r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5194
Expires: Sun, 04 Dec 2022 10:38:14 GMT
Date: Sun, 04 Dec 2022 09:11:40 GMT
Connection: keep-alive
blog.comredcr.com/
213.136.66.216301 Moved Permanently 162 B IP 213.136.66.216:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 04 Dec 2022 09:11:40 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://blog.comredcr.com/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13011
Expires: Sun, 04 Dec 2022 12:48:31 GMT
Date: Sun, 04 Dec 2022 09:11:40 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67e9370f1bf3e4946a01f346eeae8966
aaab391d1134302d718de7a0d5edbedf884633e6
27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6580
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 09:11:40 GMT
Last-Modified: Sun, 04 Dec 2022 07:22:00 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9aYeyQ4JPzGTxQARwl7xv+BdsNQPRnximtrlP0KyBF3tp5HMMvAImnSV74pw8kZEmFav0ZRBdus=
x-amz-request-id: SHPNZ73294ZJKCWR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 08:46:54 GMT
age: 1486
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 08:20:05 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3095
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fed1bf83bd51b1a0f2335e110723d36d
4bb6beb14ca863ef06405de87143a1941c9de42a
d79162cfe8ba35db4fff38886d568dbdb680d9e6072688994aca1d8b35978aec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D79162CFE8BA35DB4FFF38886D568DBDB680D9E6072688994ACA1D8B35978AEC"
Last-Modified: Fri, 02 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21582
Expires: Sun, 04 Dec 2022 15:11:23 GMT
Date: Sun, 04 Dec 2022 09:11:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 09:08:58 GMT
cache-control: public,max-age=3600
age: 163
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6572
Cache-Control: max-age=92682
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 09:11:41 GMT
Etag: "638b11ab-1d7"
Expires: Mon, 05 Dec 2022 10:56:23 GMT
Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
blog.comredcr.com/
213.136.66.216200 OK 19 kB IP 213.136.66.216:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9455), with CRLF, LF line terminators
Hash 6ce18326f8af68a6423d35fecd680efa
ec4a15aa0fce6619f31a44f436ca4306a72693fd
6287781b8029c64e5fb26d3646995ea3d589a7d7c5150f3369b328da7d52459a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: text/html; charset=UTF-8
content-length: 19157
link: <https://blog.comredcr.com/wp-json/>; rel="https://api.w.org/", <https://wp.me/54b0c>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.186.117.16101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.117.16:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: u0kif9zvwUY5pyXuOUbexg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3jBhkesjssR2TZPjODlQrEsB5Fo=
blog.comredcr.com/wp-includes/css/classic-themes.min.css?ver=1
213.136.66.216200 OK 189 B URL HTTP/2 blog.comredcr.com/wp-includes/css/classic-themes.min.css?ver=1
IP 213.136.66.216:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: text/css
content-length: 189
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 07:23:56 GMT
etag: "d9-5ec77b9364969-gzip"
accept-ranges: bytes
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
cache-control: public
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 09:11:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-54845722-1
172.217.21.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-54845722-1
IP 172.217.21.168:0
File type ASCII text, with very long lines (1921)
Hash 51be3b7ced1635d62eeaef35f5f04f37
66226036f66ac616d81d31d744d30bfdbb4f1036
d8d5db647120ea05d83f4f5b8b33d38d141d5fc9ba93a200a0ce81d947f56c12
GET /gtag/js?id=UA-54845722-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Dec 2022 09:11:41 GMT
expires: Sun, 04 Dec 2022 09:11:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43597
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
213.136.66.216200 OK 126 B URL HTTP/2 blog.comredcr.com/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
IP 213.136.66.216:0
File type ASCII text, with no line terminators
Hash ac7ecbcdc01fb980628e0ca076fd2c39
2df6d7adf64efc42e8f46243d5620c62879b59be
9f2cb415bb1b9656398091a9b2657b2dfe043c03a6526a9a12c6af51062e54c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/x-javascript
content-length: 126
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sun, 27 Feb 2022 04:06:13 GMT
etag: "81-5d8f80d84af73-gzip"
accept-ranges: bytes
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
cache-control: public
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 09:11:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blog.comredcr.com/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20191001
213.136.66.216200 OK 369 B URL HTTP/2 blog.comredcr.com/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20191001
IP 213.136.66.216:0
File type ASCII text, with very long lines (685), with no line terminators
Hash accd80b294f42169b1e447e68bacfffe
40847092d82d78897a8219b270b22838fcc0bb95
35e8294d38f054cd6fbcdef72076443685888546d93b41a596e981a5e9a61552
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/_inc/build/photon/photon.min.js?ver=20191001 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/x-javascript
content-length: 369
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Fri, 04 Mar 2022 04:40:44 GMT
etag: "2ad-5d95d1e253340-gzip"
accept-ranges: bytes
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
cache-control: public
x-powered-by: PleskLin
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/plugins/disqus-comment-system/public/js/comment_count.js?ver=3.0.22
213.136.66.216200 OK 440 B URL HTTP/2 blog.comredcr.com/wp-content/plugins/disqus-comment-system/public/js/comment_count.js?ver=3.0.22
IP 213.136.66.216:0
Hash e963c4a3c6e18db990b58317e4bbc928
42123f25b91d513a1faf0bc65c80d3a3127c65d2
c5bb812669764f7c768b3ecd9839cab7821523a14e388f0ff7ac664547d8a789
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/disqus-comment-system/public/js/comment_count.js?ver=3.0.22 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/x-javascript
content-length: 440
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sun, 27 Feb 2022 04:06:39 GMT
etag: "379-5d8f80f0ff323-gzip"
accept-ranges: bytes
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
cache-control: public
x-powered-by: PleskLin
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
213.136.66.216200 OK 453 B URL HTTP/2 blog.comredcr.com/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
IP 213.136.66.216:0
File type ASCII text, with very long lines (1519), with no line terminators
Hash 5a732822654caf2a1d7011badcde74fa
7684b103b5d34070583b4264590b4f17cfd3ce0f
0f94e8b0ef6f04e1c0af0fb684ec1ed3d7311dd39f2ce09fdce1e5bf9c0c85b6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: text/css
last-modified: Sun, 27 Feb 2022 04:06:13 GMT
cache-control: public
etag: W/"621af8b5-5ef"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0a5d4410de2c8c58acaeee2c053554f8
ebd2db9a2c53d4c9ec95a189de1ab9ec4f75cb6e
9c90a5c68feafea3ca289e49d566f85e58ec2fa5f4cc24716ceb1e27ee970ea6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4303
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 09:11:41 GMT
Last-Modified: Sun, 04 Dec 2022 07:59:58 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279
blog.comredcr.com/wp-content/themes/catch-evolution/images/search.png
213.136.66.216200 OK 441 B URL HTTP/2 blog.comredcr.com/wp-content/themes/catch-evolution/images/search.png
IP 213.136.66.216:0
File type PNG image data, 20 x 20, 8-bit colormap, non-interlaced\012- data
Hash cc82cf94dbbf95bfcfc3e7efe53b380a
fcd3978ba81fd3f477c66ecab4142491a2a2647d
c756bb976d9325b0e311d7e701e908d5f85f558d529bd60efd7e876b174fdc6a
GET /wp-content/themes/catch-evolution/images/search.png HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/wp-content/themes/catch-evolution/style.css?ver=20220227-41039
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: image/png
content-length: 441
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Sun, 27 Feb 2022 04:10:39 GMT
etag: "1b9-5d8f81d5e5f1c"
accept-ranges: bytes
referrer-policy: no-referrer-when-downgrade
pragma: public
cache-control: public
x-powered-by: PleskLin
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.0
213.136.66.216200 OK 36 kB URL HTTP/2 blog.comredcr.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.0
IP 213.136.66.216:0
File type ASCII text, with very long lines (1577)
Hash d9923c155f52fa40fb23b0ec8c7b1b97
af2667e756f107d0f30db43d881c7dcd42f9027f
0a87a00a15c770deb19e71f0df66922019d3fddedd5360b4b26ea363179479e6
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.0 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/x-javascript
last-modified: Mon, 07 Nov 2022 19:52:12 GMT
cache-control: public
etag: W/"636961ec-2e7a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0a5d4410de2c8c58acaeee2c053554f8
ebd2db9a2c53d4c9ec95a189de1ab9ec4f75cb6e
9c90a5c68feafea3ca289e49d566f85e58ec2fa5f4cc24716ceb1e27ee970ea6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4303
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 09:11:41 GMT
Last-Modified: Sun, 04 Dec 2022 07:59:58 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279
i0.wp.com/blog.comredcr.com/wp-content/uploads/2016/06/riesgos-de-Internet-y-las-redes-sociales-para-los-ni%C3%B1os.jpg?w=650&ssl=1
192.0.77.2200 OK 18 kB URL HTTP/2 i0.wp.com/blog.comredcr.com/wp-content/uploads/2016/06/riesgos-de-Internet-y-las-redes-sociales-para-los-ni%C3%B1os.jpg?w=650&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 650x325, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0a8baf991a02ebd0e10c76f6e05b8b92
dbc05c8723a43881c97193265b7e68e41eefefeb
64b772439574077d5ad6b8ffd5b91e365ab7af2274fdde84f933966d2b932cbf
GET /blog.comredcr.com/wp-content/uploads/2016/06/riesgos-de-Internet-y-las-redes-sociales-para-los-ni%C3%B1os.jpg?w=650&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:42 GMT
content-type: image/webp
content-length: 18344
last-modified: Wed, 30 Nov 2022 08:11:47 GMT
expires: Fri, 29 Nov 2024 20:11:47 GMT
cache-control: public, max-age=63115200
link: <https://blog.comredcr.com/wp-content/uploads/2016/06/riesgos-de-Internet-y-las-redes-sociales-para-los-ni%C3%B1os.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "b4df70de597ee704"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/blog.comredcr.com/wp-content/uploads/2017/11/Consejos-para-carga-tu-nuevo-movil-por-primera-vez.jpg?w=650&ssl=1
192.0.77.2200 OK 12 kB URL HTTP/2 i0.wp.com/blog.comredcr.com/wp-content/uploads/2017/11/Consejos-para-carga-tu-nuevo-movil-por-primera-vez.jpg?w=650&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 650x325, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 763d6d9bb6e32da0da54e24e8b804dd3
7298c74349917bd99a810ea88911473d55b1d4f9
b63c5adb7671f5c0675fba4df93874e495ea9cd490eda245ca3252eb67175fb9
GET /blog.comredcr.com/wp-content/uploads/2017/11/Consejos-para-carga-tu-nuevo-movil-por-primera-vez.jpg?w=650&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:42 GMT
content-type: image/webp
content-length: 12090
last-modified: Sun, 04 Dec 2022 09:11:42 GMT
expires: Tue, 03 Dec 2024 21:11:42 GMT
cache-control: public, max-age=63115200
link: <https://blog.comredcr.com/wp-content/uploads/2017/11/Consejos-para-carga-tu-nuevo-movil-por-primera-vez.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a4eef2913602480a"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
blog.comredcr.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6288a0ba81da272d95f0921dcb46d6c4
213.136.66.216200 OK 3.2 kB URL HTTP/2 blog.comredcr.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6288a0ba81da272d95f0921dcb46d6c4
IP 213.136.66.216:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash ef55d372b019231e35ae71cf2d5311ff
94cdfedb2c082959825a0dc7caa5d05b83a73997
8c6869d47264ca7eabf342b9dadf93e6b63b55b749fb4e33e8b2543b5fbe4c15
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6288a0ba81da272d95f0921dcb46d6c4 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: text/css
last-modified: Wed, 13 Nov 2019 07:16:14 GMT
cache-control: public
etag: W/"5dcbadbe-105a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
192.229.233.25200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 192.229.233.25:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 7899fffaf0046efb7f9be2495d9dc928
d4c60d88e8deea577a50f9d20e1b6b3a20cba2cf
07d50450f22df0588cc1b67f5a124cb91d99a032a229586eb7dc490cce9f7f30
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 25
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:42 GMT
Etag: "6633f9603c759c40d9b200995454f17c+gzip"
Last-Modified: Wed, 02 Nov 2022 19:43:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F710)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29221
blog.comredcr.com/wp-content/plugins/kk-star-ratings/src/core/public/js/kk-star-ratings.min.js?ver=5.2.9
213.136.66.216200 OK 21 kB URL HTTP/2 blog.comredcr.com/wp-content/plugins/kk-star-ratings/src/core/public/js/kk-star-ratings.min.js?ver=5.2.9
IP 213.136.66.216:0
File type ASCII text, with very long lines (1278)
Hash 2f7556e9b7e820730f836a4c512f0d98
b2cf5986348f3bd1af101074eaad2d7fe5bad988
d55b150a4e9a4eab58071783e766e5e72be49040afe01a45e6145f1c9c721215
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kk-star-ratings/src/core/public/js/kk-star-ratings.min.js?ver=5.2.9 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/x-javascript
last-modified: Sun, 27 Feb 2022 04:07:34 GMT
cache-control: public
etag: W/"621af906-54f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 04 Dec 2022 08:46:55 GMT
expires: Sun, 04 Dec 2022 10:46:55 GMT
cache-control: public, max-age=7200
age: 1487
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
comredcr.disqus.com/count.js
199.232.196.134200 OK 871 B URL HTTP/1.1 comredcr.disqus.com/count.js
IP 199.232.196.134:0
File type ASCII text, with very long lines (528)
Hash a487039f9b553cb4f6928743872234e9
b3d835075d1983a8c2fe716285d173fcc3708f9c
364f622ba24e063adcee84f132da53c6e6071745f04a00d10937663deb24b822
GET /count.js HTTP/1.1
Host: comredcr.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 871
Content-Type: application/javascript; charset=utf-8
Server: nginx
Last-Modified: Tue, 29 Nov 2022 14:18:13 GMT
ETag: "638614a5-367"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Amz-Cf-Pop: DFW56-P1
X-Amz-Cf-Id: 9aT95CTkAEmr2zwelwQ1-0X-NmcKkKkzFasP1Ip_t0TK1h8hRY6cVw==
Cache-Control: public, max-age=300
Date: Sun, 04 Dec 2022 09:11:42 GMT
Age: 220
Vary: Accept-Encoding
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fblog.comredcr.com
192.229.233.25200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fblog.comredcr.com
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 2b4968b185495eddda0d85b2351ebb71
c665785ca0f4039f8c71d94631cd50a879d866b5
eb8af089d8082a58a6e90fedc23007f17a9e89ddbc6a29b6e535e4847ba94160
GET /widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fblog.comredcr.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299146
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:42 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:59 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
blog.comredcr.com/?wordfence_lh=1&hid=CF078E614BA848172B8803C41C0B7DE7&r=0.9541030715533965
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/?wordfence_lh=1&hid=CF078E614BA848172B8803C41C0B7DE7&r=0.9541030715533965
IP 213.136.66.216:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?wordfence_lh=1&hid=CF078E614BA848172B8803C41C0B7DE7&r=0.9541030715533965 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:42 GMT
content-type: text/javascript;charset=UTF-8
content-length: 0
link: <https://blog.comredcr.com/wp-json/>; rel="https://api.w.org/", <https://wp.me/54b0c>; rel=shortlink
x-robots-tag: noindex
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 9f8949d2e343e45381268c6be130f1a2
6db74faba9d22cd68078c3c663239201f3e664bd
bd8cf4859843535c6acfa6ee70e5d8967ebb190c76fe07deb6a05da3cc15cb68
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5771
Cache-Control: max-age=163859
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 09:11:42 GMT
Etag: "638c2ad6-139"
Expires: Tue, 06 Dec 2022 06:42:41 GMT
Last-Modified: Sun, 04 Dec 2022 05:06:30 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 313
comredcr.disqus.com/count-data.js?1=2175%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2175&1=2179%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2179&1=2183%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2183&1=2186%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2186&1=2192%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2192&1=2195%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2195&1=2199%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2199&1=2206%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2206&1=2217%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2217&1=2223%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2223
199.232.196.134200 OK 850 B URL HTTP/1.1 comredcr.disqus.com/count-data.js?1=2175%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2175&1=2179%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2179&1=2183%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2183&1=2186%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2186&1=2192%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2192&1=2195%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2195&1=2199%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2199&1=2206%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2206&1=2217%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2217&1=2223%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2223
IP 199.232.196.134:0
File type ASCII text, with very long lines (785)
Hash b2123e5b1930fd333d083a3f3304b10f
3c7f8c4829ab1ed147d2c5ad3540df3597d94100
466228bd77ed86ec85406f6b81fecadace1b9ce3a851eb2dc71debecc9ec8c81
GET /count-data.js?1=2175%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2175&1=2179%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2179&1=2183%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2183&1=2186%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2186&1=2192%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2192&1=2195%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2195&1=2199%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2199&1=2206%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2206&1=2217%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2217&1=2223%20https%3A%2F%2Fblog.comredcr.com%2F%3Fp%3D2223 HTTP/1.1
Host: comredcr.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 850
Server: nginx
Content-Type: application/javascript; charset=UTF-8
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=600
Date: Sun, 04 Dec 2022 09:11:42 GMT
Age: 1409
Vary: Accept-Encoding
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
syndication.twitter.com/settings?session_id=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9
104.244.42.72200 OK 386 B URL HTTP/2 syndication.twitter.com/settings?session_id=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9
IP 104.244.42.72:0
File type JSON data\012- , ASCII text, with very long lines (980), with no line terminators
Hash d8191391c888619de075f6e68400d5d0
c50e4465150fa960db0be7c1eb5907a5f96eb5ed
115d700c917d36ef2d666d1c634f3b77413b2bccb78266bdba043b318009f773
GET /settings?session_id=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 09:11:41 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Sun, 04 Dec 2022 09:11:42 GMT
content-length: 386
content-encoding: gzip
x-transaction-id: 927c50c59337d526
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 104
x-connection-hash: 35712bdcb4dd72107d6259b37b45c19ac54fe8d812940c64d89e8aec176f8859
X-Firefox-Spdy: h2
platform.twitter.com/js/horizon_timeline.5b32f06df3f1186af2ebf11024b09726.js
192.229.233.25200 OK 3.0 kB URL HTTP/1.1 platform.twitter.com/js/horizon_timeline.5b32f06df3f1186af2ebf11024b09726.js
IP 192.229.233.25:0
File type Unicode text, UTF-8 text, with very long lines (8274), with no line terminators
Hash 9dcf6c8cba8fe3e8cb99b94ee63af2d5
ec132eb470954fdf2ff629d8344942b47ce4a5d1
2783e866faf68e4f6bc1775136ac1fa7b05d4adc7522f350763eb09a0e91b80d
GET /js/horizon_timeline.5b32f06df3f1186af2ebf11024b09726.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299146
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:42 GMT
Etag: "be517337a860b30e72096680d8dde0eb+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:52 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71C)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2977
syndication.twitter.com/i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670145100450%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9
104.244.42.72200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670145100450%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9
IP 104.244.42.72:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670145100450%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 09:11:41 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Sun, 04 Dec 2022 09:11:42 GMT
content-length: 43
x-transaction-id: e64ddb1b32dc3cb1
strict-transport-security: max-age=631138519
x-response-time: 115
x-connection-hash: 35712bdcb4dd72107d6259b37b45c19ac54fe8d812940c64d89e8aec176f8859
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6876
Expires: Sun, 04 Dec 2022 11:06:18 GMT
Date: Sun, 04 Dec 2022 09:11:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6876
Expires: Sun, 04 Dec 2022 11:06:18 GMT
Date: Sun, 04 Dec 2022 09:11:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6876
Expires: Sun, 04 Dec 2022 11:06:18 GMT
Date: Sun, 04 Dec 2022 09:11:42 GMT
Connection: keep-alive
blog.comredcr.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
213.136.66.216200 OK 4.5 kB URL HTTP/2 blog.comredcr.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 213.136.66.216:0
File type ASCII text, with very long lines (11126)
Hash 1cd24233aba3e48f6114062ea8b2590a
37f1e885b84794e1243c22abf927964d1cd63ae0
3e60519ebcf8efcac3814c37ba9baed587380a05d1c8470de39483be8d00646c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/x-javascript
last-modified: Wed, 09 Dec 2020 07:16:20 GMT
cache-control: public
etag: W/"5fd079c4-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6876
Expires: Sun, 04 Dec 2022 11:06:18 GMT
Date: Sun, 04 Dec 2022 09:11:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a6e7b32ac999cf3c899a234c621fa91a
fc5d4f3163ebb9faf85968cbb1d194e8e68418be
f12db3aed126006fee00649aba0b3eaae900de200b85b9523866a90b5494f18e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19c9bb39-be15-49f9-aad9-2cc511601111.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8989
x-amzn-requestid: abce0b01-f70c-42ad-b242-5a24735fe4c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltl4Gk2oAMFSWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc2f2-1cccffff5199dffe70264a95;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:43:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PFl7VUrzRkMFNnTiIw_cbGCyrEFn43eUSlZfT0nUhUmjjyXT7JfjMA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:50:01 GMT
age: 40901
etag: "fc5d4f3163ebb9faf85968cbb1d194e8e68418be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14dcca2a9c4792d835ee709bcd947402
1d702df3a64258628f4124eafd580695f2d350af
da01dcd8fef7c50bdb6f7a8a6a4955694092f479df3dba72f7fa69d7280d07b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16143
x-amzn-requestid: dc86fad4-4e53-42c9-9b0a-5e4d2cfcd087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGyLGqmoAMFnaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a7-0ea324b31e8c6578098b8ab9;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KHd4ajJWl-8TDH5HGbkuJXI4NL6I83IwSUBKzfq85cxpyRH_LGl6OA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 05:55:20 GMT
age: 11782
etag: "1d702df3a64258628f4124eafd580695f2d350af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/themes/catch-evolution/js/catchevolution-fitvids.min.js?ver=20130324
213.136.66.216200 OK 6.3 kB URL HTTP/2 blog.comredcr.com/wp-content/themes/catch-evolution/js/catchevolution-fitvids.min.js?ver=20130324
IP 213.136.66.216:0
File type HTML document, ASCII text, with very long lines (1615), with no line terminators
Hash d74ecf95a335721752da093540440a57
67e2f4045c8f770adaa2b9d1f1289c285cde9e55
184ad9ac96f07c76e2243b04455b6df0d3d43f66d6584c58d5193e4c75601a05
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/catch-evolution/js/catchevolution-fitvids.min.js?ver=20130324 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/x-javascript
last-modified: Sun, 27 Feb 2022 04:10:39 GMT
cache-control: public
etag: W/"621af9bf-64f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F757562c1-a4bf-4a51-bf99-64f3a0d51840.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F757562c1-a4bf-4a51-bf99-64f3a0d51840.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c37ed587ee5e3fbdc8cab86ef1345f9
364a32a224b2cacc26b138d57a8945c191e537b1
3c66654da4670e0d5ec87afb6c62f0a420d90875c57b280710f2592269a9303e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F757562c1-a4bf-4a51-bf99-64f3a0d51840.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8285
x-amzn-requestid: 882c673f-4e3f-4f84-a51d-bbac56f716eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAAEWUoAMFWuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-3a2c571d6272b3493ec2a1c5;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DX2amuyEjkaWng9x7x8TknBMeXzYPSW7pimxhVkcwOPPPbKrX0beQQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:50:24 GMT
etag: "364a32a224b2cacc26b138d57a8945c191e537b1"
content-type: image/jpeg
age: 40878
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe8e3477-9245-4318-82d9-b30607246872.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe8e3477-9245-4318-82d9-b30607246872.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89e5fc40e9e626a035abde2964ba0959
e800712e4f8d9589670d8ee3a744ac0aedf7b6e3
64a41309871b71682370e2b2f3735ac70039802fff4e1e46013f5aa1f15b4084
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe8e3477-9245-4318-82d9-b30607246872.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6901
x-amzn-requestid: 5dd4545b-c48a-4fa2-8aa5-c7d0a5efeafe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsByFqCoAMF4CA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc071-6b96e54876cde366748564d6;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sOtbi4sBuEPzvS_l6X_w5S5BeHb1DROkFmpNDTlvo57kUVeYN6ra3A==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:42:39 GMT
age: 41343
etag: "e800712e4f8d9589670d8ee3a744ac0aedf7b6e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f00caab-057c-4cc2-a163-fd0bb4d0b5f7.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f00caab-057c-4cc2-a163-fd0bb4d0b5f7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1521243a6fc065bb631bfbde22886fa2
527220e4e8cd1065ce05fcd0694d0d703d817e2e
b83ebf768bbfb34f49d5467f3dfb43ceb3ca3d30d3454e6f37db9aef72d7689a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f00caab-057c-4cc2-a163-fd0bb4d0b5f7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11482
x-amzn-requestid: d1db05ab-bd5d-4ad4-96b4-8f439152e435
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clssNEeAoAMFh_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc181-0221c53842a2f5ef071e8071;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UZ5kblxfN8fkp55YeSpUA55GzDxZgsLpFZrYTsdJBihf53HLCN0hTA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 22:17:35 GMT
age: 39247
etag: "527220e4e8cd1065ce05fcd0694d0d703d817e2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
syndication.twitter.com/srv/timeline-profile/screen-name/ComredCR?dnt=false&embedId=twitter-widget-0&features=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%3D%3D&frame=false&hideBorder=false&hideFooter=false&hideHeader=false&hideScrollBar=false&lang=es&maxHeight=600px&origin=https%3A%2F%2Fblog.comredcr.com%2F&sessionId=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9&showHeader=true&showReplies=false&siteScreenName=ComredCR&transparent=false&widgetsVersion=a3525f077c700%3A1667415560940
104.244.42.72200 OK 13 kB URL HTTP/2 syndication.twitter.com/srv/timeline-profile/screen-name/ComredCR?dnt=false&embedId=twitter-widget-0&features=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%3D%3D&frame=false&hideBorder=false&hideFooter=false&hideHeader=false&hideScrollBar=false&lang=es&maxHeight=600px&origin=https%3A%2F%2Fblog.comredcr.com%2F&sessionId=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9&showHeader=true&showReplies=false&siteScreenName=ComredCR&transparent=false&widgetsVersion=a3525f077c700%3A1667415560940
IP 104.244.42.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65419), with no line terminators
Hash 9326b832895cdf9029e7a5ea2722b48a
e5c58a4350972a1354000bf87d6303c58200e8e5
d337caa2bb7e6efc56ea1017f455450098abb10a9348bd459274638f6c46718b
GET /srv/timeline-profile/screen-name/ComredCR?dnt=false&embedId=twitter-widget-0&features=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%3D%3D&frame=false&hideBorder=false&hideFooter=false&hideHeader=false&hideScrollBar=false&lang=es&maxHeight=600px&origin=https%3A%2F%2Fblog.comredcr.com%2F&sessionId=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9&showHeader=true&showReplies=false&siteScreenName=ComredCR&transparent=false&widgetsVersion=a3525f077c700%3A1667415560940 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 09:11:43 GMT
etag: "1dbc4-qpNN44g9vq1bh0J+SDr7mqV4LOA"
perf: 7626143928
server: tsa_o
content-type: text/html; charset=utf-8
cache-control: must-revalidate, max-age=60
x-transaction-id: 9ec7c153c8a212e2
x-xss-protection: 0
strict-transport-security: max-age=631138519
content-encoding: gzip
content-length: 13061
x-response-time: 700
x-connection-hash: 35712bdcb4dd72107d6259b37b45c19ac54fe8d812940c64d89e8aec176f8859
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/runtime-a148fbcbc5efcd91d3a7.js
192.229.233.25200 OK 2.1 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/runtime-a148fbcbc5efcd91d3a7.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (3835), with no line terminators
Hash a7a94df486e306b619ab921142d234e2
1386bcf32860c146b6b7d912b92a540662cc7361
f4de548de8d166e7872adeefa8e8345f952b9001b40ca56622cd40033a34bf22
GET /_next/static/chunks/runtime-a148fbcbc5efcd91d3a7.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299147
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:43 GMT
Etag: "581beb14123ea389fe5c0fe24167fe0a+gzip"
Last-Modified: Thu, 03 Nov 2022 19:46:26 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71B)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2097
platform.twitter.com/_next/static/chunks/modules.c7def0268c66f6a548ed.js
192.229.233.25200 OK 96 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/modules.c7def0268c66f6a548ed.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 89c672f151894dbdd32f8fec5c06d8ae
3f169aa05c1c4b33a9780d7627e9ceb4a9eb45ea
c952902afe5e0ebfdcb79c14b084d4aaa0124fd22ac8db2140586e3fec381b0c
GET /_next/static/chunks/modules.c7def0268c66f6a548ed.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299146
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:43 GMT
Etag: "51acddf0dbfab928b183f36c1ee67619+gzip"
Last-Modified: Thu, 03 Nov 2022 19:46:27 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70E)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 95749
platform.twitter.com/_next/static/chunks/pages/_app-446fb4a338b215deec8c.js
192.229.233.25200 OK 668 B URL HTTP/1.1 platform.twitter.com/_next/static/chunks/pages/_app-446fb4a338b215deec8c.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (1338), with no line terminators
Hash f484761515a4b9ac64196dda9871d887
60855cb536423f7f3c65b234237b79ebf034b32f
2ccd2bece3debd31c61513310eaa6a8c00fd8429d5e68e7728e3944f54093aa4
GET /_next/static/chunks/pages/_app-446fb4a338b215deec8c.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299147
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:43 GMT
Etag: "be3e428d416daa9027cecf70b5f26bf9+gzip"
Last-Modified: Thu, 03 Nov 2022 19:46:26 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 668
platform.twitter.com/_next/static/chunks/main-e9db78f5e7b3d83edd5e.js
192.229.233.25200 OK 90 B URL HTTP/1.1 platform.twitter.com/_next/static/chunks/main-e9db78f5e7b3d83edd5e.js
IP 192.229.233.25:0
File type ASCII text, with no line terminators
Hash 8e33207e7b788da9abde5b6d33da0b00
23e48f1b412b3a0a406639f297fb6f4c4740efe8
80534a6e1ec41d37acec8be383f8d1112dbbeea31dd51ead47463095c13bff3a
GET /_next/static/chunks/main-e9db78f5e7b3d83edd5e.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299146
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:43 GMT
Etag: "8e33207e7b788da9abde5b6d33da0b00"
Last-Modified: Thu, 03 Nov 2022 19:46:26 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71A)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 90
platform.twitter.com/_next/static/octaUlqc-A_Am4qAPnvU1/_ssgManifest.js
192.229.233.25200 OK 76 B URL HTTP/1.1 platform.twitter.com/_next/static/octaUlqc-A_Am4qAPnvU1/_ssgManifest.js
IP 192.229.233.25:0
File type ASCII text, with no line terminators
Hash abee47769bf307639ace4945f9cfd4ff
c0a0dc51ee8a2852baf5ff30c33b1478ff302585
653f3e53e89b4f8548ff86c19e92bb3c6b84b6be7485a320b1e00893ed877479
GET /_next/static/octaUlqc-A_Am4qAPnvU1/_ssgManifest.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299146
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:43 GMT
Etag: "abee47769bf307639ace4945f9cfd4ff"
Last-Modified: Thu, 03 Nov 2022 19:46:26 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F716)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 76
platform.twitter.com/_next/static/octaUlqc-A_Am4qAPnvU1/_buildManifest.js
192.229.233.25200 OK 414 B URL HTTP/1.1 platform.twitter.com/_next/static/octaUlqc-A_Am4qAPnvU1/_buildManifest.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (1208), with no line terminators
Hash 19e50b016c2418a8b7178a219a9fe03d
68c691a19558f28e9111b35f0c0f182addd31e3f
ff39afa732cf28797d8c7d8170b9e4dcc5ab8bcbd688b44be3dc0d82a5b3bbe4
GET /_next/static/octaUlqc-A_Am4qAPnvU1/_buildManifest.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299146
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:43 GMT
Etag: "12a5a08767706f15b6b316996cd057c1+gzip"
Last-Modified: Thu, 03 Nov 2022 19:46:26 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 414
platform.twitter.com/_next/static/chunks/14.3331408ebfa6907b6397.js
192.229.233.25200 OK 13 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/14.3331408ebfa6907b6397.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (41303), with no line terminators
Hash 977e41cb689701ddc859d42c19b2dd11
b0e40b6bf8d3817d92e41e71462ff26839e65481
651e8800abe83faa3de92d924814d82e655ece53d316917b4a5abf36459f342d
GET /_next/static/chunks/14.3331408ebfa6907b6397.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299138
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:43 GMT
Etag: "b81fef3bf880e33431f889766f0ac2c5+gzip"
Last-Modified: Thu, 03 Nov 2022 19:46:26 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F707)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 12875
platform.twitter.com/_next/static/chunks/2.691622e4391d1973cb65.js
192.229.233.25200 OK 7.7 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/2.691622e4391d1973cb65.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (23122), with no line terminators
Hash 31d7e323dedf8e32fc0b3f12f85c505a
25ccecc0c6b6c15f1a52688506c3bf1ca3fb3338
862e997d04a13cada2219e2370397f792983f7e63f1502e3d0da1aea3f4786a5
GET /_next/static/chunks/2.691622e4391d1973cb65.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299146
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:43 GMT
Etag: "942b5b928a24465d1906b4716131d896+gzip"
Last-Modified: Thu, 03 Nov 2022 19:46:26 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F712)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 7674
platform.twitter.com/_next/static/chunks/4.87a72bcd1cc186518122.js
192.229.233.25200 OK 1.3 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/4.87a72bcd1cc186518122.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (2558), with no line terminators
Hash 385597e7610afe03d76680534f29c35d
12280b5eef389f1e5a45b2b6ff7b21d1ca0b2f8f
ba66755ab4b673c2c028ddc2540308742f6287ae47243b6424df833c4ccd1be3
GET /_next/static/chunks/4.87a72bcd1cc186518122.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299146
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:43 GMT
Etag: "ff2a4a029f711ed6f7dcb3f1f834609a+gzip"
Last-Modified: Thu, 03 Nov 2022 19:46:26 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F717)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 1276
platform.twitter.com/_next/static/chunks/0.ad6e60829dfc07776f5e.js
192.229.233.25200 OK 187 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/0.ad6e60829dfc07776f5e.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 187 kB (187307 bytes)
Hash 0c9586da0105e26c179e1576b6ee4d4f
a6d8cd227714e168c5bde33c28114aa2a08bdd8c
03ece567f7bdc643d0f3cd1d64b35a2e09bf711667df1439b3a2a8a8cff308db
GET /_next/static/chunks/0.ad6e60829dfc07776f5e.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299146
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:43 GMT
Etag: "f8a649284ac45133fc2c0b92defbd7b3+gzip"
Last-Modified: Thu, 03 Nov 2022 19:46:28 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F711)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 187307
platform.twitter.com/_next/static/chunks/ondemand.Dropdown.8bc7f6ae41bfb038b2b2.js
192.229.233.25200 OK 2.6 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/ondemand.Dropdown.8bc7f6ae41bfb038b2b2.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (6721), with no line terminators
Hash 49f5b55936cdab12275a31750ba532c6
e7319555785aae707edd8fe90066a8c047cf0e8d
e1e93c439ee51eb31aa6adcc7cc267331b66b6d5d16c3ce0463b167e947edbcd
GET /_next/static/chunks/ondemand.Dropdown.8bc7f6ae41bfb038b2b2.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299145
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:44 GMT
Etag: "24b6ad17fef6a1d54596d62f11e5a2c6+gzip"
Last-Modified: Thu, 03 Nov 2022 19:46:26 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F705)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2624
platform.twitter.com/_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js
192.229.233.25200 OK 42 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3a5a15f5d161fad8f5f32584051ed743
a5828a48cc6b380cb5b6f119098d360841032ffa
d19a5ab141c21185dd7386f916442d387b40254538350f21cbfb48126603f879
GET /_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299145
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:44 GMT
Etag: "72929dff5e574c1b877555fd36c7683a+gzip"
Last-Modified: Thu, 03 Nov 2022 19:46:27 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F711)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 41941
abs.twimg.com/sticky/animations/like.4.json
152.199.21.141200 OK 1.9 kB URL HTTP/2 abs.twimg.com/sticky/animations/like.4.json
IP 152.199.21.141:0
File type ASCII text, with very long lines (24291)
Hash c5203df5bd1440c2fdf4b44f0eb3116a
6b928e79e59b281eb5b9f5c2ad608f81078b5869
0b638ce107a37db0734fcd82af97d1dd575c246d737949c5414aa1dc549540e3
GET /sticky/animations/like.4.json HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syndication.twitter.com/
Origin: https://syndication.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 3860425
content-type: application/json
date: Sun, 04 Dec 2022 09:11:44 GMT
etag: "YKYmOkwIx9KztN7bQT7x8g=="
expires: Mon, 04 Dec 2023 09:11:44 GMT
last-modified: Thu, 20 Oct 2022 16:50:56 GMT
perf: 7626143928
server: ECAcc (ska/F695)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
vary: Accept-Encoding
x-cache: HIT
x-connection-hash: 00620de26479f72103b0d6f4ca0873a782dd4164b4c1379a9b6b21190ad4a58b
x-content-type-options: nosniff
x-response-time: 10
x-ton-expected-size: 24292
x-transaction-id: 80afab27525733bc
content-length: 1897
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670145102659%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fblog.comredcr.com%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22ComredCR%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%223a64761%3A1667500028145%22%2C%22widget_data_source%22%3A%22screen-name%3AComredCR%22%7D&session_id=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9
104.244.42.72200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670145102659%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fblog.comredcr.com%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22ComredCR%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%223a64761%3A1667500028145%22%2C%22widget_data_source%22%3A%22screen-name%3AComredCR%22%7D&session_id=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9
IP 104.244.42.72:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670145102659%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fblog.comredcr.com%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22ComredCR%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%223a64761%3A1667500028145%22%2C%22widget_data_source%22%3A%22screen-name%3AComredCR%22%7D&session_id=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/srv/timeline-profile/screen-name/ComredCR?dnt=false&embedId=twitter-widget-0&features=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%3D%3D&frame=false&hideBorder=false&hideFooter=false&hideHeader=false&hideScrollBar=false&lang=es&maxHeight=600px&origin=https%3A%2F%2Fblog.comredcr.com%2F&sessionId=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9&showHeader=true&showReplies=false&siteScreenName=ComredCR&transparent=false&widgetsVersion=a3525f077c700%3A1667415560940
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 09:11:44 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Sun, 04 Dec 2022 09:11:45 GMT
content-length: 43
x-transaction-id: 0d19ea039b5465b9
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: 35712bdcb4dd72107d6259b37b45c19ac54fe8d812940c64d89e8aec176f8859
X-Firefox-Spdy: h2
i0.wp.com/blog.comredcr.com/wp-content/uploads/2016/06/router-linkys-xac1900_l.jpg?w=650&ssl=1
192.0.77.2200 OK 8.2 kB URL HTTP/2 i0.wp.com/blog.comredcr.com/wp-content/uploads/2016/06/router-linkys-xac1900_l.jpg?w=650&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 650x325, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce18aafa5d97ab1bd6462bbaf07078ac
ce1d4e79b7f26969d54bd848b6cc05e83f8266b4
c7fc39853bb3a69172f554c79d6b6bb0d532ec6b0f310c809f7752cae44904f1
GET /blog.comredcr.com/wp-content/uploads/2016/06/router-linkys-xac1900_l.jpg?w=650&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:46 GMT
content-type: image/webp
content-length: 8204
last-modified: Wed, 30 Nov 2022 08:11:51 GMT
expires: Fri, 29 Nov 2024 20:11:51 GMT
cache-control: public, max-age=63115200
link: <https://blog.comredcr.com/wp-content/uploads/2016/06/router-linkys-xac1900_l.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a602aabb7695ce38"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
pbs.twimg.com/profile_images/737124015391789056/_ZlLs5d4_normal.jpg
93.184.220.70200 OK 1.9 kB URL HTTP/2 pbs.twimg.com/profile_images/737124015391789056/_ZlLs5d4_normal.jpg
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 48x48, components 3\012- data
Hash ea5d06c7878e3d0b548a505e1ecfd6be
1ed77dfdf1c478a6dc9d1f4923e48d6785bf4e4a
8fa7e969b908628c17f2909f61b6bdc515c90a7f9c14b2ff854bf873de0dd5e9
GET /profile_images/737124015391789056/_ZlLs5d4_normal.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:46 GMT
last-modified: Mon, 30 May 2016 03:28:35 GMT
perf: 7626143928
server: ECS (ska/F71A)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=148
strict-transport-security: max-age=631138519
surrogate-key: profile_images profile_images/bucket/4 profile_images/737124015391789056
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 222421bd223ecfe3eb116f0b9ba8187a67fc2d9763f4f9f789cd2473fa79a576
x-content-type-options: nosniff
x-response-time: 115
x-transaction-id: 51b53021dd7935bf
x-tw-cdn: VZ, VZ
content-length: 1883
X-Firefox-Spdy: h2
pbs.twimg.com/card_img/1598447129114169346/vTD0RYKe?format=jpg&name=360x360
93.184.220.70200 OK 13 kB URL HTTP/2 pbs.twimg.com/card_img/1598447129114169346/vTD0RYKe?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash 392b2b8223c0d928edab22657e494a5d
f1516d139e7f99e1221e94a1306d36bacb0ace02
f9cab454c8d38a1e363f46f15184db1c29af085e5116dafb1975b0680d625276
GET /card_img/1598447129114169346/vTD0RYKe?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:46 GMT
last-modified: Thu, 01 Dec 2022 22:39:07 GMT
perf: 7626143928
server: ECS (ska/F719)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=169
strict-transport-security: max-age=631138519
surrogate-key: card_img card_img/bucket/9 card_img/1598447129114169346
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 1cdd8c50268776f54e2a6d45a30725a7e87df15cbe4a178350eb33ad31b10cfd
x-content-type-options: nosniff
x-response-time: 135
x-transaction-id: c2e5f4a4eb2499d4
x-tw-cdn: VZ, VZ, VZ
content-length: 13141
X-Firefox-Spdy: h2
pbs.twimg.com/card_img/1599161248981073920/DGRdqkpr?format=jpg&name=360x360
93.184.220.70200 OK 26 kB URL HTTP/2 pbs.twimg.com/card_img/1599161248981073920/DGRdqkpr?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x185, components 3\012- data
Hash 34bdf6a8c6e9060106bb9ea47361f404
4e7d8e76b63f0eae9620f699b77c0b6b61e141ee
0fc0bd7e6194cedf785ea58eac191c49807e7792d2e13e2c1b3de98a40f8fc5b
GET /card_img/1599161248981073920/DGRdqkpr?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:46 GMT
last-modified: Sat, 03 Dec 2022 21:56:47 GMT
perf: 7626143928
server: ECS (ska/F70E)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=289
strict-transport-security: max-age=631138519
surrogate-key: card_img card_img/bucket/1 card_img/1599161248981073920
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 201c72cb5e3d40841aad2e81a0201e8283ec98558770ae9e7c21bbfdbb1772ce
x-content-type-options: nosniff
x-response-time: 256
x-transaction-id: dcf0c9b18d8c0726
x-tw-cdn: VZ, VZ, VZ
content-length: 26354
X-Firefox-Spdy: h2
pbs.twimg.com/card_img/1598382537423945750/foPLIZ3A?format=jpg&name=360x360
93.184.220.70200 OK 26 kB URL HTTP/2 pbs.twimg.com/card_img/1598382537423945750/foPLIZ3A?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x198, components 3\012- data
Hash bec7c403507ff61527aa405458677357
642f5721debb8f6b2e80ce2872e826c7b63fd3a3
89e45842e136031a77ffaf041f84138900cd1c3b4a16b51cb5950e3d0ec05707
GET /card_img/1598382537423945750/foPLIZ3A?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:46 GMT
last-modified: Thu, 01 Dec 2022 18:22:28 GMT
perf: 7626143928
server: ECS (ska/F705)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=291
strict-transport-security: max-age=631138519
surrogate-key: card_img card_img/bucket/0 card_img/1598382537423945750
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 9e958a59ed779c07ac7ec222af9f5a3914081a685c5c53672ad28d0a673b1a6f
x-content-type-options: nosniff
x-response-time: 257
x-transaction-id: 0a986999af0a4c3b
x-tw-cdn: VZ, VZ
content-length: 26039
X-Firefox-Spdy: h2
pbs.twimg.com/card_img/1595467976047837188/4ZdV9Dy3?format=jpg&name=360x360
93.184.220.70200 OK 22 kB URL HTTP/2 pbs.twimg.com/card_img/1595467976047837188/4ZdV9Dy3?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 359x198, components 3\012- data
Hash bc7aab85e404a7769fd4c07a2e584844
b7f5a982e8d645e6a323eca9b085070c2d485665
75ebe780b6f6ff24b08143fab1430affd11f92fe17992e36ddc539d55cbd9da1
GET /card_img/1595467976047837188/4ZdV9Dy3?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 201268
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:46 GMT
last-modified: Wed, 23 Nov 2022 17:21:02 GMT
perf: 7626143928
server: ECS (ska/F708)
server-timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=27
strict-transport-security: max-age=631138519
surrogate-key: card_img card_img/bucket/7 card_img/1595467976047837188
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: fbc150f92ac6f7cf6f90c0e5cb88ebef1e530eccd7ba75457d17f97e70f09564
x-content-type-options: nosniff
x-response-time: 262
x-transaction-id: 2feea005d50b325b
x-tw-cdn: VZ, VZ
content-length: 22266
X-Firefox-Spdy: h2
pbs.twimg.com/card_img/1597675784658984961/TFcL0mBn?format=jpg&name=360x360
93.184.220.70200 OK 23 kB URL HTTP/2 pbs.twimg.com/card_img/1597675784658984961/TFcL0mBn?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x270, components 3\012- data
Hash 8ecfcbf03403a192b0652f590a9b6e0b
3fe236cde297b001cba7b8bb70f1fff6db206a77
5e90cefe0c79cb96f612b0af46d4744efeffa0c02bd451cf3c370fe0c662cad4
GET /card_img/1597675784658984961/TFcL0mBn?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:46 GMT
last-modified: Tue, 29 Nov 2022 19:34:05 GMT
perf: 7626143928
server: ECS (ska/F716)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=290
strict-transport-security: max-age=631138519
surrogate-key: card_img card_img/bucket/9 card_img/1597675784658984961
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: b39dacf51a3d8a6375e633889dc9620d1af70da147265d33343da5cf651977e9
x-content-type-options: nosniff
x-response-time: 237
x-transaction-id: f7bfb44ab76a9cc5
x-tw-cdn: VZ, VZ
content-length: 22922
X-Firefox-Spdy: h2
pbs.twimg.com/media/FiyVCQeacAAWJXE?format=jpg&name=360x360
93.184.220.70200 OK 24 kB URL HTTP/2 pbs.twimg.com/media/FiyVCQeacAAWJXE?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash cea9b9896e8ad37e76305a2e6b853396
f9c64ed182579ed30c2cac2f3e6c47c358ae2dde
39f06b8e91d4eeb6d99fca83048e72f5f70516ae9267bcc0421e1702a61d024a
GET /media/FiyVCQeacAAWJXE?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:46 GMT
last-modified: Wed, 30 Nov 2022 04:50:35 GMT
perf: 7626143928
server: ECS (ska/F71B)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=294
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/6 media/1597815833824489472
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 8f4bdabf2afab43d04ca7a6242516531aadb85a49f4d552d697a5f8e5d4c63ec
x-content-type-options: nosniff
x-response-time: 257
x-transaction-id: 78e05c0a6e694841
x-tw-cdn: VZ, VZ
content-length: 24423
X-Firefox-Spdy: h2
pbs.twimg.com/media/FixrtwLaUAAUcZI?format=jpg&name=360x360
93.184.220.70200 OK 37 kB URL HTTP/2 pbs.twimg.com/media/FixrtwLaUAAUcZI?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash 73fd629fee7d954d5d2688eb86de0400
5023f8c813ce7c921160d114cb5a534856db05a1
b893b83ad392bc43127ada98f942fa29c8be0b193dc64be057fe4445db8649d5
GET /media/FixrtwLaUAAUcZI?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:46 GMT
last-modified: Wed, 30 Nov 2022 01:50:03 GMT
perf: 7626143928
server: ECS (ska/F70A)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=275
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/3 media/1597770401580732416
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: ad4a1f362a617da3a7241ec8e94a6d62a326cb0d0bb142efe2fe7a1edb32ff5f
x-content-type-options: nosniff
x-response-time: 241
x-transaction-id: 69f17ed670511357
x-tw-cdn: VZ, VZ, VZ
content-length: 36973
X-Firefox-Spdy: h2
pbs.twimg.com/media/FixC2-waAAEVauF?format=jpg&name=360x360
93.184.220.70200 OK 20 kB URL HTTP/2 pbs.twimg.com/media/FixC2-waAAEVauF?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash 3c8ea6bc38dea519fdc8d27b0311205b
a2fea853a913a2bdbb515bf2a59b3cb7b066fec3
9a8ccf9192aef2cafd8ac4492c11ae89bd7a419e5a9f73f2cff5bdb7d759106e
GET /media/FixC2-waAAEVauF?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:46 GMT
last-modified: Tue, 29 Nov 2022 22:51:33 GMT
perf: 7626143928
server: ECS (ska/F709)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=274
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/6 media/1597725480136081409
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 27fac472db6a09f5808db1acccc8f38930bcea9dfd68f061d2177148057cc828
x-content-type-options: nosniff
x-response-time: 240
x-transaction-id: bb9153cf6096a583
x-tw-cdn: VZ, VZ
content-length: 19614
X-Firefox-Spdy: h2
pbs.twimg.com/media/FiuehqtaYAE4_Nr?format=jpg&name=360x360
93.184.220.70200 OK 14 kB URL HTTP/2 pbs.twimg.com/media/FiuehqtaYAE4_Nr?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash 62149c16779a4ad17879aaa52bcc5add
8aec4d94003ff545be5123b56dea6d4ff36f7e78
2dec3ef069974336a8945ed5a1ee38b05b27acb177f99fe9ae1c2d66acb951ec
GET /media/FiuehqtaYAE4_Nr?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:46 GMT
last-modified: Tue, 29 Nov 2022 10:53:34 GMT
perf: 7626143928
server: ECS (ska/F70F)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=166
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/8 media/1597544794070605825
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 9a1d931c1e41db538ca087e8fc7cd96f2081b523e57a301883067a48d0874535
x-content-type-options: nosniff
x-response-time: 132
x-transaction-id: 89f3c0c170a82f1c
x-tw-cdn: VZ, VZ
content-length: 13529
X-Firefox-Spdy: h2
pbs.twimg.com/media/FiwaADQakAItzju?format=jpg&name=360x360
93.184.220.70200 OK 14 kB URL HTTP/2 pbs.twimg.com/media/FiwaADQakAItzju?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash 58e37b854a91518de7dd6f635fbf5a3d
a625d6c9d136f73e755aec998bda3549b885e806
12372023d98509bc6e37dca80c5a76e37dd66f51dcd3a86affc1f567f666d00b
GET /media/FiwaADQakAItzju?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:46 GMT
last-modified: Tue, 29 Nov 2022 19:53:02 GMT
perf: 7626143928
server: ECS (ska/F710)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=280
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/8 media/1597680555986161666
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 3089a61e5d4a93c674e1584c1fc6b57774ea517b2e15f63c0ceb778560b7d4f1
x-content-type-options: nosniff
x-response-time: 246
x-transaction-id: 5e6f582ec751d1b0
x-tw-cdn: VZ, VZ, VZ
content-length: 14381
X-Firefox-Spdy: h2
pbs.twimg.com/media/FivwztPaEAYS6u5?format=jpg&name=360x360
93.184.220.70200 OK 18 kB URL HTTP/2 pbs.twimg.com/media/FivwztPaEAYS6u5?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash 8fdf8e1f027121dbdef7ed61beb411cd
cf9abcb1e09c746a06dd01d0295ff1d72876e608
42059f3121115ce67ba4169ce1a905984fc9fa8ddef0ae0f4975448e636ad01e
GET /media/FivwztPaEAYS6u5?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 1
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:47 GMT
last-modified: Tue, 29 Nov 2022 16:53:04 GMT
perf: 7626143928
server: ECS (ska/F708)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=290
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/2 media/1597635263941185542
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: aaf9b49d63aabc8d775b72071e67e1250435a86471732b7848b7c468fd78dd3d
x-content-type-options: nosniff
x-response-time: 256
x-transaction-id: 0f84dfcd52b7d02d
x-tw-cdn: VZ, VZ
content-length: 18450
X-Firefox-Spdy: h2
pbs.twimg.com/media/FivHQwMaEAEpAda?format=jpg&name=360x360
93.184.220.70200 OK 29 kB URL HTTP/2 pbs.twimg.com/media/FivHQwMaEAEpAda?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash 532d9783dcf0da28b9926506ce108ead
9a8daa462c57bb91a6164ad3bed69023f9f04255
82cf9feafdaf81e60679e96d56a4400f29d8f45d34abe9c3bd342a1c7a6e39f6
GET /media/FivHQwMaEAEpAda?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 1
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:47 GMT
last-modified: Tue, 29 Nov 2022 13:51:33 GMT
perf: 7626143928
server: ECS (ska/F708)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=280
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/5 media/1597589583461748737
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: e61158408bb98bc7a1bcb7780aed8426f34dd66c17edd1d560e349e04f1d5468
x-content-type-options: nosniff
x-response-time: 246
x-transaction-id: a6c70662bab2718c
x-tw-cdn: VZ, VZ
content-length: 29403
X-Firefox-Spdy: h2
pbs.twimg.com/media/Fit1AJuaAAA2yaP?format=jpg&name=360x360
93.184.220.70200 OK 35 kB URL HTTP/2 pbs.twimg.com/media/Fit1AJuaAAA2yaP?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash 7c6a2bd0fca5f1cc6d9039e28dad96d0
4336cad8348fd19eead2ef5dd3047750fa479701
f459a2a9690ba7627b334be9bd95bd04e4e563ac2b8c55795578d5b1fcd69373
GET /media/Fit1AJuaAAA2yaP?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 1
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:47 GMT
last-modified: Tue, 29 Nov 2022 07:52:09 GMT
perf: 7626143928
server: ECS (ska/F707)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=295
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/3 media/1597499138303983616
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 5560ef52139c580ad68d53c274b9effcf83d3e396e2ff7dd8b3e01064c3c2a6a
x-content-type-options: nosniff
x-response-time: 261
x-transaction-id: e9ab9f870043c808
x-tw-cdn: VZ, VZ, VZ
content-length: 35014
X-Firefox-Spdy: h2
pbs.twimg.com/media/FisilHZakAIa2Hb?format=jpg&name=360x360
93.184.220.70200 OK 13 kB URL HTTP/2 pbs.twimg.com/media/FisilHZakAIa2Hb?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash 91d3e296c7e2e7e3ab1e1d48d80a8879
1e9dfa80eb6838206ec6d3dbb5be7713a5389a9e
ca7beb799fa90d12bc2ec860e7f4c80cd271257a2037f862abb23d46b916db25
GET /media/FisilHZakAIa2Hb?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:47 GMT
last-modified: Tue, 29 Nov 2022 01:52:02 GMT
perf: 7626143928
server: ECS (ska/F704)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=179
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/3 media/1597408513869123586
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 88cc3aeedf8d62745140ee47d791ae2cf86c762f38fb7d3a66b4c3f49ca00e81
x-content-type-options: nosniff
x-response-time: 145
x-transaction-id: 59ef0d95bffa2eea
x-tw-cdn: VZ, VZ
content-length: 12905
X-Firefox-Spdy: h2
pbs.twimg.com/media/FitLyF-aYAAQVy-?format=jpg&name=360x360
93.184.220.70200 OK 15 kB URL HTTP/2 pbs.twimg.com/media/FitLyF-aYAAQVy-?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash 3e77a03cb82000f56dd28c0e208499c4
3f9ecaa967adea07fa72534c6c3b2f9b1ddfe69c
c5dd30ae2a285a83e15023867d5b99038f49fa5b7de660aa047b2cfa944af181
GET /media/FitLyF-aYAAQVy-?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 1
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:47 GMT
last-modified: Tue, 29 Nov 2022 04:52:03 GMT
perf: 7626143928
server: ECS (ska/F716)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=285
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/6 media/1597453816802467840
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: da5359e51b8d58b3126f867bd6ce700c0d824bd0014f0ebb4c3384018b44d647
x-content-type-options: nosniff
x-response-time: 251
x-transaction-id: 18589b5af43b2da5
x-tw-cdn: VZ, VZ
content-length: 15162
X-Firefox-Spdy: h2
pbs.twimg.com/media/Fir52BwacAIhUDb?format=jpg&name=360x360
93.184.220.70200 OK 21 kB URL HTTP/2 pbs.twimg.com/media/Fir52BwacAIhUDb?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash 4d836a0eb6fde852a71cc1ff3a4e534f
ebf6fc78ff10b3364d95bec9ba522b173662fac2
70b0a9b3264fcaa833697b955367e6ce0e0ea464359894b02226735080c2e561
GET /media/Fir52BwacAIhUDb?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:47 GMT
last-modified: Mon, 28 Nov 2022 22:54:04 GMT
perf: 7626143928
server: ECS (ska/F706)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=284
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/3 media/1597363724436008962
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 8cf418d58841d8795704a8cd3c9e948501a282e962833d49e5e51f3e77ada324
x-content-type-options: nosniff
x-response-time: 250
x-transaction-id: 96a0ec72e874531f
x-tw-cdn: VZ, VZ
content-length: 21013
X-Firefox-Spdy: h2
pbs.twimg.com/media/FiqnjstaMAITkeh?format=jpg&name=360x360
93.184.220.70200 OK 9.8 kB URL HTTP/2 pbs.twimg.com/media/FiqnjstaMAITkeh?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash 13e03ce765374ab6d81f40a3f04e6acb
b46251eee2a37e3dc2b36868d6bd0313618fcf7b
9be030114588fec16fb1dd4f6eda218983f809901c741aa282f77a61a775a336
GET /media/FiqnjstaMAITkeh?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:47 GMT
last-modified: Mon, 28 Nov 2022 16:54:33 GMT
perf: 7626143928
server: ECS (ska/F716)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=173
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/0 media/1597273249595142146
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 841c0ef9d40180ffebc8c06f03670331d81ec5dfd4808cec208882d029590af1
x-content-type-options: nosniff
x-response-time: 139
x-transaction-id: a0ff7b023acd549d
x-tw-cdn: VZ, VZ
content-length: 9787
X-Firefox-Spdy: h2
pbs.twimg.com/media/FirQ4NPaMAAF-qG?format=jpg&name=360x360
93.184.220.70200 OK 17 kB URL HTTP/2 pbs.twimg.com/media/FirQ4NPaMAAF-qG?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash cf6ef273e7d235c1cabeb34b8321758d
4d326dd229fde225341e1742da0d3c82020973fc
5edb76424eae4550420235d9570bf6ca13b70876acac78bcc90243eaa28219cd
GET /media/FirQ4NPaMAAF-qG?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:47 GMT
last-modified: Mon, 28 Nov 2022 19:55:05 GMT
perf: 7626143928
server: ECS (ska/F70B)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=289
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/7 media/1597318681901805568
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 4268e060ba165baa1e494e739e2a138310c401967a136111ce368bfc948a1b6d
x-content-type-options: nosniff
x-response-time: 255
x-transaction-id: 70556bec3b2c8ae9
x-tw-cdn: VZ, VZ
content-length: 16918
X-Firefox-Spdy: h2
pbs.twimg.com/card_img/1597239328463360003/s6lwGnrQ?format=jpg&name=small
93.184.220.70200 OK 46 kB URL HTTP/2 pbs.twimg.com/card_img/1597239328463360003/s6lwGnrQ?format=jpg&name=small
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 680x306, components 3\012- data
Hash a90ffc842eeb7b62cb350522105e287b
16d0b22f00d64a06ce398eb67647ebe163e40923
c3615e881750bed531e5405b4f988d8a7f234fea9a5883fb0f719a6b54b6f76c
GET /card_img/1597239328463360003/s6lwGnrQ?format=jpg&name=small HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:47 GMT
last-modified: Mon, 28 Nov 2022 14:39:45 GMT
perf: 7626143928
server: ECS (ska/F70E)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=282
strict-transport-security: max-age=631138519
surrogate-key: card_img card_img/bucket/0 card_img/1597239328463360003
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: adcd8f78dbd587084f39aab85209da412c8d96f8dbced4681175a54d9b76ea3c
x-content-type-options: nosniff
x-response-time: 248
x-transaction-id: 56e83b8523c086f5
x-tw-cdn: VZ, VZ, VZ
content-length: 46165
X-Firefox-Spdy: h2
pbs.twimg.com/media/Fip_LncaUAE-pZ1?format=jpg&name=360x360
93.184.220.70200 OK 14 kB URL HTTP/2 pbs.twimg.com/media/Fip_LncaUAE-pZ1?format=jpg&name=360x360
IP 93.184.220.70:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash 4549d0b8d960046c2de33ad047c1eee0
1a0666c1f2859dc3aa2092ccdc73830eb97f4429
35f15b3c51040be3bee2408d2391388fba603a78cc7a432aa1f8656146249bfe
GET /media/Fip_LncaUAE-pZ1?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 0
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sun, 04 Dec 2022 09:11:47 GMT
last-modified: Mon, 28 Nov 2022 13:58:08 GMT
perf: 7626143928
server: ECS (ska/F6FE)
server-timing: x-cache;desc= MISS,x-tw-cdn;desc=VZ,edge;dur=277
strict-transport-security: max-age=631138519
surrogate-key: media media/bucket/8 media/1597228855399698433
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: 39a1cb59851b89a78f7bf20084cb5ce49cf5f6f3f9c149ded9da0ab377881215
x-content-type-options: nosniff
x-response-time: 243
x-transaction-id: 09b6da1de0966d47
x-tw-cdn: VZ, VZ, VZ
content-length: 14329
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670145106570%2C%22event_namespace%22%3A%7B%22action%22%3A%22impression%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fblog.comredcr.com%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22ComredCR%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%223a64761%3A1667500028145%22%2C%22widget_data_source%22%3A%22screen-name%3AComredCR%22%7D&session_id=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9
104.244.42.72200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670145106570%2C%22event_namespace%22%3A%7B%22action%22%3A%22impression%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fblog.comredcr.com%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22ComredCR%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%223a64761%3A1667500028145%22%2C%22widget_data_source%22%3A%22screen-name%3AComredCR%22%7D&session_id=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9
IP 104.244.42.72:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670145106570%2C%22event_namespace%22%3A%7B%22action%22%3A%22impression%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fblog.comredcr.com%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22ComredCR%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%223a64761%3A1667500028145%22%2C%22widget_data_source%22%3A%22screen-name%3AComredCR%22%7D&session_id=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/srv/timeline-profile/screen-name/ComredCR?dnt=false&embedId=twitter-widget-0&features=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%3D%3D&frame=false&hideBorder=false&hideFooter=false&hideHeader=false&hideScrollBar=false&lang=es&maxHeight=600px&origin=https%3A%2F%2Fblog.comredcr.com%2F&sessionId=09ab3fd1a0718b03d656e3d4d573c60442ee2fc9&showHeader=true&showReplies=false&siteScreenName=ComredCR&transparent=false&widgetsVersion=a3525f077c700%3A1667415560940
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 09:11:48 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Sun, 04 Dec 2022 09:11:48 GMT
content-length: 43
x-transaction-id: afd34378b59ca222
strict-transport-security: max-age=631138519
x-response-time: 109
x-connection-hash: 35712bdcb4dd72107d6259b37b45c19ac54fe8d812940c64d89e8aec176f8859
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c1a6f4805f59db44f9d3520d88701a58
6a0258e8c97ce09f1723382c8a16d9682b7dc50c
ae120df5e96352c6998c24c69c709dfd2b01a7ff8a7b935d496757fd7661f2f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7503
x-amzn-requestid: a4120308-c51e-4cff-99c2-90e86018b05d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cgZjCGkVIAMFpsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6389a2e0-6fdf362a6d32449239476155;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 07:01:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dy619jlSTwCjwDhGuLmwTMcmuYj1Kg2oLA7xORyAYX8IHWimhNo6pw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 07:23:21 GMT
age: 6508
etag: "6a0258e8c97ce09f1723382c8a16d9682b7dc50c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
blog.comredcr.com/wp-includes/js/wp-emoji-release.min.js?ver=6288a0ba81da272d95f0921dcb46d6c4
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-includes/js/wp-emoji-release.min.js?ver=6288a0ba81da272d95f0921dcb46d6c4
IP 213.136.66.216:0
GET /wp-includes/js/wp-emoji-release.min.js?ver=6288a0ba81da272d95f0921dcb46d6c4 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/x-javascript
last-modified: Tue, 24 May 2022 21:24:22 GMT
cache-control: public
etag: W/"628d4d06-48b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
static.addtoany.com/menu/page.js
104.22.71.197200 OK 0 B URL HTTP/2 static.addtoany.com/menu/page.js
IP 104.22.71.197:0
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 3729
etag: W/"c04-5ee0ab04c6251"
last-modified: Tue, 22 Nov 2022 08:09:18 GMT
vary: Accept-Encoding
via: e2s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77436a860e9e9926-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
blog.comredcr.com/wp-includes/css/dist/block-library/style.min.css?ver=6288a0ba81da272d95f0921dcb46d6c4
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-includes/css/dist/block-library/style.min.css?ver=6288a0ba81da272d95f0921dcb46d6c4
IP 213.136.66.216:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6288a0ba81da272d95f0921dcb46d6c4 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: text/css
last-modified: Tue, 15 Nov 2022 21:25:56 GMT
cache-control: public
etag: W/"637403e4-172a9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/themes/catch-evolution/css/responsive.css?ver=6288a0ba81da272d95f0921dcb46d6c4
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-content/themes/catch-evolution/css/responsive.css?ver=6288a0ba81da272d95f0921dcb46d6c4
IP 213.136.66.216:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/catch-evolution/css/responsive.css?ver=6288a0ba81da272d95f0921dcb46d6c4 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: text/css
last-modified: Sun, 27 Feb 2022 04:10:39 GMT
cache-control: public
etag: W/"621af9bf-2dc6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.comredcr.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 213.136.66.216:0
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/x-javascript
last-modified: Wed, 02 Nov 2022 07:23:55 GMT
cache-control: public
etag: W/"63621b0b-15e54"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/plugins/wordpress-popular-posts/assets/js/wpp.min.js?ver=5.5.1
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-content/plugins/wordpress-popular-posts/assets/js/wpp.min.js?ver=5.5.1
IP 213.136.66.216:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wordpress-popular-posts/assets/js/wpp.min.js?ver=5.5.1 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/x-javascript
last-modified: Sun, 27 Feb 2022 04:09:22 GMT
cache-control: public
etag: W/"621af972-bd7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/themes/catch-evolution/js/catchevolution-menu.min.js?ver=20171025
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-content/themes/catch-evolution/js/catchevolution-menu.min.js?ver=20171025
IP 213.136.66.216:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/catch-evolution/js/catchevolution-menu.min.js?ver=20171025 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/x-javascript
last-modified: Sun, 27 Feb 2022 04:10:39 GMT
cache-control: public
etag: W/"621af9bf-144d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/1.f4b5d6e5e8dcb4c6aa7f.js
192.229.233.25200 OK 0 B URL HTTP/1.1 platform.twitter.com/_next/static/chunks/1.f4b5d6e5e8dcb4c6aa7f.js
IP 192.229.233.25:0
GET /_next/static/chunks/1.f4b5d6e5e8dcb4c6aa7f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 299145
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Dec 2022 09:11:43 GMT
Etag: "5a0c374fae04eeb3b101385087754b18+gzip"
Last-Modified: Thu, 03 Nov 2022 19:46:26 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F708)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 299281
blog.comredcr.com/wp-content/uploads/2014/09/cropped-cintillo-blogwp1.png
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-content/uploads/2014/09/cropped-cintillo-blogwp1.png
IP 213.136.66.216:0
GET /wp-content/uploads/2014/09/cropped-cintillo-blogwp1.png HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: image/png
content-length: 444256
last-modified: Wed, 10 May 2017 20:46:12 GMT
cache-control: public
etag: "59137c14-6c760"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/themes/catch-evolution/style.css?ver=20220227-41039
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-content/themes/catch-evolution/style.css?ver=20220227-41039
IP 213.136.66.216:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/catch-evolution/style.css?ver=20220227-41039 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: text/css
last-modified: Sun, 27 Feb 2022 04:10:39 GMT
cache-control: public
etag: W/"621af9bf-102a6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/plugins/wordpress-popular-posts/assets/css/wpp.css?ver=5.5.1
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-content/plugins/wordpress-popular-posts/assets/css/wpp.css?ver=5.5.1
IP 213.136.66.216:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wordpress-popular-posts/assets/css/wpp.css?ver=5.5.1 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: text/css
last-modified: Sun, 27 Feb 2022 04:09:22 GMT
cache-control: public
etag: W/"621af972-688"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/plugins/jetpack/_inc/genericons/genericons/genericons.css?ver=3.1
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-content/plugins/jetpack/_inc/genericons/genericons/genericons.css?ver=3.1
IP 213.136.66.216:0
GET /wp-content/plugins/jetpack/_inc/genericons/genericons/genericons.css?ver=3.1 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: text/css
last-modified: Fri, 04 Mar 2022 04:40:44 GMT
cache-control: public
etag: W/"6221984c-6e6a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
stats.wp.com/e-202248.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202248.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.comredcr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Mon, 20 Nov 2023 01:50:03 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/plugins/jetpack/css/jetpack.css?ver=10.7
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-content/plugins/jetpack/css/jetpack.css?ver=10.7
IP 213.136.66.216:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=10.7 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: text/css
last-modified: Fri, 04 Mar 2022 04:40:44 GMT
cache-control: public
etag: W/"6221984c-15784"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.comredcr.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP 213.136.66.216:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: text/css
last-modified: Wed, 09 Dec 2020 07:16:20 GMT
cache-control: public
etag: W/"5fd079c4-2bf8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/plugins/kk-star-ratings/src/core/public/css/kk-star-ratings.min.css?ver=5.2.9
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-content/plugins/kk-star-ratings/src/core/public/css/kk-star-ratings.min.css?ver=5.2.9
IP 213.136.66.216:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kk-star-ratings/src/core/public/css/kk-star-ratings.min.css?ver=5.2.9 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: text/css
last-modified: Sun, 27 Feb 2022 04:07:34 GMT
cache-control: public
etag: W/"621af906-90f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/themes/catch-evolution/css/blocks.css?ver=1.0
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-content/themes/catch-evolution/css/blocks.css?ver=1.0
IP 213.136.66.216:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/catch-evolution/css/blocks.css?ver=1.0 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: text/css
last-modified: Sun, 27 Feb 2022 04:10:39 GMT
cache-control: public
etag: W/"621af9bf-2b7a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/themes/catch-evolution/js/jquery.cycle.all.min.js?ver=2.9999.5
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-content/themes/catch-evolution/js/jquery.cycle.all.min.js?ver=2.9999.5
IP 213.136.66.216:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/catch-evolution/js/jquery.cycle.all.min.js?ver=2.9999.5 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/x-javascript
last-modified: Sun, 27 Feb 2022 04:10:39 GMT
cache-control: public
etag: W/"621af9bf-6a2d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
blog.comredcr.com/wp-content/themes/catch-evolution/js/catchevolution.slider.js?ver=1.0.1
213.136.66.216200 OK 0 B URL HTTP/2 blog.comredcr.com/wp-content/themes/catch-evolution/js/catchevolution.slider.js?ver=1.0.1
IP 213.136.66.216:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/catch-evolution/js/catchevolution.slider.js?ver=1.0.1 HTTP/1.1
Host: blog.comredcr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.comredcr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 09:11:41 GMT
content-type: application/x-javascript
last-modified: Sun, 27 Feb 2022 04:10:39 GMT
cache-control: public
etag: W/"621af9bf-595"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2