sfizintavola.blogspot.it/
142.250.74.65302 Moved Temporarily 181 B URL HTTP/1.1 sfizintavola.blogspot.it/
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6e1225a6890cdd85f7b2402cad0846c2
d65fd7bf3e7731fc93b06679c82cb3c810ca0192
1b3e785947782d35859e9bb692ec61b7675829475a85ff6cade90abfd18ed53b
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: sfizintavola.blogspot.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://sfizintavola.blogspot.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Mon, 23 Jan 2023 05:35:40 GMT
Expires: Mon, 23 Jan 2023 05:35:40 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 181
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f416977a8d6dfaafb2dbfd0e68b871f8
dfa97bd829b03162de91c80133f2fde69b58a8d2
2c4d0fd1b7a6d398026a4817267adce203429acdd3defa44a879f0d945f392d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C4D0FD1B7A6D398026A4817267ADCE203429ACDD3DEFA44A879F0D945F392D5"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4551
Expires: Mon, 23 Jan 2023 06:51:32 GMT
Date: Mon, 23 Jan 2023 05:35:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7696
Expires: Mon, 23 Jan 2023 07:43:57 GMT
Date: Mon, 23 Jan 2023 05:35:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 17094b856fde02b2c8c2d3845ad325cf
26dc3f2ebf81faf5ab96eb75ffcbead6085528b8
6547376c41dcaa352cc4e747291916902bcddc0032b750bd84c5e3b2fe6f7d16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6547376C41DCAA352CC4E747291916902BCDDC0032B750BD84C5E3B2FE6F7D16"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8150
Expires: Mon, 23 Jan 2023 07:51:31 GMT
Date: Mon, 23 Jan 2023 05:35:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 23 Jan 2023 05:34:58 GMT
content-type: application/json
age: 43
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: UDbJTJTyhKxYrMBlwabRh4U1XPAc0TwCEHAOqKU7Lhmex3vlTRIjTU4yExH5ZUFTMjHckdGC0qE=
x-amz-request-id: S2Q618G22A9CR92F
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 23 Jan 2023 04:47:35 GMT
age: 2886
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 05:35:41 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
sfizintavola.blogspot.com/
142.250.74.65200 OK 23 kB URL HTTP/1.1 sfizintavola.blogspot.com/
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1289)
Hash fcd4c207f47bda4c7075165a790a55f3
2def9e630961596ebecfa08fc2c4f4e5193050c5
04315ccb0a81feff2e77303aaf56f9549dd9f5fb31fe01513e1d13ef152b3aeb
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: sfizintavola.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Mon, 23 Jan 2023 05:35:41 GMT
Date: Mon, 23 Jan 2023 05:35:41 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 28 Nov 2022 08:26:05 GMT
ETag: W/"09bc68a01a5f1c759a380cfb60693e0e4700eec58f11fd9236b47b10d57186e0"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 23165
Server: GSE
pagead2.googlesyndication.com/pagead/show_ads.js
216.58.207.226200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 216.58.207.226:0
File type ASCII text, with very long lines (3594)
Hash b8dc7e94287f9d34ed1068f239056496
b6b4119fd346a011b1ac9cf322ba5e38831861a6
28a9925b2d2bee1a71a121a160ad941dd3a4e239d17ec80e6c56afae63975e4c
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Mon, 23 Jan 2023 05:35:41 GMT
Expires: Mon, 23 Jan 2023 05:35:41 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 7520177812757361816
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36398
X-XSS-Protection: 0
sfizintavola.blogspot.com/js/cookienotice.js
142.250.74.65200 OK 2.0 kB URL HTTP/1.1 sfizintavola.blogspot.com/js/cookienotice.js
IP 142.250.74.65:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Phishing
GET /js/cookienotice.js HTTP/1.1
Host: sfizintavola.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Mon, 23 Jan 2023 05:35:41 GMT
Expires: Mon, 30 Jan 2023 05:35:41 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sun, 22 Jan 2023 23:51:15 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2182bcd522c31d3b880961c8c82e5789
e5caa39d2aa22d6d5f9f4cecc26ec61d244a4be9
25d37caaa7bb1a0e464d7bbf1495839e70f06c1cb4ad0ad5abe42e8ab0e1676e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78340979b1b3f5dbe63bfc88075b94e3
ffbe099dbcb99393a304805a3a80bedf3728d1e8
3b6e3c30064cd15c9abacd73b373f165702545351a93f1707f70e732904ad39a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78340979b1b3f5dbe63bfc88075b94e3
ffbe099dbcb99393a304805a3a80bedf3728d1e8
3b6e3c30064cd15c9abacd73b373f165702545351a93f1707f70e732904ad39a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 05:21:57 GMT
expires: Fri, 19 Jan 2024 05:21:57 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 18 Jan 2023 17:54:00 GMT
content-type: text/css
age: 346424
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78340979b1b3f5dbe63bfc88075b94e3
ffbe099dbcb99393a304805a3a80bedf3728d1e8
3b6e3c30064cd15c9abacd73b373f165702545351a93f1707f70e732904ad39a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
resources.blogblog.com/img/icon18_edit_allbkg.gif
216.58.207.233200 OK 162 B URL HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 05:34:34 GMT
expires: Sun, 29 Jan 2023 05:34:34 GMT
cache-control: public, max-age=604800
last-modified: Sat, 21 Jan 2023 18:50:15 GMT
content-type: image/gif
age: 86467
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
142.250.74.78200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1429)
Hash 1cc36f699291ba29dab9ec0f885b281b
d536f8bda7d333c21eae8e3d816d690402adb90c
6b20ce0ec6b6c57b33e8118f8d5d3c501ede61b8589ebab71d411b81d0fae994
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20933
date: Mon, 23 Jan 2023 05:35:41 GMT
expires: Mon, 23 Jan 2023 05:35:41 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "4fcbc207c89b8c6c"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/img/icon18_email.gif
216.58.207.233200 OK 164 B URL HTTP/1.1 www.blogger.com/img/icon18_email.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 13\012- data
Hash 36b9f993db1b953f3b9b08040aaf9af4
18248661b307586dc291fd2dff4bb59cf7579475
1258cbe1e2900ec3df11a83a6bb6008d7a833f783a6df80b0d5d45a052ac1466
GET /img/icon18_email.gif HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 164
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 21 Jan 2023 08:24:44 GMT
Expires: Sat, 28 Jan 2023 08:24:44 GMT
Cache-Control: public, max-age=604800
Last-Modified: Fri, 20 Jan 2023 16:52:11 GMT
Content-Type: image/gif
Age: 162657
2.bp.blogspot.com/-ZOFgG3ew3AE/T7-wVVZLFGI/AAAAAAAABao/7rCtZTn-pu8/s400/DSC04527.JPG
142.250.74.129200 OK 38 kB URL HTTP/1.1 2.bp.blogspot.com/-ZOFgG3ew3AE/T7-wVVZLFGI/AAAAAAAABao/7rCtZTn-pu8/s400/DSC04527.JPG
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x268, components 3\012- data
Hash 6eb04a01206eb057ca92db75cf3f7297
8974c001da9d22bfcd419ab501ae0e72192d6f83
5ecdf92ed91a3d8863da5d209fa90889ee5655c0c658794ca10f251ac0ab8534
GET /-ZOFgG3ew3AE/T7-wVVZLFGI/AAAAAAAABao/7rCtZTn-pu8/s400/DSC04527.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5aa"
Expires: Tue, 24 Jan 2023 05:35:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DSC04527.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 23 Jan 2023 05:35:41 GMT
Server: fife
Content-Length: 37994
X-XSS-Protection: 0
www.blogger.com/static/v1/widgets/3739334936-widgets.js
216.58.207.233200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/3739334936-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 12382c83a2d2459f4c1df7d9b46cc0ea
4f2832731c8cbfbc06307eab38734793ce9e3f43
80176bc1757a1143ca7d42a1af97e774e05b0b5ce7904f0f93d8c8ef91e68d4b
GET /static/v1/widgets/3739334936-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56461
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 02:07:40 GMT
expires: Fri, 19 Jan 2024 02:07:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 18 Jan 2023 23:53:23 GMT
content-type: text/javascript
age: 358081
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/_sHiRQU_lbOM/SO_Gk6eR02I/AAAAAAAAA-A/XiR01Ylx5FI/S240/banner+cucina.gif
142.250.74.129200 OK 14 kB URL HTTP/1.1 2.bp.blogspot.com/_sHiRQU_lbOM/SO_Gk6eR02I/AAAAAAAAA-A/XiR01Ylx5FI/S240/banner+cucina.gif
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 200x150, components 3\012- data
Hash 42d02d40104239c4edf08b73fe08adf9
ef73d45e54d0c55cd94d524a2649aa05308cf7f8
f8eb06a0cda4cd4fc9a6c1002f357e6744013fc3968c29a04e678a186edde55e
GET /_sHiRQU_lbOM/SO_Gk6eR02I/AAAAAAAAA-A/XiR01Ylx5FI/S240/banner+cucina.gif HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3e0"
Expires: Tue, 24 Jan 2023 05:35:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="banner cucina.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 23 Jan 2023 05:35:41 GMT
Server: fife
Content-Length: 14364
X-XSS-Protection: 0
resources.blogblog.com/blogblog/data/thisaway_green/bg_body.gif
216.58.207.233200 OK 2.2 kB URL HTTP/2 resources.blogblog.com/blogblog/data/thisaway_green/bg_body.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 5 x 600\012- data
Hash b5ce65f1430244544800c456ef68d4aa
a4313a3568428be1fb9346c0fcabad7b9f6cbb0c
9a081070707034166751b59e4defe35fc2415c18ba44a665ee125fa54587a342
GET /blogblog/data/thisaway_green/bg_body.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2237
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 01:32:01 GMT
expires: Thu, 26 Jan 2023 01:32:01 GMT
cache-control: public, max-age=604800
last-modified: Wed, 18 Jan 2023 21:54:30 GMT
content-type: image/gif
age: 360220
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/-tHsddQ1J3BA/UQQFwPoEXbI/AAAAAAAABbw/FNjCDswQdZI/s400/dav.jpg
142.250.74.129200 OK 36 kB URL HTTP/1.1 2.bp.blogspot.com/-tHsddQ1J3BA/UQQFwPoEXbI/AAAAAAAABbw/FNjCDswQdZI/s400/dav.jpg
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 400x268, components 3\012- data
Hash a732d5e9af6e6a7732c5880ff9f6e3f8
080981ed93a1867f0884767c915ca69c0f5913a4
97cf777aac7f8603e662ea860e20300d57935522e5888381715f78c2732ec851
GET /-tHsddQ1J3BA/UQQFwPoEXbI/AAAAAAAABbw/FNjCDswQdZI/s400/dav.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5bc"
Expires: Tue, 24 Jan 2023 05:35:41 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="dav.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 23 Jan 2023 05:35:41 GMT
Server: fife
Content-Length: 36304
X-XSS-Protection: 0
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
216.58.207.226200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 216.58.207.226:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Sun, 22 Jan 2023 09:29:06 GMT
Expires: Sun, 05 Feb 2023 09:29:06 GMT
Cache-Control: public, max-age=1209600
Age: 72395
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs
142.250.74.78200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs
IP 142.250.74.78:0
File type ASCII text, with very long lines (580)
Hash 3e7852e3ac3d1921ddb7302c569bdb8f
85e8bdb23ef407fb3770ec0a9588d85c725930d3
20cd515349665d62191e0c15ea1b9f3b5c4e35d36313d1e7fdc8af83b9663a78
GET /_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57931
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 14:05:22 GMT
expires: Mon, 22 Jan 2024 14:05:22 GMT
cache-control: public, max-age=31536000
age: 55819
last-modified: Tue, 06 Dec 2022 15:21:53 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/blogblog/data/thisaway_green/bg_header_bottom.gif
216.58.207.233200 OK 2.9 kB URL HTTP/2 resources.blogblog.com/blogblog/data/thisaway_green/bg_header_bottom.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 760 x 15\012- data
Hash e8c191ae0a89046307ef8b1e0ab3f229
e8d808fbea773aee1c8fe6a3fa90f85bcc6c2c52
6969fac4eb37b443be1ec4bf074765f9b6fb40befaa24544d25db1d1060a0d24
GET /blogblog/data/thisaway_green/bg_header_bottom.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2937
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 01:32:01 GMT
expires: Thu, 26 Jan 2023 01:32:01 GMT
cache-control: public, max-age=604800
last-modified: Wed, 18 Jan 2023 21:54:30 GMT
content-type: image/gif
age: 360220
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78340979b1b3f5dbe63bfc88075b94e3
ffbe099dbcb99393a304805a3a80bedf3728d1e8
3b6e3c30064cd15c9abacd73b373f165702545351a93f1707f70e732904ad39a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
resources.blogblog.com/blogblog/data/thisaway_green/bg_header.gif
216.58.207.233200 OK 743 B URL HTTP/2 resources.blogblog.com/blogblog/data/thisaway_green/bg_header.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 5 x 88\012- data
Hash 7aacb393006ac778e72e903bd503d916
1383294157eaef0964de328c629297ad70edfc9a
803785567171c2d86e1eac7fa30b59fdd70025824e3489499545621b93ede3a4
GET /blogblog/data/thisaway_green/bg_header.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 743
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 01:32:01 GMT
expires: Thu, 26 Jan 2023 01:32:01 GMT
cache-control: public, max-age=604800
last-modified: Wed, 18 Jan 2023 21:54:30 GMT
content-type: image/gif
age: 360220
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/blogblog/data/thisaway_green/bg_main_wrapper.gif
216.58.207.233200 OK 163 B URL HTTP/2 resources.blogblog.com/blogblog/data/thisaway_green/bg_main_wrapper.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 760 x 5\012- data
Hash aa937bc08d9af4275f83d7739f7d6937
f98abe3c48e41bce567faede866ed3859f796bde
427281f141825e8cfbe779e786257071dc0304ac76180341054bba1281175c5d
GET /blogblog/data/thisaway_green/bg_main_wrapper.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 163
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 12:45:28 GMT
expires: Thu, 26 Jan 2023 12:45:28 GMT
cache-control: public, max-age=604800
last-modified: Wed, 18 Jan 2023 23:53:23 GMT
content-type: image/gif
age: 319813
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/blogblog/data/thisaway_green/bg_content.gif
216.58.207.233200 OK 1.5 kB URL HTTP/2 resources.blogblog.com/blogblog/data/thisaway_green/bg_content.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 5 x 464\012- data
Hash 0e74f432fe16e952c1c52ad7bd3bf633
1a0971d017e754de8bcd0fac4138a32b396c574c
ed1c79fdcb5d77f898c6f63faacae5f873ab360d1faaddf1afb9692a20213b41
GET /blogblog/data/thisaway_green/bg_content.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1509
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 01:44:10 GMT
expires: Sun, 29 Jan 2023 01:44:10 GMT
cache-control: public, max-age=604800
last-modified: Sat, 21 Jan 2023 23:52:01 GMT
content-type: image/gif
age: 100291
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/blogblog/data/thisaway_green/icon_date.gif
216.58.207.233200 OK 53 B URL HTTP/2 resources.blogblog.com/blogblog/data/thisaway_green/icon_date.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 10 x 10\012- data
Hash edbc730b6175e28c46a831eed5df3d98
19a8fb60a03883a1193ee367d0594ef2f6602291
293d0983f7494e9f744361c338e583715a44707cc2e3fe36b7320669b9f5b6dd
GET /blogblog/data/thisaway_green/icon_date.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 53
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 20 Jan 2023 12:40:54 GMT
expires: Fri, 27 Jan 2023 12:40:54 GMT
cache-control: public, max-age=604800
last-modified: Thu, 19 Jan 2023 14:51:21 GMT
content-type: image/gif
age: 233687
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/blogblog/data/thisaway_green/icon_comment.gif
216.58.207.233200 OK 58 B URL HTTP/2 resources.blogblog.com/blogblog/data/thisaway_green/icon_comment.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 10 x 9\012- data
Hash 6d860ca08bdaf2718fc394a7ce09cfcd
153fd73b4bd4af3852b3b90877d2edba66fc8ed2
b30a4895a549aed33960b3c616e19a1b0d58ea9496bd32f093f8ac97b8be70e3
GET /blogblog/data/thisaway_green/icon_comment.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 58
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 01:32:04 GMT
expires: Thu, 26 Jan 2023 01:32:04 GMT
cache-control: public, max-age=604800
last-modified: Wed, 18 Jan 2023 23:53:23 GMT
content-type: image/gif
age: 360217
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/blogblog/data/thisaway_green/bg_date.gif
216.58.207.233200 OK 267 B URL HTTP/2 resources.blogblog.com/blogblog/data/thisaway_green/bg_date.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 47 x 10\012- data
Hash 9a897fcf535d3c05cdb47d1d2e7af74b
7969917f74da0643f997d9c68ad0625c9cc90e5c
cd6fb1201ac9dbd9980527aa44ed063f34cd6d6cf8bb545c319dc63e0b48e3a2
GET /blogblog/data/thisaway_green/bg_date.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 267
date: Mon, 23 Jan 2023 05:35:41 GMT
expires: Mon, 30 Jan 2023 05:35:41 GMT
cache-control: public, max-age=604800
last-modified: Mon, 23 Jan 2023 03:50:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh5.google.com/tenebrae2005/R-5JR2lz0yI/AAAAAAAAAq4/1V2cTWduvjg/creare-blog1.gif
142.250.74.78301 Moved Permanently 296 B URL HTTP/1.1 lh5.google.com/tenebrae2005/R-5JR2lz0yI/AAAAAAAAAq4/1V2cTWduvjg/creare-blog1.gif
IP 142.250.74.78:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash e4941a7193f9b8af77ca3f0c28ee0873
1590166fb1347d8624dc64c88d690a38e91b9051
042c0624dc16de6081673cf7672191c1fa9230bbc2a486a9af544ef236a7e7d5
GET /tenebrae2005/R-5JR2lz0yI/AAAAAAAAAq4/1V2cTWduvjg/creare-blog1.gif HTTP/1.1
Host: lh5.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://lh3.googleusercontent.com/tenebrae2005/R-5JR2lz0yI/AAAAAAAAAq4/1V2cTWduvjg/creare-blog1.gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: text/html; charset=UTF-8
Date: Mon, 23 Jan 2023 05:35:41 GMT
Expires: Wed, 22 Feb 2023 05:35:41 GMT
Cache-Control: public, max-age=2592000
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 296
X-XSS-Protection: 0
www.linkwithin.com/pixel.png
3.19.188.212200 OK 83 B URL HTTP/1.1 www.linkwithin.com/pixel.png
IP 3.19.188.212:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash ca1dba98f5e46c0e7a1549b3d8af9b93
37284bda145ed93cee64997e3d6688cae7d98468
88021da4a13d993a2c94e4d8ddc9bd98b34985d806371e71e0531b37b8a0e081
GET /pixel.png HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 23 Jan 2023 05:35:41 GMT
Content-Type: image/png
Content-Length: 83
Last-Modified: Thu, 18 Jun 2020 22:02:28 GMT
Connection: keep-alive
ETag: "5eebe474-53"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3bbec64cde333b8c3068e63b2adbf2bb
e1fad0f09db1e1b01c9d36d7dbc8163682dcc533
850bdbc33df9ee9c938ed81f35ee0a6782fe99f49f65359e1a66ff21e282ffc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dl5.glitter-graphics.net/pub/571/571105wci5gnzqpy.gif
46.4.70.136200 OK 2.6 kB URL HTTP/1.1 dl5.glitter-graphics.net/pub/571/571105wci5gnzqpy.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 198 x 37\012- data
Hash 93f66b1a0800db84bcc7fdeeada7d0a6
2916d839697f5ce445709c68c75d7c5dcd2ff947
e375875592e462e7562aadeb0c49c2278b8e375696401707b179be9840fc5100
GET /pub/571/571105wci5gnzqpy.gif HTTP/1.1
Host: dl5.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "3402477110"
Last-Modified: Fri, 06 Feb 2009 04:30:26 GMT
Content-Length: 2575
Expires: Fri, 17 May 2024 05:35:41 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:41 GMT
Server: glig.net/1.0
dl5.glitter-graphics.net/pub/46/46895uz7c49tk4x.gif
46.4.70.136200 OK 13 kB URL HTTP/1.1 dl5.glitter-graphics.net/pub/46/46895uz7c49tk4x.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 80 x 80\012- data
Hash a21414085a715a0aea01d49a8fcfb9ee
085caecdb1818e9edf2f4a60424aaf4f89e91990
eea466a85816da733ab5bec7353d163e3ba1ed53c5ee87a52f19752cc883d594
GET /pub/46/46895uz7c49tk4x.gif HTTP/1.1
Host: dl5.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "2960620982"
Last-Modified: Fri, 06 Feb 2009 03:44:58 GMT
Content-Length: 12866
Expires: Fri, 17 May 2024 05:35:41 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:41 GMT
Server: glig.net/1.0
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202301030101/show_ads_impl_with_ama_fy2021.js?client=pub-6566077147070407&plah=sfizintavola.blogspot.com
216.58.207.226200 OK 120 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202301030101/show_ads_impl_with_ama_fy2021.js?client=pub-6566077147070407&plah=sfizintavola.blogspot.com
IP 216.58.207.226:0
File type ASCII text, with very long lines (5500)
Size 120 kB (120548 bytes)
Hash 35b820c6156640a9a312c5cdb2f48232
74d36416637af5e521cc063a07265cfb5410b28f
a4d40cd81ce5885ab821a77550d358ccb1352ef2698bb9795967bd607966c3db
GET /pagead/managed/js/adsense/m202301030101/show_ads_impl_with_ama_fy2021.js?client=pub-6566077147070407&plah=sfizintavola.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 23 Jan 2023 05:35:41 GMT
expires: Mon, 23 Jan 2023 05:35:41 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 130411809305111348
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 120548
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dl5.glitter-graphics.net/pub/4/4205o8a994nbud.gif
46.4.70.136200 OK 2.0 kB URL HTTP/1.1 dl5.glitter-graphics.net/pub/4/4205o8a994nbud.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 95 x 232\012- data
Hash d87136ee1e6ab15e1bccb6fcfe2d70df
45b9adfac90ac44d850940090406bc86ce87775c
9ad940a06e44bcd743c1213de62895b0577b04d8d7824d20fa9a6b15298c6d71
GET /pub/4/4205o8a994nbud.gif HTTP/1.1
Host: dl5.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "3740383797"
Last-Modified: Fri, 06 Feb 2009 03:18:34 GMT
Content-Length: 2003
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
dl5.glitter-graphics.net/pub/738/738215plot1dg77u.gif
46.4.70.136200 OK 1.9 kB URL HTTP/1.1 dl5.glitter-graphics.net/pub/738/738215plot1dg77u.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 114 x 19\012- data
Hash f5e697a682b45d16c5ca731acbde509a
9e9a277d77f46acad7b4d25b896f587a5120f4c0
394cac17750f86e437544fe8a15aea41ebf2e146e963d33e74fad166e5a9220c
GET /pub/738/738215plot1dg77u.gif HTTP/1.1
Host: dl5.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "1215830644"
Last-Modified: Fri, 06 Feb 2009 05:40:15 GMT
Content-Length: 1927
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
dl5.glitter-graphics.net/pub/726/726615qqay0z8qmb.gif
46.4.70.136200 OK 5.2 kB URL HTTP/1.1 dl5.glitter-graphics.net/pub/726/726615qqay0z8qmb.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 254 x 25\012- data
Hash c9337ff996c5e955e12c6fc59575923d
e9abb7fceda7697dd3b86cda193244111863a365
312ede1f209c0f7e15daa3039dc7c2cdc483476aa49f396842e87eed0ce744a0
GET /pub/726/726615qqay0z8qmb.gif HTTP/1.1
Host: dl5.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "2397950516"
Last-Modified: Fri, 06 Feb 2009 05:35:26 GMT
Content-Length: 5165
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
3.bp.blogspot.com/-3TRxeJsiezU/T5O_g9oJ1jI/AAAAAAAABaA/MVE7dLmAd_c/s400/DSC04417.JPG
142.250.74.129200 OK 40 kB URL HTTP/1.1 3.bp.blogspot.com/-3TRxeJsiezU/T5O_g9oJ1jI/AAAAAAAABaA/MVE7dLmAd_c/s400/DSC04417.JPG
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x268, components 3\012- data
Hash 23daade0befb487c0df41b16c14a6a50
f4d3c1ee388be69fcf9fcff420708844a4aff73a
909407a27753216258d22254f0e1030150a3a9c1bc06dcf8a4b0ba15541f5e8d
GET /-3TRxeJsiezU/T5O_g9oJ1jI/AAAAAAAABaA/MVE7dLmAd_c/s400/DSC04417.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="DSC04417.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 39458
X-XSS-Protection: 0
Date: Mon, 23 Jan 2023 05:35:42 GMT
Expires: Mon, 23 Jan 2023 01:00:56 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5a0"
Content-Type: image/jpeg
Age: 0
3.bp.blogspot.com/-PDYtiUE6gV4/T6kWSNUp-NI/AAAAAAAABaY/HCOKGTotgjM/s320/DSC04422.JPG
142.250.74.129200 OK 33 kB URL HTTP/1.1 3.bp.blogspot.com/-PDYtiUE6gV4/T6kWSNUp-NI/AAAAAAAABaY/HCOKGTotgjM/s320/DSC04422.JPG
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x214, components 3\012- data
Hash e661f6c71b3d529b9aee8ea4d3fe0924
2e80ed13b1103cb33c2ce898faf68410694f0f16
10c3c0ffb51142a0d281481a44ecf5b7ce086c3dfd2f56a55abdf5b0cfc05c83
GET /-PDYtiUE6gV4/T6kWSNUp-NI/AAAAAAAABaY/HCOKGTotgjM/s320/DSC04422.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5a6"
Expires: Tue, 24 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DSC04422.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: fife
Content-Length: 33331
X-XSS-Protection: 0
www.linkwithin.com/widget.js?rand=0.7912385424194488
3.19.188.212404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js?rand=0.7912385424194488
IP 3.19.188.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js?rand=0.7912385424194488 HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 23 Jan 2023 05:35:42 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
3.bp.blogspot.com/-kKWB27Tunqg/T6kWEXy56-I/AAAAAAAABaQ/gu3jekuOkME/s400/DSC04421.JPG
142.250.74.129200 OK 56 kB URL HTTP/1.1 3.bp.blogspot.com/-kKWB27Tunqg/T6kWEXy56-I/AAAAAAAABaQ/gu3jekuOkME/s400/DSC04421.JPG
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x268, components 3\012- data
Hash 8f29558458f2a3be21eacc1deb5c746b
6325ba0cb111b7400c00b1825d6c71fde561e656
5fa998d86e635365605fe184160097910b6514fa64c6fa51954ff7f611a79422
GET /-kKWB27Tunqg/T6kWEXy56-I/AAAAAAAABaQ/gu3jekuOkME/s400/DSC04421.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="DSC04421.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 56197
X-XSS-Protection: 0
Date: Mon, 23 Jan 2023 05:35:42 GMT
Expires: Mon, 23 Jan 2023 01:00:56 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5a4"
Content-Type: image/jpeg
Age: 0
3.bp.blogspot.com/-Z0tX7-G9lHI/T3WzFvTUJJI/AAAAAAAABZ4/c1AkXKO8y4Y/s320/DSC04336.JPG
142.250.74.129200 OK 41 kB URL HTTP/1.1 3.bp.blogspot.com/-Z0tX7-G9lHI/T3WzFvTUJJI/AAAAAAAABZ4/c1AkXKO8y4Y/s320/DSC04336.JPG
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x214, components 3\012- data
Hash 1eb6f61a03b63be2c7515f9f80fdaabc
92b92185d54ee32409b1abfae8813bd558bb9fac
5587319fc4aa911b15482dbc378835ca7d7f932815ff006272bfaeaa97ee3012
GET /-Z0tX7-G9lHI/T3WzFvTUJJI/AAAAAAAABZ4/c1AkXKO8y4Y/s320/DSC04336.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="DSC04336.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 40788
X-XSS-Protection: 0
Date: Mon, 23 Jan 2023 05:35:42 GMT
Expires: Mon, 23 Jan 2023 01:00:56 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v59e"
Content-Type: image/jpeg
Age: 0
3.bp.blogspot.com/-BMOl0WiY7vA/UuakaUSAc7I/AAAAAAAABdQ/jwgWC71VWFQ/s1600/WP_20140126_003.jpg
142.250.74.129200 OK 165 kB URL HTTP/1.1 3.bp.blogspot.com/-BMOl0WiY7vA/UuakaUSAc7I/AAAAAAAABdQ/jwgWC71VWFQ/s1600/WP_20140126_003.jpg
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x898, components 3\012- data
Size 165 kB (164882 bytes)
Hash 7d3543a0aab7c1c4200cd1f98b2f34fd
ace6ec5fcca514bd60257c6d21737f88701ffba5
56bfcc654b5c1b0ee096a7309ccbaa0920c4e5bad44591b843253dcdf70e4645
GET /-BMOl0WiY7vA/UuakaUSAc7I/AAAAAAAABdQ/jwgWC71VWFQ/s1600/WP_20140126_003.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="WP_20140126_003.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 164882
X-XSS-Protection: 0
Date: Mon, 23 Jan 2023 05:35:42 GMT
Expires: Mon, 23 Jan 2023 01:00:56 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5e1"
Content-Type: image/jpeg
Age: 0
bp2.blogger.com/_FpagXekVaB4/R5udLq_LtkI/AAAAAAAAARQ/-277GAsatok/S220-s80/4675y481wy0olg.gif
216.58.207.238301 Moved Permanently 299 B URL HTTP/1.1 bp2.blogger.com/_FpagXekVaB4/R5udLq_LtkI/AAAAAAAAARQ/-277GAsatok/S220-s80/4675y481wy0olg.gif
IP 216.58.207.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 41b08bb8f68ad2943480b93fcc2a7465
609ca11f56f014ace0d08e5c0454f4de3fa3cfd8
302945e0fbccb71e86addb414462bac2aabbcb75d4ff282154b87688b4dddf8a
GET /_FpagXekVaB4/R5udLq_LtkI/AAAAAAAAARQ/-277GAsatok/S220-s80/4675y481wy0olg.gif HTTP/1.1
Host: bp2.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://1.bp.blogspot.com/_FpagXekVaB4/R5udLq_LtkI/AAAAAAAAARQ/-277GAsatok/S220-s80/4675y481wy0olg.gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: text/html; charset=UTF-8
Date: Mon, 23 Jan 2023 05:35:42 GMT
Expires: Wed, 22 Feb 2023 05:35:42 GMT
Cache-Control: public, max-age=2592000
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 299
X-XSS-Protection: 0
www.linkwithin.com/widget.js?rand=0.9094407722677955
3.19.188.212404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js?rand=0.9094407722677955
IP 3.19.188.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js?rand=0.9094407722677955 HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 23 Jan 2023 05:35:42 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
4.bp.blogspot.com/-K1UZ6BxJYhs/T9oMY-HjlgI/AAAAAAAABa8/UPEVrmfohJI/s400/DSC04788.JPG
142.250.74.129200 OK 56 kB URL HTTP/1.1 4.bp.blogspot.com/-K1UZ6BxJYhs/T9oMY-HjlgI/AAAAAAAABa8/UPEVrmfohJI/s400/DSC04788.JPG
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x268, components 3\012- data
Hash ca54ff1ec9a3b2327d3ff2d2dfd82d28
f568f18664144695df1e0ac63f565bb9b6385b98
36861efad73e0eb173cae7bfedf254bfe108ba160a12449fd69b5fbf7ca6600f
GET /-K1UZ6BxJYhs/T9oMY-HjlgI/AAAAAAAABa8/UPEVrmfohJI/s400/DSC04788.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="DSC04788.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 55522
X-XSS-Protection: 0
Date: Mon, 23 Jan 2023 05:35:42 GMT
Expires: Mon, 23 Jan 2023 01:00:56 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5af"
Content-Type: image/jpeg
Age: 0
dl2.glitter-graphics.net/pub/549/549062c91it46lgr.gif
46.4.70.136200 OK 3.2 kB URL HTTP/1.1 dl2.glitter-graphics.net/pub/549/549062c91it46lgr.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 115 x 115\012- data
Hash 74e3856a5ded2f557964576ae529625c
e000cedf3a75d07ff9c60dfee1d196683af26d7e
ab908fbe97e36149f6add338dcdb5fe20fe1bfe16eb0da9d4329eb991cc45358
GET /pub/549/549062c91it46lgr.gif HTTP/1.1
Host: dl2.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "4036036534"
Last-Modified: Fri, 06 Feb 2009 04:21:27 GMT
Content-Length: 3159
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
it.petitchef.com/hit.php?site_id=4638
104.21.95.178301 Moved Permanently 253 B URL HTTP/1.1 it.petitchef.com/hit.php?site_id=4638
IP 104.21.95.178:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f3537ffccfc21bb516e54b3e4d6f336d
b0b4011a13e8ab13029cbd25168b6346af66d396
ca6cc733c35136138b9357b02a42b21ef0979ece797b27690c3e14e4e3016100
GET /hit.php?site_id=4638 HTTP/1.1
Host: it.petitchef.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Mon, 23 Jan 2023 05:35:42 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.petitchef.it/hit.php?site_id=4638
Cache-Control: max-age=60, private
Expires: Mon, 23 Jan 2023 05:36:42 GMT
X-IPLB-Request-ID: A29EDEC8:540C_93878F24:0050_63CE1CAE_125B120:26E1
X-IPLB-Instance: 44764
Set-Cookie: SERVERID198687=web2|Y84cs|Y84cs; path=/; HttpOnly
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KqdKEAeUVS7hgSMl3PXqIblBxlIfXRNDcCGUGS%2FaOsikXMbX1Sb4xfGyHzxS7hhnktyfeWto25lK2VsTX%2FbOHYu29lYBKfkmrT31YnxBZ4AKFrq2s1nG6LbLINnXYBO4p%2BIZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78de2ae09bf3b517-OSL
alt-svc: h2=":443"; ma=60
4.bp.blogspot.com/-hG9HQp12SPg/UOGJ9zqFsAI/AAAAAAAABbM/AxnNel2YWv8/s400/DSC06085.JPG
142.250.74.129200 OK 43 kB URL HTTP/1.1 4.bp.blogspot.com/-hG9HQp12SPg/UOGJ9zqFsAI/AAAAAAAABbM/AxnNel2YWv8/s400/DSC06085.JPG
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 400x268, components 3\012- data
Hash 1682ce8d196892e5e0dc72c8726e01fa
0588aa6aad28a1dad716adfc50c4da6ddc89301f
c5262c4842ef7c70c76f3fd965f2fbd5d2f5e489d6c46f1951f62f639773a70f
GET /-hG9HQp12SPg/UOGJ9zqFsAI/AAAAAAAABbM/AxnNel2YWv8/s400/DSC06085.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="DSC06085.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 43288
X-XSS-Protection: 0
Date: Mon, 23 Jan 2023 05:35:42 GMT
Expires: Mon, 23 Jan 2023 01:00:56 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5b3"
Content-Type: image/jpeg
Age: 0
4.bp.blogspot.com/-vdcuKeDmA38/T3Wy5wRMGNI/AAAAAAAABZw/rFW3aCfCCIU/s320/DSC04335.JPG
142.250.74.129200 OK 42 kB URL HTTP/1.1 4.bp.blogspot.com/-vdcuKeDmA38/T3Wy5wRMGNI/AAAAAAAABZw/rFW3aCfCCIU/s320/DSC04335.JPG
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x214, components 3\012- data
Hash 02f0e578f8247e96ec4bd86481e5342a
24198239450a9529c7fe4a5cc9853ac0011eec66
e5a26f2e0478f302aa80f082b54675365447dc494d876943011779c5d6923757
GET /-vdcuKeDmA38/T3Wy5wRMGNI/AAAAAAAABZw/rFW3aCfCCIU/s320/DSC04335.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v59c"
Expires: Tue, 24 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DSC04335.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: fife
Content-Length: 42311
X-XSS-Protection: 0
4.bp.blogspot.com/_FpagXekVaB4/SB4SFz1IUvI/AAAAAAAAAbQ/sYDDC8OSdks/S760/1150629328-57.jpg
142.250.74.129200 OK 50 kB URL HTTP/1.1 4.bp.blogspot.com/_FpagXekVaB4/SB4SFz1IUvI/AAAAAAAAAbQ/sYDDC8OSdks/S760/1150629328-57.jpg
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, description=Bright orange flower on green background., software=Google, copyright=Darren Hester], baseline, precision 8, 760x190, components 3\012- data
Hash 59a28f6dcd9be1399527688901049d22
bd2110025f1f5e6bb6d212bdabd7f9e2beee7e76
d34c8c51014136b76546def2d9786e57ef75f97f3e1920f33392e10ccb6d3f78
GET /_FpagXekVaB4/SB4SFz1IUvI/AAAAAAAAAbQ/sYDDC8OSdks/S760/1150629328-57.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="1150629328-57.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 49603
X-XSS-Protection: 0
Date: Mon, 23 Jan 2023 05:35:42 GMT
Expires: Mon, 23 Jan 2023 01:00:56 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5e4"
Content-Type: image/jpeg
Age: 0
www.bloghissimo.it/images/antipixel1.2.gif
194.1.147.34200 OK 288 B URL HTTP/1.1 www.bloghissimo.it/images/antipixel1.2.gif
IP 194.1.147.34:0
ASN #210250 K Media Tech Ltd.
File type GIF image data, version 89a, 80 x 15\012- data
Hash 8344136c892b931d6ba966b03313e4fd
edc514957f36508723557801cd63793775db8849
10aa949ee60beca534362e65fea873b9f615ce43a3cc1afd7da5d639768276a6
GET /images/antipixel1.2.gif HTTP/1.1
Host: www.bloghissimo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Date: Mon, 23 Jan 2023 05:35:42 GMT
Content-Type: image/gif
Content-Length: 288
Connection: keep-alive
cache-control: public, max-age=31536000,public
expires: Thu, 09 Nov 2023 13:30:19 GMT
last-modified: Sat, 06 Oct 2012 14:45:19 GMT
etag: "120-507043ff-0;;;"
vary: Accept-Encoding,Origin
wpx: 1
referrer-policy:
pragma: public
x-turbo-charged-by: LiteSpeed
X-Edge-Location: WPX CLOUD/NOR01
Server: WPX CLOUD/NOR01
X-Cache-Status: HIT
Accept-Ranges: bytes
dl2.glitter-graphics.net/pub/52/52932cc8hckkfn8.gif
46.4.70.136200 OK 15 kB URL HTTP/1.1 dl2.glitter-graphics.net/pub/52/52932cc8hckkfn8.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 130 x 130\012- data
Hash f50441a555884f0d88bcbbd5e9e5fc94
d11dca5cc982badfce883b1fc2924169e00fafbb
071b2ced2cd940fc34b183b62ed5c58acb82b6dbca5a47da2136dbee0256af31
GET /pub/52/52932cc8hckkfn8.gif HTTP/1.1
Host: dl2.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "708271344"
Last-Modified: Fri, 06 Feb 2009 04:08:28 GMT
Content-Length: 14906
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
www.cercablog.com/images/segnalato.jpg
94.23.69.227404 Not Found 196 B URL HTTP/1.1 www.cercablog.com/images/segnalato.jpg
IP 94.23.69.227:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /images/segnalato.jpg HTTP/1.1
Host: www.cercablog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 404 Not Found
date: Mon, 23 Jan 2023 05:35:42 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
server: Apache
x-iplb-request-id: 5B5A2A9A:116E_5E1745E3:0050_63CE1CAE_10F5:225F0
x-iplb-instance: 17180
sfizintavola.blogspot.com/feeds/comments/default?start-index=1&alt=json-in-script&callback=showrecentcomments
142.250.74.65200 OK 9.0 kB URL HTTP/1.1 sfizintavola.blogspot.com/feeds/comments/default?start-index=1&alt=json-in-script&callback=showrecentcomments
IP 142.250.74.65:0
File type Unicode text, UTF-8 text, with very long lines (62316)
Hash 86f2b19ea33446995e5a5e903af9273a
32c6cb8bd033ad14c023d01a306494b40ac09bec
d11099b117570f633ac0e753dde6763e305c4b95347949113cb42f6fe9ae093f
GET /feeds/comments/default?start-index=1&alt=json-in-script&callback=showrecentcomments HTTP/1.1
Host: sfizintavola.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"3df56f4ad06871a4620956dc5d8a2218f14bd44f07950e1f165980f7495f628b"
Date: Mon, 23 Jan 2023 05:35:41 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Mon, 23 Jan 2023 05:35:42 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 28 Nov 2022 08:26:05 GMT
Content-Encoding: gzip
Content-Length: 8978
X-Frame-Options: SAMEORIGIN
cucina.ilbloggatore.com/ilbloggatore.png
46.252.158.159404 Not Found 708 B URL HTTP/1.1 cucina.ilbloggatore.com/ilbloggatore.png
IP 46.252.158.159:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 2382378378c002d88b9a507c712c3349
2e894db3808b554abadc8b144338ad9e2ea937ba
37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa
GET /ilbloggatore.png HTTP/1.1
Host: cucina.ilbloggatore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 708
date: Mon, 23 Jan 2023 05:35:42 GMT
vary: User-Agent
beta.easyhitcounters.com/counter/script.php?u=damide
54.243.117.15503 Service Unavailable: Back-end server is at capacity 0 B URL HTTP/1.1 beta.easyhitcounters.com/counter/script.php?u=damide
IP 54.243.117.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /counter/script.php?u=damide HTTP/1.1
Host: beta.easyhitcounters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 503 Service Unavailable: Back-end server is at capacity
Content-Length: 0
Connection: keep-alive
1.bp.blogspot.com/-kpXvZH1ybls/T5PC0f3bbwI/AAAAAAAABaI/slaeScxYAqc/s320/S8004640.JPG
142.250.74.129200 OK 34 kB URL HTTP/1.1 1.bp.blogspot.com/-kpXvZH1ybls/T5PC0f3bbwI/AAAAAAAABaI/slaeScxYAqc/s320/S8004640.JPG
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google, copyright=COPYRIGHT, 2005], baseline, precision 8, 320x240, components 3\012- data
Hash 0d5ece630b2327a5fec8b7b0196b18a1
23b2c625a7343a56fef5a01d9472b2d4e9065b3f
4ebdb8b25f4e5ecf1246b8cbd39975b0c7cba742a6423745068510ac0b5edaac
GET /-kpXvZH1ybls/T5PC0f3bbwI/AAAAAAAABaI/slaeScxYAqc/s320/S8004640.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5a2"
Expires: Tue, 24 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="S8004640.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: fife
Content-Length: 33576
X-XSS-Protection: 0
dl.glitter-graphics.net/pub/408/408901yacyx2kkw1.gif
46.4.70.136200 OK 2.6 kB URL HTTP/1.1 dl.glitter-graphics.net/pub/408/408901yacyx2kkw1.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 164 x 38\012- data
Hash f8eb850006b0b22ba9a2a34ac57a4146
84604208358ac66249b7227b5a7bcef9d29a43ad
ad5b7c3c035f38b0418172a0aecf462cc42738c48e1292c3a8e0e6a84cee1ac7
GET /pub/408/408901yacyx2kkw1.gif HTTP/1.1
Host: dl.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "1369608822"
Last-Modified: Fri, 06 Feb 2009 03:22:47 GMT
Content-Length: 2633
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
1.bp.blogspot.com/-bPqd23Vrb-Y/T9oMNvDNKeI/AAAAAAAABa0/AQsd6ojMM5A/s400/DSC04783.JPG
142.250.74.129200 OK 58 kB URL HTTP/1.1 1.bp.blogspot.com/-bPqd23Vrb-Y/T9oMNvDNKeI/AAAAAAAABa0/AQsd6ojMM5A/s400/DSC04783.JPG
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x268, components 3\012- data
Hash 7046b7d91c1c35db1d07e9576357c5ff
c0f72edb69421cc321dd67deefdc576ea1790260
65819cc78fe0e3c3ae8203ecc5cec34c677ddda4efbcf667572b8c30f4282a91
GET /-bPqd23Vrb-Y/T9oMNvDNKeI/AAAAAAAABa0/AQsd6ojMM5A/s400/DSC04783.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5ad"
Expires: Tue, 24 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DSC04783.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: fife
Content-Length: 57821
X-XSS-Protection: 0
1.bp.blogspot.com/-tViCyl4uq3g/UOGLYu9NcbI/AAAAAAAABbg/JDlzmBnEEhs/s400/DSC06091.JPG
142.250.74.129200 OK 37 kB URL HTTP/1.1 1.bp.blogspot.com/-tViCyl4uq3g/UOGLYu9NcbI/AAAAAAAABbg/JDlzmBnEEhs/s400/DSC06091.JPG
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 400x268, components 3\012- data
Hash 710d9293ee22e2c418787200e0220a64
bd35249bbf92f1fa2fa19bdddf82ddd17cc57c44
b488cf6dd2a3e57733515fb19aba9a875683215605369069cef3a151ac3e15e2
GET /-tViCyl4uq3g/UOGLYu9NcbI/AAAAAAAABbg/JDlzmBnEEhs/s400/DSC06091.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5b8"
Expires: Tue, 24 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DSC06091.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: fife
Content-Length: 36907
X-XSS-Protection: 0
dl10.glitter-graphics.net/pub/130/130810o1unb02826.gif
46.4.70.136200 OK 158 kB URL HTTP/1.1 dl10.glitter-graphics.net/pub/130/130810o1unb02826.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 100 x 120\012- data
Size 158 kB (158059 bytes)
Hash eab2c1cdfee12d029d4c1177ef3db8d2
b2518f227157554e5d10dfb1eed848a46dcca79f
6c4eed1bae015945d6ae5e30ebb2113817a3d49a49fb475d33630fbc1ae8510c
GET /pub/130/130810o1unb02826.gif HTTP/1.1
Host: dl10.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "2589406642"
Last-Modified: Thu, 05 Feb 2009 19:46:52 GMT
Content-Length: 158059
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
1.bp.blogspot.com/-TjhjGnGnQzw/UuamPMv7lOI/AAAAAAAABdg/bz0_uh0cLEw/s1600/WP_20140126_004.jpg
142.250.74.129200 OK 146 kB URL HTTP/1.1 1.bp.blogspot.com/-TjhjGnGnQzw/UuamPMv7lOI/AAAAAAAABdg/bz0_uh0cLEw/s1600/WP_20140126_004.jpg
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x898, components 3\012- data
Size 146 kB (145763 bytes)
Hash 583b3ea6a893bc7e1ced9c8434c1ece3
feecc675fac380739618887e87fa4848f48fcd5b
eebc3f3b03b408e7634e6397eff05a66200795b5b5f5ecbb85004e34ace868e7
GET /-TjhjGnGnQzw/UuamPMv7lOI/AAAAAAAABdg/bz0_uh0cLEw/s1600/WP_20140126_004.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5e2"
Expires: Tue, 24 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="WP_20140126_004.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: fife
Content-Length: 145763
X-XSS-Protection: 0
www.blogger.com/dyn-css/authorization.css?targetBlogID=7157156915262964136&zx=353e1434-0cb3-4db5-9db1-dc50bfe720b4
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=7157156915262964136&zx=353e1434-0cb3-4db5-9db1-dc50bfe720b4
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=7157156915262964136&zx=353e1434-0cb3-4db5-9db1-dc50bfe720b4 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 23 Jan 2023 05:35:42 GMT
last-modified: Mon, 23 Jan 2023 05:35:42 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dl.glitter-graphics.net/pub/189/189011r0exskytxb.gif
46.4.70.136200 OK 76 kB URL HTTP/1.1 dl.glitter-graphics.net/pub/189/189011r0exskytxb.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 600 x 60\012- data
Hash cfeded14d605f4a35c39aaabea9dd80d
3abec9d917f415f3c21429e32a0e5061a151034c
9f3e4a87a17886fc373734145cfe0fd6fbc5c2343d36600c53d599ef9c2fe2dc
GET /pub/189/189011r0exskytxb.gif HTTP/1.1
Host: dl.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "2559732209"
Last-Modified: Fri, 06 Feb 2009 01:00:09 GMT
Content-Length: 76449
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78340979b1b3f5dbe63bfc88075b94e3
ffbe099dbcb99393a304805a3a80bedf3728d1e8
3b6e3c30064cd15c9abacd73b373f165702545351a93f1707f70e732904ad39a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.net-parade.it/risorse/registrazione_motori/bottone.gif
31.11.35.14301 Moved Permanently 189 B URL HTTP/1.1 www.net-parade.it/risorse/registrazione_motori/bottone.gif
IP 31.11.35.14:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 181237b54930ae0eb590510e82844de7
217ebc0d2276eb61ac9ed15ce52ebec743887903
d5e667a1ee4912e4fb74b53ed89a135a564379aebdde7632e613ce825e91128d
GET /risorse/registrazione_motori/bottone.gif HTTP/1.1
Host: www.net-parade.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://www.net-parade.it/risorse/registrazione_motori/bottone.gif
Server: Microsoft-IIS/10.0
Date: Mon, 23 Jan 2023 05:35:41 GMT
Content-Length: 189
beta.easyhitcounters.com/counter/index.php?u=damide&s=apple
54.243.117.15503 Service Unavailable: Back-end server is at capacity 0 B URL HTTP/1.1 beta.easyhitcounters.com/counter/index.php?u=damide&s=apple
IP 54.243.117.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /counter/index.php?u=damide&s=apple HTTP/1.1
Host: beta.easyhitcounters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 503 Service Unavailable: Back-end server is at capacity
Content-Length: 0
Connection: keep-alive
dl6.glitter-graphics.net/pub/131/131336zswm14wbk4.gif
46.4.70.136200 OK 14 kB URL HTTP/1.1 dl6.glitter-graphics.net/pub/131/131336zswm14wbk4.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 160 x 149\012- data
Hash 6b3517a015975041c6c4d255f55752e8
7550b98598e2597a7fcbbf185834aa3c760cc20e
6b8fd42cba165c3cde119d37c49ea729ef2677ce2c160e8af9b55d6c67cd5123
GET /pub/131/131336zswm14wbk4.gif HTTP/1.1
Host: dl6.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "505074164"
Last-Modified: Thu, 05 Feb 2009 19:52:24 GMT
Content-Length: 13472
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
cdnll.img1.imagechef.com/w/080325/sampda3afc165ec68a21.jpg
8.27.131.126404 Not Found 643 B URL HTTP/1.1 cdnll.img1.imagechef.com/w/080325/sampda3afc165ec68a21.jpg
IP 8.27.131.126:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 96a0a4dd8ee6ce74a12abdd2ca249de3
35926d965e3c5b43109eec6a0fc1c91430cf4a3e
1f072e2b9de2764b2cde1b00728d2c28d76048b87e08d21b88eec62b4eb7aeed
GET /w/080325/sampda3afc165ec68a21.jpg HTTP/1.1
Host: cdnll.img1.imagechef.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 404 Not Found
Server: Footprint 6.1.1005/FPMCP
Mime-Version: 1.0
Date: Mon, 23 Jan 2023 05:35:42 GMT
Content-Type: text/html
Content-Length: 643
Expires: Mon, 23 Jan 2023 05:35:42 GMT
Connection: close
cdnll.img1.imagechef.com/w/080115/sampf64a60cf5c616232.jpg
8.27.131.126404 Not Found 643 B URL HTTP/1.1 cdnll.img1.imagechef.com/w/080115/sampf64a60cf5c616232.jpg
IP 8.27.131.126:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 96a0a4dd8ee6ce74a12abdd2ca249de3
35926d965e3c5b43109eec6a0fc1c91430cf4a3e
1f072e2b9de2764b2cde1b00728d2c28d76048b87e08d21b88eec62b4eb7aeed
GET /w/080115/sampf64a60cf5c616232.jpg HTTP/1.1
Host: cdnll.img1.imagechef.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 404 Not Found
Server: Footprint 6.1.1005/FPMCP
Mime-Version: 1.0
Date: Mon, 23 Jan 2023 05:35:42 GMT
Content-Type: text/html
Content-Length: 643
Expires: Mon, 23 Jan 2023 05:35:42 GMT
Connection: close
dl6.glitter-graphics.net/pub/658/658706hyrqiutx2r.gif
46.4.70.136200 OK 1.7 kB URL HTTP/1.1 dl6.glitter-graphics.net/pub/658/658706hyrqiutx2r.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 320 x 22\012- data
Hash a45e325b57690a50f000365d8bc05322
cc5e754679285822e72424873eb4d2ff0cf214ea
b73b8e3606cf5079caa0a69f868c15c4b9241ae50574e0ba8b4b3078c460df4a
GET /pub/658/658706hyrqiutx2r.gif HTTP/1.1
Host: dl6.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "3200032886"
Last-Modified: Fri, 06 Feb 2009 05:07:44 GMT
Content-Length: 1736
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
dl5.glitter-graphics.net/pub/39/39575zh51cmb99n.gif
46.4.70.136200 OK 25 kB URL HTTP/1.1 dl5.glitter-graphics.net/pub/39/39575zh51cmb99n.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 108 x 118\012- data
Hash e7ffb63cb34b341673dbc5b1453e57b8
7f758c027bd767583946d02d5b2d1d5a308c81cb
5b5ecc4847c848cab7aa3b9fd6d5e96e529bf838b4f5a4ab8a704f74810ba875
GET /pub/39/39575zh51cmb99n.gif HTTP/1.1
Host: dl5.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "2814862261"
Last-Modified: Fri, 06 Feb 2009 03:14:03 GMT
Content-Length: 25135
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bb5fac1f289cb91381d3d1a07094b179
df6f8fe7a21efb35290d24f2b8b0fe809cae8d33
34472778a647b2db33e669d8582b510d94d9e0d355d77c73d643b7495b0f6997
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 23 Jan 2023 05:17:30 GMT
age: 1092
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
dl5.glitter-graphics.net/pub/4/4675y481wy0olg.gif
46.4.70.136200 OK 25 kB URL HTTP/1.1 dl5.glitter-graphics.net/pub/4/4675y481wy0olg.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 229 x 291\012- data
Hash 96f74b90813aac45738f0deb79d3d209
1717df925d2b63c089025df5ea4e3b59c3d46a9a
5f8bcf29f49d6e5a0e0ab384b0bbd5e67d940d3f5131f926a65c85751007e4c3
GET /pub/4/4675y481wy0olg.gif HTTP/1.1
Host: dl5.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "2890926644"
Last-Modified: Fri, 06 Feb 2009 03:18:44 GMT
Content-Length: 25268
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3bbec64cde333b8c3068e63b2adbf2bb
e1fad0f09db1e1b01c9d36d7dbc8163682dcc533
850bdbc33df9ee9c938ed81f35ee0a6782fe99f49f65359e1a66ff21e282ffc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/img/logo-16.png
216.58.207.233200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP 216.58.207.233:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 19 Jan 2023 22:24:45 GMT
Expires: Thu, 26 Jan 2023 22:24:45 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 19 Jan 2023 16:53:03 GMT
Content-Type: image/png
Age: 285057
dl3.glitter-graphics.net/empty.gif
46.4.70.136200 OK 67 B URL HTTP/1.1 dl3.glitter-graphics.net/empty.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 10 x 10\012- data
Hash 27f18e003c57386f21ebae558a76e8fa
f2679e2214077903efe5591b900e8c3cad70b0a1
d36c2582bc9c9c3689797a276c9c6358dc5217a89291aa0772d4f3ec12eda0f5
GET /empty.gif HTTP/1.1
Host: dl3.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "3553513617"
Last-Modified: Sat, 27 Feb 2021 17:26:32 GMT
Content-Length: 67
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
text.glitter-graphics.net/crl/a.gif
46.4.70.136200 OK 7.5 kB URL HTTP/1.1 text.glitter-graphics.net/crl/a.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 46 x 50\012- data
Hash 499d14ed8e3df0209bd63c6c5a26f20d
f965161f4aa5b07782b363738d3e8555c9afc55e
29e4a3da2cc4dd66f5d396892ee977e89df1602443f001fbe442ef82871e6c98
GET /crl/a.gif HTTP/1.1
Host: text.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "3431010834"
Last-Modified: Sat, 27 Feb 2021 17:26:32 GMT
Content-Length: 7514
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
text.glitter-graphics.net/crl/t.gif
46.4.70.136200 OK 6.8 kB URL HTTP/1.1 text.glitter-graphics.net/crl/t.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 38 x 50\012- data
Hash af6901b8b879e96f6021611e39766f96
1f4f9a0f47900b47b53ff594970ec6ea75eebe90
3007dd9767309a887b7ff2526788b962481422005d8cabc0f905b44dd54a6fc9
GET /crl/t.gif HTTP/1.1
Host: text.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "1701368339"
Last-Modified: Sat, 27 Feb 2021 17:26:32 GMT
Content-Length: 6759
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash cc298ded3fc0f058105ddd7b442f5b55
38d43fe921b0b34e4a762598c3ad003956592c04
61a166c11ee3bc04f5be109d262b7f69525e428b1a85f68e00a58de4ff26b4c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
text.glitter-graphics.net/crl/n.gif
46.4.70.136200 OK 7.6 kB URL HTTP/1.1 text.glitter-graphics.net/crl/n.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 46 x 50\012- data
Hash d764a1cde1a231a4ea0e738329ea9a3e
31ab96545f41f1d5b387c53333d55a371bd0543f
7415ceb2a34bb6ec6d957bd0517cd9130d53521ffa1036856e54ee3a4701ce7f
GET /crl/n.gif HTTP/1.1
Host: text.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "853611027"
Last-Modified: Sat, 27 Feb 2021 17:26:32 GMT
Content-Length: 7574
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
text.glitter-graphics.net/crl/z.gif
46.4.70.136200 OK 7.3 kB URL HTTP/1.1 text.glitter-graphics.net/crl/z.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 43 x 50\012- data
Hash 86b4c2fa6e6096a2ee93be7ba1f2cbcd
51f742e32e031529a3aff9a8e4bb84dbfff11a99
a8118db8dc247286c7365710cea31ede8f1c27041e63056b4438df004bf37050
GET /crl/z.gif HTTP/1.1
Host: text.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "2493600275"
Last-Modified: Sat, 27 Feb 2021 17:26:32 GMT
Content-Length: 7262
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
text.glitter-graphics.net/crl/o.gif
46.4.70.136200 OK 6.0 kB URL HTTP/1.1 text.glitter-graphics.net/crl/o.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 43 x 50\012- data
Hash 9e75b0f267c03a5b0de37a34177243b8
f41153caca27a7739e9467564236c0212b2cdbf6
9ee63bb8b5b864ef05d0c3cf5153e322fe8d94371fb49656b81721d15f9448f5
GET /crl/o.gif HTTP/1.1
Host: text.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "1011061267"
Last-Modified: Sat, 27 Feb 2021 17:26:32 GMT
Content-Length: 5954
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
text.glitter-graphics.net/crl/v.gif
46.4.70.136200 OK 6.9 kB URL HTTP/1.1 text.glitter-graphics.net/crl/v.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 43 x 50\012- data
Hash d7e5db13784f21b4ebf17050e2665473
8bc95a295b286e7f603c301c9c35e07812cc471b
a90d6e4fc14ac2f8bb3b9101e57823f5a4e9e804cb1192824c227608b7422ad2
GET /crl/v.gif HTTP/1.1
Host: text.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "1882771987"
Last-Modified: Sat, 27 Feb 2021 17:26:32 GMT
Content-Length: 6861
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 31a96aea31b9bde911c809b90b4b2340
67ac2a598c4d19de11e6a81eabb7af7aeec45dcb
22eb898eb4c8aafb440456924cb0a74529b3f18dbc9e0fa11fdfeeef4ac37908
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=sfizintavola.blogspot.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=sfizintavola.blogspot.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=sfizintavola.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 23 Jan 2023 05:35:42 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cucina.ilbloggatore.com/ilbloggatore.png
46.252.158.159404 Not Found 708 B URL HTTP/1.1 cucina.ilbloggatore.com/ilbloggatore.png
IP 46.252.158.159:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 2382378378c002d88b9a507c712c3349
2e894db3808b554abadc8b144338ad9e2ea937ba
37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa
GET /ilbloggatore.png HTTP/1.1
Host: cucina.ilbloggatore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 708
date: Mon, 23 Jan 2023 05:35:42 GMT
vary: User-Agent
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 36f69c576be6f781f131e89d144916b2
a96a0a7bad1198b6265756eb6dd79d444199dbaf
b1fa2795c057042627ad607c3a2bce695c3c564803d938373cd8243478d3d0d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bb5fac1f289cb91381d3d1a07094b179
df6f8fe7a21efb35290d24f2b8b0fe809cae8d33
34472778a647b2db33e669d8582b510d94d9e0d355d77c73d643b7495b0f6997
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=sfizintavola.blogspot.com&callback=_gfp_s_&client=ca-pub-6566077147070407
142.250.74.34200 OK 250 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=sfizintavola.blogspot.com&callback=_gfp_s_&client=ca-pub-6566077147070407
IP 142.250.74.34:0
File type ASCII text, with very long lines (391), with no line terminators
Hash 9d337ec76848eb477e76a73c6ceec032
56860683031276e657cf97b94f138560be8286d4
4be9da9122dca5476f6fbc561b73a5e1e84a81d63893eb0eeb765f475aa4d2ed
GET /gampad/cookie.js?domain=sfizintavola.blogspot.com&callback=_gfp_s_&client=ca-pub-6566077147070407 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 23 Jan 2023 05:35:42 GMT
server: cafe
cache-control: private
content-length: 250
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.net-parade.it/risorse/registrazione_motori/bottone.gif
31.11.35.14200 OK 8.7 kB URL HTTP/2 www.net-parade.it/risorse/registrazione_motori/bottone.gif
IP 31.11.35.14:0
File type GIF image data, version 89a, 110 x 80\012- data
Hash 620198c0bb7a8099550743b69ac83c59
2fc585a94cef83b39ad0d408cec75b85951dfe94
3ca4b75f7324d32db49906f9133c55bf41b6cadac6bfface1242ed568eaaec8a
GET /risorse/registrazione_motori/bottone.gif HTTP/1.1
Host: www.net-parade.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sfizintavola.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
last-modified: Tue, 10 Jul 2012 10:20:09 GMT
accept-ranges: bytes
etag: "80922c95855ecd1:0"
server: Microsoft-IIS/10.0
date: Mon, 23 Jan 2023 05:35:41 GMT
content-length: 8738
X-Firefox-Spdy: h2
lh3.googleusercontent.com/tenebrae2005/R-5JR2lz0yI/AAAAAAAAAq4/1V2cTWduvjg/creare-blog1.gif
216.58.207.225200 OK 232 B URL HTTP/2 lh3.googleusercontent.com/tenebrae2005/R-5JR2lz0yI/AAAAAAAAAq4/1V2cTWduvjg/creare-blog1.gif
IP 216.58.207.225:0
File type GIF image data, version 87a, 80 x 15\012- data
Hash a97dbbfc249d87fe64a635c82b8b0844
569c2198ebffe38c942524baf826882cbe2eefe8
0ffa31e3a3a85870b8cac9b24f8493f757afef7b97575adb39d77596b1d6bf03
GET /tenebrae2005/R-5JR2lz0yI/AAAAAAAAAq4/1V2cTWduvjg/creare-blog1.gif HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sfizintavola.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="creare-blog1.gif"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 232
x-xss-protection: 0
date: Mon, 23 Jan 2023 05:35:42 GMT
expires: Sun, 22 Jan 2023 04:50:07 GMT
cache-control: public, max-age=86400, no-transform
etag: "v24c0"
content-type: image/gif
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sfizintavola.blogspot.com/%E2%80%9Dhttp://www.dolcitalia.net/fotosettimana/BlogDolci.gif%E2%80%9D
142.250.74.65404 Not Found 12 kB URL HTTP/1.1 sfizintavola.blogspot.com/%E2%80%9Dhttp://www.dolcitalia.net/fotosettimana/BlogDolci.gif%E2%80%9D
IP 142.250.74.65:0
Hash e1f7b8d60eec89fcbb16b1d1590603d9
19580516c68c2a05a8b2691e5e2c114fced37f0a
f9abca5ec6d16702eb3d454ce77e79c80cd46794442f2fb978c0f3f401987a8e
Analyzer Verdict Alert fortinet Phishing
GET /%E2%80%9Dhttp://www.dolcitalia.net/fotosettimana/BlogDolci.gif%E2%80%9D HTTP/1.1
Host: sfizintavola.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 23 Jan 2023 05:35:42 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 16770
Server: GSE
text.glitter-graphics.net/crl/i.gif
46.4.70.136200 OK 4.6 kB URL HTTP/1.1 text.glitter-graphics.net/crl/i.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 30 x 50\012- data
Hash fbefbdaf8996fe4d626b45357a199bae
1dd99443350e07873ea0223d353d93229cffbb20
a7a2a9eb029b20e6260b1460c5566a4eadf4055866848be3c8ca9a9dd55aa85e
GET /crl/i.gif HTTP/1.1
Host: text.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "136450579"
Last-Modified: Sat, 27 Feb 2021 17:26:32 GMT
Content-Length: 4558
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
text.glitter-graphics.net/crl/f.gif
46.4.70.136200 OK 7.1 kB URL HTTP/1.1 text.glitter-graphics.net/crl/f.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 43 x 50\012- data
Hash 3cfd1ce4f0302f90db9a6dd4d9b19b5d
9672c477dd8bd0068700352058e26eacfa9a2bac
449859896ead9745c506279105033c745fb6ac27cfd56e173a99c8b9f4ff7a4a
GET /crl/f.gif HTTP/1.1
Host: text.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "4075852306"
Last-Modified: Sat, 27 Feb 2021 17:26:32 GMT
Content-Length: 7060
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
text.glitter-graphics.net/crl/s.gif
46.4.70.136200 OK 7.0 kB URL HTTP/1.1 text.glitter-graphics.net/crl/s.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 38 x 50\012- data
Hash 639881ad6304a03e2b1f46f0b4a60827
50e4dbdf5b776cd24aaa1de21ab101e512fc41a7
a054c4279dc625895c5433ec5bfd2f380d87e16bc6076ddace5839b4848caa37
GET /crl/s.gif HTTP/1.1
Host: text.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "1571328531"
Last-Modified: Sat, 27 Feb 2021 17:26:32 GMT
Content-Length: 7039
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3942f67e2cc00fdf75e15cbc0f7d95ba
73b1e73fa54fd6fec8a2391729a624704ae8107f
fdb6616cb8ada5de76b30070a5f5fb4a919f9115e0a3cf61f08f924b16fe28f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
text.glitter-graphics.net/crl/l.gif
46.4.70.136200 OK 5.8 kB URL HTTP/1.1 text.glitter-graphics.net/crl/l.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 38 x 50\012- data
Hash 740f1239a186c699d3453388258b07ec
10b430fb1569b16ae5d1fa8e0090d4500f671e11
bca026f370b03028f294f253fac8dae28781ff848a6fe1c5d34e6f4adc839585
GET /crl/l.gif HTTP/1.1
Host: text.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "590074387"
Last-Modified: Sat, 27 Feb 2021 17:26:32 GMT
Content-Length: 5807
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
dl7.glitter-graphics.net/pub/634/634947euihhiy40k.gif
46.4.70.136200 OK 472 B URL HTTP/1.1 dl7.glitter-graphics.net/pub/634/634947euihhiy40k.gif
IP 46.4.70.136:0
ASN #24940 Hetzner Online GmbH
Hash f5ef5a169ee9d435747a3346ff4fc58e
fdcf5e72af8ec14634b407473b665a17b852a70b
9faa34028b0c57cca72ad8d7f226f8c7d18e8a10275b73daf40fa8244db37c2c
GET /pub/634/634947euihhiy40k.gif HTTP/1.1
Host: dl7.glitter-graphics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Accept-Ranges: bytes
ETag: "2093992949"
Last-Modified: Fri, 06 Feb 2009 04:58:13 GMT
Content-Length: 111467
Expires: Fri, 17 May 2024 05:35:42 GMT
Cache-Control: max-age=41472000
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: glig.net/1.0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash cc298ded3fc0f058105ddd7b442f5b55
38d43fe921b0b34e4a762598c3ad003956592c04
61a166c11ee3bc04f5be109d262b7f69525e428b1a85f68e00a58de4ff26b4c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 31a96aea31b9bde911c809b90b4b2340
67ac2a598c4d19de11e6a81eabb7af7aeec45dcb
22eb898eb4c8aafb440456924cb0a74529b3f18dbc9e0fa11fdfeeef4ac37908
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
widgetserver.com/syndication/subscriber/InsertWidget.js?appId=d4de9843-0f3f-43b4-ae52-c298daa0e952
45.33.20.235200 OK 157 B URL HTTP/1.1 widgetserver.com/syndication/subscriber/InsertWidget.js?appId=d4de9843-0f3f-43b4-ae52-c298daa0e952
IP 45.33.20.235:0
Hash 67e216a27dda24bdcb086c2385b0cb99
17141c80f5d32bec3691c5ab24741d8b7dd5f0c6
9dc433b2142d3ba0803fcffa53f19d34da26996d20c829df6d694bc887325dd7
Analyzer Verdict Alert fortinet Malware
GET /syndication/subscriber/InsertWidget.js?appId=d4de9843-0f3f-43b4-ae52-c298daa0e952 HTTP/1.1
Host: widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Mon, 23 Jan 2023 05:35:42 GMT
content-type: application/javascript
content-length: 157
last-modified: Mon, 09 Jan 2023 20:56:33 GMT
etag: "63bc7f81-9d"
accept-ranges: bytes
connection: close
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D7157156915262964136%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM0YjYzMjAiByM5NmM3M2QqByNGRkZGRkYyByMwMDAwMDA6ByM0YjYzMjBCByM5NmM3M2RKByMwMDAwMDBSByM5NmM3M2RaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://sfizintavola.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D7157156915262964136%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM0YjYzMjAiByM5NmM3M2QqByNGRkZGRkYyByMwMDAwMDA6ByM0YjYzMjBCByM5NmM3M2RKByMwMDAwMDBSByM5NmM3M2RaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://sfizintavola.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true
142.250.74.45302 Found 469 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D7157156915262964136%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM0YjYzMjAiByM5NmM3M2QqByNGRkZGRkYyByMwMDAwMDA6ByM0YjYzMjBCByM5NmM3M2RKByMwMDAwMDBSByM5NmM3M2RaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://sfizintavola.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D7157156915262964136%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM0YjYzMjAiByM5NmM3M2QqByNGRkZGRkYyByMwMDAwMDA6ByM0YjYzMjBCByM5NmM3M2RKByMwMDAwMDBSByM5NmM3M2RaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://sfizintavola.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true
IP 142.250.74.45:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (504)
Hash b4de5b5214b8d379c087b43466c45be0
6602e396b042a73cb27742f59ba3c612444661d0
920ddd6d294838045aa479eaebe9c5449fa454f60f5cb38b91599016fcdfbc88
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D7157156915262964136%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM0YjYzMjAiByM5NmM3M2QqByNGRkZGRkYyByMwMDAwMDA6ByM0YjYzMjBCByM5NmM3M2RKByMwMDAwMDBSByM5NmM3M2RaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://sfizintavola.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D7157156915262964136%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM0YjYzMjAiByM5NmM3M2QqByNGRkZGRkYyByMwMDAwMDA6ByM0YjYzMjBCByM5NmM3M2RKByMwMDAwMDBSByM5NmM3M2RaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://sfizintavola.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sfizintavola.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 23 Jan 2023 05:35:42 GMT
location: https://www.blogger.com/followers.g?blogID=7157156915262964136&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM0YjYzMjAiByM5NmM3M2QqByNGRkZGRkYyByMwMDAwMDA6ByM0YjYzMjBCByM5NmM3M2RKByMwMDAwMDBSByM5NmM3M2RaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fsfizintavola.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-Oww4aTrZSsABu0zMJL3PuA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 469
server: GSE
set-cookie: __Host-GAPS=1:UDtml1c_Dren5RxUW5Fa5_gj2VtK-g:heQFp_bC2PI8FcVg;Path=/;Expires=Wed, 22-Jan-2025 05:35:42 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 36f69c576be6f781f131e89d144916b2
a96a0a7bad1198b6265756eb6dd79d444199dbaf
b1fa2795c057042627ad607c3a2bce695c3c564803d938373cd8243478d3d0d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6566077147070407&output=html&h=250&adk=3906699924&adf=3048705497&w=250&lmt=1669623965&ad_type=text_image&format=250x250_as&color_bg=FFFFFF&color_border=FFFFFF&color_link=4B6320&color_text=92BA47&color_url=B5C88F&url=http%3A%2F%2Fsfizintavola.blogspot.com%2F&host=pub-1556223355139109&h_ch=0001&alternate_ad_url=http%3A%2F%2Fimg2.blogblog.com%2Fimg%2Fblogger_ad.html&wgl=1&dt=1674452140708&bpp=5&bdt=529&idt=177&shv=r20230118&mjsv=m202301030101&ptt=5&saldr=sa&abxe=1&prev_fmts=300x250_as&correlator=5864376131357&frm=20&pv=1&ga_vid=780503277.1674452141&ga_sid=1674452141&ga_hid=1302003725&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=756&ady=313&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C44777876&oid=2&pvsid=3314989995137745&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=BmEXHslKy6&p=http%3A//sfizintavola.blogspot.com&dtd=777
142.250.74.98200 OK 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6566077147070407&output=html&h=250&adk=3906699924&adf=3048705497&w=250&lmt=1669623965&ad_type=text_image&format=250x250_as&color_bg=FFFFFF&color_border=FFFFFF&color_link=4B6320&color_text=92BA47&color_url=B5C88F&url=http%3A%2F%2Fsfizintavola.blogspot.com%2F&host=pub-1556223355139109&h_ch=0001&alternate_ad_url=http%3A%2F%2Fimg2.blogblog.com%2Fimg%2Fblogger_ad.html&wgl=1&dt=1674452140708&bpp=5&bdt=529&idt=177&shv=r20230118&mjsv=m202301030101&ptt=5&saldr=sa&abxe=1&prev_fmts=300x250_as&correlator=5864376131357&frm=20&pv=1&ga_vid=780503277.1674452141&ga_sid=1674452141&ga_hid=1302003725&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=756&ady=313&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C44777876&oid=2&pvsid=3314989995137745&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=BmEXHslKy6&p=http%3A//sfizintavola.blogspot.com&dtd=777
IP 142.250.74.98:0
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?client=ca-pub-6566077147070407&output=html&h=250&adk=3906699924&adf=3048705497&w=250&lmt=1669623965&ad_type=text_image&format=250x250_as&color_bg=FFFFFF&color_border=FFFFFF&color_link=4B6320&color_text=92BA47&color_url=B5C88F&url=http%3A%2F%2Fsfizintavola.blogspot.com%2F&host=pub-1556223355139109&h_ch=0001&alternate_ad_url=http%3A%2F%2Fimg2.blogblog.com%2Fimg%2Fblogger_ad.html&wgl=1&dt=1674452140708&bpp=5&bdt=529&idt=177&shv=r20230118&mjsv=m202301030101&ptt=5&saldr=sa&abxe=1&prev_fmts=300x250_as&correlator=5864376131357&frm=20&pv=1&ga_vid=780503277.1674452141&ga_sid=1674452141&ga_hid=1302003725&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=756&ady=313&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C44777876&oid=2&pvsid=3314989995137745&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=BmEXHslKy6&p=http%3A//sfizintavola.blogspot.com&dtd=777 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 23 Jan 2023 05:35:42 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 23-Jan-2023 05:50:42 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 23 Jan 2023 05:35:42 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6566077147070407&output=html&h=250&adk=3681557699&adf=660707698&w=300&lmt=1669623965&ad_type=text_image&format=300x250_as&color_bg=FFFFFF&color_border=FFFFFF&color_link=4B6320&color_text=92BA47&color_url=B5C88F&url=http%3A%2F%2Fsfizintavola.blogspot.com%2F&host=pub-1556223355139109&h_ch=00000&wgl=1&dt=1674452140708&bpp=43&bdt=528&idt=156&shv=r20230118&mjsv=m202301030101&ptt=5&saldr=sa&abxe=1&correlator=5864376131357&frm=20&pv=2&ga_vid=780503277.1674452141&ga_sid=1674452141&ga_hid=1302003725&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=265&ady=1041&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C44777876&oid=2&pvsid=3314989995137745&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coebr%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&btvi=1&fsb=1&xpc=cjF8GPjbM8&p=http%3A//sfizintavola.blogspot.com&dtd=770
142.250.74.98200 OK 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6566077147070407&output=html&h=250&adk=3681557699&adf=660707698&w=300&lmt=1669623965&ad_type=text_image&format=300x250_as&color_bg=FFFFFF&color_border=FFFFFF&color_link=4B6320&color_text=92BA47&color_url=B5C88F&url=http%3A%2F%2Fsfizintavola.blogspot.com%2F&host=pub-1556223355139109&h_ch=00000&wgl=1&dt=1674452140708&bpp=43&bdt=528&idt=156&shv=r20230118&mjsv=m202301030101&ptt=5&saldr=sa&abxe=1&correlator=5864376131357&frm=20&pv=2&ga_vid=780503277.1674452141&ga_sid=1674452141&ga_hid=1302003725&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=265&ady=1041&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C44777876&oid=2&pvsid=3314989995137745&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coebr%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&btvi=1&fsb=1&xpc=cjF8GPjbM8&p=http%3A//sfizintavola.blogspot.com&dtd=770
IP 142.250.74.98:0
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?client=ca-pub-6566077147070407&output=html&h=250&adk=3681557699&adf=660707698&w=300&lmt=1669623965&ad_type=text_image&format=300x250_as&color_bg=FFFFFF&color_border=FFFFFF&color_link=4B6320&color_text=92BA47&color_url=B5C88F&url=http%3A%2F%2Fsfizintavola.blogspot.com%2F&host=pub-1556223355139109&h_ch=00000&wgl=1&dt=1674452140708&bpp=43&bdt=528&idt=156&shv=r20230118&mjsv=m202301030101&ptt=5&saldr=sa&abxe=1&correlator=5864376131357&frm=20&pv=2&ga_vid=780503277.1674452141&ga_sid=1674452141&ga_hid=1302003725&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=265&ady=1041&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C44777876&oid=2&pvsid=3314989995137745&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coebr%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&btvi=1&fsb=1&xpc=cjF8GPjbM8&p=http%3A//sfizintavola.blogspot.com&dtd=770 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 23 Jan 2023 05:35:42 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 23-Jan-2023 05:50:42 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 23 Jan 2023 05:35:42 GMT
cache-control: private
X-Firefox-Spdy: h2
img15.glitterfy.com/84/glitterfy040038T358D30.gif
208.71.34.181200 OK 57 kB URL HTTP/1.1 img15.glitterfy.com/84/glitterfy040038T358D30.gif
IP 208.71.34.181:0
File type GIF image data, version 89a, 442 x 117\012- data
Hash 944b04178d2f0e4b76caa0a6ce754e37
f0c905badb675a724dd6d4e689c4570d46d448b3
f08cab8393a1fde449bfc1285074cfcef61a1682c7ebd22f36beb951089e2cd8
GET /84/glitterfy040038T358D30.gif HTTP/1.1
Host: img15.glitterfy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: Apache
Last-Modified: Tue, 24 Jul 2012 20:16:34 GMT
ETag: "322e06e-e012-4c59909f74bd9"
Accept-Ranges: bytes
Content-Length: 57362
Connection: close
Content-Type: image/gif
it.wopweb.net/services/counters/counter_img.php?id=17346455&tp=6
217.61.15.230301 Moved Permanently 284 B URL HTTP/1.1 it.wopweb.net/services/counters/counter_img.php?id=17346455&tp=6
IP 217.61.15.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 19ed90dd0e14b4a8012761894a5b8de1
b54b18a0062f66c788e0224af3f970c25b32823c
9cbec89f4024966edc49a1aacec4b654a52dd6d08b6474ac1bc8ce075a557aae
GET /services/counters/counter_img.php?id=17346455&tp=6 HTTP/1.1
Host: it.wopweb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: Apache
Location: https://it.wopweb.net/services/counters/counter_img.php?id=17346455&tp=6
Content-Length: 284
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
it.wopweb.net/services/counters/counter_img.php?id=17346455
217.61.15.230301 Moved Permanently 275 B URL HTTP/1.1 it.wopweb.net/services/counters/counter_img.php?id=17346455
IP 217.61.15.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0e1ddebd192b8872c2f1984ccd4a3799
3892372adf823e6a92ccf99a3dd5ef04643a3b13
57f18b951471bcd799c46ba1d4c89e4022911f7de8b3746499cb7a1b57359f1a
GET /services/counters/counter_img.php?id=17346455 HTTP/1.1
Host: it.wopweb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: Apache
Location: https://it.wopweb.net/services/counters/counter_img.php?id=17346455
Content-Length: 275
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c3bddb943853a0512b1bd3c5113d3712
1c558ba1a945fc95ba62e26a6087ca9bba268b9d
8b0d50b94d34ecdb85d36632ae336e3456e79333b793b5810e2d2eaf0f04fc7b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: ECS (amb/6B83)
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c74880fa99032b5c3831c179d702419
0020b368309735c94d8053d3781a7efb7283cfc5
437e2d4e2bbfb33b0ff696172378ce55a0a5ed005a1b8c4005eab4a6995a3042
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3353
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:43 GMT
Last-Modified: Mon, 23 Jan 2023 04:39:50 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
1.bp.blogspot.com/_FpagXekVaB4/R5udLq_LtkI/AAAAAAAAARQ/-277GAsatok/S220-s80/4675y481wy0olg.gif
142.250.74.129200 OK 5.2 kB URL HTTP/2 1.bp.blogspot.com/_FpagXekVaB4/R5udLq_LtkI/AAAAAAAAARQ/-277GAsatok/S220-s80/4675y481wy0olg.gif
IP 142.250.74.129:0
File type GIF image data, version 89a, 63 x 80\012- data
Hash 3142e9bdcc36d6216d5b124ebd62dfaa
d4e23182ffbe4ff66c6ddd2c3dc4d2dc9bd1650a
32150405230640e47dd58825929219ac4218e36580f73e40017bea1d2d50040c
GET /_FpagXekVaB4/R5udLq_LtkI/AAAAAAAAARQ/-277GAsatok/S220-s80/4675y481wy0olg.gif HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sfizintavola.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v5c9"
expires: Tue, 24 Jan 2023 05:35:43 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="4675y481wy0olg.gif"
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 23 Jan 2023 05:35:43 GMT
server: fife
content-length: 5168
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3942f67e2cc00fdf75e15cbc0f7d95ba
73b1e73fa54fd6fec8a2391729a624704ae8107f
fdb6616cb8ada5de76b30070a5f5fb4a919f9115e0a3cf61f08f924b16fe28f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
it.wopweb.net/services/counters/counter_img.php?id=17346455&tp=6
217.61.15.230301 Moved Permanently 284 B URL HTTP/1.1 it.wopweb.net/services/counters/counter_img.php?id=17346455&tp=6
IP 217.61.15.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1695b1c3769dc27f9706db9c38fab7e5
c8119c481068797783d910db4d89e80984e0a235
ab096c6da64a81a3415e070f9349826f4d2edf2dab71d800449290d43d15c1fc
GET /services/counters/counter_img.php?id=17346455&tp=6 HTTP/1.1
Host: it.wopweb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sfizintavola.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: Apache
Location: https://it.wopweb.com/services/counters/counter_img.php?id=17346455&tp=6
Content-Length: 284
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.altavista.com/static/scripts/translate_italien.js
212.82.100.137301 Moved Permanently 1.5 kB URL HTTP/1.1 www.altavista.com/static/scripts/translate_italien.js
IP 212.82.100.137:0
ASN #34010 Yahoo! UK Services Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (339)
Hash 1f54bb772898601864114ea6f0b12b25
6e7988e843cc302509d64e192d18c83b2c7dec3a
31c4da7079c2bd7ca47ff1c5088456fefa48f6ab5a5836950d4b255b4b5e0d0b
GET /static/scripts/translate_italien.js HTTP/1.1
Host: www.altavista.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 301 Moved Permanently
date: Mon, 23 Jan 2023 05:35:43 GMT
p3p: policyref="https://policies.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
location: https://search.yahoo.com/?fr=altavista
cache-control: private
content-type: text/html
x-envoy-upstream-service-time: 1
server: ATS
Content-Encoding: gzip
Content-Length: 1518
Age: 1
Connection: keep-alive
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block; report=https://csp.search.yahoo.com/xssreport
Referrer-Policy: no-referrer-when-downgrade
it.wopweb.net/services/counters/counter_img.php?id=17346455
217.61.15.230301 Moved Permanently 275 B URL HTTP/1.1 it.wopweb.net/services/counters/counter_img.php?id=17346455
IP 217.61.15.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2cca2f260641b155ead11ac902d6ab0e
aa07bb8e83a36c30f2bb6e4085ed06959c18efc4
f4aff03cb41f0a9688c8df24b2284d2b67dd5daa12c598414bac712c1e995e44
GET /services/counters/counter_img.php?id=17346455 HTTP/1.1
Host: it.wopweb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sfizintavola.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Mon, 23 Jan 2023 05:35:42 GMT
Server: Apache
Location: https://it.wopweb.com/services/counters/counter_img.php?id=17346455
Content-Length: 275
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.petitchef.it/hit.php?site_id=4638
172.67.207.230301 Moved Permanently 42 kB URL HTTP/2 www.petitchef.it/hit.php?site_id=4638
IP 172.67.207.230:0
File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Hash cf304c8b0f2dff4c476be921627337ae
f7e94b032982fa40fcf9dd8510daf5043d5f3755
cd4e46aa493d9aa16065d42ff2319bbaf6920ae203880a7e89578fd0447a7e96
GET /hit.php?site_id=4638 HTTP/1.1
Host: www.petitchef.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sfizintavola.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Mon, 23 Jan 2023 05:35:43 GMT
content-type: text/html; charset=UTF-8
x-trace: 2BCAEF5E6871323F965866490439880B6F2DD9E301180891A11F05A44200
location: /assets/images/minibanner.gif
cache-control: max-age=60, private
expires: Mon, 23 Jan 2023 05:36:43 GMT
x-iplb-request-id: A29EDEDB:63B8_93878F24:01BB_63CE1CAF_125A318:28A37
x-iplb-instance: 44763
set-cookie: SERVERID198687=web3|Y84cs|Y84cs; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=52CbZgp%2Fz9CAiZpN82F19yMBFRXCAlSi5XOxho1iDH4HMeePLFCXCdXcPYdhSukYMu8LqiCeYgllAC6Oo4GTQPCUZBVEmmQU06lPEKo%2Bsu0JYI37LY%2Fji%2BMVrXxHXnnZIOkF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78de2ae5d916b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
50.112.247.170101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 50.112.247.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hhzWdvKjNZ2VbJbk5mzAHA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hGcQ1eGEvUikL4AuMerLvugJGOw=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c3bddb943853a0512b1bd3c5113d3712
1c558ba1a945fc95ba62e26a6087ca9bba268b9d
8b0d50b94d34ecdb85d36632ae336e3456e79333b793b5810e2d2eaf0f04fc7b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:43 GMT
Etag: "63cc9a47-117"
Server: ECS (amb/6BA6)
Content-Length: 279
www.petitchef.it/assets/images/minibanner.gif
172.67.207.230200 OK 15 kB URL HTTP/2 www.petitchef.it/assets/images/minibanner.gif
IP 172.67.207.230:0
File type GIF image data, version 89a, 120 x 60\012- data
Hash e873dedb4c2b9cc3cc7757bc6300a1b6
0a4c8bd0ec7cabf2b8f02e1826fe6029ba48c546
b2a7da9900ec6d6c62b46d03ef833b2059618cd1f053931ce1112248c509ca9f
GET /assets/images/minibanner.gif HTTP/1.1
Host: www.petitchef.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sfizintavola.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 23 Jan 2023 05:35:43 GMT
content-type: image/gif
content-length: 15286
last-modified: Fri, 28 Oct 2022 10:02:49 GMT
cache-control: max-age=15552000, private
expires: Sat, 22 Jul 2023 05:35:43 GMT
x-iplb-request-id: A29EDEE9:7222_93878F24:01BB_63CE1CAF_1264911:26DF
x-iplb-instance: 44764
cf-cache-status: BYPASS
set-cookie: SERVERID198687=web3|Y84cs|Y84cs; path=/; HttpOnly
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B0J9%2BPTq81xluQdGV2AT5lktah2KL6FjSeNj%2FLerEMhuD3SAwYd%2BAcriH%2Fef3z9Ua3YEcTHupPSa5Xt9EbK6Ed0v5vsbIxdIvaFKw%2BlCM0%2FtoT8s4QBDdrUateg9qkfc%2BPaA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78de2ae6c9adb511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img339.imageshack.us/img339/5849/salatini20micronqd4yo7.jpg
38.99.77.16404 Not Found 168 B URL HTTP/1.1 img339.imageshack.us/img339/5849/salatini20micronqd4yo7.jpg
IP 38.99.77.16:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img339/5849/salatini20micronqd4yo7.jpg HTTP/1.1
Host: img339.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Mon, 23 Jan 2023 05:35:43 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
it.wopweb.com/services/counters/counter_img.php?id=17346455
217.61.15.230200 OK 260 B URL HTTP/1.1 it.wopweb.com/services/counters/counter_img.php?id=17346455
IP 217.61.15.230:0
File type PNG image data, 60 x 30, 2-bit colormap, non-interlaced\012- data
Hash a46a02c115ef1f66b69b05f0098f501f
bb203a07d7bd8ac9ece2e04cf0c7f5702141ccab
7215254c1c202bb6010a1f52168460e43ce8af4d005c1fc331ffa3420ed2929a
GET /services/counters/counter_img.php?id=17346455 HTTP/1.1
Host: it.wopweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sfizintavola.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 23 Jan 2023 05:35:43 GMT
Server: Apache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 23 Jan 2023 05:35:43 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 260
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
it.wopweb.com/services/counters/counter_img.php?id=17346455&tp=6
217.61.15.230200 OK 602 B URL HTTP/1.1 it.wopweb.com/services/counters/counter_img.php?id=17346455&tp=6
IP 217.61.15.230:0
File type PNG image data, 180 x 54, 2-bit colormap, non-interlaced\012- data
Hash 7438c556fa4ca819b835c0b81e3f6c73
69d94af0011979819275be7401fe29bbbf494f32
ee00f70abbf05fbdb40aa06c579e6cbb86aec18bc2fb2468718ceed130843997
GET /services/counters/counter_img.php?id=17346455&tp=6 HTTP/1.1
Host: it.wopweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sfizintavola.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 23 Jan 2023 05:35:43 GMT
Server: Apache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 23 Jan 2023 05:35:43 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 602
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
img442.imageshack.us/img442/7835/emailmdclr250261tg0.gif/
38.99.77.17404 Not Found 168 B URL HTTP/1.1 img442.imageshack.us/img442/7835/emailmdclr250261tg0.gif/
IP 38.99.77.17:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img442/7835/emailmdclr250261tg0.gif/ HTTP/1.1
Host: img442.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Mon, 23 Jan 2023 05:35:43 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11769
Expires: Mon, 23 Jan 2023 08:51:52 GMT
Date: Mon, 23 Jan 2023 05:35:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11769
Expires: Mon, 23 Jan 2023 08:51:52 GMT
Date: Mon, 23 Jan 2023 05:35:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11769
Expires: Mon, 23 Jan 2023 08:51:52 GMT
Date: Mon, 23 Jan 2023 05:35:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mjK4GJ3UCEuHk4XqmXdZCWHTVvJeX8Z2HFaem2GYzqfqlPSd_h6DfA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 01:53:55 GMT
age: 13308
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd306d72a-970f-418b-a611-d3fd05043123.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd306d72a-970f-418b-a611-d3fd05043123.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 008bdbc8d07694aa05dd561e14e5c8e7
2c4727cd94e60fb6c4f8f09361a479f723e86fc2
f92c2af227f065fdae6976dd2dd23545a3211d79037bbf184b46cb976a2758de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd306d72a-970f-418b-a611-d3fd05043123.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9297
x-amzn-requestid: bd94feb6-b9fe-4893-aa09-d5841a111e1b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9KRKE85oAMFldA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8573a-08f0f4717d20f7311a32ba52;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 20:31:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EnG1aHTi5HUYUOI6SIm6Rl_-rP1OxoM7iIqyMgg8Lh1-amNhbNGUHA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:47:21 GMT
age: 28102
etag: "2c4727cd94e60fb6c4f8f09361a479f723e86fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98ca818c-7a5c-4b9c-abcd-d5c3863dc494.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98ca818c-7a5c-4b9c-abcd-d5c3863dc494.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 54ac06f5a4f9c73950b5d4deadcd89c5
314dedb6225295b6a297bd3926b2cb6ec26b3503
b5e70ff3468e371978f7ee5925ea134d3e4924133706e40c639f0bb801626965
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98ca818c-7a5c-4b9c-abcd-d5c3863dc494.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11315
x-amzn-requestid: 420a0e99-7031-4ef7-9abf-5a59a171f3f4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEr_-EKSIAMFp6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb59ff-48197ee003c680be05b71483;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:20:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aCOhgIXbrMLJo8nxBllBmPeDwl1RhpHReh5zkZM_jE5KifHfayG9Hg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 04:02:00 GMT
age: 5623
etag: "314dedb6225295b6a297bd3926b2cb6ec26b3503"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f055318-7ab9-4f4f-a005-7938c4d1d126.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f055318-7ab9-4f4f-a005-7938c4d1d126.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ecf206cacc8cdeeba5f730d98e0570b7
fe131d1a8686593034547d3a465903912abb4cc7
d85a51760a2d0a3587d5e3a876aaf689d7a2efedb3e98a408bd8b88711dc7690
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f055318-7ab9-4f4f-a005-7938c4d1d126.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6579
x-amzn-requestid: 41de2a77-b735-4ee7-9dba-743be856ec5e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFLFwGQ4oAMFu8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb8bbe-3419ffe67988decf6da025ed;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 06:52:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: T0_2xjAEStWvc5m-PJM4w3pr9pQuPprYOnx5LlS66Pt3d5WmA31tHQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 22:02:39 GMT
etag: "fe131d1a8686593034547d3a465903912abb4cc7"
content-type: image/jpeg
age: 27184
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaa1a7c7-ed4d-4a6a-867a-975985af5d23.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaa1a7c7-ed4d-4a6a-867a-975985af5d23.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 698fbc8504644597a8b1a500b4a8f156
449f1532349ff76b0a81227e2a8a3d15bca93537
4fa7bb1f91ae92b3af9ea23585c3848a3238f72acc26071660d349e2a2ea8668
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaa1a7c7-ed4d-4a6a-867a-975985af5d23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6046
x-amzn-requestid: 880e59e6-34de-44a3-853b-e454053a1776
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: excFiHuyIAMF2-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a6f0-093645e01a00522047c0c525;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b-plvHTD9o_G64bSSw1EyYpA7S5SYp8EyIkEnBw76WqbQYDcW-Yrmw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:02:46 GMT
age: 30777
etag: "449f1532349ff76b0a81227e2a8a3d15bca93537"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0247217-9730-4fdb-8be7-667f0568ffc2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0247217-9730-4fdb-8be7-667f0568ffc2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d95b4a29d3337c5c2ca7e4d31fa3a0b6
4c6d22bdc48d7011e2c875ee18876da6a8401669
23421c7f67582c927dacf52c25779e43f5196a40fb1b70467ed737c2417ba39e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0247217-9730-4fdb-8be7-667f0568ffc2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10822
x-amzn-requestid: 60a33a3f-36b1-4f6e-a17b-964118a9da31
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3AcMGeNoAMFs7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5e11a-7673a87f26759a1a64e4aab2;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 23:43:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JqvCEzxKP39gLHZjcr7R303XMAlfQz2nAtz-Wv_9W0rsAYJ3ODczPg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:58:40 GMT
age: 27423
etag: "4c6d22bdc48d7011e2c875ee18876da6a8401669"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
badge.facebook.com/badge/1478018436.1.193334397.png
31.13.72.8301 Moved Permanently 0 B URL HTTP/1.1 badge.facebook.com/badge/1478018436.1.193334397.png
IP 31.13.72.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /badge/1478018436.1.193334397.png HTTP/1.1
Host: badge.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://badge.facebook.com/badge/1478018436.1.193334397.png
Content-Type: text/plain
Server: proxygen-bolt
Date: Mon, 23 Jan 2023 05:35:46 GMT
Connection: keep-alive
Content-Length: 0
search.yahoo.com/?fr=altavista
212.82.100.137200 OK 13 kB URL HTTP/2 search.yahoo.com/?fr=altavista
IP 212.82.100.137:0
ASN #34010 Yahoo! UK Services Limited
Hash eedf3e45b92d3ca0ae2a454701cf2c39
c2402c0470412514fa67f75b2260482023cb2111
de2f464b7b9b9243a88125fa01b6d9a59766f5482810e834edd6f073688da1be
GET /?fr=altavista HTTP/1.1
Host: search.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 23 Jan 2023 05:35:43 GMT
p3p: policyref="https://policies.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
set-cookie: PROMO=ltv_pid=altavista<v_new=1<v_ts=1674452143<v_sts=1674452143<v_c=1; expires=Tue, 23-Jan-2024 05:35:43 GMT; Max-Age=31536000; path=/; domain=.search.yahoo.com
secure_search_bypass: true
x-frame-options: DENY
content-security-policy: frame-ancestors 'none'; default-src 'self' https://*.yahoo.com https://*.yimg.com; script-src 'self' 'unsafe-inline' 'nonce-MauJZZcTOPEgbMSs0ND9Tw==' 'unsafe-eval' https://*.yahoo.net https://*.yahoo.com https://*.yimg.com https://*.uservoice.com *.oath.com https://*.hereapi.com https://*.youtube.com *.yahooapis.com blob:; style-src 'self' 'unsafe-inline' https://assets.video.yahoo.net https://*.yimg.com; img-src 'self' data: blob: https://*.bing.net https://*.yimg.com https://s.ytimg.com yahoo.com https://*.yahoo.com https://*.bing.com *.here.com *.wc.yahoodns.net https://*.doubleclick.net https://sb.scorecardresearch.com https://*.adaptv.advertising.com https://*.vidible.tv https://*.yahoo.net https://*.footprint.net https://*.akamaized.net https://*.cloudfront.net https://*.llnwd.net; frame-src 'self' https://*.yahoo.net https://*.youtube.com https://s.yimg.com https://*.yahoo.com https://yahoo.uservoice.com https://*.vidible.tv https://*.advertising.com https://fun.games.com/; media-src * blob:; object-src *; connect-src * blob:; font-src * data:; child-src blob:;
vary: Accept-Encoding
content-encoding: gzip
cache-control: private
content-length: 25363
content-type: text/html; charset=UTF-8
x-envoy-upstream-service-time: 41
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, enforce
x-content-type-options: nosniff
x-xss-protection: 1; mode=block; report=https://csp.search.yahoo.com/xssreport
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
badge.facebook.com/badge/1478018436.1.193334397.png
31.13.72.8302 Found 0 B URL HTTP/2 badge.facebook.com/badge/1478018436.1.193334397.png
IP 31.13.72.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /badge/1478018436.1.193334397.png HTTP/1.1
Host: badge.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sfizintavola.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://static.xx.fbcdn.net/rsrc.php/v3/y4/r/Hn3hZ7_eVoc.png
x-fb-rlafr: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: rI+JgkBNJE8tg72AzsBck0ZEgOPdW/I8i9czJyOwbcv3GKPTmX7FnaIbP9jZ5ffXIZb674ofRs7Hnxs1AfLSIw==
content-length: 0
date: Mon, 23 Jan 2023 05:35:46 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.blogcatalog.com/images/buttons/blogcatalog5.gif
34.102.136.180200 OK 2.6 kB URL HTTP/1.1 www.blogcatalog.com/images/buttons/blogcatalog5.gif
IP 34.102.136.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 6e0e72649d50296f15557e931c1e05e9
a86f0f6aa222653013fe3c36d434f67057c85e64
895c0f60e59fdd84e53ab7ddb8866c8f49e45386632dca017efedd48313c9e0c
GET /images/buttons/blogcatalog5.gif HTTP/1.1
Host: www.blogcatalog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 23 Jan 2023 05:35:46 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Wed, 04 Jan 2023 12:09:23 GMT
ETag: "63b56c73-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_LwEWTLz6Ge7TA2kP1t3UMDe56mXeKetnP74N2YPLKq8RhNPM3aGq3XHsO9ix8j425qp/lCEHwOOfPrpeTzBL3Q
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: system=PW;Path=/;Max-Age=86400;
caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
traffic_target=gd;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c114f3be1c64caf537bbc5732161627c
e11d3fa9ed68273974a0d0ac438688a68521e373
8be011e5b2e38066e906b6d0860fad14ad2fa751a055d87421d64fcd7c8bd2b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4182
Cache-Control: max-age=113359
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 05:35:46 GMT
Etag: "63cd242b-1d7"
Expires: Tue, 24 Jan 2023 13:05:05 GMT
Last-Modified: Sun, 22 Jan 2023 11:55:23 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
sfizintavola.blogspot.com/favicon.ico
142.250.74.65200 OK 412 B URL HTTP/1.1 sfizintavola.blogspot.com/favicon.ico
IP 142.250.74.65:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: sfizintavola.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Mon, 23 Jan 2023 05:35:46 GMT
Date: Mon, 23 Jan 2023 05:35:46 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 28 Nov 2022 08:26:05 GMT
ETag: W/"09bc68a01a5f1c759a380cfb60693e0e4700eec58f11fd9236b47b10d57186e0"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
static.xx.fbcdn.net/rsrc.php/v3/y4/r/Hn3hZ7_eVoc.png
31.13.72.12200 OK 593 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y4/r/Hn3hZ7_eVoc.png
IP 31.13.72.12:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 8d968697fbab95c8dbc489a9d78103b8
9f1c5a32ca92a9a5cd41e97b6bb86fd0d6d10160
cf310a186e16b018cd0c9b94e7821d814aa87dbb69cf027aa662ccdcc000e509
GET /rsrc.php/v3/y4/r/Hn3hZ7_eVoc.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sfizintavola.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: jZaGl/urlcjbxImp14EDuA==
expires: Tue, 23 Jan 2024 04:37:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: v3N3vFSPG0UzLnEazbTNSYSzBw6PwnaE0jxcQWIB0UF94OfT6sWXYVnrVY33rXFLVyO7RZJwri5VyIxwtH08ng==
content-length: 593
x-fb-trip-id: 1904183273
date: Mon, 23 Jan 2023 05:35:46 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www3.clustrmaps.com/counter/index2.php?url=http://sfizintavola.blogspot.com
104.22.62.219301 Moved Permanently 185 B URL HTTP/1.1 www3.clustrmaps.com/counter/index2.php?url=http://sfizintavola.blogspot.com
IP 104.22.62.219:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash a107aba61c93cdf7882a9c6750a4b8fc
8b9bea8c8373e3f0386e14134443c1873e3cf219
69758c97903bb258a8ccdea130baf19bb258861c475667b5320454d143bcbd3a
GET /counter/index2.php?url=http://sfizintavola.blogspot.com HTTP/1.1
Host: www3.clustrmaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Mon, 23 Jan 2023 05:35:46 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: http://clustrmaps.com/counter/index2.php?url=http://sfizintavola.blogspot.com
CF-Cache-Status: DYNAMIC
Set-Cookie: __cflb=02DiuHSZezc8wMhtQpV9uunguVMVwUrZBMgc9teCQKU6x; SameSite=Lax; path=/; expires=Tue, 24-Jan-23 04:35:46 GMT; HttpOnly
Server: cloudflare
CF-RAY: 78de2afd1bcbb524-OSL
c.gigcount.com/wildfire/IMP/CXNID=2000002.0NXC/bT*xJmx*PTEyOTQ4MjI*Mzg1OTMmcHQ9MTI5NDgyMjQ*NTIxOCZwPTE4MDMxJmQ9Jmc9MSZvPTI4OWE3NTY3OGY*YjRkOGJhYmFl/MDNjODgyZDcxNzVl.gif
103.224.182.251200 OK 0 B URL HTTP/1.1 c.gigcount.com/wildfire/IMP/CXNID=2000002.0NXC/bT*xJmx*PTEyOTQ4MjI*Mzg1OTMmcHQ9MTI5NDgyMjQ*NTIxOCZwPTE4MDMxJmQ9Jmc9MSZvPTI4OWE3NTY3OGY*YjRkOGJhYmFl/MDNjODgyZDcxNzVl.gif
IP 103.224.182.251:0
ASN #133618 Trellian Pty. Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wildfire/IMP/CXNID=2000002.0NXC/bT*xJmx*PTEyOTQ4MjI*Mzg1OTMmcHQ9MTI5NDgyMjQ*NTIxOCZwPTE4MDMxJmQ9Jmc9MSZvPTI4OWE3NTY3OGY*YjRkOGJhYmFl/MDNjODgyZDcxNzVl.gif HTTP/1.1
Host: c.gigcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 200 OK
date: Mon, 23 Jan 2023 05:35:46 GMT
server: Apache/2.4.38 (Debian)
set-cookie: __tad=1674452146.1724224; expires=Thu, 20-Jan-2033 05:35:46 GMT; Max-Age=315360000
content-length: 0
content-type: text/html; charset=UTF-8
connection: close
clustrmaps.com/counter/index2.php?url=http://sfizintavola.blogspot.com
172.67.26.162200 OK 15 kB URL HTTP/1.1 clustrmaps.com/counter/index2.php?url=http://sfizintavola.blogspot.com
IP 172.67.26.162:0
File type PNG image data, 180 x 117, 8-bit/color RGBA, non-interlaced\012- data
Hash 39f4fb9a3528db8a6191fcb4fb4ad29d
c8a1ed0f109960d264f6465b90ae50f9731ce0d0
f6e8384eff3636b93c78f12ec8c71da458e0a5f1245fac3f5203580960e1c6cc
GET /counter/index2.php?url=http://sfizintavola.blogspot.com HTTP/1.1
Host: clustrmaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://sfizintavola.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 23 Jan 2023 05:35:47 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.9
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: DENY
CF-Cache-Status: DYNAMIC
Set-Cookie: PHPSESSID=m3hd8fda5v400g1uhhq205s9np; path=/
__cflb=02DiuHcKAbFByoMNpCmq9XYDUEEr4TV2HtMmBe2AqAKHN; SameSite=Lax; path=/; expires=Tue, 24-Jan-23 04:35:47 GMT; HttpOnly
Server: cloudflare
CF-RAY: 78de2afe8f63b511-OSL
sfizintavola.blogspot.com/%E2%80%9Dhttp://www.dolcitalia.net/fotosettimana/BlogDolci.gif%E2%80%9D
142.250.74.65404 Not Found 0 B URL HTTP/1.1 sfizintavola.blogspot.com/%E2%80%9Dhttp://www.dolcitalia.net/fotosettimana/BlogDolci.gif%E2%80%9D
IP 142.250.74.65:0
Analyzer Verdict Alert fortinet Phishing
GET /%E2%80%9Dhttp://www.dolcitalia.net/fotosettimana/BlogDolci.gif%E2%80%9D HTTP/1.1
Host: sfizintavola.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sfizintavola.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 23 Jan 2023 05:35:43 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 16770
Server: GSE