 Dec 2022 04:02:54 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
X-Firefox-Spdy: h2
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.190.77204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.190.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 888
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://hosting.miarroba.com
cache-control: no-cache, no-store, must-revalidate
date: Sun, 02 Oct 2022 04:02:54 GMT
X-Firefox-Spdy: h2
tlx.3lift.com/header/auction?lib=prebid&v=6.29.1&referrer=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&tmax=1500
35.157.122.143200 OK 19 B URL HTTP/2 tlx.3lift.com/header/auction?lib=prebid&v=6.29.1&referrer=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&tmax=1500
IP 35.157.122.143:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a548f7b55db665b1df71a33a2bee47a7
4f88e5b6a18226d7207f1458b0b83e428dbf9898
0535c3bb3a17e4ac0fb7d29214d2181275662129dc2bdd2a89c35934e9fc5ba5
POST /header/auction?lib=prebid&v=6.29.1&referrer=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&tmax=1500 HTTP/1.1
Host: tlx.3lift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 285
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:54 GMT
content-type: application/json; charset=utf-8
content-length: 19
cache-control: no-cache, no-store, must-revalidate
expires: Thu, 15 Oct 1992 20:10:00 GMT
pragma: no-cache
x-xss-protection: 0
accept-ch: sec-ch-ua-platform,sec-ch-viewport-width,sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-dpr,sec-ch-device-memory,sec-ch-save-data,sec-ch-ua-mobile,sec-ch-downlink,user-agent,sec-ch-ect,sec-ch-width,sec-ch-prefers-color-scheme,sec-ch-ua-bitness,sec-ch-ua,sec-ch-ua-arch,sec-ch-rtt,sec-ch-viewport-height
access-control-allow-origin: https://hosting.miarroba.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
b1h.zemanta.com/api/bidder/prebid/bid/
64.202.112.191204 No Content 0 B URL HTTP/1.1 b1h.zemanta.com/api/bidder/prebid/bid/
IP 64.202.112.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/bidder/prebid/bid/ HTTP/1.1
Host: b1h.zemanta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 587
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://hosting.miarroba.com
ocsp.sca1b.amazontrust.com/
18.165.196.178200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 18.165.196.178:0
Hash 3516a09c1a000088287ac087973fcd54
fd0a831a173f1095424c7324e716a32d94665b46
8ad18ab566b923b451168e6de9300e152d0f6fa40322f6340179eafdc927c223
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 02 Oct 2022 04:02:55 GMT
Last-Modified: Sun, 02 Oct 2022 02:31:47 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 19d5615c4d307c11803beb015d8f6562.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: wqoAA-PRSubU7cuZGXavsm84e7Xv3QvdQ7g8GR5h0NBULLFD477n4g==
Age: 5468
ocsp.sca1b.amazontrust.com/
18.165.196.178200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 18.165.196.178:0
Hash 3516a09c1a000088287ac087973fcd54
fd0a831a173f1095424c7324e716a32d94665b46
8ad18ab566b923b451168e6de9300e152d0f6fa40322f6340179eafdc927c223
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=155668
Date: Sun, 02 Oct 2022 04:02:55 GMT
Etag: "6338b2dd-1d7"
Expires: Mon, 03 Oct 2022 23:17:23 GMT
Last-Modified: Sat, 01 Oct 2022 21:36:29 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 04bb33465149b34afca4988622dca584.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: nnCHOtHSsQdskFdBENYMPYM80BvKW5ezlqcA8hC12Json0NCgO81TA==
Age: 6054
secure.cdn.fastclick.net/js/pubcid/latest/pubcid.min.js
23.14.1.40200 OK 17 kB URL HTTP/2 secure.cdn.fastclick.net/js/pubcid/latest/pubcid.min.js
IP 23.14.1.40:0
File type Unicode text, UTF-8 text, with very long lines (31039), with LF, NEL line terminators
Hash 08cf2d083056b37ed3d81450fcae9e10
b00cfd2cfd7ae7b4c417ebdcf8e1ea60f6bde206
1b3dbda1abbc3d8852d3b65ca80fe0646d32e7ca0df4f32dfa3cb630ca2fb18d
GET /js/pubcid/latest/pubcid.min.js HTTP/1.1
Host: secure.cdn.fastclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Thu, 08 Sep 2022 20:10:31 GMT
etag: "d71e-5e830058020dd-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 17404
content-type: application/javascript
cache-control: max-age=900
expires: Sun, 02 Oct 2022 04:17:55 GMT
date: Sun, 02 Oct 2022 04:02:55 GMT
X-Firefox-Spdy: h2
cdn.hadronid.net/hadron.js?url=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&ref=&_it=amazon&partner_id=436
172.67.73.228200 OK 14 kB URL HTTP/2 cdn.hadronid.net/hadron.js?url=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&ref=&_it=amazon&partner_id=436
IP 172.67.73.228:0
File type ASCII text, with very long lines (50917)
Hash 67b73dce2b61862b302aa1a2228125ff
4b5cc59b05f3f0ce3dfb00a6c34fe0b1a001bc43
a40fbcd0e78185b47dd25beeec7e891c7819905bd764e0c6b35b13f90c16e6f1
GET /hadron.js?url=https%3A%2F%2Fhosting.miarroba.com%2Fnuevo.php&ref=&_it=amazon&partner_id=436 HTTP/1.1
Host: cdn.hadronid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:54 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=67673
etag: W/"c1e02d20b59c5e6be99052938e83c4db"
last-modified: Wed, 14 Sep 2022 11:28:37 GMT
x-amz-id-2: 8Sa/i/3omyET693ZaPcJerg9AtRH04cTBypFr3NXjBtiF+Eu0qzNRHpBKJ+1l76nMHrWJp8Z8CA=
x-amz-request-id: J55K5FCSV4BEXT54
cache-control: max-age=3600
cf-cache-status: HIT
age: 1095
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OAs6cLBdVVyu2FxcmZ5fDZpBKWyI23zfqVN5dDSFMM6eEhBz82vtrCw4w3GZlhsifFXoucqi5JIc6JqLNRM64tFsgqj19q1qh7E9ook1Kwnc0ACmyKaDZkzMldrWZPW4q8M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753a8b93fd4eb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4f94a2722366412417efbb65aa368b8
f2942fbd2a6f0326f99c3a271de2dab12c881b15
97805013c570f1c9ad0158d99dfc6f521628bfb4b72a2a5d79526ec7b04df2f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-597118-1&cid=608419963.1664678052&jid=791957308&_u=QAGAAAAACAAAAC~&z=2038914660
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-597118-1&cid=608419963.1664678052&jid=791957308&_u=QAGAAAAACAAAAC~&z=2038914660
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-597118-1&cid=608419963.1664678052&jid=791957308&_u=QAGAAAAACAAAAC~&z=2038914660 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 02 Oct 2022 04:02:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bcp.crwdcntrl.net/6/map
52.18.161.218200 OK 20 B IP 52.18.161.218:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f8089d3c3cfdce3daf1e6aca3ead0fca
4dd3088b06555895c671a8b1146152c4ec0dc275
ab612e26357285522cbacea29b729bfdff3b7342c75ee9438ab83a27ce4b297e
POST /6/map HTTP/1.1
Host: bcp.crwdcntrl.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 82
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:55 GMT
content-type: application/json;charset=utf-8
content-length: 20
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.27.234
access-control-allow-credentials: true
access-control-allow-origin: https://hosting.miarroba.com
x-consent: absent
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
18.165.196.178200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 18.165.196.178:0
Hash bbbb6d7db06c8537016adc6be254ed8d
4bd00d07cf98f956239d54d7888cb21a16c2c605
de24c6f68e41389f4db68fe35735476cccb136874c226d6a9c13702de15cfab3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 02 Oct 2022 04:02:55 GMT
Last-Modified: Sun, 02 Oct 2022 03:26:31 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 19d5615c4d307c11803beb015d8f6562.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: H_cjZ2o_sGuSyjhTcRFEc6Y9E5zbJENp8YuJYLJ2gW7WK8mYpAlTVA==
Age: 2184
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash dedf6d3b73c7b6d8380a13e3a1ff352e
57d8cc495a16c5af49677a9f71cb215438df25ea
54dff945470a7fc0ea77edafc5da746a76409cd29aa68ec6c5b937374852ae80
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2397
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:56 GMT
Last-Modified: Sun, 02 Oct 2022 03:22:59 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0bb5e73ec1ef9c929d4b0a843dc4a34b
b29e4bb06a08fa3e5f0c8e9697cbad16470aebb0
2dd1e47af96da867bcc38ce2d900846394f92e0f21ee7aa7621bd8b09564fe99
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2557
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 04:02:56 GMT
Last-Modified: Sun, 02 Oct 2022 03:20:19 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
hosting.miarroba.com/nuevo.php
172.67.68.168200 OK 0 B URL HTTP/2 hosting.miarroba.com/nuevo.php
IP 172.67.68.168:0
GET /nuevo.php HTTP/1.1
Host: hosting.miarroba.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _eu_cookiepolicy=1664678054; __muid=2f199df6467540abd14c4fec97095d850ee814ca; _ga_NWRMSJNGN4=GS1.1.1664678051.1.0.1664678053.0.0.0; _ga=GA1.1.608419963.1664678052; _ga=GA1.3.608419963.1664678052; _gid=GA1.3.2125255828.1664678052; qcSxc=1664678052005; _au_1d=AU1D-0100-001664678054-X8PF2PO3-ZKK4; _au_last_seen_apn=1664678053694; _au_last_seen_ttd=1664678053694; _au_last_seen_pub=1664678053694; _au_last_seen_adx=1664678053694; _au_last_seen_goo=1664678053694; _au_last_seen_ppnt=1664678053694; _au_last_seen_smart=1664678053694; _au_last_seen_unruly=1664678053694; _au_last_seen_bees=1664678053694; _au_last_seen_impr=1664678053694
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:53 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
set-cookie: sessionid=sPKJmogk8bf5G2aHjLY1y3; path=/; domain=.miarroba.com; HttpOnly
__muid=d554737c58f0a5665072cb07ab148b48730a2064; expires=Tue, 01-Oct-2024 04:02:53 GMT; Max-Age=63072000; path=/; domain=.miarroba.com; httponly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g60bbatJeu4hyiKPC%2FBgR0Tixnkp%2BVJFPkJjZaiWwjriBol3IVNqUPO%2B90MFogrncVwZqdFhTAgHkRhCutRTlFAr4C6UrFodV4eBlmDv8L806Z1loZz2jCLA2IUckE07BfOTNyvk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 753a8b8a1c270b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tags.refinery89.com/v2/miarrobacom.js?d9ac55ca8ff0d9078ec42970a61bb3b4
18.164.68.67200 OK 0 B URL HTTP/2 tags.refinery89.com/v2/miarrobacom.js?d9ac55ca8ff0d9078ec42970a61bb3b4
IP 18.164.68.67:0
GET /v2/miarrobacom.js?d9ac55ca8ff0d9078ec42970a61bb3b4 HTTP/1.1
Host: tags.refinery89.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
cache-control: max-age=21600, public
server: Microsoft-IIS/10.0
x-powered-by: PHP/7.3.7
date: Sat, 01 Oct 2022 22:59:26 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f6512440d57ffd5ad26662c2a1156906.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P4
x-amz-cf-id: 0fuWiuK3ofjuQS6CyI4YTAstZumDchw_kpLfeQCf2JO2w84VoSP9UQ==
age: 18207
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/webfonts/fa-solid-900.woff2
104.17.24.14200 OK 0 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/webfonts/fa-solid-900.woff2
IP 104.17.24.14:0
GET /ajax/libs/font-awesome/5.15.4/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:53 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 78268
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "613fa20b-131bc"
last-modified: Mon, 13 Sep 2021 19:10:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 5729678
expires: Fri, 22 Sep 2023 04:02:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s%2F0K%2FAZshPhLNBilmQDWBf36D6cJPVEq33YXF%2B5i77KCwsTfG4AtiO6eOJXrSJmAkFtx2N%2BhXZeva%2F%2FSfi4H9TpeUGnxdykEzkAJo7oSuFkKfzdytRsh1%2BsZoaVyrffzGa18oCX%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 753a8b8e1b590af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.244200 OK 0 B URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.244:0
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:54 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "+b0B6ncQDCugPb96DWf2QA=="
expires: Sun, 09 Oct 2022 04:02:54 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
tags.refinery89.com/prebid/creative.js
18.164.68.67200 OK 0 B URL HTTP/2 tags.refinery89.com/prebid/creative.js
IP 18.164.68.67:0
GET /prebid/creative.js HTTP/1.1
Host: tags.refinery89.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
cache-control: max-age=31536000
last-modified: Mon, 15 Mar 2021 11:40:02 GMT
etag: W/"aed0fbef8f19d71:0"
server: Microsoft-IIS/10.0
date: Thu, 02 Jun 2022 05:44:28 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f6512440d57ffd5ad26662c2a1156906.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P4
x-amz-cf-id: 3XFlUTudkfCKciep46-po6N8bM2iceRg4Wt7nrz1IHIZPfXpD-RruA==
age: 10534705
X-Firefox-Spdy: h2
c.amazon-adsystem.com/aax2/apstag.js
18.165.199.23200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 18.165.199.23:0
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sun, 02 Oct 2022 03:27:34 GMT
last-modified: Fri, 30 Sep 2022 18:36:21 GMT
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 3311a5c1855379b1fe76a4d8ea996928.cloudfront.net (CloudFront), 1.1 3ffc494014d1d1ba7644f6707a2cf696.cloudfront.net (CloudFront)
etag: W/"0b4d277527066dd35dd7c0288cb596b4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: LHR62-C4, LHR50-P3
x-amz-cf-id: RIo6MCzokXDo9aZB6jkNC9DvEHS-biBEMun_pfJKgh02IqGqeS61lA==
age: 2120
X-Firefox-Spdy: h2
mp.4dex.io/prebid
104.18.2.114200 OK 0 B IP 104.18.2.114:0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1673
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:54 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://hosting.miarroba.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: uids=; Path=/; Domain=4dex.io; Expires=Thu, 01 Jan 1970 00:00:00 GMT; Secure; SameSite=None
vary: Origin, Accept-Encoding
x-err: Shapings: no adunits with size and seat and mapping
x-warn: Process Floors. 3 inventory rules not found for mediatype: banner and adUnitCode: r89-desktop-billboard-atf-1-0
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 753a8b936b7f0b45-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
tags.crwdcntrl.net/lt/c/16576/sync.min.js
18.165.201.38200 OK 0 B URL HTTP/2 tags.crwdcntrl.net/lt/c/16576/sync.min.js
IP 18.165.201.38:0
GET /lt/c/16576/sync.min.js HTTP/1.1
Host: tags.crwdcntrl.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Tue, 19 Jul 2022 18:12:22 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Sat, 01 Oct 2022 15:05:26 GMT
cache-control: max-age: 86400
etag: W/"979a52ecf913f8004d0123a9b7ba2a05"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 955b5f6b59fedae13d00dcc66f7085f2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P3
x-amz-cf-id: 4YqqCrKHEwWd9FWV8nHEgbxSQKI6Ck5SysP0t5ROnQhljhFpBZu-jQ==
age: 46650
X-Firefox-Spdy: h2
tags.refinery89.com/prebid/prebid6.29.1-v2.js
18.164.68.67200 OK 0 B URL HTTP/2 tags.refinery89.com/prebid/prebid6.29.1-v2.js
IP 18.164.68.67:0
GET /prebid/prebid6.29.1-v2.js HTTP/1.1
Host: tags.refinery89.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
cache-control: max-age=31536000
last-modified: Wed, 20 Jul 2022 10:10:45 GMT
etag: W/"495040fa209cd81:0"
server: Microsoft-IIS/10.0
date: Mon, 29 Aug 2022 02:00:14 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f6512440d57ffd5ad26662c2a1156906.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P4
x-amz-cf-id: cNffujZuF1LRpw1dAp5RI_XURJO4hcnwSjPjOVceBAMbVD5LKXciVA==
age: 2944959
X-Firefox-Spdy: h2
cdn.id5-sync.com/api/1.0/id5-api.js
104.22.52.86200 OK 0 B URL HTTP/2 cdn.id5-sync.com/api/1.0/id5-api.js
IP 104.22.52.86:0
GET /api/1.0/id5-api.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:55 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: xquZ6QoBGtIgECOlulfi9qoPm7v0WWNvgdo/gHYkJool7qqKRJv1p7VLfgECP96SCtmXrsRKKZg=
x-amz-request-id: NB2A206MY26ZNA92
last-modified: Thu, 22 Sep 2022 13:13:44 GMT
etag: W/"68154020ef14b5881614607902c7c21b"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 2043
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 753a8b973b3bb50f-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
script.4dex.io/localstore.js
172.67.75.241200 OK 0 B URL HTTP/2 script.4dex.io/localstore.js
IP 172.67.75.241:0
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:54 GMT
content-type: application/javascript
x-amz-id-2: txac4c56ce13c94b3e8f3f6-0063316a9c
last-modified: Mon, 26 Sep 2022 09:01:16 GMT
etag: W/"922cffdd75f7192f75231d92684885aa"
cache-control: public, max-age=1800
x-amz-version-id: 1664182876788516
x-amz-request-id: txac4c56ce13c94b3e8f3f6-0063316a9c
cf-cache-status: HIT
age: 500433
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z6jUtnslTBbY8pmj2EMPcQs5gp6DWIj%2FnFPcCLyszVwQv2mPhS3nE5If6Ze9LboxnAJrpL6fdwWKsr5byZAJPz1wZHkNmwZ942T0rCB%2Fsxt81znDJuitZZjBdI%2BkgXYz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753a8b934e59b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
script.4dex.io/adagio.js
172.67.75.241200 OK 0 B IP 172.67.75.241:0
GET /adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hosting.miarroba.com/
Origin: https://hosting.miarroba.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:54 GMT
content-type: application/javascript
access-control-allow-headers: Authorization
access-control-max-age: 3000
x-amz-id-2: tx4c3850ecff2d4db4a0088-006332d8b2
access-control-allow-credentials: true
x-amz-request-id: tx4c3850ecff2d4db4a0088-006332d8b2
last-modified: Mon, 26 Sep 2022 09:01:16 GMT
etag: W/"def38d7482d5ca96063df889ba7bcc30"
cache-control: public, max-age=1800
x-amz-version-id: 1664182876082916
access-control-allow-methods: GET
access-control-allow-origin: *
cf-cache-status: HIT
age: 211320
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D4NOmoULYLXCOTYSEikO0hzwp5JSFl5BFk0nigyJ1bdCGf81OmhBAhnLok26acM7Trg0vcXfhebCAqIQfIQhv8FTTT%2FDbBDKOIP93dibW5W2hD2E94aS35GYL3rxSqWL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753a8b937d2d0b55-OSL
content-encoding: br
X-Firefox-Spdy: h2
cmp.quantcast.com/GVL-v2/purposes-ES.json
143.204.68.55200 OK 0 B URL HTTP/2 cmp.quantcast.com/GVL-v2/purposes-ES.json
IP 143.204.68.55:0
GET /GVL-v2/purposes-ES.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Sun, 02 Oct 2022 03:00:36 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Sun, 02 Oct 2022 03:00:33 GMT
etag: W/"5f91ffc8d944d19e5796f880946e351b"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 c29e813f981bfce75709b36f6e4555a2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: lO3LTnFcR-tfQKm3R4KEr8J--1bkENSKcasp62HPTFHqWf55tyAZ7A==
age: 3739
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.prebid.123.js
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/publishertag.prebid.123.js
IP 178.250.2.130:0
GET /js/ld/publishertag.prebid.123.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 04:02:56 GMT
content-type: text/javascript
last-modified: Tue, 03 May 2022 11:21:03 GMT
etag: W/"6271101f-15b58"
expires: Mon, 03 Oct 2022 04:02:56 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-WCBMB6
142.250.74.72200 OK 0 B URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WCBMB6
IP 142.250.74.72:0
GET /gtm.js?id=GTM-WCBMB6 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 02 Oct 2022 04:02:53 GMT
expires: Sun, 02 Oct 2022 04:02:53 GMT
cache-control: private, max-age=900
last-modified: Sun, 02 Oct 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44553
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
id.hadron.ad.gt/v1/hadron.json?partner_id=436&sync=0&domain=hosting.miarroba.com
52.40.56.16200 OK 0 B URL HTTP/2 id.hadron.ad.gt/v1/hadron.json?partner_id=436&sync=0&domain=hosting.miarroba.com
IP 52.40.56.16:0
OPTIONS /v1/hadron.json?partner_id=436&sync=0&domain=hosting.miarroba.com HTTP/1.1
Host: id.hadron.ad.gt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: access-control-allow-origin
Referer: https://hosting.miarroba.com/
Origin: https://hosting.miarroba.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:55 GMT
content-type: application/json
server: nginx/1.20.0
access-control-allow-origin: https://hosting.miarroba.com
access-control-allow-credentials: true
access-control-allow-headers: access-control-allow-origin
access-control-allow-methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, PUT
vary: Origin
content-encoding: gzip
X-Firefox-Spdy: h2
id.hadron.ad.gt/v1/hadron.json?partner_id=436&sync=0&domain=hosting.miarroba.com
52.40.56.16200 OK 0 B URL HTTP/2 id.hadron.ad.gt/v1/hadron.json?partner_id=436&sync=0&domain=hosting.miarroba.com
IP 52.40.56.16:0
GET /v1/hadron.json?partner_id=436&sync=0&domain=hosting.miarroba.com HTTP/1.1
Host: id.hadron.ad.gt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Allow-Origin: *
Origin: https://hosting.miarroba.com
Connection: keep-alive
Referer: https://hosting.miarroba.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 04:02:55 GMT
content-type: application/json
server: nginx/1.20.0
access-control-allow-origin: https://hosting.miarroba.com
access-control-allow-credentials: true
vary: Origin
content-encoding: gzip
X-Firefox-Spdy: h2