r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4116
Expires: Thu, 08 Sep 2022 11:52:02 GMT
Date: Thu, 08 Sep 2022 10:43:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 09:47:05 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6qOynFLbKhzOoZvNZ9prbUnaASj3aoGEt7-NG0Yyy73rsmAOSer0rQ==
Age: 3381
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2khAM55hYNEyS7k_JQ081BxAXIKbKmDqYBAK_4Upf6sgYd2spz-duw==
age: 25012
X-Firefox-Spdy: h2
timwulf.blogspot.com/2022/08/pagina-127-de-desafios-matematicos-6.html
142.250.74.161301 Moved Permanently 212 B URL HTTP/1.1 timwulf.blogspot.com/2022/08/pagina-127-de-desafios-matematicos-6.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 160939f89367f43a6cc61aaf06f85c43
f29dd8228b31235746002812efb4de6aeb57df40
070786ec86fcc69c20d0fe3546b715b5d9ee67f6ad15a10ed480d294eaa0eebc
GET /2022/08/pagina-127-de-desafios-matematicos-6.html HTTP/1.1
Host: timwulf.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://timwulf.blogspot.com/2022/08/pagina-127-de-desafios-matematicos-6.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Thu, 08 Sep 2022 10:43:26 GMT
Expires: Thu, 08 Sep 2022 10:43:26 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 212
Server: GSE
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 10:43:26 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d026084295f09dde2b4c13bb02f1cafc
d036c435e1701c73b8f136f7961d0c82de21620a
8ec60baf0a91d94765bebf391f17936fffe9b0e80b115cb482b809ff8b18b52e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 08 Sep 2022 10:38:18 GMT
Cache-Control: max-age=3600
Expires: Thu, 08 Sep 2022 11:19:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UwrHnEc-9tAh3g0W76yF_mfldsgHDN32hWZZhLPunLAB00k4q5euUA==
Age: 308
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d026084295f09dde2b4c13bb02f1cafc
d036c435e1701c73b8f136f7961d0c82de21620a
8ec60baf0a91d94765bebf391f17936fffe9b0e80b115cb482b809ff8b18b52e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
timwulf.blogspot.com/2022/08/pagina-127-de-desafios-matematicos-6.html
142.250.74.161200 OK 47 kB URL HTTP/2 timwulf.blogspot.com/2022/08/pagina-127-de-desafios-matematicos-6.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10323)
Hash d88acfc2edf3345b940c5bd8617fb700
e0b1ab5744ccbf3a7720c6c60bd9cb585493128e
ec208b76bb8121d7d20f261eb0ea4ec91e53d698afccf7d9d5e84b23746f0a92
GET /2022/08/pagina-127-de-desafios-matematicos-6.html HTTP/1.1
Host: timwulf.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Thu, 08 Sep 2022 10:43:26 GMT
date: Thu, 08 Sep 2022 10:43:26 GMT
cache-control: private, max-age=0
last-modified: Wed, 07 Sep 2022 01:43:16 GMT
etag: W/"8b2c291821ddae6c36e4372d159b29f42be5911cae7518f8dd524e2dfe8666f6"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 47202
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 042105f89c8d64b470d84e052cd412d1
a26c7e2559b3760ea2765b16a3f8d1be27f5dcf4
fadb8cdd22f4d7773d5c20d576f6400ab25e20e1efe3e3fe50d2ae39ca6f2725
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5604
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:26 GMT
Last-Modified: Thu, 08 Sep 2022 09:10:02 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 54ec7dbb4f0e1635856899a5f51f5193
9eb32cdb59e7626c15310a1c649f5c797c1898bd
0673368f65ea1d5ce18edbbaa86a28f4011dbafce60b6b9e48dff5dde54e5d77
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i1.wp.com/i.pinimg.com/736x/78/fb/89/78fb89d0a4a04b4878a080d49c3d5bb8.jpg
192.0.77.2302 Found 138 B URL HTTP/2 i1.wp.com/i.pinimg.com/736x/78/fb/89/78fb89d0a4a04b4878a080d49c3d5bb8.jpg
IP 192.0.77.2:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /i.pinimg.com/736x/78/fb/89/78fb89d0a4a04b4878a080d49c3d5bb8.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: text/html
content-length: 138
location: https://i.pinimg.com/736x/78/fb/89/78fb89d0a4a04b4878a080d49c3d5bb8.jpg
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/image.isu.pub/150917223302-dd099d85c15480874e66fec537c5736d/jpg/page_127.jpg
192.0.77.2200 OK 107 kB URL HTTP/2 i0.wp.com/image.isu.pub/150917223302-dd099d85c15480874e66fec537c5736d/jpg/page_127.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1156x1496, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 107 kB (106844 bytes)
Hash a1ea93594f2091bedcc054f86ba80b08
487623b90020f081c22eeff69cba81ad27690b01
04f9a1fe23bdb5f24b4e29130f96c5ddea3fe0026011bb17662a34a6930d4f91
GET /image.isu.pub/150917223302-dd099d85c15480874e66fec537c5736d/jpg/page_127.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: image/webp
content-length: 106844
last-modified: Tue, 06 Sep 2022 20:17:21 GMT
expires: Fri, 06 Sep 2024 08:17:21 GMT
cache-control: public, max-age=63115200
link: <http://image.isu.pub/150917223302-dd099d85c15480874e66fec537c5736d/jpg/page_127.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "edb908027e1013cc"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/3262169375-comment_from_post_iframe.js
216.58.207.201200 OK 6.5 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3262169375-comment_from_post_iframe.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (1264)
Hash 30af015884191ce4fe52ce1e707baed9
faa1418efa036704d31eb90f4fbd82de456b81b7
0456cf81299c957c8e54dabb00b4d6d96b76be729b1e112d478b34ba56d8059d
GET /static/v1/jsbin/3262169375-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6499
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 14:54:37 GMT
expires: Sat, 02 Sep 2023 14:54:37 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 02 Sep 2022 09:50:05 GMT
content-type: text/javascript
age: 503330
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i0.wp.com/ytimg.googleusercontent.com/vi/1CyQmZVYWfQ/mqdefault.jpg?resize=91,91
192.0.77.2302 Found 138 B URL HTTP/2 i0.wp.com/ytimg.googleusercontent.com/vi/1CyQmZVYWfQ/mqdefault.jpg?resize=91,91
IP 192.0.77.2:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /ytimg.googleusercontent.com/vi/1CyQmZVYWfQ/mqdefault.jpg?resize=91,91 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: text/html
content-length: 138
location: https://ytimg.googleusercontent.com/vi/1CyQmZVYWfQ/mqdefault.jpg
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/nte.mx/wp-content/uploads/2021/05/B64-IMG-sSg5Lwit97-B5elypkQqc-800x751.png?resize=800%2C751&ssl=1
192.0.77.2200 OK 93 kB URL HTTP/2 i0.wp.com/nte.mx/wp-content/uploads/2021/05/B64-IMG-sSg5Lwit97-B5elypkQqc-800x751.png?resize=800%2C751&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0423973a734ecb41852e08fda4aea947
c7234fe17cadb5b24d769942b88c1b2417bdb3f1
2020480c182160c8d601c9188cdf36f5c72c9d6835e5c714d3fc2a3149b08f29
GET /nte.mx/wp-content/uploads/2021/05/B64-IMG-sSg5Lwit97-B5elypkQqc-800x751.png?resize=800%2C751&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: image/webp
content-length: 93074
last-modified: Thu, 08 Sep 2022 03:01:43 GMT
expires: Sat, 07 Sep 2024 15:01:43 GMT
cache-control: public, max-age=63115200
link: <https://nte.mx/wp-content/uploads/2021/05/B64-IMG-sSg5Lwit97-B5elypkQqc-800x751.png>; rel="canonical"
x-content-type-options: nosniff
etag: "565e9133436de6a8"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/2.bp.blogspot.com/-ZR-rN62jWIw/Vr-5tWUPBoI/AAAAAAAANWc/82EI31_WF8I/w1200-h630-p-k-no-nu/de.63.jpg
192.0.77.2302 Found 138 B URL HTTP/2 i0.wp.com/2.bp.blogspot.com/-ZR-rN62jWIw/Vr-5tWUPBoI/AAAAAAAANWc/82EI31_WF8I/w1200-h630-p-k-no-nu/de.63.jpg
IP 192.0.77.2:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /2.bp.blogspot.com/-ZR-rN62jWIw/Vr-5tWUPBoI/AAAAAAAANWc/82EI31_WF8I/w1200-h630-p-k-no-nu/de.63.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: text/html
content-length: 138
location: https://2.bp.blogspot.com/-ZR-rN62jWIw/Vr-5tWUPBoI/AAAAAAAANWc/82EI31_WF8I/w1200-h630-p-k-no-nu/de.63.jpg
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c6c161f446fd8347ea1645ec346dcf2f
9dd774c15d53b10f6b15b54f3a02a42e26689926
bcdccd81313effa3f6b1bba0dcde9705f0e8649b91b1e05243c401ffc5d92f8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/1538240412-widgets.js
216.58.207.201200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/1538240412-widgets.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (2221)
Hash 3144a5192a8ebac30cafce9ad062bd2f
34956dc578e2a4ddf7902c9f38d45f9b15cbe07c
19c85c42386f30aba3d034a5059906aadd10dd2025893f4f6aee8ac51ffe9492
GET /static/v1/widgets/1538240412-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 57055
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 02:09:30 GMT
expires: Sat, 02 Sep 2023 02:09:30 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Sep 2022 22:52:56 GMT
content-type: text/javascript
age: 549237
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/plusone.js
142.250.74.174200 OK 20 kB URL HTTP/2 apis.google.com/js/plusone.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1277)
Hash 202067c443611dc148225b75c0e3d556
9e6be316508f5c2a2e4b8cecc561b0e7415bd38c
5d9db864eb7c211f62d61436846b80db003b0102c903dda9bc15af29e5eefa39
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20362
date: Thu, 08 Sep 2022 10:43:27 GMT
expires: Thu, 08 Sep 2022 10:43:27 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "66b96f0401ac233d"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da05c4b51a3dabf88135becc19f1af52
2c8e928a750eff713ffba9cacff2ee241b22c236
3a718561532594be11fba74ace11458dc337786dacb48c588777120b6916984f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15816, version 1.0\012- data
Hash 2735a3a69b509faf3577afd25bdf552e
8621aff863b67040010ccc183da5b9079ce6fd1d
b4d07892cde715d50bb69c1982df496385d1dfd8f9d1867c31f19a3c8634cfae
GET /s/roboto/v20/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://timwulf.blogspot.com
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 06:03:06 GMT
expires: Wed, 06 Sep 2023 06:03:06 GMT
cache-control: public, max-age=31536000
age: 189621
last-modified: Wed, 24 Jul 2019 01:19:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15736, version 1.0\012- data
Hash 479970ffb74f2117317f9d24d9e317fe
81c796737cbe44d4a719777f0aff14b73a3efb1e
48c3fa6f86c54f1d9bb519220713d4b0a1f8cd1a589a3c03b9fa82e98ecb13e3
GET /s/roboto/v20/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://timwulf.blogspot.com
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Sep 2022 01:19:32 GMT
expires: Sun, 03 Sep 2023 01:19:32 GMT
cache-control: public, max-age=31536000
age: 465835
last-modified: Wed, 24 Jul 2019 01:18:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i0.wp.com/ciYBiuvzpuQ_uM
192.0.77.2400 Bad Request 521 B IP 192.0.77.2:0
Hash fdc4c1033fb0a5b80a83d89d356a0dde
f075af1e6a3b96c272983e4fedb7957e1452d512
bc0a4cb2f6e2c42384d31a2d8e346a9bc38c45687c0aa2488ed56ee05c87497e
GET /ciYBiuvzpuQ_uM HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 6
X-Firefox-Spdy: h2
i1.wp.com/encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQt-wlBfjX2Zm9hqx0TXLR2XUNuy7DZql7FxA&usqp=CAU
192.0.77.2404 Not Found 2.3 kB URL HTTP/2 i1.wp.com/encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQt-wlBfjX2Zm9hqx0TXLR2XUNuy7DZql7FxA&usqp=CAU
IP 192.0.77.2:0
Hash d0dd8d24f5d00176020f91aeeb16018d
2b75e4e22b583c00ffb7421cbb6784299b34d1b3
1708265cd4ac64ac3e548a46df28e276d555f73a9d84495c8a0ffdbe8afab388
GET /encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQt-wlBfjX2Zm9hqx0TXLR2XUNuy7DZql7FxA&usqp=CAU HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 8
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=2586538743242150511&zx=d1373acb-8037-4e93-8d35-c7a0867b7870
216.58.207.201200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=2586538743242150511&zx=d1373acb-8037-4e93-8d35-c7a0867b7870
IP 216.58.207.201:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=2586538743242150511&zx=d1373acb-8037-4e93-8d35-c7a0867b7870 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 08 Sep 2022 10:43:27 GMT
last-modified: Thu, 08 Sep 2022 10:43:27 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e1c651c1458f9c98e2868d85e559248b
041b1883df345e8d9b6d387c50e182c82a41a1cf
3984dc342e83a930ba5714b391bbc075fbbbf70c4f9082bb5aa7988afd7b1983
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=plusone,profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
142.250.74.174200 OK 74 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=plusone,profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
IP 142.250.74.174:0
File type ASCII text, with very long lines (580)
Hash 5c8513dac89e72e77235afc0385d8658
f2bb8b20a6af3cc6e2d3e13f2101cfd8d3936bc4
3cfa47a84f8cea1e81d7a5aabbb2d5d36f2a6951eb2f61bec883a2310fa412a7
GET /_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=plusone,profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 73551
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 00:31:57 GMT
expires: Thu, 07 Sep 2023 00:31:57 GMT
cache-control: public, max-age=31536000
age: 123090
last-modified: Sat, 30 Jul 2022 15:17:53 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone,profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs
142.250.74.174200 OK 5.6 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone,profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs
IP 142.250.74.174:0
File type ASCII text, with very long lines (3295)
Hash add1c094467a85397dd1dcba79647c16
0c10daefd2c177b97572b707d64e262ece9de222
e7b42344ded3823cfd449cbeafe5f885022b6e883dad06c56ffb84a6f389c0fb
GET /_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone,profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 5608
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 03:43:03 GMT
expires: Thu, 07 Sep 2023 03:43:03 GMT
cache-control: public, max-age=31536000
age: 111624
last-modified: Sat, 30 Jul 2022 15:17:53 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 721eb245d022db7af3e30ad4e6b94226
4a53b4e9ad119295498594089826bddea4d0b9a6
6f350e89f4e7a0cea74c003493ea950c768ffcbea234bcf68a818b60842a2f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da05c4b51a3dabf88135becc19f1af52
2c8e928a750eff713ffba9cacff2ee241b22c236
3a718561532594be11fba74ace11458dc337786dacb48c588777120b6916984f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.42.74.230101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.74.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wNtAAQ5NfuXDCkwCOOetBA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EKYHW0msEg5Lzq0h9DKyjxp5tsE=
ytimg.googleusercontent.com/vi/1CyQmZVYWfQ/mqdefault.jpg
142.250.74.1200 OK 15 kB URL HTTP/2 ytimg.googleusercontent.com/vi/1CyQmZVYWfQ/mqdefault.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash cef1c9a2a0b644b79ca0fe676a4e6746
0ad75d1e1440e204247ceeb747bd8a9230ec4dde
adb1ba5c4c4fbde59013701cabf524fc707aaef705fb3654b222b55de9911c89
GET /vi/1CyQmZVYWfQ/mqdefault.jpg HTTP/1.1
Host: ytimg.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://timwulf.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 14878
date: Thu, 08 Sep 2022 10:43:27 GMT
expires: Thu, 08 Sep 2022 12:43:27 GMT
cache-control: public, max-age=7200
etag: "1644471681"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 745359d372160932e8030c0199354252
1590e053a17d05095a48538fc08ff06245bac4d6
e7f798120d5e587145e512941e7c090ec2720d30d216e241f5b6f96d5b2d1241
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.130200 OK 67 B URL HTTP/2 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.130:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 67
x-xss-protection: 0
date: Wed, 07 Sep 2022 14:34:07 GMT
expires: Wed, 21 Sep 2022 14:34:07 GMT
cache-control: public, max-age=1209600
age: 72560
etag: 13036835877489095579
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e1c651c1458f9c98e2868d85e559248b
041b1883df345e8d9b6d387c50e182c82a41a1cf
3984dc342e83a930ba5714b391bbc075fbbbf70c4f9082bb5aa7988afd7b1983
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i1.wp.com/online.fliphtml5.com/mtykj/qhup/files/thumb/101.jpg?1548194466
192.0.77.2200 OK 20 kB URL HTTP/2 i1.wp.com/online.fliphtml5.com/mtykj/qhup/files/thumb/101.jpg?1548194466
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 373x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9ba567c3f7a7d82cafd198d949793a36
fe056d7eb13dbb7b6e53ac432b8f9f00c8c5ff30
3a9693897df72a43afbefec5b14a957d0a738722ebc0103291c903ebd7a45a19
GET /online.fliphtml5.com/mtykj/qhup/files/thumb/101.jpg?1548194466 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: image/webp
content-length: 19520
last-modified: Thu, 08 Sep 2022 10:43:27 GMT
expires: Sat, 07 Sep 2024 22:43:27 GMT
cache-control: public, max-age=63115200
link: <http://online.fliphtml5.com/mtykj/qhup/files/thumb/101.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "bc9acce60933740e"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 745359d372160932e8030c0199354252
1590e053a17d05095a48538fc08ff06245bac4d6
e7f798120d5e587145e512941e7c090ec2720d30d216e241f5b6f96d5b2d1241
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i1.wp.com/libros.pacoelchato.com/primaria/cuarto/2019/desafios-matematicos/resized/127.jpg
192.0.77.2200 OK 8.1 kB URL HTTP/2 i1.wp.com/libros.pacoelchato.com/primaria/cuarto/2019/desafios-matematicos/resized/127.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 228x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 971ed06ca9dbc17a3d3686649cb2e03f
399f2c80a2ffb7bfd8561e5d588cbbf8cd032a52
c15eafe6ea9b3f24627157fab0843fcf39b439c8fbb597c829d332f989c0acdc
GET /libros.pacoelchato.com/primaria/cuarto/2019/desafios-matematicos/resized/127.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: image/webp
content-length: 8070
last-modified: Thu, 08 Sep 2022 10:43:27 GMT
expires: Sat, 07 Sep 2024 22:43:27 GMT
cache-control: public, max-age=63115200
link: <http://libros.pacoelchato.com/primaria/cuarto/2019/desafios-matematicos/resized/127.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "6ea3599d3845b595"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/gluc.mx/u/fotografias/m/2021/4/21/f1280x720-49124_180799_5050.jpg
192.0.77.2200 OK 37 kB URL HTTP/2 i1.wp.com/gluc.mx/u/fotografias/m/2021/4/21/f1280x720-49124_180799_5050.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 43d1a96e409a33fdd9b977c1b3167bff
5a121141c11eb559f534ace598d517f73bac5219
78e68881489bdf828a9e6b36d81852e219accf6bc258121c27f930c603fb3d8f
GET /gluc.mx/u/fotografias/m/2021/4/21/f1280x720-49124_180799_5050.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: image/webp
content-length: 37088
last-modified: Thu, 08 Sep 2022 10:43:27 GMT
expires: Sat, 07 Sep 2024 22:43:27 GMT
cache-control: public, max-age=63115200
link: <http://gluc.mx/u/fotografias/m/2021/4/21/f1280x720-49124_180799_5050.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "5e93c4eb721c7b7a"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4410b7b84c93f14f74d8fef364b840d
37303eaf19049d2ceb48581b9c990da5882dc7ff
d5276336c0a032fe9dfb73c1faff240132cbf073d621981b57c9c2a77d553afd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
142.250.74.164200 OK 666 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP 142.250.74.164:0
File type ASCII text, with very long lines (1034), with no line terminators
Hash 0984d8a94b6794a967f603f80d187661
b283e98217ca3fd6be6b84f02dd7a5605e5f31f3
1fb88b9852c7a7aa0fd24f2be9441adf1b9c04343af703fb556eeef7ad3edf88
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 08 Sep 2022 10:43:27 GMT
date: Thu, 08 Sep 2022 10:43:27 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 666
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0234b2c3ca51764a982b5444ebe25b11
a88a4409614ee31d9707c0a1ed60d630935d026d
a8d8f005ab9d8cd4e06166319974189c845a63375f9f37f256ff57ef77cd592b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8D8F005AB9D8CD4E06166319974189C845A63375F9F37F256FF57EF77CD592B"
Last-Modified: Wed, 07 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8289
Expires: Thu, 08 Sep 2022 13:01:36 GMT
Date: Thu, 08 Sep 2022 10:43:27 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f791e6440ce515569bb0194eda4d603b
8d8fa952205d85133136ac352d2732bc4c838c42
c32a6a6c9669d371e94d43f6e765a8e438096c6eb8b69d719ad365255d669417
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f791e6440ce515569bb0194eda4d603b
8d8fa952205d85133136ac352d2732bc4c838c42
c32a6a6c9669d371e94d43f6e765a8e438096c6eb8b69d719ad365255d669417
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
play.google.com/log?format=json&hasfast=true&authuser=0
216.58.207.206200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 216.58.207.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Thu, 08 Sep 2022 10:43:27 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+965; expires=Sat, 07-Sep-2024 10:43:27 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Thu, 08 Sep 2022 10:43:27 GMT
cache-control: private
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
216.58.207.206200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 216.58.207.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2974
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Thu, 08 Sep 2022 10:43:27 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+908; expires=Sat, 07-Sep-2024 10:43:27 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Thu, 08 Sep 2022 10:43:27 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f791e6440ce515569bb0194eda4d603b
8d8fa952205d85133136ac352d2732bc4c838c42
c32a6a6c9669d371e94d43f6e765a8e438096c6eb8b69d719ad365255d669417
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accompanycollapse.com/bc8d59f796233b632b8846bc72a15192/invoke.js
192.243.59.13200 OK 9.8 kB URL HTTP/1.1 accompanycollapse.com/bc8d59f796233b632b8846bc72a15192/invoke.js
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (27008), with no line terminators
Hash e4ff518c7d815798dac5583e0ceb09e6
e306b7893764479f54b1fb4373bdede93dfa462d
86d821d1b91a820f28007129304177cab0498f2d92fc3d6bcf41d4f54d65520f
GET /bc8d59f796233b632b8846bc72a15192/invoke.js HTTP/1.1
Host: accompanycollapse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 08 Sep 2022 10:43:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a0745fa7e001f0c1e9c073dfddffd992
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
i1.wp.com/www.disegnidacolorare.me/wp-content/uploads/2014/05/disegno-polipo.jpg
192.0.77.2200 OK 19 kB URL HTTP/2 i1.wp.com/www.disegnidacolorare.me/wp-content/uploads/2014/05/disegno-polipo.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 794x581, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 157f5021d50ca2c07a34636896539aea
45c8a7e3574bfec9f2e953fa045b25521689a973
9eb235e23e82e5d4a3dc449f434bd1f1f0ef4d1c20066fcddc1fba717d6b7b72
GET /www.disegnidacolorare.me/wp-content/uploads/2014/05/disegno-polipo.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: image/webp
content-length: 18882
last-modified: Thu, 08 Sep 2022 10:43:27 GMT
expires: Sat, 07 Sep 2024 22:43:27 GMT
cache-control: public, max-age=63115200
link: <http://www.disegnidacolorare.me/wp-content/uploads/2014/05/disegno-polipo.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "306267a9c79232da"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/superbepohode.com/kujfxe/Plc9iyfvRtTJsgLj2CsXHgAAAA.jpg
192.0.77.2200 OK 26 kB URL HTTP/2 i1.wp.com/superbepohode.com/kujfxe/Plc9iyfvRtTJsgLj2CsXHgAAAA.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 422x710, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c8a91245525c03587cf880e20706e462
3cd7cd10ae4f6ad96b8bb7751c14dc6175cefc9e
99a265acae00978b84608580451a49d644381908a2af5d339bb4cf4c1bfd968e
GET /superbepohode.com/kujfxe/Plc9iyfvRtTJsgLj2CsXHgAAAA.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 10:43:28 GMT
content-type: image/webp
content-length: 25568
last-modified: Thu, 08 Sep 2022 10:43:28 GMT
expires: Sat, 07 Sep 2024 22:43:28 GMT
cache-control: public, max-age=63115200
link: <http://superbepohode.com/kujfxe/Plc9iyfvRtTJsgLj2CsXHgAAAA.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "c3786d6a055f7dc0"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/img.yumpu.com/62830480/1/500x640/guia-del-maestro-leirem-6-grado.jpg
192.0.77.2200 OK 19 kB URL HTTP/2 i1.wp.com/img.yumpu.com/62830480/1/500x640/guia-del-maestro-leirem-6-grado.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 498x640, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b89af3d1df9083c93334bb6ff9212ccf
04531a093c4273bee32666fae759b94cc35b64bb
a41f6b5087ff3392a407602c2f19d2e4a698cfbc20d57502afa1b198f5b2d263
GET /img.yumpu.com/62830480/1/500x640/guia-del-maestro-leirem-6-grado.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 10:43:28 GMT
content-type: image/webp
content-length: 19056
last-modified: Thu, 08 Sep 2022 10:43:28 GMT
expires: Sat, 07 Sep 2024 22:43:28 GMT
cache-control: public, max-age=63115200
link: <http://img.yumpu.com/62830480/1/500x640/guia-del-maestro-leirem-6-grado.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f84171df3de1794b"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 1a2adb6d06ff306d9d3118213e27e532
b0c6dede44100d653ac05c260c3c6a15a60f13f1
624d5505fb673fd21dacda10f774ee3d19f9c3c33db688473b3b7c55f5cc5c11
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 08 Sep 2022 10:43:28 GMT
Last-Modified: Thu, 08 Sep 2022 10:05:46 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hHYPttC44yieQDP2Saj5bgUlBXOfvsDRVCCL8P8Lyq7-UYzV-RuS6Q==
Age: 2262
i0.wp.com/www.kibrispdr.org/data/lakaran-gambar-bunga-raya-15.jpg
192.0.77.2400 Bad Request 77 B URL HTTP/2 i0.wp.com/www.kibrispdr.org/data/lakaran-gambar-bunga-raya-15.jpg
IP 192.0.77.2:0
File type ASCII text, with no line terminators
Hash 1cd20c84e2b8086fe842e2688888085c
fb0e3dc9430b6a7e82dca17f3412237afc82eafe
8172c6552732fe7fff610fb0727f993587417c53e78b2635df2b353101086ef6
GET /www.kibrispdr.org/data/lakaran-gambar-bunga-raya-15.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
server: nginx
date: Thu, 08 Sep 2022 10:43:28 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 8
X-Firefox-Spdy: h2
i1.wp.com/joop-bnnvara.cdn.prepr.io/%7Bformat%7D/s3-joop-bnnvara/3497ac56-3b59-40e8-9ae1-aa93e7326b81.jpg
192.0.77.2200 OK 87 kB URL HTTP/2 i1.wp.com/joop-bnnvara.cdn.prepr.io/%7Bformat%7D/s3-joop-bnnvara/3497ac56-3b59-40e8-9ae1-aa93e7326b81.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 2880x1800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 66e9c06a3fe7beed3ace2b2d1f879218
0214a2cada11fc023828448266dbff5bec189f3d
8a39684302c3cd345cad21e63d567ec2364a98c38204835e107a5d3e8f3797a0
GET /joop-bnnvara.cdn.prepr.io/%7Bformat%7D/s3-joop-bnnvara/3497ac56-3b59-40e8-9ae1-aa93e7326b81.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 10:43:28 GMT
content-type: image/webp
content-length: 87320
last-modified: Thu, 08 Sep 2022 10:43:28 GMT
expires: Sat, 07 Sep 2024 22:43:28 GMT
cache-control: public, max-age=63115200
link: <http://joop-bnnvara.cdn.prepr.io/%7Bformat%7D/s3-joop-bnnvara/3497ac56-3b59-40e8-9ae1-aa93e7326b81.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "4c011c9617af66e8"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/recursos.pacoelchato.com/NPekxN4aPEzLZqSW5yycrRCQBoxOKpvncVhaHpqc.png
192.0.77.2200 OK 164 kB URL HTTP/2 i1.wp.com/recursos.pacoelchato.com/NPekxN4aPEzLZqSW5yycrRCQBoxOKpvncVhaHpqc.png
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 164 kB (164184 bytes)
Hash c3838c95aaf3339f25715c8c8e6093d8
e6f2e2b317c544886367514dd84a7b2c3f8c88a5
90eac729e5dff59e6de724736abbd5dcd3453a609b8c2acb7f6599ee7d9276c3
GET /recursos.pacoelchato.com/NPekxN4aPEzLZqSW5yycrRCQBoxOKpvncVhaHpqc.png HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 10:43:28 GMT
content-type: image/webp
content-length: 164184
last-modified: Thu, 08 Sep 2022 10:43:28 GMT
expires: Sat, 07 Sep 2024 22:43:28 GMT
cache-control: public, max-age=63115200
link: <http://recursos.pacoelchato.com/NPekxN4aPEzLZqSW5yycrRCQBoxOKpvncVhaHpqc.png>; rel="canonical"
x-content-type-options: nosniff
etag: "0e585a1a9a49890c"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/librosdetexto.online/wp-content/uploads/online/2016-2017/sexto/espanol-alumno/pagina127.jpg
192.0.77.2200 OK 81 kB URL HTTP/2 i0.wp.com/librosdetexto.online/wp-content/uploads/online/2016-2017/sexto/espanol-alumno/pagina127.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1204x1588, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 06da704daaa7ad9c80543eb6b19a25ae
4c8e68776565dc3c609e35de33354650fd5e4574
8eedd87393c6da4a2df68c4f263b1ae66f1003170f496eddd92605cc0bed54dc
GET /librosdetexto.online/wp-content/uploads/online/2016-2017/sexto/espanol-alumno/pagina127.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 10:43:28 GMT
content-type: image/webp
content-length: 80976
last-modified: Thu, 08 Sep 2022 10:43:28 GMT
expires: Sat, 07 Sep 2024 22:43:28 GMT
cache-control: public, max-age=63115200
link: <http://librosdetexto.online/wp-content/uploads/online/2016-2017/sexto/espanol-alumno/pagina127.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "b670e69c6dd175a4"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/librosdetexto.online/wp-content/files/2020-2021/online/primaria/tercero/desafios/127.jpg
192.0.77.2200 OK 94 kB URL HTTP/2 i0.wp.com/librosdetexto.online/wp-content/files/2020-2021/online/primaria/tercero/desafios/127.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 969x1276, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b2295e219e7bdbdd71ed791e69fbf199
00bba074551e2273d5ba989fb83c1da0745b3a6f
16604ba9436d4698d0d3f12b42dca54c90d2cdff7780b2b5091048d944e7d720
GET /librosdetexto.online/wp-content/files/2020-2021/online/primaria/tercero/desafios/127.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 10:43:28 GMT
content-type: image/webp
content-length: 93760
last-modified: Thu, 08 Sep 2022 10:43:28 GMT
expires: Sat, 07 Sep 2024 22:43:28 GMT
cache-control: public, max-age=63115200
link: <http://librosdetexto.online/wp-content/files/2020-2021/online/primaria/tercero/desafios/127.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "4c77a4aa9678c089"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8397
Expires: Thu, 08 Sep 2022 13:03:25 GMT
Date: Thu, 08 Sep 2022 10:43:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8397
Expires: Thu, 08 Sep 2022 13:03:25 GMT
Date: Thu, 08 Sep 2022 10:43:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8397
Expires: Thu, 08 Sep 2022 13:03:25 GMT
Date: Thu, 08 Sep 2022 10:43:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8397
Expires: Thu, 08 Sep 2022 13:03:25 GMT
Date: Thu, 08 Sep 2022 10:43:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ca5b5d4ac26d97b5729a30ecdc688bc
3e633bc6c4ab9adfe84899e5209d73bef1d097eb
2c8275d1819d933f86df9685b76aea030842ba5a341c59ea88ffd2da99a5a3d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7885
x-amzn-requestid: 305dc6b7-eb3d-40ad-af89-8b60be935637
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9ThE3DIAMFRtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-7c0b58644e26de7f27c5b388;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: MG4_YJuVqfSCQ80FTdo5XU8xIi74XtILVbIQAbByh54QNOoMJCyS-Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:47:05 GMT
age: 46583
etag: "3e633bc6c4ab9adfe84899e5209d73bef1d097eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1973597533d7cd0311b60714aa518362
d1b08a64249651b2032bb5acafeca530e1da0027
55eec8bb53531bf98a629a066e2e3698c7bb78c3030b7de5d2d6731e0194ec89
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "55EEC8BB53531BF98A629A066E2E3698C7BB78C3030B7DE5D2D6731E0194EC89"
Last-Modified: Tue, 06 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17846
Expires: Thu, 08 Sep 2022 15:40:54 GMT
Date: Thu, 08 Sep 2022 10:43:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8397
Expires: Thu, 08 Sep 2022 13:03:25 GMT
Date: Thu, 08 Sep 2022 10:43:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffde48022-9b21-4eb3-b8b7-e4fcb208d624.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffde48022-9b21-4eb3-b8b7-e4fcb208d624.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 036db462684c81e3906433a0d2929eb8
7bcd0b99c0fb6d9ead1dd6878377f5a582bde20d
a252f30f9239f6a343b23c9d3e1d1b7460c5ee5a592d3372bf124760baa6e657
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffde48022-9b21-4eb3-b8b7-e4fcb208d624.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8246
x-amzn-requestid: d1a11f7f-22b7-4fc1-b33d-402e5bc3af33
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TgEx4oAMF-pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-7305dd7653fe38c9445e02a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: PA6CECu22n08hUsg1usYAy2YARZu4b0C0Lb9Rfh5RCKL3m3DDEWewg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:47:05 GMT
age: 46583
etag: "7bcd0b99c0fb6d9ead1dd6878377f5a582bde20d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f922505178de0cea92eedcfda85a9f67
50f1459de01174e594e03e7df4dfaa8eb1798672
981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 05:29:44 GMT
age: 18824
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd38a7ac-451e-4dae-8707-f68a3c27ee4e.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd38a7ac-451e-4dae-8707-f68a3c27ee4e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ccc1d45458086694a8221a8a6c6aa3b
b8f1359214f21be812390a6cca80b8e84c26a403
461503caa5ec14c1214bdc19795e47b8c1c3c5be1b21f0f29e923e5191e93846
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd38a7ac-451e-4dae-8707-f68a3c27ee4e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8693
x-amzn-requestid: aae6e4f7-9b0a-49da-b2f1-58b625609942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TgFokoAMFbwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-27854a575dea22e1035454e3;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: ja2OeAUlF9lkO2n0bSzYlZHXKnfa6Z4_lU7lAoLZkccaw7CCzFlyKg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 25b9a991f871f75614e7f92f97b136a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:47:05 GMT
age: 46583
etag: "b8f1359214f21be812390a6cca80b8e84c26a403"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6df26b-97aa-461c-9f22-c5c9496b5701.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6df26b-97aa-461c-9f22-c5c9496b5701.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24e43bc53a0b047911cff00ad4b72320
f6ef30b5df0e634c3a3f607d751e738e55a276c9
7e1406b2101c912e72f37f0257128574079e618c1af83e360acb3f29b4d44d89
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6df26b-97aa-461c-9f22-c5c9496b5701.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8705
x-amzn-requestid: ccc5b695-35b5-49fd-b938-296a88a78ab8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TgFOiIAMFaXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-12e809c767cdbba61492187c;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: W4siV0rqMGbs2Z7TiD3PvD2j2ErD69gIbIDY2N3RInKx61vDyRTxXA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:55:10 GMT
age: 46098
etag: "f6ef30b5df0e634c3a3f607d751e738e55a276c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1973597533d7cd0311b60714aa518362
d1b08a64249651b2032bb5acafeca530e1da0027
55eec8bb53531bf98a629a066e2e3698c7bb78c3030b7de5d2d6731e0194ec89
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "55EEC8BB53531BF98A629A066E2E3698C7BB78C3030B7DE5D2D6731E0194EC89"
Last-Modified: Tue, 06 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17846
Expires: Thu, 08 Sep 2022 15:40:54 GMT
Date: Thu, 08 Sep 2022 10:43:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a07d553b6441514870ed7e9e989a29a7
98c145b9326d1e6036fa9089d87a25232dd45b0b
373a586b596016baeb8de98022207c25af24c099c06077edbdfd837cffc31a0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lbCmv9fV9iBGOQvxRzleYwC5dBYeu1kRgSSkC2hycDmavyXj-KlFSw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:24:59 GMT
age: 44309
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
siegepolitical.com/da/ce/88/dace887d039f088ae0d9952a8b8cb060.js
192.243.59.20200 OK 13 kB URL HTTP/1.1 siegepolitical.com/da/ce/88/dace887d039f088ae0d9952a8b8cb060.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37112), with no line terminators
Hash f9e784ef4ce9f91e8623b84ca04bbe6e
1a6462154a658c8d420207c5286ca326b861cc99
902b5a0e92095540fe571f44d8626a1ec421d67843fc45509b72c7bf59c6f809
Analyzer Verdict Alert quad9 Sinkholed
GET /da/ce/88/dace887d039f088ae0d9952a8b8cb060.js HTTP/1.1
Host: siegepolitical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 08 Sep 2022 10:43:28 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b5bae1d2f4e3001eb164e9609315ea7c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
siegepolitical.com/watch.822417745364.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22pagina%22%2C%22127%22%2C%22de%22%2C%22desafios%22%2C%22matematicos%22%2C%226%22%2C%22grado%22%2C%22contestado%22%2C%22-%22%2C%22desafios%22%2C%22matematicos%22%2C%22sexto%22%2C%22grado%22%2C%222017%22%2C%222018%22%2C%22ciclo%22%2C%22escolar%22%2C%22centro%22%2C%22de%22%2C%22descargas%22%2C%22-%22%2C%22tim%22%2C%22wulf%22%5D&refer=https%3A%2F%2Ftimwulf.blogspot.com%2F2022%2F08%2Fpagina-127-de-desafios-matematicos-6.html&tz=0&dev=r&res=12.31&uuid=7b6f3237-c893-440e-97fd-aa61327440a3%3A3%3A1
192.243.59.20307 Temporary Redirect 0 B URL HTTP/1.1 siegepolitical.com/watch.822417745364.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22pagina%22%2C%22127%22%2C%22de%22%2C%22desafios%22%2C%22matematicos%22%2C%226%22%2C%22grado%22%2C%22contestado%22%2C%22-%22%2C%22desafios%22%2C%22matematicos%22%2C%22sexto%22%2C%22grado%22%2C%222017%22%2C%222018%22%2C%22ciclo%22%2C%22escolar%22%2C%22centro%22%2C%22de%22%2C%22descargas%22%2C%22-%22%2C%22tim%22%2C%22wulf%22%5D&refer=https%3A%2F%2Ftimwulf.blogspot.com%2F2022%2F08%2Fpagina-127-de-desafios-matematicos-6.html&tz=0&dev=r&res=12.31&uuid=7b6f3237-c893-440e-97fd-aa61327440a3%3A3%3A1
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.822417745364.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22pagina%22%2C%22127%22%2C%22de%22%2C%22desafios%22%2C%22matematicos%22%2C%226%22%2C%22grado%22%2C%22contestado%22%2C%22-%22%2C%22desafios%22%2C%22matematicos%22%2C%22sexto%22%2C%22grado%22%2C%222017%22%2C%222018%22%2C%22ciclo%22%2C%22escolar%22%2C%22centro%22%2C%22de%22%2C%22descargas%22%2C%22-%22%2C%22tim%22%2C%22wulf%22%5D&refer=https%3A%2F%2Ftimwulf.blogspot.com%2F2022%2F08%2Fpagina-127-de-desafios-matematicos-6.html&tz=0&dev=r&res=12.31&uuid=7b6f3237-c893-440e-97fd-aa61327440a3%3A3%3A1 HTTP/1.1
Host: siegepolitical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://timwulf.blogspot.com
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.9
Date: Thu, 08 Sep 2022 10:43:28 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://timwulf.blogspot.com
Access-Control-Allow-Origin: https://timwulf.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://siegepolitical.com/watch.822417745364.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22pagina%22%2C%22127%22%2C%22de%22%2C%22desafios%22%2C%22matematicos%22%2C%226%22%2C%22grado%22%2C%22contestado%22%2C%22-%22%2C%22desafios%22%2C%22matematicos%22%2C%22sexto%22%2C%22grado%22%2C%222017%22%2C%222018%22%2C%22ciclo%22%2C%22escolar%22%2C%22centro%22%2C%22de%22%2C%22descargas%22%2C%22-%22%2C%22tim%22%2C%22wulf%22%5D&refer=https%3A%2F%2Ftimwulf.blogspot.com%2F2022%2F08%2Fpagina-127-de-desafios-matematicos-6.html&tz=0&dev=r&res=12.31&uuid=7b6f3237-c893-440e-97fd-aa61327440a3%3A3%3A1&shu=4a3a54280323aa3a493354a87cebf43bd4f53bc4eda08b4791d5279a8259ed02e199b4f0c4fd71a8ec736a1dc6772fab2921565dc9470b60e11c7488ffbc1b5bc9e1729f8dea6eb2bc67ee2517579d3e4958539d&pst=1662633868&rmtc=t
Set-Cookie: u_pl=15928454; expires=Fri, 09 Sep 2022 10:43:28 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.ojXSQnOCt5OsSS2R4OP89M3uBclO1XORx5NqOYOMgMU; expires=Thu, 08 Sep 2022 10:44:28 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1767e6da580cd289af68eb7778cb801a
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b2ef56bd5e1bb320ed12b28175abbaa3
6d48cd8181a653d642885419c1b07a9d487fc46a
f98a57503fa21121b9978ea5aeb6a8724ef86894e16d282c97e7568315382098
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F98A57503FA21121B9978EA5AEB6A8724EF86894E16D282C97E7568315382098"
Last-Modified: Tue, 06 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9236
Expires: Thu, 08 Sep 2022 13:17:24 GMT
Date: Thu, 08 Sep 2022 10:43:28 GMT
Connection: keep-alive
s10.histats.com/js15_as.js
46.105.201.240200 OK 4.4 kB URL HTTP/2 s10.histats.com/js15_as.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 10:37:14 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 521372069
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-cdn-pop: rbx1
x-cdn-pop-ip: 51.254.41.128/25
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2
siegepolitical.com/watch.822417745364.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22pagina%22%2C%22127%22%2C%22de%22%2C%22desafios%22%2C%22matematicos%22%2C%226%22%2C%22grado%22%2C%22contestado%22%2C%22-%22%2C%22desafios%22%2C%22matematicos%22%2C%22sexto%22%2C%22grado%22%2C%222017%22%2C%222018%22%2C%22ciclo%22%2C%22escolar%22%2C%22centro%22%2C%22de%22%2C%22descargas%22%2C%22-%22%2C%22tim%22%2C%22wulf%22%5D&refer=https%3A%2F%2Ftimwulf.blogspot.com%2F2022%2F08%2Fpagina-127-de-desafios-matematicos-6.html&tz=0&dev=r&res=12.31&uuid=7b6f3237-c893-440e-97fd-aa61327440a3%3A3%3A1&shu=4a3a54280323aa3a493354a87cebf43bd4f53bc4eda08b4791d5279a8259ed02e199b4f0c4fd71a8ec736a1dc6772fab2921565dc9470b60e11c7488ffbc1b5bc9e1729f8dea6eb2bc67ee2517579d3e4958539d&pst=1662633868&rmtc=t
192.243.59.20200 OK 2.1 kB URL HTTP/1.1 siegepolitical.com/watch.822417745364.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22pagina%22%2C%22127%22%2C%22de%22%2C%22desafios%22%2C%22matematicos%22%2C%226%22%2C%22grado%22%2C%22contestado%22%2C%22-%22%2C%22desafios%22%2C%22matematicos%22%2C%22sexto%22%2C%22grado%22%2C%222017%22%2C%222018%22%2C%22ciclo%22%2C%22escolar%22%2C%22centro%22%2C%22de%22%2C%22descargas%22%2C%22-%22%2C%22tim%22%2C%22wulf%22%5D&refer=https%3A%2F%2Ftimwulf.blogspot.com%2F2022%2F08%2Fpagina-127-de-desafios-matematicos-6.html&tz=0&dev=r&res=12.31&uuid=7b6f3237-c893-440e-97fd-aa61327440a3%3A3%3A1&shu=4a3a54280323aa3a493354a87cebf43bd4f53bc4eda08b4791d5279a8259ed02e199b4f0c4fd71a8ec736a1dc6772fab2921565dc9470b60e11c7488ffbc1b5bc9e1729f8dea6eb2bc67ee2517579d3e4958539d&pst=1662633868&rmtc=t
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document, ASCII text, with very long lines (2648)
Hash 72a8678a1177dfa0ffaa9be47104618c
148d22da860f60309ed51036f6f3d57f218cb711
5a204f460e9792bb46ac009f2f7ba8104bb52910ea102c342238d6b06331607b
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.822417745364.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22pagina%22%2C%22127%22%2C%22de%22%2C%22desafios%22%2C%22matematicos%22%2C%226%22%2C%22grado%22%2C%22contestado%22%2C%22-%22%2C%22desafios%22%2C%22matematicos%22%2C%22sexto%22%2C%22grado%22%2C%222017%22%2C%222018%22%2C%22ciclo%22%2C%22escolar%22%2C%22centro%22%2C%22de%22%2C%22descargas%22%2C%22-%22%2C%22tim%22%2C%22wulf%22%5D&refer=https%3A%2F%2Ftimwulf.blogspot.com%2F2022%2F08%2Fpagina-127-de-desafios-matematicos-6.html&tz=0&dev=r&res=12.31&uuid=7b6f3237-c893-440e-97fd-aa61327440a3%3A3%3A1&shu=4a3a54280323aa3a493354a87cebf43bd4f53bc4eda08b4791d5279a8259ed02e199b4f0c4fd71a8ec736a1dc6772fab2921565dc9470b60e11c7488ffbc1b5bc9e1729f8dea6eb2bc67ee2517579d3e4958539d&pst=1662633868&rmtc=t HTTP/1.1
Host: siegepolitical.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://timwulf.blogspot.com
Referer: https://timwulf.blogspot.com/
Connection: keep-alive
Cookie: u_pl=15928454; ain=eyJhbGciOiJIUzI1NiJ9.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.ojXSQnOCt5OsSS2R4OP89M3uBclO1XORx5NqOYOMgMU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 08 Sep 2022 10:43:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://timwulf.blogspot.com
Access-Control-Allow-Origin: https://timwulf.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=7b6f3237-c893-440e-97fd-aa61327440a3:3:1; expires=Thu, 15 Sep 2022 10:43:28 GMT; secure; SameSite=None
iprc6a1b8b6ad048e9d103d105fcc57141e1=3569806; expires=Thu, 08 Sep 2022 14:43:28 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 09 Sep 2022 10:43:28 GMT; secure; SameSite=None
uncs=1; expires=Fri, 09 Sep 2022 10:43:28 GMT; secure; SameSite=None
pdhtkv5=true; expires=Fri, 09 Sep 2022 10:43:28 GMT; secure; SameSite=None
uncs5=1; expires=Fri, 09 Sep 2022 10:43:28 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a85e32c0b4122cf808173108153c4a01
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
i.pinimg.com/736x/78/fb/89/78fb89d0a4a04b4878a080d49c3d5bb8.jpg
151.101.84.84200 OK 99 kB URL HTTP/2 i.pinimg.com/736x/78/fb/89/78fb89d0a4a04b4878a080d49c3d5bb8.jpg
IP 151.101.84.84:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 735x969, components 3\012- data
Hash 4ffdcee089289354d170b3451be831fb
c1efb1d10f232d48a31a493ec5e7a6d0d67e42e2
363f052042b350c5d525075f4df135e8e93faa2c5770a92883985c4fe7f16289
GET /736x/78/fb/89/78fb89d0a4a04b4878a080d49c3d5bb8.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://timwulf.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "4ffdcee089289354d170b3451be831fb"
content-type: image/jpeg
cache-control: max-age=31536000, immutable
accept-ranges: bytes
vary: Origin
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
date: Thu, 08 Sep 2022 10:43:28 GMT
content-length: 99122
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ef898447e7c5f6fc1d393266974795d9
d243c7a09d9d9b354daf225ef646de292cc90c83
3ecf472c92d47a96addf4cae9768be316c667da9fbd8d3968c27391cc28bb472
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5870
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 10:43:29 GMT
Last-Modified: Thu, 08 Sep 2022 09:05:39 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c34afdb543f36633ccaa1856798ce9b
568d09d760f3b498376e86a26b13345bd53cd217
54daf99f14294bd52d5f516aa5cec0584b8a43daae4525fabb7692f9f114af5b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54DAF99F14294BD52D5F516AA5CEC0584B8A43DAAE4525FABB7692F9F114AF5B"
Last-Modified: Wed, 07 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8122
Expires: Thu, 08 Sep 2022 12:58:51 GMT
Date: Thu, 08 Sep 2022 10:43:29 GMT
Connection: keep-alive
cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
45.133.44.9200 OK 144 kB URL HTTP/2 cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size 144 kB (144379 bytes)
Hash 33c304429dc1a4408a96e6a74ffa2feb
c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04
dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314
GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 10:43:29 GMT
content-type: image/png
content-length: 144379
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:07:21 GMT
etag: "62e11c69-233fb"
expires: Sat, 10 Sep 2022 10:43:29 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s4.histats.com/stats/0.php?4647587&@f16&@g1&@h1&@i1&@j1662633801331&@k0&@l1&@mPagina%20127%20De%20Desafios%20Matematicos%206%20Grado%20Contestado%20-%20Desafios%20Matematicos%20Sexto%20Grado%202017%202018%20Ciclo%20Escolar%20Centro%20De%20Descargas%20-%20Tim%20Wulf&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:46698878&@b3:1662633801&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Ftimwulf.blogspot.com%2F2022%2F08%2Fpagina-127-de-desafios-matematicos-6.html&@w
192.99.8.28200 OK 50 B URL HTTP/1.1 s4.histats.com/stats/0.php?4647587&@f16&@g1&@h1&@i1&@j1662633801331&@k0&@l1&@mPagina%20127%20De%20Desafios%20Matematicos%206%20Grado%20Contestado%20-%20Desafios%20Matematicos%20Sexto%20Grado%202017%202018%20Ciclo%20Escolar%20Centro%20De%20Descargas%20-%20Tim%20Wulf&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:46698878&@b3:1662633801&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Ftimwulf.blogspot.com%2F2022%2F08%2Fpagina-127-de-desafios-matematicos-6.html&@w
IP 192.99.8.28:0
File type ASCII text, with no line terminators
Hash 665058dddd01868bc8b2fb9c450f81b3
25b9f2d2c9cb4531313e31fff9f825dbaa363722
b70a9deaa28df563b81e5fdcc68a2c93b8fd774e537a88479cf8ed0da8caae77
GET /stats/0.php?4647587&@f16&@g1&@h1&@i1&@j1662633801331&@k0&@l1&@mPagina%20127%20De%20Desafios%20Matematicos%206%20Grado%20Contestado%20-%20Desafios%20Matematicos%20Sexto%20Grado%202017%202018%20Ciclo%20Escolar%20Centro%20De%20Descargas%20-%20Tim%20Wulf&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:46698878&@b3:1662633801&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Ftimwulf.blogspot.com%2F2022%2F08%2Fpagina-127-de-desafios-matematicos-6.html&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 10:43:29 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 50
Connection: close
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 601d02860a32cd0667c2b4b6d5746e29
cd419b7dbf9f54edca0ceca468d14627d70f0764
18b245d8cf9427a2fab1793342ec08d8b1967083aad465785540d7f6bbc1af01
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18B245D8CF9427A2FAB1793342EC08D8B1967083AAD465785540D7F6BBC1AF01"
Last-Modified: Mon, 05 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7945
Expires: Thu, 08 Sep 2022 12:55:55 GMT
Date: Thu, 08 Sep 2022 10:43:30 GMT
Connection: keep-alive
unseenreport.com/pxf.gif?uuid=7b6f3237-c893-440e-97fd-aa61327440a3&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=dace887d039f088ae0d9952a8b8cb060&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=10
192.243.59.12200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=7b6f3237-c893-440e-97fd-aa61327440a3&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=dace887d039f088ae0d9952a8b8cb060&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=10
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=7b6f3237-c893-440e-97fd-aa61327440a3&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=dace887d039f088ae0d9952a8b8cb060&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=10 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 08 Sep 2022 10:43:30 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 703660cb314abeec31eebd37e186cc5e
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4d81b6fc3f4437ff79d5b979b1b9cf80
cc2b2575a0723022be11ef01a8807e2e845ec668
37e8404d71d98b26bb61b23c97984e5f674f9006f260b1607d6f5876ed4b2277
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "37E8404D71D98B26BB61B23C97984E5F674F9006F260B1607D6F5876ED4B2277"
Last-Modified: Wed, 07 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17874
Expires: Thu, 08 Sep 2022 15:41:28 GMT
Date: Thu, 08 Sep 2022 10:43:34 GMT
Connection: keep-alive
forgerylimit.com/sbar.json?key=dace887d039f088ae0d9952a8b8cb060&uuid=7b6f3237-c893-440e-97fd-aa61327440a3%3A3%3A1
192.243.59.13200 OK 4.2 kB URL HTTP/1.1 forgerylimit.com/sbar.json?key=dace887d039f088ae0d9952a8b8cb060&uuid=7b6f3237-c893-440e-97fd-aa61327440a3%3A3%3A1
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , ASCII text, with very long lines (5868), with no line terminators
Hash fd0e8a2cda96d76ab1304ea43137d22d
7ed452143138d9bd61a050b327a74f2d360c90c8
58cbe886870587dcf7da872c74ae25c01fa705911c2a5677119b43faa600e4a4
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=dace887d039f088ae0d9952a8b8cb060&uuid=7b6f3237-c893-440e-97fd-aa61327440a3%3A3%3A1 HTTP/1.1
Host: forgerylimit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://timwulf.blogspot.com
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 08 Sep 2022 10:43:34 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://timwulf.blogspot.com
Access-Control-Allow-Origin: https://timwulf.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16032438; expires=Fri, 09 Sep 2022 10:43:34 GMT; secure; SameSite=None
uid_id2=7b6f3237-c893-440e-97fd-aa61327440a3:3:1; expires=Thu, 15 Sep 2022 10:43:34 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 09 Sep 2022 10:43:34 GMT; secure; SameSite=None
uncs=1; expires=Fri, 09 Sep 2022 10:43:34 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 09 Sep 2022 10:43:34 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 09 Sep 2022 10:43:34 GMT; secure; SameSite=None
slecdace887d039f088ae0d9952a8b8cb060=[3364901]; expires=Thu, 08 Sep 2022 10:43:39 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8047573c57c5d7cb9fe36c0a61314e8c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
forgerylimit.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bxR%2BdTXL4St8TKJciUfkAEkjE2R%2FO7poeKkoJqkh%2F0PKjN5idGdtDZndWM7te16eKqqhH8x9snpNWhQqBhLhRkFMph0hINScfyP%2BAQD1xQHYjDJ%2FL57157%2FDmzXyxV54QFyWdXbysh1IpurnVdBuv3fS8c40dmZWDxiAOPwlb5xqm%2F2Y7bLqvN94VbFdv%2Bq7nup7rNbalER092JyLkPmjttdsu82W3%2FS2WhiY%2F3JbOrDUAe%2BfkBch%2BXTtibMOySbI0m8vCrtb6PyNd9JS0UIb9PmDD7PdTFcZ0iXsGAed7MGpG9o%2B3X4MnR0s4kL3%2FzEmckqco8dIsgenIZH09xc5EwWRIeH%2FR9WfQKgJJJ2A6TuQ%2FCkBGMeVq8jS%2B1e0qeit5yqdq1Oy9uwPyGpK1n5bR5Z%2Bc0HJQeOGVmUhdWYx6NSQgwlkd4K8PEQxXIGsDsGKzyH5L2Tz2Q6ydP%2BqVRqSz16JkrAT%2BEG0weJ2sNFquWKjHXX4BqWhF%2FhRq%2BXSYFGQlBPIzgRKjEDtKkrroJQOyo6DMneQ8lmDeZ4XuZxRN24zFvBIJCF3PRp1POq5YYySze8wQpGPwNQIzNxGbm5jV45gyp9hezUsX4EtpsR5f4g%2Br1EJgsoSVJSgkgRVQVD16wOurG%2Fr%2B1zZMvFOt3%2B6g3qsi%2B4ePdBFV2RkLz8hLyzK%2BxM%2FYFfMGpwyEccRd4N2x41jKlzebm%2F5NE5ilrihCytrSLsCah0M5ZSsz1rI5ZSsnB0hoYew6hBMroOWL4NW48h3QXvjVuximP1U9ESZ2ULnOU2U4IIWvZSynsyEbWaiANc18mINxS1nT52QM4towc1XIdjx%2BU%2BTy9PfH%2F4FZmrkpsZn8glBV90bX9cV2b%2BuK0u%2Bu5oXMpVDOn%2FzGwUtxOpX74lblTb80kU7evgWmwtz%2BOgDYYsdmnGZdS35%2BoLkXJhtbZggP16yH4vkWml7F0qTlfnOtbe3L6W5EdZKnU1A5ZSQo2MwOSX%2F%2B%2F5g8Z1funsX0kxgyhppeUxOB1IfguW3YfNlfqtXYdTSk%2BQOqrIeGz9ZHipJoMSS06SG%2FRdPlnjP3kPXnAUt7iBLa%2FRNjb6qQdUItlwdF7k5Pv9rsBgkyhknyjj7iTLqy%2BflWjlrREHg0rC95UURFVHS8uNO6HFK%2FVbohyENUNgpO3P00d8AAAD%2F%2FwEAAP%2F%2F%2FyukWJkEAAA%3D
192.243.59.13200 OK 7 B URL HTTP/1.1 forgerylimit.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bxR%2BdTXL4St8TKJciUfkAEkjE2R%2FO7poeKkoJqkh%2F0PKjN5idGdtDZndWM7te16eKqqhH8x9snpNWhQqBhLhRkFMph0hINScfyP%2BAQD1xQHYjDJ%2FL57157%2FDmzXyxV54QFyWdXbysh1IpurnVdBuv3fS8c40dmZWDxiAOPwlb5xqm%2F2Y7bLqvN94VbFdv%2Bq7nup7rNbalER092JyLkPmjttdsu82W3%2FS2WhiY%2F3JbOrDUAe%2BfkBch%2BXTtibMOySbI0m8vCrtb6PyNd9JS0UIb9PmDD7PdTFcZ0iXsGAed7MGpG9o%2B3X4MnR0s4kL3%2FzEmckqco8dIsgenIZH09xc5EwWRIeH%2FR9WfQKgJJJ2A6TuQ%2FCkBGMeVq8jS%2B1e0qeit5yqdq1Oy9uwPyGpK1n5bR5Z%2Bc0HJQeOGVmUhdWYx6NSQgwlkd4K8PEQxXIGsDsGKzyH5L2Tz2Q6ydP%2BqVRqSz16JkrAT%2BEG0weJ2sNFquWKjHXX4BqWhF%2FhRq%2BXSYFGQlBPIzgRKjEDtKkrroJQOyo6DMneQ8lmDeZ4XuZxRN24zFvBIJCF3PRp1POq5YYySze8wQpGPwNQIzNxGbm5jV45gyp9hezUsX4EtpsR5f4g%2Br1EJgsoSVJSgkgRVQVD16wOurG%2Fr%2B1zZMvFOt3%2B6g3qsi%2B4ePdBFV2RkLz8hLyzK%2BxM%2FYFfMGpwyEccRd4N2x41jKlzebm%2F5NE5ilrihCytrSLsCah0M5ZSsz1rI5ZSsnB0hoYew6hBMroOWL4NW48h3QXvjVuximP1U9ESZ2ULnOU2U4IIWvZSynsyEbWaiANc18mINxS1nT52QM4towc1XIdjx%2BU%2BTy9PfH%2F4FZmrkpsZn8glBV90bX9cV2b%2BuK0u%2Bu5oXMpVDOn%2FzGwUtxOpX74lblTb80kU7evgWmwtz%2BOgDYYsdmnGZdS35%2BoLkXJhtbZggP16yH4vkWml7F0qTlfnOtbe3L6W5EdZKnU1A5ZSQo2MwOSX%2F%2B%2F5g8Z1funsX0kxgyhppeUxOB1IfguW3YfNlfqtXYdTSk%2BQOqrIeGz9ZHipJoMSS06SG%2FRdPlnjP3kPXnAUt7iBLa%2FRNjb6qQdUItlwdF7k5Pv9rsBgkyhknyjj7iTLqy%2BflWjlrREHg0rC95UURFVHS8uNO6HFK%2FVbohyENUNgpO3P00d8AAAD%2F%2FwEAAP%2F%2F%2FyukWJkEAAA%3D
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bxR%2BdTXL4St8TKJciUfkAEkjE2R%2FO7poeKkoJqkh%2F0PKjN5idGdtDZndWM7te16eKqqhH8x9snpNWhQqBhLhRkFMph0hINScfyP%2BAQD1xQHYjDJ%2FL57157%2FDmzXyxV54QFyWdXbysh1IpurnVdBuv3fS8c40dmZWDxiAOPwlb5xqm%2F2Y7bLqvN94VbFdv%2Bq7nup7rNbalER092JyLkPmjttdsu82W3%2FS2WhiY%2F3JbOrDUAe%2BfkBch%2BXTtibMOySbI0m8vCrtb6PyNd9JS0UIb9PmDD7PdTFcZ0iXsGAed7MGpG9o%2B3X4MnR0s4kL3%2FzEmckqco8dIsgenIZH09xc5EwWRIeH%2FR9WfQKgJJJ2A6TuQ%2FCkBGMeVq8jS%2B1e0qeit5yqdq1Oy9uwPyGpK1n5bR5Z%2Bc0HJQeOGVmUhdWYx6NSQgwlkd4K8PEQxXIGsDsGKzyH5L2Tz2Q6ydP%2BqVRqSz16JkrAT%2BEG0weJ2sNFquWKjHXX4BqWhF%2FhRq%2BXSYFGQlBPIzgRKjEDtKkrroJQOyo6DMneQ8lmDeZ4XuZxRN24zFvBIJCF3PRp1POq5YYySze8wQpGPwNQIzNxGbm5jV45gyp9hezUsX4EtpsR5f4g%2Br1EJgsoSVJSgkgRVQVD16wOurG%2Fr%2B1zZMvFOt3%2B6g3qsi%2B4ePdBFV2RkLz8hLyzK%2BxM%2FYFfMGpwyEccRd4N2x41jKlzebm%2F5NE5ilrihCytrSLsCah0M5ZSsz1rI5ZSsnB0hoYew6hBMroOWL4NW48h3QXvjVuximP1U9ESZ2ULnOU2U4IIWvZSynsyEbWaiANc18mINxS1nT52QM4towc1XIdjx%2BU%2BTy9PfH%2F4FZmrkpsZn8glBV90bX9cV2b%2BuK0u%2Bu5oXMpVDOn%2FzGwUtxOpX74lblTb80kU7evgWmwtz%2BOgDYYsdmnGZdS35%2BoLkXJhtbZggP16yH4vkWml7F0qTlfnOtbe3L6W5EdZKnU1A5ZSQo2MwOSX%2F%2B%2F5g8Z1funsX0kxgyhppeUxOB1IfguW3YfNlfqtXYdTSk%2BQOqrIeGz9ZHipJoMSS06SG%2FRdPlnjP3kPXnAUt7iBLa%2FRNjb6qQdUItlwdF7k5Pv9rsBgkyhknyjj7iTLqy%2BflWjlrREHg0rC95UURFVHS8uNO6HFK%2FVbohyENUNgpO3P00d8AAAD%2F%2FwEAAP%2F%2F%2FyukWJkEAAA%3D HTTP/1.1
Host: forgerylimit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Cookie: u_pl=16032438; uid_id2=7b6f3237-c893-440e-97fd-aa61327440a3:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdace887d039f088ae0d9952a8b8cb060=[3364901]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 08 Sep 2022 10:43:34 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 945bd7c8f5c29e81868eb368dc8e075a
Strict-Transport-Security: max-age=0; includeSubdomains
i1.wp.com/encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcTukfRjKCt3mOVE5lGJx4wZ6RLA2qi-wWn3tw&usqp=CAU
192.0.77.2404 Not Found 0 B URL HTTP/2 i1.wp.com/encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcTukfRjKCt3mOVE5lGJx4wZ6RLA2qi-wWn3tw&usqp=CAU
IP 192.0.77.2:0
GET /encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcTukfRjKCt3mOVE5lGJx4wZ6RLA2qi-wWn3tw&usqp=CAU HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 8
X-Firefox-Spdy: h2
i0.wp.com/encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcSQ6Ji-ILz04HHjlHJ4L6vYEQuf3GEeB6mAng&usqp=CAU
192.0.77.2404 Not Found 0 B URL HTTP/2 i0.wp.com/encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcSQ6Ji-ILz04HHjlHJ4L6vYEQuf3GEeB6mAng&usqp=CAU
IP 192.0.77.2:0
GET /encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcSQ6Ji-ILz04HHjlHJ4L6vYEQuf3GEeB6mAng&usqp=CAU HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 8
X-Firefox-Spdy: h2
creepingbrings.com/sfp.js
104.21.234.233200 OK 0 B URL HTTP/2 creepingbrings.com/sfp.js
IP 104.21.234.233:0
GET /sfp.js HTTP/1.1
Host: creepingbrings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 10:43:29 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: b4a8f47f2391b1c94bbd76c3658024dc
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 08 Sep 2022 10:43:28 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lU5jHGL5cqdflSow4eKDFISt6rn0Yv6o7imk1zDMQ4m4nMFBcHLRFbJVzczwGc0uUsgmmVB1ch1uE1yMPi241YzhHoXA76xs2BzM822RhYjFz3hxuMaO0wXWWXPohvlDkUGTu3g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74771559aea976a7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bestbestfree.com/01bestbestfree.js
172.67.183.31200 OK 0 B URL HTTP/2 bestbestfree.com/01bestbestfree.js
IP 172.67.183.31:0
GET /01bestbestfree.js HTTP/1.1
Host: bestbestfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 15:57:35 GMT
vary: Accept-Encoding
etag: W/"61e6e36f-34b8"
expires: Sun, 02 Oct 2022 07:34:02 GMT
cache-control: public, max-age=2592000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 529765
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8mTMVUncbNL6QKI4VBDgYkjcjkvMCEkL7wkstbd%2FGt6L%2Bmd6YwRoadBwAhloGPfQxdFo5aaNnf39%2FXg0%2BveTx7oM7aKsCZ9FrJfeSRs88XRZt3jX9m22CVeprncoIE9LiqWc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7477154e6af3b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i1.wp.com/_O2kguni7fVdeM
192.0.77.2400 Bad Request 0 B IP 192.0.77.2:0
GET /_O2kguni7fVdeM HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: text/html; charset=utf-8
x-nc: EXPIRED arn 5
X-Firefox-Spdy: h2
i0.wp.com/unesdoc.unesco.org/in/rest/Thumb/image?id=p%3A%3Ausmarcdef_0000380479&isbn=9789233001756&author=UNESCO&title=Re%7Cpensar+las+pol%C3%ADticas+para+la+creatividad%3A+plantear+la+cultura+como+un+bien+p%C3%BAblico+global&year=2022&publisher=UNESCO&TypeOfDocument=UnescoPhysicalDocument&mat=BKS&ct=true&size=512&isPhysical=1
192.0.77.2400 Bad Request 0 B URL HTTP/2 i0.wp.com/unesdoc.unesco.org/in/rest/Thumb/image?id=p%3A%3Ausmarcdef_0000380479&isbn=9789233001756&author=UNESCO&title=Re%7Cpensar+las+pol%C3%ADticas+para+la+creatividad%3A+plantear+la+cultura+como+un+bien+p%C3%BAblico+global&year=2022&publisher=UNESCO&TypeOfDocument=UnescoPhysicalDocument&mat=BKS&ct=true&size=512&isPhysical=1
IP 192.0.77.2:0
GET /unesdoc.unesco.org/in/rest/Thumb/image?id=p%3A%3Ausmarcdef_0000380479&isbn=9789233001756&author=UNESCO&title=Re%7Cpensar+las+pol%C3%ADticas+para+la+creatividad%3A+plantear+la+cultura+como+un+bien+p%C3%BAblico+global&year=2022&publisher=UNESCO&TypeOfDocument=UnescoPhysicalDocument&mat=BKS&ct=true&size=512&isPhysical=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: text/html; charset=utf-8
x-nc: EXPIRED arn 7
X-Firefox-Spdy: h2
i0.wp.com/encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcSAOcLej5tY7ioyLCpfptBIR8S9blnSO37Q-A&usqp=CAU
192.0.77.2404 Not Found 0 B URL HTTP/2 i0.wp.com/encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcSAOcLej5tY7ioyLCpfptBIR8S9blnSO37Q-A&usqp=CAU
IP 192.0.77.2:0
GET /encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcSAOcLej5tY7ioyLCpfptBIR8S9blnSO37Q-A&usqp=CAU HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 8
X-Firefox-Spdy: h2
www.blogger.com/comment/frame/2586538743242150511?po=5116495585923600143&hl=en&skin=contempo&blogspotRpcToken=1740147
216.58.207.201200 OK 0 B URL HTTP/2 www.blogger.com/comment/frame/2586538743242150511?po=5116495585923600143&hl=en&skin=contempo&blogspotRpcToken=1740147
IP 216.58.207.201:0
GET /comment/frame/2586538743242150511?po=5116495585923600143&hl=en&skin=contempo&blogspotRpcToken=1740147 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 08 Sep 2022 10:43:27 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
content-security-policy: script-src 'nonce--SigYZ-_fGIP4eDd0K8r7A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/BloggerCommentUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: same-site
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=t7D96btbj1JMDWmw1OoFzn6tzXKJ5Fkh1fwwfjpKlA4embBq6NcPiHjbwyXjY45qLUNayh83VECd4mr6FLsNeEznSSJgwRXEcRblyol88AJHiJfu_pJU2FntTH8mAzoMXxW9NdvUYbF6yvZfjQEISaxbUWVtGTmMCVw7ssRurI8; expires=Fri, 10-Mar-2023 10:43:27 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i0.wp.com/lh3.googleusercontent.com/blogger_img_proxy/ANbyha0XEBQ9bt6TUoaU2AcGm1XuMzOk0txiWvdlXa3uvKHVOpSnB379Gj_JGgUeT_01Ew2UcewCXNlJrGGazvay_oMzuvUPRznIQ5hPNOjlHEz09aXIq6fYVWhn5CU4eyEKVVghcgWVzXZkh7nDjcW52GYee8beN8KH_IQ9Ry9CQHGgfIFepiI=w1200-h630-p-k-no-nu?resize=650,400
192.0.77.2403 Forbidden 0 B URL HTTP/2 i0.wp.com/lh3.googleusercontent.com/blogger_img_proxy/ANbyha0XEBQ9bt6TUoaU2AcGm1XuMzOk0txiWvdlXa3uvKHVOpSnB379Gj_JGgUeT_01Ew2UcewCXNlJrGGazvay_oMzuvUPRznIQ5hPNOjlHEz09aXIq6fYVWhn5CU4eyEKVVghcgWVzXZkh7nDjcW52GYee8beN8KH_IQ9Ry9CQHGgfIFepiI=w1200-h630-p-k-no-nu?resize=650,400
IP 192.0.77.2:0
GET /lh3.googleusercontent.com/blogger_img_proxy/ANbyha0XEBQ9bt6TUoaU2AcGm1XuMzOk0txiWvdlXa3uvKHVOpSnB379Gj_JGgUeT_01Ew2UcewCXNlJrGGazvay_oMzuvUPRznIQ5hPNOjlHEz09aXIq6fYVWhn5CU4eyEKVVghcgWVzXZkh7nDjcW52GYee8beN8KH_IQ9Ry9CQHGgfIFepiI=w1200-h630-p-k-no-nu?resize=650,400 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://timwulf.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: nginx
date: Thu, 08 Sep 2022 10:43:27 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 5
X-Firefox-Spdy: h2