r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5386
Expires: Thu, 22 Sep 2022 21:28:15 GMT
Date: Thu, 22 Sep 2022 19:58:29 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 22 Sep 2022 19:04:06 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zFP-zQ70kpxuvpsBCEpDqACh_Ubt5SiDuSvxQdT7pwUaXp_XyVTj9A==
Age: 3263
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 22 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GVJwhzLOLAi1N6qPJ4SqKMXueCCaKHWUJavzIOzTLgKzRSHk0n7uSw==
age: 55395
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 19:58:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
301 Moved Permanently 0 B URL HTTP/1.1 patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 22 Sep 2022 19:58:29 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 22 Sep 2022 19:03:22 GMT
Expires: Thu, 22 Sep 2022 19:15:49 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: e2FJ38bYN2okKiRzdBdqS_i2WTW0kuwcfa6SNnnKrW29XcTQbsioyA==
Age: 3307
ocsp.comodoca.com/
200 OK 472 B IP
Hash 8bac6c252759264458da9527361e26db
36972a8ed63c3ab4fb13e9ed4c89fbbbf5788d55
551bd503029d5b4cb19d523859b4ca8c65976dfa282d2a61526b463daed4ff37
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 19:58:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 00:34:33 GMT
Expires: Wed, 28 Sep 2022 00:34:32 GMT
Etag: "36972a8ed63c3ab4fb13e9ed4c89fbbbf5788d55"
Cache-Control: max-age=447961,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74ed9d9d8bc00afe-OSL
ocsp.digicert.com/
200 OK 471 B IP
Hash 86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4869
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:30 GMT
Last-Modified: Thu, 22 Sep 2022 18:37:21 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Pk3KEMIfxFjR05AenZ1NbA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9JyI0I4wbNa0SvlIIFCL2hA6300=
patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
404 Not Found 48 kB URL HTTP/1.1 patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8339), with CRLF, LF line terminators
Hash fd4a86d1ac244de1d32f96476d928cee
947ec01739bfd4d94d55444743672a3cc4ffb1ba
636274fb89af3aeac01c3d96198bdd20f952c6e054102fcbc25a0366a29d7db4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 22 Sep 2022 19:58:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://patroll.cl/wp-json/>; rel="https://api.w.org/"
patroll.cl/wp-content/plugins/user-registration/assets/css/sweetalert2/sweetalert2.min.css?ver=10.16.7
200 OK 24 kB URL HTTP/1.1 patroll.cl/wp-content/plugins/user-registration/assets/css/sweetalert2/sweetalert2.min.css?ver=10.16.7
IP
File type ASCII text, with very long lines (24459), with no line terminators
Hash a9c2f4051b00fbcf2987591a80ae8f06
d0005069b942ca6e7a09e0fca98509181b96f447
fa2feafb22f53d9b46ed75dca33bf4eab83d763bb68263481d6eec27eb2efd4e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/user-registration/assets/css/sweetalert2/sweetalert2.min.css?ver=10.16.7 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:30 GMT
Content-Type: text/css
Content-Length: 24459
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 15:17:28 GMT
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 375756444a8871bbe816165e294fb262
2f9e18473daa3daae633a4df448a2230e77f8c33
c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-101028590-11
200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-101028590-11
IP
File type ASCII text, with very long lines (1720)
Hash 2b0c0a8a6774a92fad67579305520ba4
65eb903a0e3187d7abbc92b80c81c54e219d6aab
095ea18ddfc51188a410047328b14d4a61bd06c0ceebb95a29b99a218d49f84a
GET /gtag/js?id=UA-101028590-11 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 22 Sep 2022 19:58:30 GMT
expires: Thu, 22 Sep 2022 19:58:30 GMT
cache-control: private, max-age=900
last-modified: Thu, 22 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42241
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
patroll.cl/wp-content/plugins/user-registration/assets/css/my-account-layout.css?ver=2.2.2
200 OK 6.2 kB URL HTTP/1.1 patroll.cl/wp-content/plugins/user-registration/assets/css/my-account-layout.css?ver=2.2.2
IP
Hash 3120018861ab905a2af5e1d0490c8808
1fec1d6abceedf9e123a680cf2c0357ef7375520
f541058ab4c6e02c0f3bb4e972dcd89bb89054463f32853a319ebf61a6834764
GET /wp-content/plugins/user-registration/assets/css/my-account-layout.css?ver=2.2.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:30 GMT
Content-Type: text/css
Content-Length: 6162
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 15:17:28 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/css/bootstrap.css?ver=6.0.2
200 OK 141 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/css/bootstrap.css?ver=6.0.2
IP
File type ASCII text, with very long lines (65324)
Size 141 kB (140930 bytes)
Hash a7022c6fa83d91db67738d6e3cd3252d
1ae238d0c533b209ea5becf4317e13237ed3d42e
31df1e69ea3aece8a8bae5c08bcb7f5e977cb76f886897b301355359b66a48ec
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/css/bootstrap.css?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:30 GMT
Content-Type: text/css
Content-Length: 140930
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c7b623b7bcd37d436886346d495f9577
eb5688f0df28fa33b202e78d916e35387178636d
74037773d23c4426c3717e239e9dc228904f9cc8b8f084c655e26dcd9e345a96
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c7b623b7bcd37d436886346d495f9577
eb5688f0df28fa33b202e78d916e35387178636d
74037773d23c4426c3717e239e9dc228904f9cc8b8f084c655e26dcd9e345a96
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-TT4569T
200 OK 65 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TT4569T
IP
File type ASCII text, with very long lines (4648)
Hash 5aabf0f0b4f3e2edc28e0af57e5ba6af
18a7c31fe48935f08c57ed272d83ae9e81eab6f9
d86f272abd53d5c61abf96b88051640e79a4f54d6c07dca76327049be173ea6f
GET /gtm.js?id=GTM-TT4569T HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 22 Sep 2022 19:58:30 GMT
expires: Thu, 22 Sep 2022 19:58:30 GMT
cache-control: private, max-age=900
last-modified: Thu, 22 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65293
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
patroll.cl/wp-content/themes/safedia/css/flaticon.css?ver=6.0.2
200 OK 11 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/css/flaticon.css?ver=6.0.2
IP
Hash 29f1647e4e5769ff62c0c51cb2b3a03b
5b2e996b1901054e45ecc103fb34db1f2e8aa93a
8273733eac47f191b53ed073e8d9f15c17c787d3f48ce61c3181581a749eadbc
GET /wp-content/themes/safedia/css/flaticon.css?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:30 GMT
Content-Type: text/css
Content-Length: 10911
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/plugins/user-registration/assets/css/user-registration.css?ver=2.2.2
200 OK 48 kB URL HTTP/1.1 patroll.cl/wp-content/plugins/user-registration/assets/css/user-registration.css?ver=2.2.2
IP
File type Unicode text, UTF-8 text, with very long lines (641)
Hash f8c775276c9ebfa88f483a5f7dfff465
2b930f8dc6358a59961e6f10de063024e315b7be
9a403a1d94c45039fc9bdab27f8ec4c86fb6bb8420bca4b465dc36df6c091a28
GET /wp-content/plugins/user-registration/assets/css/user-registration.css?ver=2.2.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:30 GMT
Content-Type: text/css
Content-Length: 48234
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 15:17:28 GMT
Accept-Ranges: bytes
patroll.cl/wp-includes/css/dashicons.min.css?ver=6.0.2
200 OK 59 kB URL HTTP/1.1 patroll.cl/wp-includes/css/dashicons.min.css?ver=6.0.2
IP
File type ASCII text, with very long lines (58981)
Hash d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
GET /wp-includes/css/dashicons.min.css?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:30 GMT
Content-Type: text/css
Content-Length: 59016
Connection: keep-alive
Last-Modified: Sat, 01 May 2021 18:40:16 GMT
Accept-Ranges: bytes
patroll.cl/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
200 OK 89 kB URL HTTP/1.1 patroll.cl/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:30 GMT
Content-Type: text/css
Content-Length: 88932
Connection: keep-alive
Last-Modified: Tue, 30 Aug 2022 13:35:42 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/css/owl.css?ver=6.0.2
200 OK 4.1 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/css/owl.css?ver=6.0.2
IP
Hash 0c44b1327d7299a41c854b09bce96f83
438bda2210ba505d1c5067977bddd85bde2d90d6
7342aa28694e4ad5609e0b47a82f860d116a0231f81dea54437127015e82ca3f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/css/owl.css?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/css
Content-Length: 4112
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/css/gui.css?ver=6.0.2
200 OK 36 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/css/gui.css?ver=6.0.2
IP
File type ASCII text, with very long lines (2363)
Hash 505deb2ce0f238bd8c18f4ff92815cf4
8db1f0f9b9eeee605346f221e92d6d64f5ba64d1
308399177834074b4302764aad8b89af2178ee72444853222ff1abd55b668a2e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/css/gui.css?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/css
Content-Length: 35953
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/css/fontawesome.css?ver=6.0.2
200 OK 67 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/css/fontawesome.css?ver=6.0.2
IP
Hash 5d3ddbb2c1b7f4ca1a699488104eca09
74f74d42dfe7d2dfc3708895033f1400448d48a7
997d1c34709aad8953ea8aa8de7f84d87bcf5723ff021b810bba4d968de25807
GET /wp-content/themes/safedia/css/fontawesome.css?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:30 GMT
Content-Type: text/css
Content-Length: 67145
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/css/jquery.fancybox.min.css?ver=6.0.2
200 OK 14 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/css/jquery.fancybox.min.css?ver=6.0.2
IP
File type Unicode text, UTF-8 text, with very long lines (13734), with no line terminators
Hash 35d290afd71a6053d8195ea13170b4e9
a64676403bb5c23f9800963b0b8f0475b532601f
e467f75601e845da217ae845b688b227a19fbf1e8fc776a42a4905869496d2e2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/css/jquery.fancybox.min.css?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/css
Content-Length: 13735
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/css/custom.css?ver=6.0.2
200 OK 5.4 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/css/custom.css?ver=6.0.2
IP
Hash 2610094666e4d41828c90c1bb36c2a62
d523c98b176c1cae58d4cb2a280be909acb46667
d3bc940729b4916ce357a6a091655389100910fd30526249a3d8477d57aaae20
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/css/custom.css?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/css
Content-Length: 5424
Connection: keep-alive
Last-Modified: Sat, 11 Jan 2020 17:41:46 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/css/tut.css?ver=6.0.2
200 OK 16 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/css/tut.css?ver=6.0.2
IP
File type assembler source, ASCII text, with CRLF line terminators
Hash 6c9722fa160e46ae249210ad44a48239
8b04cf0d560193dbdd42843f5f349198ec011233
ddb8167df82c4e49f8606410ea4267b5a3de90efa2bfee670aaac9c54700c789
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/css/tut.css?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/css
Content-Length: 15451
Connection: keep-alive
Last-Modified: Sat, 18 Jan 2020 04:52:16 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/css/animate.css?ver=6.0.2
200 OK 76 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/css/animate.css?ver=6.0.2
IP
Hash 9553df5b101bfd7910ed3637f4479e09
180a945af9a97e3d13c481a56e935be48048bba9
c61d53c6505e7604efa05c6ccef932f18d110d33cc7970696533e72ebdf732d3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/css/animate.css?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/css
Content-Length: 75690
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/css/gutenberg.css?ver=6.0.2
200 OK 4.0 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/css/gutenberg.css?ver=6.0.2
IP
File type ASCII text, with CRLF line terminators
Hash f15b2cf41954980aa29d54ea4ce77686
dc12d522c5c68d45cc2f1d36b1fbb011f6effb61
4dc6803fbcc9d8c72d38b02e8b5382edd6f8495d6c4ac0437ca64ece7e32dd7b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/css/gutenberg.css?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/css
Content-Length: 3976
Connection: keep-alive
Last-Modified: Sat, 11 Jan 2020 04:57:24 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/css/responsive.css?ver=6.0.2
200 OK 18 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/css/responsive.css?ver=6.0.2
IP
File type ASCII text, with CRLF line terminators
Hash eb93fb304d013ad9c7d12695b54b2294
327b16427beb21e1f8862b461d8c2b76098d0e1f
ccb49cb289f00597c478f38256b42940bc37b044d050d6d8abafee382b1e6a68
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/css/responsive.css?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/css
Content-Length: 18378
Connection: keep-alive
Last-Modified: Sat, 18 Jan 2020 04:54:04 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/style.css?ver=6.0.2
200 OK 146 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/style.css?ver=6.0.2
IP
File type Unicode text, UTF-8 text, with CRLF line terminators
Size 146 kB (145623 bytes)
Hash fc3154f64498ed022259ca189f44f78a
34668ab0c311e449eaa030d65bd6b981f7db2c3c
10b27051cab3617cf33dc15b0899d536be45d22e9dd33bd8d085c7ddb765865f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/style.css?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/css
Content-Length: 145623
Connection: keep-alive
Last-Modified: Tue, 14 Apr 2020 21:36:14 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.6
200 OK 69 kB URL HTTP/1.1 patroll.cl/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.6
IP
File type ASCII text, with very long lines (65412)
Hash 644013cd7ef7d70419d82745a945ed6c
792c299386c2775a3b8e875574e399e2cd00e49e
4b2c8661b6005fcce986d228dffb66c932577e6a8374f3750ee38f0b20d1212f
GET /wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.min.css?ver=2.9.6 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/css
Content-Length: 68958
Connection: keep-alive
Last-Modified: Wed, 10 Mar 2021 23:27:29 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.6
200 OK 37 kB URL HTTP/1.1 patroll.cl/wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.6
IP
File type ASCII text, with very long lines (36512)
Hash 3a31ee25cc67234c751581c987d638bc
40337f35cf3c9f2531237f2bbbbfc08b5f1531b3
269765ce866e6e0a0b6c9df1181cf749b4693d40fc665ae44caf4ed38d40b9ca
GET /wp-content/plugins/kingcomposer/assets/css/animate.css?ver=2.9.6 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/css
Content-Length: 36745
Connection: keep-alive
Last-Modified: Wed, 10 Mar 2021 23:27:29 GMT
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8111
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 19:58:31 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8111
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 19:58:31 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8111
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 19:58:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91c56f0b9810bfdd84e10a626b89e389
15d83e44d568938b6c9c87201e898cedb3edec0a
942de9764e1c408f7512759774aab0479db201e6fae15ccc39e653adae4cb86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: c671a9ab-c5d0-4743-b13e-cc9a47e3d2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vEThIAMFSwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-17ed13811d3833ea00a34423;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Oem-Kw-aCUa2rA9B9-7CDYcZ-G968tFPnsrL5wJ9Dia43T5u6RDtg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "15d83e44d568938b6c9c87201e898cedb3edec0a"
content-type: image/jpeg
age: 80662
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg
200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da8b8819fc21dcfb224ce0e7ecdc6772
e460ad4376cd118a6fe8b6b050af9398117d9531
9d0cf5fe17040e6c494d1596c24f01501babff37c95caa47d048b5e1aefa7697
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9901
x-amzn-requestid: bfdfb11f-7ec5-460b-8759-41033451e2a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1ueDEUOIAMFq5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632bc459-6f8ebea8143c58f652dc61e8;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 02:11:37 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ln0EYmIyTWExYNLVEv-ZYhdCAYVju_Wu2S-_p5GfD_Kev99yrKwRcg==
via: 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 05:53:43 GMT
age: 50688
etag: "e460ad4376cd118a6fe8b6b050af9398117d9531"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9becda6e892a190dbbc63216ae697506
ba3369e1827d8f01ca10acb8648195847dd02ffd
d71dd28e0ff260326ba0c30748fa11160f4544c2a264d3a3dc361af0de9fd283
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11286
x-amzn-requestid: 7263b60d-fffe-4c0b-8de5-59dc9ac92a47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwZHOaIAMFSQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84cf-62e160b156b587cc21c7fda5;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QxgrVMX7xwI6qE3T3-LRS3JWoJauPyvCSb9TacW9-ktw-BIq5PSF-g==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:26 GMT
etag: "ba3369e1827d8f01ca10acb8648195847dd02ffd"
content-type: image/jpeg
age: 79805
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af5773255351157d72c28a670a355c60
c803e5866edbe6c9baec14e93677f610bdf09bff
3229b4aa1c698647ad96d114174782549ad240f1b2c4ba8c268165a16afc84f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10754
x-amzn-requestid: 2d03531d-6055-477f-9cb6-9ea9fa27eeb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vHJ4IAMF42Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-692620e80d5b2efe1d0e3a82;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eYUP9NfAkmU4A-mZvysejq1228Qfb8vbfdXOaHQvr6mjXhnVoWdqJw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "c803e5866edbe6c9baec14e93677f610bdf09bff"
content-type: image/jpeg
age: 80662
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a5edcd9aee78a6cacc9241b47cbce598
f95b843029e84dbb188427a8c2ff8c9f32740465
6a56c3d0eb1d641e565d3d7d31b42be03bdad30beb20b994ffc9a6f2aaceee1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5650
x-amzn-requestid: 6badb939-afe6-4432-a0ad-3a2b7f85a7e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1G-rFbuIAMFTeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b852a-3e9ac3331503b41d5e734a01;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:42:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: PeFdtN-ow0NE39XAV9pCHX9VSno5L9z56rg-T6Bd1fks7f1ESDDzWA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:27 GMT
etag: "f95b843029e84dbb188427a8c2ff8c9f32740465"
content-type: image/jpeg
age: 79804
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c0201d377c57a684452c0d26372e674d
3829f81048cc63b5f0d1e82dfbe3b8e31646e733
efa055dc93267be2dddd94b334c0655c2e1f1682467fd738e013a778aea175b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14397
x-amzn-requestid: 18122f14-4c48-43b3-b312-218f3ae84d93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv1B8EVfoAMF3dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296872-3d23a04565d70f3c5403007b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:14:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9zc5SsL1SB9GtwMkVWcNLJzC-MfOd-5TiQck5s6-MV23RWPqWPAgtA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 18:00:45 GMT
age: 7066
etag: "3829f81048cc63b5f0d1e82dfbe3b8e31646e733"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
patroll.cl/wp-content/themes/safedia/css/flaticon.css?ver=2.9.6
200 OK 11 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/css/flaticon.css?ver=2.9.6
IP
Hash 29f1647e4e5769ff62c0c51cb2b3a03b
5b2e996b1901054e45ecc103fb34db1f2e8aa93a
8273733eac47f191b53ed073e8d9f15c17c787d3f48ce61c3181581a749eadbc
GET /wp-content/themes/safedia/css/flaticon.css?ver=2.9.6 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/css
Content-Length: 10911
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6
200 OK 49 kB URL HTTP/1.1 patroll.cl/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6
IP
File type ASCII text, with very long lines (35475)
Hash 0648b2cd34c7826c24d335ebc70c89d7
43477bbee0ff80d9c744f6e22d4813b3aee563cb
c33d4226ea4fc1a79443d53a7c7ebc10924d706edf3ac9756d0adb310d671dff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/css
Content-Length: 49302
Connection: keep-alive
Last-Modified: Wed, 10 Mar 2021 23:27:29 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.js?ver=7.8.2
200 OK 31 kB URL HTTP/1.1 patroll.cl/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.js?ver=7.8.2
IP
Hash a1aebc12e42fe81608a46f07b86daed3
6ad7992df93f6990568e0dd8ecc74ab596cf2c50
4e79cf699d428a2d1ca6781d01295b1f73966df14b181d57d8e477f901f4c2e9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.js?ver=7.8.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Content-Length: 30814
Connection: keep-alive
Last-Modified: Tue, 30 Aug 2022 13:33:26 GMT
Accept-Ranges: bytes
patroll.cl/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 90 kB URL HTTP/1.1 patroll.cl/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Content-Length: 89521
Connection: keep-alive
Last-Modified: Tue, 16 Nov 2021 15:16:01 GMT
Accept-Ranges: bytes
patroll.cl/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 11 kB URL HTTP/1.1 patroll.cl/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Content-Length: 11224
Connection: keep-alive
Last-Modified: Sat, 01 May 2021 18:40:35 GMT
Accept-Ranges: bytes
patroll.cl/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
200 OK 19 kB URL HTTP/1.1 patroll.cl/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Content-Length: 18617
Connection: keep-alive
Last-Modified: Tue, 30 Aug 2022 13:35:42 GMT
Accept-Ranges: bytes
patroll.cl/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
200 OK 21 kB URL HTTP/1.1 patroll.cl/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 6aaf0a4e8eac131defea126f5b1b5fbf
24da0326af36303e5a1e9799a3c26f7a1077928c
240b702419d6c39ecc4896f0132ccfc9bc517e9aef0c782d99580e0c678b47d5
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Content-Length: 20715
Connection: keep-alive
Last-Modified: Tue, 30 Aug 2022 13:35:42 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/js/popper.min.js?ver=2.1.2
200 OK 20 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/js/popper.min.js?ver=2.1.2
IP
File type ASCII text, with very long lines (20322)
Hash c1d29c9b4fa7a8ee8417a01bc9ac1b56
0c78c7993cba9ca26741f1df9735eb18d4c0e50d
e074908c3749fe751173f181f33c7092f3a7b4de504dc12ebe072d537a7607c4
GET /wp-content/themes/safedia/js/popper.min.js?ver=2.1.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Content-Length: 20494
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/js/bootstrap.min.js?ver=2.1.2
200 OK 51 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/js/bootstrap.min.js?ver=2.1.2
IP
File type ASCII text, with very long lines (50450)
Hash eb5fac582a82f296aeb74900b01a2fa3
fffea98e12e63b66693d567315a2f32392b780b0
c5a17d46976d471cf060c5a0e25749a323d6ab20cf0910f40afed81047ba21ef
GET /wp-content/themes/safedia/js/bootstrap.min.js?ver=2.1.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Content-Length: 50731
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/js/owl.js?ver=2.1.2
200 OK 85 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/js/owl.js?ver=2.1.2
IP
File type ASCII text, with very long lines (360)
Hash 54428880ec8df798ac3d666f5113c7ff
9e43e74b8677f39e87f1b11be4d536c618b14bb3
0402874ff311f284b18af9e4c453ee5bf0916a3b7335f0be52dcb54a1a31338b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/js/owl.js?ver=2.1.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Content-Length: 85303
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4797d6fd00b4884a9a2bd74ed01e2d1d
8d5e48550c7eb8c2f81ab8c126d452257e4d98ed
4c6fb508b26b7fc8be67672a70d2d0b73ae0cee68c0969350751823c49bf4a9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
patroll.cl/wp-content/themes/safedia/js/jquery.fancybox.js?ver=2.1.2
200 OK 154 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/js/jquery.fancybox.js?ver=2.1.2
IP
Size 154 kB (154104 bytes)
Hash 6e11711058a9459a94d5a19b26a78135
76792d5913afe035b6ccbac585b0b5e70b33aa76
7b99eee1db728472aaa8452017a0d755f488e8d647cc0f62baf45f8ff65b95ba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/js/jquery.fancybox.js?ver=2.1.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Content-Length: 154104
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://patroll.cl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 16:40:18 GMT
expires: Fri, 22 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 11893
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://patroll.cl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:32:09 GMT
expires: Thu, 21 Sep 2023 19:32:09 GMT
cache-control: public, max-age=31536000
age: 87982
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
patroll.cl/wp-content/themes/safedia/js/validate.js?ver=2.1.2
200 OK 21 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/js/validate.js?ver=2.1.2
IP
File type Unicode text, UTF-8 text, with very long lines (20732)
Hash c28328398b66ade3679f4b2617c082ac
88cd9b1d2c773d31145cf70ba0538b3010f1c80e
46c364468eac164a057f562fe16953c54cb79245e9d6ed1e2ec605483fc09304
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/js/validate.js?ver=2.1.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Content-Length: 20888
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4797d6fd00b4884a9a2bd74ed01e2d1d
8d5e48550c7eb8c2f81ab8c126d452257e4d98ed
4c6fb508b26b7fc8be67672a70d2d0b73ae0cee68c0969350751823c49bf4a9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://patroll.cl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:30:59 GMT
expires: Thu, 21 Sep 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 88052
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://patroll.cl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:30:59 GMT
expires: Thu, 21 Sep 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 88052
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
patroll.cl/wp-content/themes/safedia/js/wow.js?ver=2.1.2
200 OK 6.3 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/js/wow.js?ver=2.1.2
IP
File type ASCII text, with very long lines (6269)
Hash 105fb3799fcf14f1ea8fcff23f2686dc
00a8a01378a8259b38cba29dc69ddf761450053f
704ae255ab62df5481884eb0db69b552c686e7094b21581b1cbc86a9b6c3800b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/js/wow.js?ver=2.1.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Content-Length: 6299
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/js/script.js?ver=6.0.2
200 OK 7.9 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/js/script.js?ver=6.0.2
IP
Hash db789e294e57b643df35d8e3e6935eec
b6aa8a8a2cc0c455c65159c99659ae779d27d570
b5d53b44ca2aef2f01062deff3b301f4154938302f56f883e20ce9c3f86ddc1e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/js/script.js?ver=6.0.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Content-Length: 7902
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/js/appear.js?ver=2.1.2
200 OK 4.2 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/js/appear.js?ver=2.1.2
IP
Hash cbbd68c06c9cdb2481b7050f6e64375e
1ee3d2e29b6279f1986cd878072780d596250878
4aded4f99d9aa82ccf099bfc6ddb735e25a6de44a124791c1e258cd05daee11c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/js/appear.js?ver=2.1.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Content-Length: 4228
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4797d6fd00b4884a9a2bd74ed01e2d1d
8d5e48550c7eb8c2f81ab8c126d452257e4d98ed
4c6fb508b26b7fc8be67672a70d2d0b73ae0cee68c0969350751823c49bf4a9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
patroll.cl/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6
200 OK 18 kB URL HTTP/1.1 patroll.cl/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6
IP
File type ASCII text, with very long lines (17655)
Hash 8391e8089560b253140f7ea746be476a
bb0d4ac4f9885ada407cb711b91aee9883a11ad1
5a7504db48a8093fa26f7b551db60ee5a3927df2ce7095625f6bef4a7a7aa6d9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.min.js?ver=2.9.6 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Content-Length: 17656
Connection: keep-alive
Last-Modified: Wed, 10 Mar 2021 23:27:29 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/plugins/kingcomposer/assets/css/fonts/fa-solid-900.woff2
200 OK 44 kB URL HTTP/1.1 patroll.cl/wp-content/plugins/kingcomposer/assets/css/fonts/fa-solid-900.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44068, version 1.0\012- data
Hash 84f351b3972185aed620f78489e48b2d
27c88aea3904d48cde4c8cd6fa85a414b547feea
cb7aa6b06aa5a8eea3670662c4b0c37104041c14575fc170dc48677a0506a33a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kingcomposer/assets/css/fonts/fa-solid-900.woff2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://patroll.cl/wp-content/plugins/kingcomposer/assets/css/icons.css?ver=2.9.6
Cookie: _gcl_au=1.1.1094720096.1663876711
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: font/woff2
Content-Length: 44068
Connection: keep-alive
Last-Modified: Wed, 10 Mar 2021 23:27:29 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/fonts/fa-brands-400.woff2
200 OK 74 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/fonts/fa-brands-400.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 74288, version 1.0\012- data
Hash eac60e8a656781e13d2a674b4d9051c0
0039be9d8a99d1e5cf200ca3e08757692020460e
eed474a49bdbf745c19e463f070e67977c1ab27835603eb749d9e5c249cf81f8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/safedia/fonts/fa-brands-400.woff2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://patroll.cl/wp-content/themes/safedia/css/fontawesome.css?ver=6.0.2
Cookie: _gcl_au=1.1.1094720096.1663876711
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: font/woff2
Content-Length: 74288
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
fonts.googleapis.com/css?family=Open%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7CSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7CPlayfair%3A400%2C400i%2C700%2C700i%2C900%2C900i%7CMontserrat%3A400%2C500%2C600%2C700%7CDisplay%3A400%2C400i%2C700%2C700i%2C900%2C900i%7CPoppins%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext
200 OK 80 kB URL HTTP/2 fonts.googleapis.com/css?family=Open%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7CSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7CPlayfair%3A400%2C400i%2C700%2C700i%2C900%2C900i%7CMontserrat%3A400%2C500%2C600%2C700%7CDisplay%3A400%2C400i%2C700%2C700i%2C900%2C900i%7CPoppins%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext
IP
Hash f2cbb1ee6dcc74f0d094443d47fc20dc
0ec542cf4d475ac5e21eeaaadb0712fc2e0dea7a
13d45291c71af9226a3999c0afcd4aca1dc97919445466d7f72b3f038ea67e25
GET /css?family=Open%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7CSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7CPlayfair%3A400%2C400i%2C700%2C700i%2C900%2C900i%7CMontserrat%3A400%2C500%2C600%2C700%7CDisplay%3A400%2C400i%2C700%2C700i%2C900%2C900i%7CPoppins%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 22 Sep 2022 19:58:30 GMT
date: Thu, 22 Sep 2022 19:58:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
patroll.cl/wp-content/themes/safedia/images/background/5.jpg
200 OK 36 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/images/background/5.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x236, components 3\012- data
Hash 177e863b323f9fae02863bab25fd1640
ad04d0326ba36b120eb56ff892dc6add223c8560
9c7c4a6e93805a0d13c591bdd61c2a8515e69b867d6cf3cb6b82cb93c051d7e7
GET /wp-content/themes/safedia/images/background/5.jpg HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/themes/safedia/css/custom.css?ver=6.0.2
Cookie: _gcl_au=1.1.1094720096.1663876711
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: image/jpeg
Content-Length: 36276
Connection: keep-alive
Last-Modified: Tue, 07 May 2019 17:30:32 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/plugins/user-registration/assets/css/user-registration-smallscreen.css?ver=2.2.2
200 OK 2.1 kB URL HTTP/1.1 patroll.cl/wp-content/plugins/user-registration/assets/css/user-registration-smallscreen.css?ver=2.2.2
IP
Hash ee062ebf0a9d29781e9621a8c6470bf0
d0e52b50803343c5d755bb36acd1f5d92ef63a1f
a4ef555b6ac63a295b9befe789afbabe6e4561ca077ad4bdecc901d754fd2ff7
GET /wp-content/plugins/user-registration/assets/css/user-registration-smallscreen.css?ver=2.2.2 HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Cookie: _gcl_au=1.1.1094720096.1663876711
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/css
Content-Length: 2093
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 15:17:28 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/uploads/2020/05/placa-300x177.png
200 OK 41 kB URL HTTP/1.1 patroll.cl/wp-content/uploads/2020/05/placa-300x177.png
IP
File type PNG image data, 300 x 177, 8-bit/color RGBA, non-interlaced\012- data
Hash 3803957f6f665fb274598b8809687311
c60d5f7759ebd7ddabc6c360976b8dbd0d2cb154
898b0c743cecb5c5259141b74b61fe2006ff9f34fd9a52369d93b647e1f5190a
GET /wp-content/uploads/2020/05/placa-300x177.png HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Cookie: _gcl_au=1.1.1094720096.1663876711
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: image/png
Content-Length: 40732
Connection: keep-alive
Last-Modified: Mon, 01 Jun 2020 06:02:46 GMT
Accept-Ranges: bytes
ocsp.sectigo.com/
200 OK 471 B IP
Hash a78128aa8994556f76a62b7ebf148a51
1d0e396684f1a5d3d02c8e39e485756055dd0e29
2b5651b09fc1358f67fcda7e5e908649012072c2ef3909ca385089b51dae7fbe
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 09:24:02 GMT
Expires: Wed, 28 Sep 2022 09:24:01 GMT
Etag: "1d0e396684f1a5d3d02c8e39e485756055dd0e29"
Cache-Control: max-age=479729,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ed9da75a5cb52d-OSL
patroll.cl/wp-content/uploads/2020/05/ww-300x84.png
200 OK 19 kB URL HTTP/1.1 patroll.cl/wp-content/uploads/2020/05/ww-300x84.png
IP
File type PNG image data, 300 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash f08e5d48be02c52272a0ad04bfee4bc3
7f6ff40b4eb45364b7898d83d9ba525c5f5d2612
3041dfaddac857789fd61acdb6cf09d92daa62448d1521bd8ae95a88e7c97137
GET /wp-content/uploads/2020/05/ww-300x84.png HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Cookie: _gcl_au=1.1.1094720096.1663876711
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: image/png
Content-Length: 18793
Connection: keep-alive
Last-Modified: Mon, 01 Jun 2020 06:02:47 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/images/logo.png
200 OK 31 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/images/logo.png
IP
File type PNG image data, 350 x 105, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d6b5229946fee21f374e2fc0df45522
356e6e225ede7e62101c35cd6ef31713abcbed7b
666e14fc23522eb212f5d843f37050e330ac5f4c4c36c3fff36d63818347297a
GET /wp-content/themes/safedia/images/logo.png HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: image/png
Content-Length: 31069
Connection: keep-alive
Last-Modified: Fri, 12 Aug 2022 21:41:52 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/uploads/2020/06/whatsapp-logo-1-1.png
200 OK 175 kB URL HTTP/1.1 patroll.cl/wp-content/uploads/2020/06/whatsapp-logo-1-1.png
IP
File type PNG image data, 2100 x 2109, 8-bit/color RGBA, non-interlaced\012- data
Size 175 kB (174882 bytes)
Hash 1f3b468b69f9fe5098641e95f0a09046
87bf58620eb94e7b1c38057691b1ec4306d6c719
783e9604bee7519a403c57d7ef64ed3b287d3b2fec687e176bb779b5c0556b70
GET /wp-content/uploads/2020/06/whatsapp-logo-1-1.png HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: image/png
Content-Length: 174882
Connection: keep-alive
Last-Modified: Tue, 02 Jun 2020 22:14:59 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/themes/safedia/images/resource/error.jpg
200 OK 31 kB URL HTTP/1.1 patroll.cl/wp-content/themes/safedia/images/resource/error.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 543x225, components 3\012- data
Hash 46ec28fe7ae266e5089460ed20c42fcd
d7ea551adbc6fd63031c0b69d5cee95e2bc6bf88
4992a33b0acc23c28108fb0bd0abbcec373e19dbc37a40b837f4900945bfb4ff
GET /wp-content/themes/safedia/images/resource/error.jpg HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: image/jpeg
Content-Length: 30787
Connection: keep-alive
Last-Modified: Mon, 06 Jan 2020 16:24:46 GMT
Accept-Ranges: bytes
static.getbutton.io/widget-send-button/js/init.js
302 Moved Temporarily 145 B URL HTTP/1.1 static.getbutton.io/widget-send-button/js/init.js
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 0e0a408f3009ae4498e7f3ffc9c5fa7b
113078a9c13645b225d88d5e306709f8994ea817
e3a16c76764dacf8ea25637976a03595564530a9fce185c2145f7c1903f2707b
GET /widget-send-button/js/init.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.23.1
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: text/html
Content-Length: 145
Connection: keep-alive
Location: https://static.getbutton.io/widget/bundle.js
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 86b0e71c4c0853404eaeaf9284731766
82c29a625ecc92f2bb13c9c387f2fbb5c7db723d
952fc950f96a8fdda968f8842375c0663ca5e9898e9a3edec3b5b4e8485dce4f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "952FC950F96A8FDDA968F8842375C0663CA5E9898E9A3EDEC3B5B4E8485DCE4F"
Last-Modified: Wed, 21 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16867
Expires: Fri, 23 Sep 2022 00:39:38 GMT
Date: Thu, 22 Sep 2022 19:58:31 GMT
Connection: keep-alive
static.getbutton.io/widget/bundle.js
200 OK 94 kB URL HTTP/1.1 static.getbutton.io/widget/bundle.js
IP
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (65475)
Hash e71520287bb9126c2b225d2a3b337940
e7cd3e88c04ad3e0e9e089d0e63e657ca2d09665
d8aff402695c89c58cbbc7bbd9b7ee5c791da1692646aea46b08d75866629471
GET /widget/bundle.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://patroll.cl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.23.1
Date: Thu, 22 Sep 2022 19:58:31 GMT
Content-Type: application/javascript
Last-Modified: Thu, 08 Sep 2022 09:49:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6319baba-4a52c"
Expires: Thu, 22 Sep 2022 22:58:31 GMT
Cache-Control: max-age=10800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
s.cliengo.com/weboptimizer/6194245b3e8e58002a9efde8/6194245e3e8e58002a9efdeb.js?platform=dashboard
200 OK 1.7 kB URL HTTP/1.1 s.cliengo.com/weboptimizer/6194245b3e8e58002a9efde8/6194245e3e8e58002a9efdeb.js?platform=dashboard
IP
File type Unicode text, UTF-8 text, with very long lines (778)
Hash 146391f8ece18f308ac4eb75a36145b4
f9767663075775d234dad8d909b44cf54dfc8811
4bdfe8cccc600a071007788e90dcc5f4e1be232e2abfe6693e3e87aae2871bb1
GET /weboptimizer/6194245b3e8e58002a9efde8/6194245e3e8e58002a9efdeb.js?platform=dashboard HTTP/1.1
Host: s.cliengo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Server: Play! Framework;1.4.5;prod
Content-Type: text/plain; charset=utf-8
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Thu, 22 Sep 2022 19:58:31 GMT
Set-Cookie: PLAY_ERRORS=; Max-Age=0; Expires=Thu, 22 Sep 2022 19:58:31 GMT; Path=/; Domain=.leadaki.com
PLAY_FLASH=; Max-Age=0; Expires=Thu, 22 Sep 2022 19:58:31 GMT; Path=/; Domain=.leadaki.com
ldkInit=1; Max-Age=10000000; Expires=Mon, 16 Jan 2023 13:45:11 GMT; Path=/; Domain=.cliengo.com
PLAY_SESSION=; Max-Age=0; Expires=Thu, 22 Sep 2022 19:58:31 GMT; Path=/; Domain=.leadaki.com
Cache-Control: no-cache
Content-Length: 1707
Via: 1.1 vegur
ocsp.digicert.com/
200 OK 471 B IP
Hash 088fd54c49c3761d7537bd8ceadf8af4
c450a99446fadeaa81f2426367b7d200d11ef67d
9e171b74ae7c3f96a03cf14f423b05ab0ad7329844061b9200d81f6bc381a561
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2491
Cache-Control: max-age=151692
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:32 GMT
Etag: "632c6239-1d7"
Expires: Sat, 24 Sep 2022 14:06:44 GMT
Last-Modified: Thu, 22 Sep 2022 13:25:13 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Thu, 22 Sep 2022 18:41:09 GMT
expires: Thu, 22 Sep 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 4643
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 04fcf7ddca845d2b087ec43ab5ff0d59
39060a9af77ba92e5db529ba7c79013d205c9423
1ae0d60b572f2075bddfe8ae2034ddd093150d0d18c72d967b3bb8c4abffb23e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 9ecd89752214ef749272eef344b9089a
70a58a49c08934265ee34c74efb01d6b3124095d
f76c51487e348977288fcaf83984cd8fe4e73758cc352402774d9eb94680d528
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: SBmfdXa9VEwozOdwHeDjnbW3Kj9xwbOnTkMwTUCn1+CR8B3Usec5uAYu8PxMyPCAIADh8y2rc++Fhmy1ejsM+g==
priority: u=3,i
content-length: 26839
x-fb-trip-id: 1679558926
date: Thu, 22 Sep 2022 19:58:32 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/pagead/conversion_async.js
200 OK 16 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP
File type ASCII text, with very long lines (1654)
Hash 890f716858b5f72587e47c5eca121cb5
91871a0acd9a0ab644d51036bb5ca0c3bdc5e687
7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 22 Sep 2022 19:58:32 GMT
expires: Thu, 22 Sep 2022 19:58:32 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
patroll.cl/wp-content/uploads/2018/06/cropped-Favicon-192x192.png
200 OK 22 kB URL HTTP/1.1 patroll.cl/wp-content/uploads/2018/06/cropped-Favicon-192x192.png
IP
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 2b2a8bfd0158cfb760b83b9112373c09
6a73af7733e5effe44b5fa6ca88499e3e853e392
7d238c64cd7dc647459d28dd1b0010cfde4640ae7ae6b16e682de45d4d274375
GET /wp-content/uploads/2018/06/cropped-Favicon-192x192.png HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Cookie: _gcl_au=1.1.1094720096.1663876711
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:32 GMT
Content-Type: image/png
Content-Length: 22467
Connection: keep-alive
Last-Modified: Tue, 12 Jun 2018 01:45:18 GMT
Accept-Ranges: bytes
patroll.cl/wp-content/uploads/2018/06/cropped-Favicon-32x32.png
200 OK 1.8 kB URL HTTP/1.1 patroll.cl/wp-content/uploads/2018/06/cropped-Favicon-32x32.png
IP
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 225a4beb0094fd778748981f8eed722f
777a5f6af8c4c755a463a619e97545a464172674
fa8700ccae7e4b540ab7a771884a74266bf6a5a307266e026460ecb8eb146f0c
GET /wp-content/uploads/2018/06/cropped-Favicon-32x32.png HTTP/1.1
Host: patroll.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/wp-content/uploads/2022/07/TomClancysSplinterCellConviction_Fitgirl_Repack.pdf
Cookie: _gcl_au=1.1.1094720096.1663876711
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 19:58:32 GMT
Content-Type: image/png
Content-Length: 1807
Connection: keep-alive
Last-Modified: Tue, 12 Jun 2018 01:45:18 GMT
Accept-Ranges: bytes
www.google-analytics.com/j/collect?v=1&_v=j97&a=240802893&t=pageview&_s=1&dl=https%3A%2F%2Fpatroll.cl%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf&dp=%2F404.html%3Fpage%3D%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf%26from%3D&ul=en-us&de=UTF-8&dt=P%C3%A1gina%20no%20encontrada%20-%20Patroll&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=1147596537&gjid=2082174700&cid=216950154.1663876712&tid=UA-101028590-11&_gid=1464578562.1663876712&_r=1>m=2ou9l0&did=dNDMyYj&gdid=dNDMyYj&z=198222290
200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j97&a=240802893&t=pageview&_s=1&dl=https%3A%2F%2Fpatroll.cl%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf&dp=%2F404.html%3Fpage%3D%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf%26from%3D&ul=en-us&de=UTF-8&dt=P%C3%A1gina%20no%20encontrada%20-%20Patroll&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=1147596537&gjid=2082174700&cid=216950154.1663876712&tid=UA-101028590-11&_gid=1464578562.1663876712&_r=1>m=2ou9l0&did=dNDMyYj&gdid=dNDMyYj&z=198222290
IP
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j97&a=240802893&t=pageview&_s=1&dl=https%3A%2F%2Fpatroll.cl%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf&dp=%2F404.html%3Fpage%3D%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf%26from%3D&ul=en-us&de=UTF-8&dt=P%C3%A1gina%20no%20encontrada%20-%20Patroll&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAAC~&jid=1147596537&gjid=2082174700&cid=216950154.1663876712&tid=UA-101028590-11&_gid=1464578562.1663876712&_r=1>m=2ou9l0&did=dNDMyYj&gdid=dNDMyYj&z=198222290 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://patroll.cl
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://patroll.cl
date: Thu, 22 Sep 2022 19:58:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 088fd54c49c3761d7537bd8ceadf8af4
c450a99446fadeaa81f2426367b7d200d11ef67d
9e171b74ae7c3f96a03cf14f423b05ab0ad7329844061b9200d81f6bc381a561
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2491
Cache-Control: max-age=151692
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:32 GMT
Etag: "632c6239-1d7"
Expires: Sat, 24 Sep 2022 14:06:44 GMT
Last-Modified: Thu, 22 Sep 2022 13:25:13 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
script.hotjar.com/modules.f4179535429bf14e77ee.js
200 OK 65 kB URL HTTP/2 script.hotjar.com/modules.f4179535429bf14e77ee.js
IP
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 4a99ec558aff503901b33da3d9b4ec1b
83d1a24dacc650c18594a5334ae15a144b5704ec
ad082098bddf0eed29c4d958450687924b052f783a834f58e59495e0c8f3143b
GET /modules.f4179535429bf14e77ee.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 65420
date: Tue, 20 Sep 2022 16:01:07 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "4a99ec558aff503901b33da3d9b4ec1b"
last-modified: Tue, 20 Sep 2022 16:00:26 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9kPWkAVF-q6uHyQFL2Wspp7v2beu_rzU7yNm8BsCoUzpgfxalDCv8A==
age: 187045
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f4589cef50f0426b60bf56a1fadb93a5
7db92337dc8c6161e31f89f49db18c4cd22b871f
db8b6e5f5a4e43b9e8e835e9434f0f94ead7965c04dc4641dad639ac778d8215
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Hash f6a9ca04b0687ea3c0d98e8430c8c77b
35503b2deb23091a9a9c6c68d4020dbdf879588e
8e4328ecb6b395499567369e3c227231dbdaf361f43ce315934d7a2a3abbed41
GET /box-69edcc3187336f9b0a3fbb4c73be9fe6.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Wed, 07 Sep 2022 09:17:07 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "f6a9ca04b0687ea3c0d98e8430c8c77b"
last-modified: Wed, 07 Sep 2022 09:16:57 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rRqmFwviavqJ5qwRtB0SL22zDKYIaJiCHkU-sNuxzPO5eaZZg9mAvg==
age: 1334485
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3b578aed53ee9a2ee8cccab56985f7ab
1d5182fc7bdeaa61c5d85491a15dad902fbe93c9
ed8c8c8b8979b564564ddbf0d238414a37ca578ee2b6e71a7ad73ac001f30f71
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/832603279/?random=1663876711612&cv=9&fst=1663876711612&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9l0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fpatroll.cl%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf&tiba=P%C3%A1gina%20no%20encontrada%20-%20Patroll&auid=1094720096.1663876711&hn=www.google.com&async=1&rfmt=3&fmt=4
200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/832603279/?random=1663876711612&cv=9&fst=1663876711612&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9l0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fpatroll.cl%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf&tiba=P%C3%A1gina%20no%20encontrada%20-%20Patroll&auid=1094720096.1663876711&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2382), with no line terminators
Hash 09f62adfb2b7e4afc3b4e5fa40588f1a
8ab3098590dc447b447f27dc324b8921aaedfd2a
2d157e01209a13e3b52db0a86b73e3ae1db63f05c915e5f4ac8a5693998724f1
GET /pagead/viewthroughconversion/832603279/?random=1663876711612&cv=9&fst=1663876711612&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9l0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fpatroll.cl%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf&tiba=P%C3%A1gina%20no%20encontrada%20-%20Patroll&auid=1094720096.1663876711&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 19:58:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1083
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 22-Sep-2022 20:13:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 15af330272b65861c93c7f989a284e90
e3cf4e4108bc8e68819f82722fb6ca11392cdb34
7ebccd17f3283cfcd086121a089c9de4699284acf5809695d7a364835518ec1a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b19c871f8d68a5cf507d6d29cb89da17
11197481d015eb6d7811381df5ee51d9ff31bb3b
48ce88e049d6f9a08ab2bd0812c037b4b4401e1a788cacefb539831978054b7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vc.hotjar.io/sessions/1840643?s=0.25&r=0.045801673898380746
204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/1840643?s=0.25&r=0.045801673898380746
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/1840643?s=0.25&r=0.045801673898380746 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://patroll.cl
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Thu, 22 Sep 2022 19:58:32 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2cpXx1MIDX2QdMN0EQbPsS7NiX_60b4APXPrA8xbo7A_aKm-6JTgWQ==
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/832603279/?random=1663876711612&cv=9&fst=1663873200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9l0&sendb=1&frm=0&url=https%3A%2F%2Fpatroll.cl%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf&tiba=P%C3%A1gina%20no%20encontrada%20-%20Patroll&async=1&fmt=3&is_vtc=1&random=3148659704&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/832603279/?random=1663876711612&cv=9&fst=1663873200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9l0&sendb=1&frm=0&url=https%3A%2F%2Fpatroll.cl%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf&tiba=P%C3%A1gina%20no%20encontrada%20-%20Patroll&async=1&fmt=3&is_vtc=1&random=3148659704&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/832603279/?random=1663876711612&cv=9&fst=1663873200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9l0&sendb=1&frm=0&url=https%3A%2F%2Fpatroll.cl%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf&tiba=P%C3%A1gina%20no%20encontrada%20-%20Patroll&async=1&fmt=3&is_vtc=1&random=3148659704&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 19:58:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 77f9b5e468180a8976a641e40dceedbf
9873db160721dc9f41d3ff2d711db700d6f5d4d7
cae6929c00ed37fc097432c9ac1d6800244479d3877b17662c67bafeeff23aba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b19c871f8d68a5cf507d6d29cb89da17
11197481d015eb6d7811381df5ee51d9ff31bb3b
48ce88e049d6f9a08ab2bd0812c037b4b4401e1a788cacefb539831978054b7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-101028590-11&cid=216950154.1663876712&jid=1147596537&gjid=2082174700&_gid=1464578562.1663876712&_u=YEBAAUAAAAAAAC~&z=854678974
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-101028590-11&cid=216950154.1663876712&jid=1147596537&gjid=2082174700&_gid=1464578562.1663876712&_u=YEBAAUAAAAAAAC~&z=854678974
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-101028590-11&cid=216950154.1663876712&jid=1147596537&gjid=2082174700&_gid=1464578562.1663876712&_u=YEBAAUAAAAAAAC~&z=854678974 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://patroll.cl
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://patroll.cl
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 22 Sep 2022 19:58:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 77f9b5e468180a8976a641e40dceedbf
9873db160721dc9f41d3ff2d711db700d6f5d4d7
cae6929c00ed37fc097432c9ac1d6800244479d3877b17662c67bafeeff23aba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 19:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash e57f6b871a3c98fea838dd80c0fe551d
5c573967aabfda18c26abbbdff3176a1796f586e
e9d80974640a157ffa13d38d57d653d2b69df4ee9881eb09a3366c7e4a2cfadd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 19:58:32 GMT
Last-Modified: Thu, 22 Sep 2022 18:31:48 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HQCxG3Nlnm5YQ3Sn8O8icnGc710ENA_9batmwO5mtYm22NDX7r7haw==
Age: 5204
www.facebook.com/tr/?id=472059457008600&ev=PageView&dl=https%3A%2F%2Fpatroll.cl%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf&rl=&if=false&ts=1663876711849&sw=1280&sh=1024&v=2.9.83&r=stable&a=wordpress-6.0.2-3.0.7&ec=0&o=30&fbp=fb.1.1663876711848.1647018293&it=1663876711622&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=472059457008600&ev=PageView&dl=https%3A%2F%2Fpatroll.cl%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf&rl=&if=false&ts=1663876711849&sw=1280&sh=1024&v=2.9.83&r=stable&a=wordpress-6.0.2-3.0.7&ec=0&o=30&fbp=fb.1.1663876711848.1647018293&it=1663876711622&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=472059457008600&ev=PageView&dl=https%3A%2F%2Fpatroll.cl%2Fwp-content%2Fuploads%2F2022%2F07%2FTomClancysSplinterCellConviction_Fitgirl_Repack.pdf&rl=&if=false&ts=1663876711849&sw=1280&sh=1024&v=2.9.83&r=stable&a=wordpress-6.0.2-3.0.7&ec=0&o=30&fbp=fb.1.1663876711848.1647018293&it=1663876711622&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Thu, 22 Sep 2022 19:58:32 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v11/XRXV3I6Li01BKofINeaB.woff2
200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v11/XRXV3I6Li01BKofINeaB.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 19976, version 1.0\012- data
Hash de6068bf97f40206af0b062e262e6213
9a49fe65bd0cb8cb993478f0757a243ea2132f83
c1536408aa8d8caad5b9506d222ab47db8e2905e8237349a4b74391628b77a50
GET /s/nunito/v11/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lw.cliengo.com
Connection: keep-alive
Referer: https://lw.cliengo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 14:42:00 GMT
expires: Wed, 20 Sep 2023 14:42:00 GMT
cache-control: public, max-age=31536000
age: 191792
last-modified: Mon, 22 Jul 2019 19:27:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.jsdelivr.net/gh/Cliengo/wisipoo@latest/demo/src/App.css
200 OK 2.4 kB URL HTTP/2 cdn.jsdelivr.net/gh/Cliengo/wisipoo@latest/demo/src/App.css
IP
Hash 3852185ad5212062e1d0553eadc0df53
dc9f7074d48699a81169fa14fde136a3aae5f5bb
5a432f9795725d439be63138833144bc135e28a3c3033a19db0b9ccdc70556f3
GET /gh/Cliengo/wisipoo@latest/demo/src/App.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw.cliengo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.0.3
x-jsd-version-type: version
etag: W/"275d-z43NbeUWWEN+UloDVZyd4xpBC4c"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 22 Sep 2022 19:58:32 GMT
age: 16891
x-served-by: cache-fra19142-FRA, cache-bma1671-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2386
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
Hash 372cd3c2e8fc937d9357bfe36091f8d6
7d4dcf0f48f9d03b0a12a130b64e4abe425e288e
2b690fd10d1400bfadee48e039dae971e0b0e5520dc9130be1fbb76a8ddd9161
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 19:58:32 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "009D3D2EDD9AFB43481FF1EB6DA0A4DD8A8C6601"
Expires: Fri, 23 Sep 2022 07:00:00 GMT
Last-Modified: Thu, 22 Sep 2022 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 617
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74ed9dad8b37b509-OSL
res.cloudinary.com/hbrrdozyj/image/upload/v1603736815/Usamos-Cliengo_knac91.png
200 OK 701 B URL HTTP/2 res.cloudinary.com/hbrrdozyj/image/upload/v1603736815/Usamos-Cliengo_knac91.png
IP
File type PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 242264fbeaa3ea5ea2646a052e31b51f
0d03bd83d1abd234cf2d1fa9ef074cde1b2feef5
856b12d7676ac78cdb0727e58eb586a1449a431a93f5496f79c068a1135305d9
GET /hbrrdozyj/image/upload/v1603736815/Usamos-Cliengo_knac91.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw.cliengo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
etag: "242264fbeaa3ea5ea2646a052e31b51f"
last-modified: Mon, 26 Oct 2020 18:26:56 GMT
date: Thu, 22 Sep 2022 19:58:32 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2022-09-22T19:58:32.638Z;desc=hit,rtt;dur=10
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 701
X-Firefox-Spdy: h2
ws38.hotjar.com/api/v2/client/ws
101 Switching Protocols 0 B URL HTTP/1.1 ws38.hotjar.com/api/v2/client/ws
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/ws HTTP/1.1
Host: ws38.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://patroll.cl
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YYh2K2SB3PwZKVhXLCfajw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Thu, 22 Sep 2022 19:58:32 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YAVn+uOViqkW+/3gAJ9Tzc33XqU=
Sec-WebSocket-Extensions: permessage-deflate
lw.cliengo.com/incoming-message.mp3
206 Partial Content 2.7 kB URL HTTP/2 lw.cliengo.com/incoming-message.mp3
IP
File type MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data
Hash 8b1c2a105f4cb78e309142c0664c8f8d
3fd35cc9204f9181db94b89e105adf174d305ba8
45378cb494cbf5168f5cbc64ae1f4c432a9fa40860711c1ab2a7065f4215358a
GET /incoming-message.mp3 HTTP/1.1
Host: lw.cliengo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://lw.cliengo.com/s/6194245b3e8e58002a9efde8/6194245e3e8e58002a9efdeb
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
date: Thu, 22 Sep 2022 19:58:32 GMT
content-type: audio/mpeg
content-length: 2712
x-powered-by: Express
cache-control: public, max-age=31557600
last-modified: Wed, 21 Sep 2022 15:56:00 GMT
etag: W/"a98-18360c35e80"
via: 1.1 vegur
cf-cache-status: HIT
age: 98633
content-range: bytes 0-2711/2712
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LcwUBDgXyLIV0Wv7gy2pc7WqSarIBzh2oWIyVCD3SlCt1SWYdMxmKgxxxKEgqCHfPPYm3AXUZaMHIHrUaJs6LVVcD2fdBLzdvC%2FGrI%2FG3vZRezzY0z%2BuM6aMtjFqclp8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ed9dae4c0cb4f4-OSL
X-Firefox-Spdy: h2
ws38.hotjar.com/api/v2/sites/1840643/recordings/content
200 OK 564 B URL HTTP/2 ws38.hotjar.com/api/v2/sites/1840643/recordings/content
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 264b86eae1a0e089a0e72bb50c4ab605
aac05c189928305953c8468e3accecd112cd7dba
a91765924809cca600267caa8bc5a8ec548a5b13d62570cacf82c17cf4dac83b
POST /api/v2/sites/1840643/recordings/content HTTP/1.1
Host: ws38.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 83553
Origin: https://patroll.cl
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 19:58:32 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
socketeer.cliengo.com/socket.io/?EIO=3&transport=websocket
101 Switching Protocols 0 B URL HTTP/1.1 socketeer.cliengo.com/socket.io/?EIO=3&transport=websocket
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?EIO=3&transport=websocket HTTP/1.1
Host: socketeer.cliengo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://lw.cliengo.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DSu5WYvuMtUtxJcGt8ElPg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-Websocket-Accept: Ibru7K/YoD8lP6tqsr9MQ8Z8N+k=
Sec-Websocket-Extensions: permessage-deflate
Via: 1.1 vegur
i.icomoon.io/public/2f34c7d7b1/cliengowidget/style.css
200 OK 3.8 kB URL HTTP/2 i.icomoon.io/public/2f34c7d7b1/cliengowidget/style.css
IP
Hash 16df377697da35195a30b2f4ccf21d20
20428f5362af26d3afa6b3cf468782a6e9f1aeab
dee12f136181a8c83d6def9c18c45b921b9a822865ea349a2ea6888aff928f9b
GET /public/2f34c7d7b1/cliengowidget/style.css HTTP/1.1
Host: i.icomoon.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw.cliengo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 19:58:33 GMT
content-type: text/css
last-modified: Thu, 30 Dec 2021 16:28:10 GMT
vary: Accept-Encoding
etag: W/"61cdde1a-752"
cache-control: no-cache
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62818de3c50f957b2e5680851a1768c9
80e48c9ae48c89598780736b089c98e22d58df9a
16f2c2d23e8641a3f297a175730343d11120a228c0fe846c0fdf1e39212c522c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8549
x-amzn-requestid: 6d44626b-16c6-4f19-ae52-d5350065b390
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwPHJJoAMFdfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84ce-46ebc35612eb7a4473b36189;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UoQTXSP0LgR4LwELp2Avm27hUekfO9TU9yfvNbIlmUtB-FrU9MGRbg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:19 GMT
age: 79819
etag: "80e48c9ae48c89598780736b089c98e22d58df9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lw.cliengo.com/mainclgo.bundle.js
200 OK 0 B URL HTTP/2 lw.cliengo.com/mainclgo.bundle.js
IP
GET /mainclgo.bundle.js HTTP/1.1
Host: lw.cliengo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 19:58:32 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31557600
cf-bgj: minify
etag: W/"4596-18360c50848"
last-modified: Wed, 21 Sep 2022 15:57:49 GMT
vary: Accept-Encoding
via: 1.1 vegur
x-powered-by: Express
cf-cache-status: HIT
age: 100611
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nH%2BCdDC9LKknzFVeZ8F%2FfbjfVn6LhyJBi88AGYN%2BvAJlSK46hB30HsjJ1FDQuCvP8GNX0CqB3%2Bu7RXsQtRdIglXbHDn1hDRgY3q%2BevgaIJm3%2FdD9cnGtHFJVgMh7I4d4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ed9daa5dfab4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-1840643.js?sv=5
200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-1840643.js?sv=5
IP
GET /c/hotjar-1840643.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Thu, 22 Sep 2022 19:58:32 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/93d78770cf29b9f0c8e2800527e5b265
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3cZYGq9XmiuM6pxQHM4F1c1TARHktCO2N3FglHkIlS8TAIroaZF19g==
X-Firefox-Spdy: h2
lw.cliengo.com/s/6194245b3e8e58002a9efde8/6194245e3e8e58002a9efdeb
200 OK 0 B URL HTTP/2 lw.cliengo.com/s/6194245b3e8e58002a9efde8/6194245e3e8e58002a9efdeb
IP
GET /s/6194245b3e8e58002a9efde8/6194245e3e8e58002a9efdeb HTTP/1.1
Host: lw.cliengo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://patroll.cl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 19:58:32 GMT
content-type: text/html; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=31557600
last-modified: Wed, 21 Sep 2022 15:56:00 GMT
vary: Accept-Encoding
via: 1.1 vegur
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uuFJZODYuk0O3T771p0CrSZu%2Ft%2Fm%2B5OdfZYB07xki382K0muaC5VvPhj0ZS%2BXOJ0tAa1wFO1%2FBXW6cQQ%2F3DMNqADNC4h0MYXoxcuy6Qr0sWXQ118kUfzaKH0Z11YFZmP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ed9daa9e6ab4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
lw.cliengo.com/widget.css
200 OK 0 B URL HTTP/2 lw.cliengo.com/widget.css
IP
GET /widget.css HTTP/1.1
Host: lw.cliengo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw.cliengo.com/s/6194245b3e8e58002a9efde8/6194245e3e8e58002a9efdeb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 19:58:32 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=32991
etag: W/"80df-18360c50848"
last-modified: Wed, 21 Sep 2022 15:57:49 GMT
vary: Accept-Encoding
via: 1.1 vegur
x-powered-by: Express
cf-cache-status: HIT
age: 100609
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0TkoHShzOPvkFXaL%2B%2BMymlEMVc60po5sP%2BWIIO1o5v9Lh3P08Lvne44xRT7pq2pMdVzWY50%2FvZeC7RNw8G58KrnQIiWyLx0v9dDdqhe6BUy8fByLMLbNOOzWsX7ukSIB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ed9dacfa1fb4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
lw.cliengo.com/widget.js
200 OK 0 B IP
GET /widget.js HTTP/1.1
Host: lw.cliengo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw.cliengo.com/s/6194245b3e8e58002a9efde8/6194245e3e8e58002a9efdeb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 19:58:32 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=152910
etag: W/"2554e-18360c50848"
last-modified: Wed, 21 Sep 2022 15:57:49 GMT
vary: Accept-Encoding
via: 1.1 vegur
x-powered-by: Express
cf-cache-status: HIT
age: 100609
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gbrKpLiOWrkuVoiIlxUmYhopLqfZOkjGBwRUkFKt7QLEIZMhZ%2FXI5CGHGuC33uyvCadJw2H8p6uIf0g9vH0z%2Bf%2F9LBX6VQu3%2FNDD8c7ALkVSJJgvEFla45Z5E8FgRbzm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ed9dacfa21b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
lw.cliengo.com/s/companyid/socket-io.js
200 OK 0 B URL HTTP/2 lw.cliengo.com/s/companyid/socket-io.js
IP
GET /s/companyid/socket-io.js HTTP/1.1
Host: lw.cliengo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lw.cliengo.com/s/6194245b3e8e58002a9efde8/6194245e3e8e58002a9efdeb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 19:58:32 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=62426
etag: W/"f3da-18360c35e80"
last-modified: Wed, 21 Sep 2022 15:56:00 GMT
vary: Accept-Encoding
via: 1.1 vegur
x-powered-by: Express
cf-cache-status: HIT
age: 98635
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PUEEiibO1PS0375bYA9IgdxTr4VnNJDX4RCV29UbTaBN%2FrhiSTcona0SC%2Fiy3yEC6RsfeU9oqXkj7rOSShrZfurUnAilnBcCMcaF7Kfp1X4BBbKZXlYaf6y8ZELf6z9j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ed9dae3be6b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
15.235.51.197
151.101.85.137
34.120.237.76
157.240.200.35
104.18.32.68
54.246.176.35
93.184.220.29
23.36.76.226
176.9.188.20