aylelpla.blogspot.com.es/
142.250.74.161302 Moved Temporarily 177 B URL HTTP/1.1 aylelpla.blogspot.com.es/
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash b1407bb46bbbaf3fc2ff93bf6f6bbcf1
cb44ae7101d68a7e1d440f605cfcbeca4a94f63e
a33a241dd1c71afbc8c9a065933e4615a43954cc57cbcf65da7e704bcceb5812
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: aylelpla.blogspot.com.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://aylelpla.blogspot.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Mon, 28 Nov 2022 21:45:01 GMT
Expires: Mon, 28 Nov 2022 21:45:01 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 177
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9832
Expires: Tue, 29 Nov 2022 00:28:53 GMT
Date: Mon, 28 Nov 2022 21:45:01 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5487
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:01 GMT
Last-Modified: Mon, 28 Nov 2022 20:13:34 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13475
Expires: Tue, 29 Nov 2022 01:29:36 GMT
Date: Mon, 28 Nov 2022 21:45:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 21:17:49 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1632
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7FRiqsKDMVHZYj5ujQE57nyVNW1flda4znfuA78j4BK25lGKRVQ+madtfNpqQFPoUcIZDy8ca2wR7jcc0zah7Q==
x-amz-request-id: MKBR7BJVVENXRE5K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 20:45:10 GMT
age: 3591
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 21:45:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
aylelpla.blogspot.com/
142.250.74.161200 OK 44 kB IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1573)
Hash 8c76ad6f36121b7eefb9660a5210a5c6
b1532a927832552fed3cdd9ca68eb121d0ab371e
bbbc425b4d08aa2beb940a7f0ba469f2fbd94cc60f6e7c4c77deeb0be3a7ecee
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: aylelpla.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Mon, 28 Nov 2022 21:45:01 GMT
Date: Mon, 28 Nov 2022 21:45:01 GMT
Cache-Control: private, max-age=0
Last-Modified: Wed, 23 Nov 2022 00:42:29 GMT
ETag: W/"b2544afcb77bf112631988cd620a5ff8311c6f07e4c1a6ef54ee520651598000"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 43992
Server: GSE
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 21:08:55 GMT
cache-control: public,max-age=3600
age: 2167
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.gmodules.com/ig/ifr?url=http://www.google.com/ig/modules/translatemypage.xml&up_source_language=es&synd=open&w=180&h=60&title=Google+Translate+My+Page&lang=en&country=ALL&border=%23ffffff%7C0px%2C1px+solid+%23595959%7C0px%2C1px+solid+%23797979%7C0px%2C2px+solid+%23898989&output=js
142.250.74.33404 Not Found 117 B URL HTTP/1.1 www.gmodules.com/ig/ifr?url=http://www.google.com/ig/modules/translatemypage.xml&up_source_language=es&synd=open&w=180&h=60&title=Google+Translate+My+Page&lang=en&country=ALL&border=%23ffffff%7C0px%2C1px+solid+%23595959%7C0px%2C1px+solid+%23797979%7C0px%2C2px+solid+%23898989&output=js
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 50e010e6df7baa397fb4070b6553cff8
fe7f8b322f493e27d54136a1d3d562d8c2afbab7
e69da6f4387d34867cfdf001ad4ede46f8e78ddd3d4cceb1535b7cf6f3c84932
GET /ig/ifr?url=http://www.google.com/ig/modules/translatemypage.xml&up_source_language=es&synd=open&w=180&h=60&title=Google+Translate+My+Page&lang=en&country=ALL&border=%23ffffff%7C0px%2C1px+solid+%23595959%7C0px%2C1px+solid+%23797979%7C0px%2C2px+solid+%23898989&output=js HTTP/1.1
Host: www.gmodules.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 404 Not Found
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 28 Nov 2022 21:45:02 GMT
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 117
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9f2751b862f1815bef2869dc411f6021
cf001bd30b74c30190683c05ac81c97e5ccd9c3e
464e9f5b8f9e6a87b46b2cde3f4b554ff3641732f1506c2f2a6edf40dd972d6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/show_ads.js
142.250.74.98200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 142.250.74.98:0
File type ASCII text, with very long lines (3577)
Hash e93aa8aca50c136489c62a0599c0ffdb
0f56e6bfc025a4945d158862febed743e05ad0a9
c10724e18408bdfeada6d53e5a77c4cc83badc67fff4cfa225fcc589e15f3134
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Mon, 28 Nov 2022 21:45:02 GMT
Expires: Mon, 28 Nov 2022 21:45:02 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 13930673845493489509
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36278
X-XSS-Protection: 0
aylelpla.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 aylelpla.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: aylelpla.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Mon, 28 Nov 2022 21:45:02 GMT
Expires: Mon, 05 Dec 2022 21:45:02 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 28 Nov 2022 19:53:31 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
ads61161.hotwords.com/show.jsp?id=61161&cor=005F00&tag=div&atr=class&vatr=post-body%20entry-content
85.17.54.13301 Moved Permanently 178 B URL HTTP/1.1 ads61161.hotwords.com/show.jsp?id=61161&cor=005F00&tag=div&atr=class&vatr=post-body%20entry-content
IP 85.17.54.13:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
GET /show.jsp?id=61161&cor=005F00&tag=div&atr=class&vatr=post-body%20entry-content HTTP/1.1
Host: ads61161.hotwords.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 28 Nov 2022 21:45:02 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://ads61161.hotwords.com/show.jsp?id=61161&cor=005F00&tag=div&atr=class&vatr=post-body%20entry-content
apis.google.com/js/platform.js
142.250.74.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Mon, 28 Nov 2022 21:45:02 GMT
expires: Mon, 28 Nov 2022 21:45:02 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 13c870f9d0256a3e5dd72fc47aea94e9
55b39d22353b9f020626c9ad5067adbb4e0a4761
a7af66142920ccb78d06c97456b0c48fc4596b853bf3f5eef60940857bcd6fd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3990
Cache-Control: max-age=131303
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:02 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:13:25 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
142.250.74.105200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 142.250.74.105:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 18:12:52 GMT
expires: Wed, 22 Nov 2023 18:12:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 18:53:15 GMT
content-type: text/css
age: 531130
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 13c870f9d0256a3e5dd72fc47aea94e9
55b39d22353b9f020626c9ad5067adbb4e0a4761
a7af66142920ccb78d06c97456b0c48fc4596b853bf3f5eef60940857bcd6fd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cuteki.com/widgets/calendars/cuteki-calendar_v3.js
152.228.229.40301 Moved Permanently 185 B URL HTTP/1.1 www.cuteki.com/widgets/calendars/cuteki-calendar_v3.js
IP 152.228.229.40:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash fb9d175ee787b9699e12cee7b6c9edf5
983873464bef7bbc920f45ab8380e0e8e862cf3a
80739421302abaa390e342a0c8e339903b741348b19dc34023f1781dd0c51773
GET /widgets/calendars/cuteki-calendar_v3.js HTTP/1.1
Host: www.cuteki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://www.cuteki.com/widgets/calendars/cuteki-calendar_v3.js
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Mon, 28 Nov 2022 21:44:19 GMT
Content-Length: 185
www.blogger.com/static/v1/widgets/2342155703-widgets.js
142.250.74.105200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 142.250.74.105:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 16:02:03 GMT
expires: Tue, 28 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 27 Nov 2022 15:52:40 GMT
content-type: text/javascript
age: 20579
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.widgeo.net/img/logopm.png
172.67.69.193200 OK 714 B URL HTTP/1.1 www.widgeo.net/img/logopm.png
IP 172.67.69.193:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3832d6b8d8c47a5cefe6561297b514f6
f7ebe08ccccde9ab79407b9348ffa8fa6c048d8d
c5fda4bddbc21f1d990ef4b42a6350e739a1870c73c6ab240aa921651bfe5a08
GET /img/logopm.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 21:45:02 GMT
Content-Type: image/webp
Content-Length: 714
Connection: keep-alive
Cf-Bgj: imgq:100,h2pri
Cf-Polished: origFmt=png, origSize=847
Content-Disposition: inline; filename="logopm.webp"
Vary: Accept
cache-control: public, max-age=2592000
expires: Thu, 15 Dec 2022 19:43:44 GMT
last-modified: Thu, 20 Jun 2019 15:14:49 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 1130478
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CtL1TPWoIj8sQQj4%2FoSt5B%2FfCdn%2Bf5F%2FhNWFvuwsfI4ifGWd11nS5lFK41Aw29GSa1tcfDIGL1OYTZFjk3KKF1%2FPP22Cwah%2BqNc48s%2FZOQn9voicA3XVggknbvkZdKil"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 771649cd4bb8b500-OSL
alt-svc: h2=":443"; ma=60
counter2.contadorvisitasgratis.com/private/counter.js?c=fdfbb3afec7f189aace348a12381f94f
37.187.129.45200 OK 14 kB URL HTTP/1.1 counter2.contadorvisitasgratis.com/private/counter.js?c=fdfbb3afec7f189aace348a12381f94f
IP 37.187.129.45:0
File type HTML document, ASCII text, with very long lines (591)
Hash 056a6f786ccbbb99ba64138f87da4e79
4bb20bbf8bbc92c9eda75c943bc5c7c7f08e70e0
29fc10b212469302b5cd363468010f056a82ffd92552d9cc79662d82b53514a8
GET /private/counter.js?c=fdfbb3afec7f189aace348a12381f94f HTTP/1.1
Host: counter2.contadorvisitasgratis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
X-Powered-By: PHP/5.4.16
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Tue, 9 May 2000 11:11:11 GMT
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"
Pragma: no-cache
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
resources.blogblog.com/img/icon18_edit_allbkg.gif
142.250.74.105200 OK 162 B URL HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP 142.250.74.105:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 14:43:55 GMT
expires: Tue, 29 Nov 2022 14:43:55 GMT
cache-control: public, max-age=604800
last-modified: Mon, 21 Nov 2022 15:52:34 GMT
content-type: image/gif
age: 543667
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/geocompteur.php?c=geoall2&id=2203933&adult=0&cat=multimedia&fonce=&claire=
172.67.69.193200 OK 2.0 kB URL HTTP/1.1 www.widgeo.net/geocompteur/geocompteur.php?c=geoall2&id=2203933&adult=0&cat=multimedia&fonce=&claire=
IP 172.67.69.193:0
File type ASCII text, with very long lines (2149)
Hash 7f0cdc35519efed5c5a13907513b6ded
7704921103d69b8e7bb897e7f71f0e0a58d91c6b
0cecf6297905779902816898434620789d94b5e7d98afb3558536b42c522c67a
GET /geocompteur/geocompteur.php?c=geoall2&id=2203933&adult=0&cat=multimedia&fonce=&claire= HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 21:45:02 GMT
Content-Type: application/javascript
Content-Length: 2027
Connection: keep-alive
set-cookie: w_js_ads_code=ok; expires=Sun, 04-Dec-2022 21:45:01 GMT; Max-Age=518400; path=/; domain=widgeo.net
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 21:45:01 GMT
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zm62HoWCf0vSxriVVPGRNYTXHc%2BLiAVnI051XZYNQGHg1n1ho7mAON0mLawCGYOwYdQFrgOkELj45dKBDzVK3K%2F%2Bz5c%2B318MecO0yBOEPngvT5KBGhiQ76btRwSmaoDV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 771649ccd9afb505-OSL
alt-svc: h2=":443"; ma=60
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.98200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.98:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Mon, 28 Nov 2022 17:27:09 GMT
Expires: Mon, 12 Dec 2022 17:27:09 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 15473
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
142.250.74.174200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 142.250.74.174:0
File type ASCII text, with very long lines (580)
Hash 813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 09:56:18 GMT
expires: Thu, 23 Nov 2023 09:56:18 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 474524
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/img/share_buttons_20_3.png
142.250.74.105200 OK 5.1 kB URL HTTP/2 www.blogger.com/img/share_buttons_20_3.png
IP 142.250.74.105:0
File type PNG image data, 120 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash ad9999106d5f550920b586e8e1704e5a
93fd02c51166402a41f96509cd0ca3fb917877dd
3829a5b2ade7cfc416c80b8f3df71e49e68672875f025d525223978f5cee3fd3
GET /img/share_buttons_20_3.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 5080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 19:10:58 GMT
expires: Tue, 29 Nov 2022 19:10:58 GMT
cache-control: public, max-age=604800
last-modified: Tue, 22 Nov 2022 03:55:22 GMT
content-type: image/png
age: 527644
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.linkwithin.com/widget.js
3.19.188.212404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP 3.19.188.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 28 Nov 2022 21:45:02 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
extras2.smartgb.com/b/gb_80x40.gif
168.235.66.146200 OK 2.3 kB URL HTTP/1.1 extras2.smartgb.com/b/gb_80x40.gif
IP 168.235.66.146:0
File type GIF image data, version 89a, 80 x 40\012- data
Hash cc00712c9dcceea3cd8a16209de43545
96c5c74c5de6ab18c9ff85469d64c8b05779e4b5
ed368887b772bac0fbe8e541dc23e4b5d403e2e989e1352b5bdcb9fe1ec701b5
GET /b/gb_80x40.gif HTTP/1.1
Host: extras2.smartgb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: Apache
Last-Modified: Sat, 22 Apr 2006 15:08:02 GMT
Accept-Ranges: bytes
Content-Length: 2276
Cache-Control: no-transform, max-age=1814400, public
Keep-Alive: timeout=2, max=25
Connection: Keep-Alive
Content-Type: image/gif
downloads.totallyfreecursors.com/public/CursorsLogo88-31.gif
45.79.19.245200 OK 12 kB URL HTTP/1.1 downloads.totallyfreecursors.com/public/CursorsLogo88-31.gif
IP 45.79.19.245:0
File type GIF image data, version 89a, 88 x 31\012- data
Hash 7e54a3942211aa79e4e7b8d488318b1b
df5a78cada9dfc3d54c19b6681754c04ae98477c
f8e44a7df40d7a3154e37abcb710c625c9fe0c21f1341345da1d75b0800fbb63
GET /public/CursorsLogo88-31.gif HTTP/1.1
Host: downloads.totallyfreecursors.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 21:45:02 GMT
Content-Type: image/gif
Content-Length: 12047
Last-Modified: Mon, 24 Jun 2019 05:33:16 GMT
Connection: keep-alive
ETag: "5d10609c-2f0f"
Accept-Ranges: bytes
www.linkwithin.com/pixel.png
3.19.188.212200 OK 83 B URL HTTP/1.1 www.linkwithin.com/pixel.png
IP 3.19.188.212:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash ca1dba98f5e46c0e7a1549b3d8af9b93
37284bda145ed93cee64997e3d6688cae7d98468
88021da4a13d993a2c94e4d8ddc9bd98b34985d806371e71e0531b37b8a0e081
GET /pixel.png HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 28 Nov 2022 21:45:02 GMT
Content-Type: image/png
Content-Length: 83
Last-Modified: Thu, 18 Jun 2020 22:02:28 GMT
Connection: keep-alive
ETag: "5eebe474-53"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
push.services.mozilla.com/
52.41.201.177101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.201.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KsMxKOnzsjqVe2rDAYtlkQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UJm8d8ZBpdwBok/agbBFtEdFffs=
cdn.widgetserver.com/syndication/subscriber/InsertWidget.js
45.56.79.23200 OK 157 B URL HTTP/1.1 cdn.widgetserver.com/syndication/subscriber/InsertWidget.js
IP 45.56.79.23:0
Hash 67e216a27dda24bdcb086c2385b0cb99
17141c80f5d32bec3691c5ab24741d8b7dd5f0c6
9dc433b2142d3ba0803fcffa53f19d34da26996d20c829df6d694bc887325dd7
GET /syndication/subscriber/InsertWidget.js HTTP/1.1
Host: cdn.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Mon, 28 Nov 2022 21:45:02 GMT
content-type: application/javascript
content-length: 157
last-modified: Wed, 07 Mar 2018 18:30:37 GMT
etag: "5aa02fcd-9d"
accept-ranges: bytes
connection: close
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 13c870f9d0256a3e5dd72fc47aea94e9
55b39d22353b9f020626c9ad5067adbb4e0a4761
a7af66142920ccb78d06c97456b0c48fc4596b853bf3f5eef60940857bcd6fd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-J-XfI67reqo/UgyGSfe0ydI/AAAAAAAAAZM/SCx5p9Yt3ug/s250/juego%2Blogopedia.png
142.250.74.161200 OK 20 kB URL HTTP/1.1 4.bp.blogspot.com/-J-XfI67reqo/UgyGSfe0ydI/AAAAAAAAAZM/SCx5p9Yt3ug/s250/juego%2Blogopedia.png
IP 142.250.74.161:0
File type PNG image data, 250 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash a7b5ad72ff6a12a742a6bbd5586f8ce7
6012b7c7f171c16277c09898faa0d7cab71e7cce
86d4acd860fa5c780c4e9cddd6563fcc9e6df4276959d14149206a60b8ac1187
GET /-J-XfI67reqo/UgyGSfe0ydI/AAAAAAAAAZM/SCx5p9Yt3ug/s250/juego%2Blogopedia.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v194"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="juego logopedia.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 20219
X-XSS-Protection: 0
2.bp.blogspot.com/-Y4qwHq2dBtc/UgAmwjshaSI/AAAAAAAAAWE/W-U8lGGh1N8/s250/fonolab.png
142.250.74.161200 OK 54 kB URL HTTP/1.1 2.bp.blogspot.com/-Y4qwHq2dBtc/UgAmwjshaSI/AAAAAAAAAWE/W-U8lGGh1N8/s250/fonolab.png
IP 142.250.74.161:0
File type PNG image data, 250 x 151, 8-bit/color RGB, non-interlaced\012- data
Hash f819dd5ca84d63deae31bf0e3f4b3bea
290c132a0c164c6a3d7607b114442cfbf2b1922d
74ca2da407f78d106e3008f89f1befc325434f52681266a14763dfcf931ccd63
GET /-Y4qwHq2dBtc/UgAmwjshaSI/AAAAAAAAAWE/W-U8lGGh1N8/s250/fonolab.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v162"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="fonolab.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 54133
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2d2c0b5f65e08a441157b972acb89bfe
b50ba3dd63daac7540b96e1a59b46f357581a5dc
d9168e6b5d90f424eb707dca3444355f59bdb6eb2bdb720852bd2c53e2ecaac3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3458
Cache-Control: max-age=158121
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:02 GMT
Etag: "6384e505-1d7"
Expires: Wed, 30 Nov 2022 17:40:23 GMT
Last-Modified: Mon, 28 Nov 2022 16:42:45 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
2.bp.blogspot.com/-jc4WJBCsa48/UgA8cADnsuI/AAAAAAAAAWk/FgjRmA1PwDM/s250/JUEDULAND.png
142.250.74.161200 OK 36 kB URL HTTP/1.1 2.bp.blogspot.com/-jc4WJBCsa48/UgA8cADnsuI/AAAAAAAAAWk/FgjRmA1PwDM/s250/JUEDULAND.png
IP 142.250.74.161:0
File type PNG image data, 250 x 129, 8-bit/color RGB, non-interlaced\012- data
Hash 7041a79e408c5ba0db85d6ae33311f4f
9113297a595159572d1747b91823fae805ba70b7
45f89a3fd42ca8f5bfcf110c81a5834fe6fc552c373799a11ff7e7794518ff20
GET /-jc4WJBCsa48/UgA8cADnsuI/AAAAAAAAAWk/FgjRmA1PwDM/s250/JUEDULAND.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v16a"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="JUEDULAND.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 35504
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 13c870f9d0256a3e5dd72fc47aea94e9
55b39d22353b9f020626c9ad5067adbb4e0a4761
a7af66142920ccb78d06c97456b0c48fc4596b853bf3f5eef60940857bcd6fd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
recursostic.educacion.es/buenaspracticas20/web/images/stories/logos_bp_20/red_buenas_practicas_20_a.png
212.128.121.90200 OK 17 kB URL HTTP/1.1 recursostic.educacion.es/buenaspracticas20/web/images/stories/logos_bp_20/red_buenas_practicas_20_a.png
IP 212.128.121.90:0
ASN #200521 Ministerio de Asuntos Economicos y Transformacion Digital
File type PNG image data, 150 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash 3fc86be23a2339acbb89c19225fe412f
fbf9196ac662de595c1057c950838d793a6862d3
4f68d953220642e72bdeb52fcb1a6ff12f10cdc7f5358f88ed569e0329f2cf8a
GET /buenaspracticas20/web/images/stories/logos_bp_20/red_buenas_practicas_20_a.png HTTP/1.1
Host: recursostic.educacion.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: Apache
Last-Modified: Mon, 14 May 2012 16:19:27 GMT
ETag: "b359c4e2-423e-4c001733fa429"
Accept-Ranges: bytes
Content-Length: 16958
Connection: close
Content-Type: image/png
Set-Cookie: cookiesession1=4F139B26LQQMD8G1VHTF3WO4JKWT0537;Path=/;HttpOnly
www.blogblog.com/1kt/simple/gradients_light.png
142.250.74.105200 OK 403 B URL HTTP/1.1 www.blogblog.com/1kt/simple/gradients_light.png
IP 142.250.74.105:0
File type PNG image data, 20 x 1100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f7de2e6afefb125b1f14fa5cda610ee
57a145f234b504a73f9d55cf39f2231a04719456
ecb30886406e3f776ff7bc3834de849944471e626ff148bed2fa389d02866044
GET /1kt/simple/gradients_light.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 403
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 07:13:23 GMT
Expires: Wed, 30 Nov 2022 07:13:23 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 06:50:29 GMT
Content-Type: image/png
Age: 484299
2.bp.blogspot.com/-b4SqiALPoYE/UgA-0JB7vfI/AAAAAAAAAW0/xPewbwR9Yt8/s250/DETECTIVES.png
142.250.74.161200 OK 77 kB URL HTTP/1.1 2.bp.blogspot.com/-b4SqiALPoYE/UgA-0JB7vfI/AAAAAAAAAW0/xPewbwR9Yt8/s250/DETECTIVES.png
IP 142.250.74.161:0
File type PNG image data, 250 x 189, 8-bit/color RGB, non-interlaced\012- data
Hash faeba26b14016bc1d507e979911863ce
6819c89520a67454dc84acd618d221c454eed64e
c7802fba07a748597e242467f43c3f357cfa635b7af72fb504af272a4b4ee591
GET /-b4SqiALPoYE/UgA-0JB7vfI/AAAAAAAAAW0/xPewbwR9Yt8/s250/DETECTIVES.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v16e"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DETECTIVES.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 76609
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.linkwithin.com/widget.js
3.19.188.212404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP 3.19.188.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 28 Nov 2022 21:45:02 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
4.bp.blogspot.com/-xMFtlakQVf0/Ug_KzqFcwBI/AAAAAAAAAbM/3Ia5TUzKJrY/s250/HACER%2BMUECAS.png
142.250.74.161200 OK 45 kB URL HTTP/1.1 4.bp.blogspot.com/-xMFtlakQVf0/Ug_KzqFcwBI/AAAAAAAAAbM/3Ia5TUzKJrY/s250/HACER%2BMUECAS.png
IP 142.250.74.161:0
File type PNG image data, 250 x 188, 8-bit/color RGB, non-interlaced\012- data
Hash f8b3d86bb1bd90c0f260c6822733b2ce
87b68a5dc267f4f7929c7bf5c6d2a6396ac7f973
c9f21db0a1cdc1942d6ec16634f9715ab91109f1f278baa5efb0066b0bf3268b
GET /-xMFtlakQVf0/Ug_KzqFcwBI/AAAAAAAAAbM/3Ia5TUzKJrY/s250/HACER%2BMUECAS.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1b4"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="HACER MUECAS.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 44998
X-XSS-Protection: 0
3.bp.blogspot.com/-nD1f9DYleVo/UjoCb5ibwnI/AAAAAAAAApI/a_-UBWcHj8w/s1600/cabecera%2Bde%2Bal.jpg
142.250.74.161200 OK 60 kB URL HTTP/1.1 3.bp.blogspot.com/-nD1f9DYleVo/UjoCb5ibwnI/AAAAAAAAApI/a_-UBWcHj8w/s1600/cabecera%2Bde%2Bal.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 675x544, components 3\012- data
Hash 44f36b1638d7e758027331f62dcfaa0a
1082622c20a2deaf7fce86673c6ba89f997bb7d8
5d5aebbf52c87e97341d3e7f93e601e4532ffc68194a043f35a89692bc026974
GET /-nD1f9DYleVo/UjoCb5ibwnI/AAAAAAAAApI/a_-UBWcHj8w/s1600/cabecera%2Bde%2Bal.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v293"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="cabecera de al.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 59738
X-XSS-Protection: 0
4.bp.blogspot.com/-W5UD6BLr4NA/UnJZwXH-_uI/AAAAAAAAAsw/QRgRSfVhDAE/s1600/symbaloo.bmp
142.250.74.161200 OK 18 kB URL HTTP/1.1 4.bp.blogspot.com/-W5UD6BLr4NA/UnJZwXH-_uI/AAAAAAAAAsw/QRgRSfVhDAE/s1600/symbaloo.bmp
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 228x132, components 3\012- data
Hash 4502a7da4f82ab4cc21284a8366a5a4a
e11c2ee22209a5cc051f51989cbba3a6a2a3bf17
9e28ebdec1df91456a6741b7b2e65e503af6eba7bcaf8521e8bdd87872761de1
GET /-W5UD6BLr4NA/UnJZwXH-_uI/AAAAAAAAAsw/QRgRSfVhDAE/s1600/symbaloo.bmp HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2cd"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="symbaloo.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 18432
X-XSS-Protection: 0
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-3473169605615006&plah=aylelpla.blogspot.com
142.250.74.98200 OK 120 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-3473169605615006&plah=aylelpla.blogspot.com
IP 142.250.74.98:0
File type ASCII text, with very long lines (6090)
Size 120 kB (119607 bytes)
Hash 527ec59e189cffc72688efb994965e29
5699ff328c939614f27508180152ef3d15dbf186
b917be253388772bdd6e956938c716d40c62e5f6b7b3256f00cd77e7f6b3a9e3
GET /pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-3473169605615006&plah=aylelpla.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 28 Nov 2022 21:45:02 GMT
expires: Mon, 28 Nov 2022 21:45:02 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 17968436261579759140
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119607
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
themes.googleusercontent.com/image?id=1KH22PlFqsiVYxboQNAoJjYmRbw5M4REHmdJbHT5M2x9zVMGrCqwSjZvaQW_A10KPc6Il&options=w1600
142.250.74.33301 Moved Permanently 0 B URL HTTP/1.1 themes.googleusercontent.com/image?id=1KH22PlFqsiVYxboQNAoJjYmRbw5M4REHmdJbHT5M2x9zVMGrCqwSjZvaQW_A10KPc6Il&options=w1600
IP 142.250.74.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /image?id=1KH22PlFqsiVYxboQNAoJjYmRbw5M4REHmdJbHT5M2x9zVMGrCqwSjZvaQW_A10KPc6Il&options=w1600 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 28 Nov 2022 21:45:02 GMT
Location: https://themes.googleusercontent.com/image?id=1KH22PlFqsiVYxboQNAoJjYmRbw5M4REHmdJbHT5M2x9zVMGrCqwSjZvaQW_A10KPc6Il&options=w1600
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
3.bp.blogspot.com/-YDh0rqKrDcw/UuAsRO9E_QI/AAAAAAAAA4Q/z7dq6jeGv5o/s1600/leo%2Bcon%2Balex.png
142.250.74.161200 OK 74 kB URL HTTP/1.1 3.bp.blogspot.com/-YDh0rqKrDcw/UuAsRO9E_QI/AAAAAAAAA4Q/z7dq6jeGv5o/s1600/leo%2Bcon%2Balex.png
IP 142.250.74.161:0
File type PNG image data, 244 x 184, 8-bit/color RGB, non-interlaced\012- data
Hash 76b8201f8c272bcda700c4ee98a76a96
062fd693af569054b900f2cf679e35d8bb2b9c4a
60fe7c7e474d9c445f91effce13c07484843c7d84ac6321752fa7ab8debccdb3
GET /-YDh0rqKrDcw/UuAsRO9E_QI/AAAAAAAAA4Q/z7dq6jeGv5o/s1600/leo%2Bcon%2Balex.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v385"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="leo con alex.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 74340
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-9d8HoPOS9Ic/VO-ggu9J57I/AAAAAAAABLc/5waHX2OzKZQ/s1600/IMG_20150226_143130.jpg
142.250.74.161200 OK 256 kB URL HTTP/1.1 3.bp.blogspot.com/-9d8HoPOS9Ic/VO-ggu9J57I/AAAAAAAABLc/5waHX2OzKZQ/s1600/IMG_20150226_143130.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1200x1600, components 3\012- data
Size 256 kB (255654 bytes)
Hash 7b1182fbd7d55c5de8c44938165b57f1
1312fefd98fbabd0f8ea82639db5116bd860dbc0
f7646fc1ca30ba2b261b89824d839cd8ddc44434d900d50ec3709997c9a72aa9
GET /-9d8HoPOS9Ic/VO-ggu9J57I/AAAAAAAABLc/5waHX2OzKZQ/s1600/IMG_20150226_143130.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4b8"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_20150226_143130.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 255654
X-XSS-Protection: 0
1.bp.blogspot.com/-ag_uRKNN3bE/VKEvWXtKBlI/AAAAAAAABKA/2IS86iaSaVo/s1600/lectoescritura.png
142.250.74.161200 OK 235 kB URL HTTP/1.1 1.bp.blogspot.com/-ag_uRKNN3bE/VKEvWXtKBlI/AAAAAAAABKA/2IS86iaSaVo/s1600/lectoescritura.png
IP 142.250.74.161:0
File type PNG image data, 1095 x 631, 8-bit/color RGB, non-interlaced\012- data
Size 235 kB (234827 bytes)
Hash 457e76e415d11fc1b9c7e9c6e33b3070
d57ab8bc11b15f28fe4ae54f88d1d08b963f3815
08a326e6420df44591cdddf58e351b6fa398ddc4bcaf4dc2116f517d06da7136
GET /-ag_uRKNN3bE/VKEvWXtKBlI/AAAAAAAABKA/2IS86iaSaVo/s1600/lectoescritura.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4a1"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="lectoescritura.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 234827
X-XSS-Protection: 0
3.bp.blogspot.com/-pBVPu4JchEM/UgA7OLDwJjI/AAAAAAAAAWU/Acd8CCTaMCk/s250/JUEGO%2BDE%2BLETRAS.png
142.250.74.161200 OK 24 kB URL HTTP/1.1 3.bp.blogspot.com/-pBVPu4JchEM/UgA7OLDwJjI/AAAAAAAAAWU/Acd8CCTaMCk/s250/JUEGO%2BDE%2BLETRAS.png
IP 142.250.74.161:0
File type PNG image data, 250 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash ae2cc40eac7f82e934e2a5c4567987ce
23c0378b1c46648a2a860be37b72ec0ac16258b2
b8d1e3fd11a0323672e9112b5b90de88a735dad24729db86356a8f8f86ed175a
GET /-pBVPu4JchEM/UgA7OLDwJjI/AAAAAAAAAWU/Acd8CCTaMCk/s250/JUEGO%2BDE%2BLETRAS.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v166"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="JUEGO DE LETRAS.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 24405
X-XSS-Protection: 0
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 04b0c879da315fb2b050a371b31a9ffe
97fc452e6e09e981bb965e4596b5f3baf5578c2a
bf8b38f2850008043dadc63add38982036ecefe0476bdf2380885f29d85a3168
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF8B38F2850008043DADC63ADD38982036ECEFE0476BDF2380885F29D85A3168"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21589
Expires: Tue, 29 Nov 2022 03:44:51 GMT
Date: Mon, 28 Nov 2022 21:45:02 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5011c3ae54f0ee02e53eee57d47da352
ad893bb5928ff835231652809cc9af62d5219f0a
d840efa1d29eff50fc07c0c31315c004f60db98e7da8c8a232e40e3595bba0a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-d6t7V1FCNxk/U-OrbPkQ48I/AAAAAAAABGg/wNT7z9DsODc/s1600/10245472_1461059854147696_4238383874639939042_n.png
142.250.74.161200 OK 251 kB URL HTTP/1.1 3.bp.blogspot.com/-d6t7V1FCNxk/U-OrbPkQ48I/AAAAAAAABGg/wNT7z9DsODc/s1600/10245472_1461059854147696_4238383874639939042_n.png
IP 142.250.74.161:0
File type PNG image data, 505 x 395, 8-bit/color RGB, non-interlaced\012- data
Size 251 kB (250890 bytes)
Hash df07ba99206e1e0f0565521fde98fe4e
6e28dd9008ed8226b63dc95d2f404751a7dc706a
145dee10a721651e61bc92bdc41c5ace90e756ce727f57c281fefa103e8582bc
GET /-d6t7V1FCNxk/U-OrbPkQ48I/AAAAAAAABGg/wNT7z9DsODc/s1600/10245472_1461059854147696_4238383874639939042_n.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v469"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="10245472_1461059854147696_4238383874639939042_n.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 250890
X-XSS-Protection: 0
www.cuteki.com/widgets/calendars/cuteki-calendar_v3.js
152.228.229.40200 OK 824 B URL HTTP/2 www.cuteki.com/widgets/calendars/cuteki-calendar_v3.js
IP 152.228.229.40:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (953), with no line terminators
Hash 1eb64e7de6dade835d5fc0869253a1e3
d449398b5bfbc91eacec7dd52d3f3ebf9d6deb76
a4a21f3e0fc2efd7c406055343629be6ff73f906a82fcc7701e8126474ed8818
GET /widgets/calendars/cuteki-calendar_v3.js HTTP/1.1
Host: www.cuteki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aylelpla.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=2592000
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 19 Apr 2018 18:12:07 GMT
accept-ranges: bytes
etag: "ba3c7aed9d8d31:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Mon, 28 Nov 2022 21:44:19 GMT
content-length: 824
X-Firefox-Spdy: h2
1.bp.blogspot.com/-6rYZkPvROUI/VOeV25ZpYlI/AAAAAAAABKo/wm7DMbgMbaI/s1600/premio%2Bwolf.jpg
142.250.74.161200 OK 31 kB URL HTTP/1.1 1.bp.blogspot.com/-6rYZkPvROUI/VOeV25ZpYlI/AAAAAAAABKo/wm7DMbgMbaI/s1600/premio%2Bwolf.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, software=Google], baseline, precision 8, 320x276, components 3\012- data
Hash f57c9b50b6ce01a41e86646163dec90b
3f738405438a1da6618198b347edbf569a700d72
978241326cb66f4f2a9064d6be515f84e88b51fb1803eaebeadf7f16291b1a18
GET /-6rYZkPvROUI/VOeV25ZpYlI/AAAAAAAABKo/wm7DMbgMbaI/s1600/premio%2Bwolf.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4ab"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="premio wolf.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 31439
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2d2c0b5f65e08a441157b972acb89bfe
b50ba3dd63daac7540b96e1a59b46f357581a5dc
d9168e6b5d90f424eb707dca3444355f59bdb6eb2bdb720852bd2c53e2ecaac3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3458
Cache-Control: max-age=158121
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:02 GMT
Etag: "6384e505-1d7"
Expires: Wed, 30 Nov 2022 17:40:23 GMT
Last-Modified: Mon, 28 Nov 2022 16:42:45 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
1.bp.blogspot.com/-b-fF7HKVqW8/VO-glMjt-tI/AAAAAAAABLk/5KU1BULdvq4/s1600/IMG_20150226_143106.jpg
142.250.74.161200 OK 258 kB URL HTTP/1.1 1.bp.blogspot.com/-b-fF7HKVqW8/VO-glMjt-tI/AAAAAAAABLk/5KU1BULdvq4/s1600/IMG_20150226_143106.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1200x1600, components 3\012- data
Size 258 kB (258305 bytes)
Hash 3881615142236acaae9b37ca99c43aa1
5566d3668506883e7988af90261d1b241a6c419d
b3bd268c4643d44dd01fea923553f40d140e3c05a18dac1390351db71e168764
GET /-b-fF7HKVqW8/VO-glMjt-tI/AAAAAAAABLk/5KU1BULdvq4/s1600/IMG_20150226_143106.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4ba"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_20150226_143106.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 258305
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 178ffcc14403da7f777a91a61e3933bc
5a756f4357d8ec45e61fa5b4917853bd2380b835
0f783e0ae738f16b52f1ede3b0b6a128bd4ac752c98c71fc307211a8abf933ec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-GitYcDbjhD0/Uf6HMvJqSiI/AAAAAAAAAV0/luZVRhJn6PM/s250/sello%2B3.jpg
142.250.74.161200 OK 25 kB URL HTTP/1.1 1.bp.blogspot.com/-GitYcDbjhD0/Uf6HMvJqSiI/AAAAAAAAAV0/luZVRhJn6PM/s250/sello%2B3.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 250x218, components 3\012- data
Hash 87b763e83eb92da9ffb46c124339cb42
aa225b7778eef27cfebe050a2da495e5fcd1c0d3
9189515ded02572369b83ffa90eeddbb3ba6699a901d6386c383d697a26c39c2
GET /-GitYcDbjhD0/Uf6HMvJqSiI/AAAAAAAAAV0/luZVRhJn6PM/s250/sello%2B3.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v15e"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="sello 3.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 25010
X-XSS-Protection: 0
www.blogger.com/dyn-css/authorization.css?targetBlogID=4612544470208399725&zx=6dc3581d-3a50-467f-9638-9929c96593d4
142.250.74.105200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=4612544470208399725&zx=6dc3581d-3a50-467f-9638-9929c96593d4
IP 142.250.74.105:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=4612544470208399725&zx=6dc3581d-3a50-467f-9638-9929c96593d4 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 28 Nov 2022 21:45:02 GMT
last-modified: Mon, 28 Nov 2022 21:45:02 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.box.com/embed_widget/s/b5d79138q0bsfxw22k1tm9rp0nizpnsj?theme=blue
74.112.186.144302 Found 472 B URL HTTP/2 app.box.com/embed_widget/s/b5d79138q0bsfxw22k1tm9rp0nizpnsj?theme=blue
IP 74.112.186.144:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash a857eec26a095f97806facc4251f4048
21bcf238687fd5f4fbefaf9704786f7c498f305e
b44b50b7e234fd05080699152a9bc0055a703a93ec2642ecb6b1f717effe7933
GET /embed_widget/s/b5d79138q0bsfxw22k1tm9rp0nizpnsj?theme=blue HTTP/1.1
Host: app.box.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 28 Nov 2022 21:45:02 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
set-cookie: z=bb48ops3s4377cnaj9tbu5nme3; path=/; domain=.app.box.com; secure; HttpOnly
z=bb48ops3s4377cnaj9tbu5nme3; Path=/; Domain=.app.box.com; Secure; HttpOnly; SameSite=None
box_visitor_id=63852bdec66603.48203770; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.box.com; secure
bv=OPS-45718; expires=Mon, 05-Dec-2022 21:45:02 GMT; Max-Age=604800; path=/; domain=.app.box.com; secure
cn=0; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.app.box.com; secure
site_preference=desktop; path=/; domain=.box.com; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://app.box.com/embed/s/b5d79138q0bsfxw22k1tm9rp0nizpnsj?view=list&sortColumn=date&sortDirection=ASC&showItemFeedActions=true&showParentPath=true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/navbar.g?targetBlogID=4612544470208399725&blogName=El+rinconcito+de+Audici%C3%B3n+y+Lenguaje&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://aylelpla.blogspot.com/search&blogLocale=es&v=2&homepageUrl=http://aylelpla.blogspot.com/&vt=9017640738861397434&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__
142.250.74.105200 OK 2.6 kB URL HTTP/2 www.blogger.com/navbar.g?targetBlogID=4612544470208399725&blogName=El+rinconcito+de+Audici%C3%B3n+y+Lenguaje&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://aylelpla.blogspot.com/search&blogLocale=es&v=2&homepageUrl=http://aylelpla.blogspot.com/&vt=9017640738861397434&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__
IP 142.250.74.105:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3152)
Hash 64883fcffaced0cc0674d7ea2fdfea75
c3fbbfe3bfde2d7e993509986b2f32fc5aeca026
9ec5e826b02fc0933b69c3b58f8a8cc77c9ea4daa3241084a127a3ead8cfe0f9
GET /navbar.g?targetBlogID=4612544470208399725&blogName=El+rinconcito+de+Audici%C3%B3n+y+Lenguaje&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://aylelpla.blogspot.com/search&blogLocale=es&v=2&homepageUrl=http://aylelpla.blogspot.com/&vt=9017640738861397434&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 28 Nov 2022 21:45:02 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2576
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D4612544470208399725%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMzMDAqByNmZmY5ZWUyByMwMDAwMDA6ByMyMjIyMjJCByM5OTMzMDBKByM5OTk5OTlSByM5OTMzMDBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://aylelpla.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D4612544470208399725%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMzMDAqByNmZmY5ZWUyByMwMDAwMDA6ByMyMjIyMjJCByM5OTMzMDBKByM5OTk5OTlSByM5OTMzMDBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://aylelpla.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
216.58.207.237302 Found 469 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D4612544470208399725%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMzMDAqByNmZmY5ZWUyByMwMDAwMDA6ByMyMjIyMjJCByM5OTMzMDBKByM5OTk5OTlSByM5OTMzMDBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://aylelpla.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D4612544470208399725%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMzMDAqByNmZmY5ZWUyByMwMDAwMDA6ByMyMjIyMjJCByM5OTMzMDBKByM5OTk5OTlSByM5OTMzMDBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://aylelpla.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
IP 216.58.207.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (500)
Hash 6063b82203d7969ef39eac4024ba9a26
5b8d1b2ad1339268a51b0c1ffb8b58dc6335e6b7
fb1d504f51f070ca5d4b15bffafcd51c970180689037c3842dba3b6e0712b2d0
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D4612544470208399725%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMzMDAqByNmZmY5ZWUyByMwMDAwMDA6ByMyMjIyMjJCByM5OTMzMDBKByM5OTk5OTlSByM5OTMzMDBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://aylelpla.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D4612544470208399725%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMzMDAqByNmZmY5ZWUyByMwMDAwMDA6ByMyMjIyMjJCByM5OTMzMDBKByM5OTk5OTlSByM5OTMzMDBaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://aylelpla.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aylelpla.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 28 Nov 2022 21:45:03 GMT
location: https://www.blogger.com/followers.g?blogID=4612544470208399725&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMyMjIyMjIiByM5OTMzMDAqByNmZmY5ZWUyByMwMDAwMDA6ByMyMjIyMjJCByM5OTMzMDBKByM5OTk5OTlSByM5OTMzMDBaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Faylelpla.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-xl-wTfkejo2SB8eo70t9oA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 469
server: GSE
set-cookie: __Host-GAPS=1:gYcNDW9Lx3o_-biCuwfksqFW_ikXug:jAiHD2LlzW7UQDDp;Path=/;Expires=Wed, 27-Nov-2024 21:45:03 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-1A4IUg2E1kc/VE1YNvbVY3I/AAAAAAAABIc/i-xbxj9xlQo/s1600/tablero%2Bhalloween.jpg
142.250.74.161200 OK 471 B URL HTTP/1.1 4.bp.blogspot.com/-1A4IUg2E1kc/VE1YNvbVY3I/AAAAAAAABIc/i-xbxj9xlQo/s1600/tablero%2Bhalloween.jpg
IP 142.250.74.161:0
Hash 879cba431d8b6f2717a750acd5ca7156
1d4eb23583d48dd6801a104aa20046b34acd0efe
31223aada310e8d8e3fa41e22ee23019a07b362b3b062ccdc10600c22071bd78
GET /-1A4IUg2E1kc/VE1YNvbVY3I/AAAAAAAABIc/i-xbxj9xlQo/s1600/tablero%2Bhalloween.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v488"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="tablero halloween.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 294553
X-XSS-Protection: 0
partner.googleadservices.com/gampad/cookie.js?domain=aylelpla.blogspot.com&callback=_gfp_s_&client=ca-pub-3473169605615006&gpid_exp=1
172.217.21.162200 OK 253 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=aylelpla.blogspot.com&callback=_gfp_s_&client=ca-pub-3473169605615006&gpid_exp=1
IP 172.217.21.162:0
File type ASCII text, with very long lines (391), with no line terminators
Hash 92f5429c0d63ec3367cd0673c55619c4
6917f583e5d51554690db9afbb3678a918b73fbd
f190e03e328b5451b92b0a693879628df50c1fc3bd5d7074b9f9b1b2ec934a47
GET /gampad/cookie.js?domain=aylelpla.blogspot.com&callback=_gfp_s_&client=ca-pub-3473169605615006&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 28 Nov 2022 21:45:03 GMT
server: cafe
cache-control: private
content-length: 253
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-7jM0A7Swr2c/VO-gY9-lDII/AAAAAAAABLU/bjMmFCWX65A/s1600/IMG_20150226_143158.jpg
142.250.74.161200 OK 246 kB URL HTTP/1.1 3.bp.blogspot.com/-7jM0A7Swr2c/VO-gY9-lDII/AAAAAAAABLU/bjMmFCWX65A/s1600/IMG_20150226_143158.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1200x1600, components 3\012- data
Size 246 kB (245880 bytes)
Hash f84bae5aadaded7eaa3fe03ba74c05f4
a05c91c118ae004bcb6322b0c08b74053f2e410d
7327387c2d0304e5d619a2c5180479c4554ec522a4a4583ddd6461519a2ac5ec
GET /-7jM0A7Swr2c/VO-gY9-lDII/AAAAAAAABLU/bjMmFCWX65A/s1600/IMG_20150226_143158.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v52e"
Expires: Tue, 29 Nov 2022 21:45:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_20150226_143158.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:02 GMT
Server: fife
Content-Length: 245880
X-XSS-Protection: 0
adservice.google.com/adsid/integrator.js?domain=aylelpla.blogspot.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=aylelpla.blogspot.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=aylelpla.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 28 Nov 2022 21:45:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5011c3ae54f0ee02e53eee57d47da352
ad893bb5928ff835231652809cc9af62d5219f0a
d840efa1d29eff50fc07c0c31315c004f60db98e7da8c8a232e40e3595bba0a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
app.box.com/embed_widget/s/t6kvsfo24tn30dee9jh1?theme=blue
74.112.186.144302 Found 907 B URL HTTP/2 app.box.com/embed_widget/s/t6kvsfo24tn30dee9jh1?theme=blue
IP 74.112.186.144:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 46 x 20, 8-bit colormap, non-interlaced\012- data
Hash 3718077fe5eb689b0ded987a52881d06
f0ce5596ef43f850c400cbbc0556697fb3e7b232
72be8098b87d7e2d7fbc6eb0a3eaebcf1013186d7733cd340549f9e1701a4865
GET /embed_widget/s/t6kvsfo24tn30dee9jh1?theme=blue HTTP/1.1
Host: app.box.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 28 Nov 2022 21:45:02 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
set-cookie: z=fm05ivk2bji48au1be6noiqi2l; path=/; domain=.app.box.com; secure; HttpOnly
z=fm05ivk2bji48au1be6noiqi2l; Path=/; Domain=.app.box.com; Secure; HttpOnly; SameSite=None
box_visitor_id=63852bdec3fb82.05266809; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.box.com; secure
bv=OPS-45718; expires=Mon, 05-Dec-2022 21:45:02 GMT; Max-Age=604800; path=/; domain=.app.box.com; secure
cn=71; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.app.box.com; secure
site_preference=desktop; path=/; domain=.box.com; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://app.box.com/embed/s/t6kvsfo24tn30dee9jh1?view=list&sortColumn=date&sortDirection=ASC&showItemFeedActions=true&showParentPath=true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=aylelpla.blogspot.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=aylelpla.blogspot.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=aylelpla.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 28 Nov 2022 21:45:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 46da8b8b532d3e41b620d68c7d8baf70
ca322fe0dcfa37e7ded3a1cdd6ca5d75346de044
5de101dad4d88b7572f04f1e510ffa64567ced491185bbc816eed40590c28c12
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5DE101DAD4D88B7572F04F1E510FFA64567CED491185BBC816EED40590C28C12"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21589
Expires: Tue, 29 Nov 2022 03:44:52 GMT
Date: Mon, 28 Nov 2022 21:45:03 GMT
Connection: keep-alive
app.box.com/embed_widget/s/bh5at8hgen82ns27kdqa?theme=blue
74.112.186.144302 Found 472 B URL HTTP/2 app.box.com/embed_widget/s/bh5at8hgen82ns27kdqa?theme=blue
IP 74.112.186.144:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash a857eec26a095f97806facc4251f4048
21bcf238687fd5f4fbefaf9704786f7c498f305e
b44b50b7e234fd05080699152a9bc0055a703a93ec2642ecb6b1f717effe7933
GET /embed_widget/s/bh5at8hgen82ns27kdqa?theme=blue HTTP/1.1
Host: app.box.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 28 Nov 2022 21:45:03 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
set-cookie: z=avho1ko5a6mf275tcp4lvhdd59; path=/; domain=.app.box.com; secure; HttpOnly
z=avho1ko5a6mf275tcp4lvhdd59; Path=/; Domain=.app.box.com; Secure; HttpOnly; SameSite=None
box_visitor_id=63852bdeeb4a98.61314630; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.box.com; secure
bv=OPS-45718; expires=Mon, 05-Dec-2022 21:45:02 GMT; Max-Age=604800; path=/; domain=.app.box.com; secure
cn=80; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.app.box.com; secure
site_preference=desktop; path=/; domain=.box.com; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://app.box.com/embed/s/bh5at8hgen82ns27kdqa?view=list&sortColumn=date&sortDirection=ASC&showItemFeedActions=true&showParentPath=true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-2uf7vLaUMr0/UhD0AgUeS8I/AAAAAAAAAbc/3o3IXF_aWl0/s250/caras.png
142.250.74.161200 OK 36 kB URL HTTP/1.1 3.bp.blogspot.com/-2uf7vLaUMr0/UhD0AgUeS8I/AAAAAAAAAbc/3o3IXF_aWl0/s250/caras.png
IP 142.250.74.161:0
File type PNG image data, 250 x 174, 8-bit/color RGB, non-interlaced\012- data
Hash d81d33a6016e88ffb02dd7d6a047a19f
878b5d001d7fcb4fe0c17e658092fffc92298e74
093159ec7f53153f64fa9aa6f7b23c20acb469516f12e8a0de0f12f670dee600
GET /-2uf7vLaUMr0/UhD0AgUeS8I/AAAAAAAAAbc/3o3IXF_aWl0/s250/caras.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1b8"
Expires: Tue, 29 Nov 2022 21:45:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="caras.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:03 GMT
Server: fife
Content-Length: 35649
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 879cba431d8b6f2717a750acd5ca7156
1d4eb23583d48dd6801a104aa20046b34acd0efe
31223aada310e8d8e3fa41e22ee23019a07b362b3b062ccdc10600c22071bd78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
themes.googleusercontent.com/image?id=1KH22PlFqsiVYxboQNAoJjYmRbw5M4REHmdJbHT5M2x9zVMGrCqwSjZvaQW_A10KPc6Il&options=w1600
142.250.74.33200 OK 412 kB URL HTTP/2 themes.googleusercontent.com/image?id=1KH22PlFqsiVYxboQNAoJjYmRbw5M4REHmdJbHT5M2x9zVMGrCqwSjZvaQW_A10KPc6Il&options=w1600
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Picasa], baseline, precision 8, 1600x1067, components 3\012- data
Size 412 kB (411839 bytes)
Hash 1e7dc46a577f75f2fa10093025053a53
5215892e0e19bea00d27f44743f124fda0702f61
c2bd405a0c997d3767bd087a969c67c1e2bb21563bd50007c6f18702e82c6744
GET /image?id=1KH22PlFqsiVYxboQNAoJjYmRbw5M4REHmdJbHT5M2x9zVMGrCqwSjZvaQW_A10KPc6Il&options=w1600 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aylelpla.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Tue, 29 Nov 2022 21:45:02 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 21:45:02 GMT
server: fife
content-length: 411839
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ads61161.hotwords.com/show.jsp?id=61161&cor=005F00&tag=div&atr=class&vatr=post-body%20entry-content
85.17.54.13200 OK 237 B URL HTTP/1.1 ads61161.hotwords.com/show.jsp?id=61161&cor=005F00&tag=div&atr=class&vatr=post-body%20entry-content
IP 85.17.54.13:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document, ASCII text, with very long lines (819), with no line terminators
Hash 7c7ed0d07db3e4f54884d059f0e45c25
f01cb7c3e4806bf96b05d503cbeb3c3a2b168d32
829587780b3584d42c1f2bb7ae077d5f4d377860aa1a8aff2ece32d231d31743
GET /show.jsp?id=61161&cor=005F00&tag=div&atr=class&vatr=post-body%20entry-content HTTP/1.1
Host: ads61161.hotwords.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aylelpla.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 28 Nov 2022 21:45:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
www.gmodules.com/ig/ifr?url=http://www.google.com/ig/modules/translatemypage.xml&up_source_language=es&synd=open&w=180&h=60&title=Google+Translate+My+Page&lang=en&country=ALL&border=%23ffffff%7C0px%2C1px+solid+%23595959%7C0px%2C1px+solid+%23797979%7C0px%2C2px+solid+%23898989&output=js
142.250.74.33404 Not Found 117 B URL HTTP/1.1 www.gmodules.com/ig/ifr?url=http://www.google.com/ig/modules/translatemypage.xml&up_source_language=es&synd=open&w=180&h=60&title=Google+Translate+My+Page&lang=en&country=ALL&border=%23ffffff%7C0px%2C1px+solid+%23595959%7C0px%2C1px+solid+%23797979%7C0px%2C2px+solid+%23898989&output=js
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 50e010e6df7baa397fb4070b6553cff8
fe7f8b322f493e27d54136a1d3d562d8c2afbab7
e69da6f4387d34867cfdf001ad4ede46f8e78ddd3d4cceb1535b7cf6f3c84932
GET /ig/ifr?url=http://www.google.com/ig/modules/translatemypage.xml&up_source_language=es&synd=open&w=180&h=60&title=Google+Translate+My+Page&lang=en&country=ALL&border=%23ffffff%7C0px%2C1px+solid+%23595959%7C0px%2C1px+solid+%23797979%7C0px%2C2px+solid+%23898989&output=js HTTP/1.1
Host: www.gmodules.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 404 Not Found
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 28 Nov 2022 21:45:03 GMT
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 117
Server: GSE
www.blogger.com/img/logo-16.png
142.250.74.105200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP 142.250.74.105:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 04:27:52 GMT
Expires: Wed, 30 Nov 2022 04:27:52 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 07:51:00 GMT
Content-Type: image/png
Age: 494231
3.bp.blogspot.com/-uGHeDpnHMV0/UgQQ2OVI5gI/AAAAAAAAAXU/IWySfXe25-0/s250/VEDOQUE.png
142.250.74.161200 OK 38 kB URL HTTP/1.1 3.bp.blogspot.com/-uGHeDpnHMV0/UgQQ2OVI5gI/AAAAAAAAAXU/IWySfXe25-0/s250/VEDOQUE.png
IP 142.250.74.161:0
File type PNG image data, 250 x 206, 8-bit/color RGB, non-interlaced\012- data
Hash 08339723ca365004e4423730d9721f79
e46622fde079183720c9d2dff547e42fa88a9f01
47e069ad8db10cf20008ad970de359e76211dfa536137bb0337de06bab12fabd
GET /-uGHeDpnHMV0/UgQQ2OVI5gI/AAAAAAAAAXU/IWySfXe25-0/s250/VEDOQUE.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v176"
Expires: Tue, 29 Nov 2022 21:45:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="VEDOQUE.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 28 Nov 2022 21:45:03 GMT
Server: fife
Content-Length: 37994
X-XSS-Protection: 0
cdn.widgetserver.com/
72.14.185.43200 OK 4.8 kB IP 72.14.185.43:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (331)
Hash eacb5563fbfa0a2bf7a03112bbfada3c
0aa90ceeb844e4327ab7521d6998d9c97ae1ccba
7b692fe022faac2d10dc3ee31eb3d0468ada0a3cf8565dad1af2e429a373e606
GET / HTTP/1.1
Host: cdn.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Mon, 28 Nov 2022 21:45:03 GMT
content-type: text/html; charset=utf-8
content-length: 4780
vary: Accept-Language
content-language: en
connection: close
app.box.com/embed_widget/s/kv6fzmo5fmf8o8p4vnoa?theme=blue
74.112.186.144302 Found 43 B URL HTTP/2 app.box.com/embed_widget/s/kv6fzmo5fmf8o8p4vnoa?theme=blue
IP 74.112.186.144:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /embed_widget/s/kv6fzmo5fmf8o8p4vnoa?theme=blue HTTP/1.1
Host: app.box.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 28 Nov 2022 21:45:03 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
set-cookie: z=b48k5716l6ck9tlb7q7porteju; path=/; domain=.app.box.com; secure; HttpOnly
z=b48k5716l6ck9tlb7q7porteju; Path=/; Domain=.app.box.com; Secure; HttpOnly; SameSite=None
box_visitor_id=63852bdeecd714.35562589; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.box.com; secure
bv=OPS-45718; expires=Mon, 05-Dec-2022 21:45:02 GMT; Max-Age=604800; path=/; domain=.app.box.com; secure
cn=0; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.app.box.com; secure
site_preference=desktop; path=/; domain=.box.com; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://app.box.com/embed/s/kv6fzmo5fmf8o8p4vnoa?view=list&sortColumn=date&sortDirection=ASC&showItemFeedActions=true&showParentPath=true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.widgetserver.com/mtm/async/.eJxdjEsOwiAQhu_CshLGpdZ4FjOlU0oCZYSxrTHeXTCu3H3_86Ue2ategdIKsysVK2WaKFOuYhbhHgCfgQIHNENIrnASY1NsmzkVuS0YqXbtuJjNj46kUF4pt067tZZYai60C8wSg0bm4C2KTwvszTns_24Ml_v1aM7aR3QEuPrphxsNrDvovvlJvT9C60LC:1ozlvz:gTrkzlaIVKvoGfskPuK05B6fQiQ/1/
72.14.185.43200 OK 252 B URL HTTP/1.1 cdn.widgetserver.com/mtm/async/.eJxdjEsOwiAQhu_CshLGpdZ4FjOlU0oCZYSxrTHeXTCu3H3_86Ue2ategdIKsysVK2WaKFOuYhbhHgCfgQIHNENIrnASY1NsmzkVuS0YqXbtuJjNj46kUF4pt067tZZYai60C8wSg0bm4C2KTwvszTns_24Ml_v1aM7aR3QEuPrphxsNrDvovvlJvT9C60LC:1ozlvz:gTrkzlaIVKvoGfskPuK05B6fQiQ/1/
IP 72.14.185.43:0
File type ASCII text, with no line terminators
Hash 93cfb3c3674430c7a72822075c1d970c
9cc68706e1c7c167d50bde01762e8c9075a32d7a
728a95a5aae489cf027b589065d4136b05edf41a71ba7b3afb805f75cd896ba8
GET /mtm/async/.eJxdjEsOwiAQhu_CshLGpdZ4FjOlU0oCZYSxrTHeXTCu3H3_86Ue2ategdIKsysVK2WaKFOuYhbhHgCfgQIHNENIrnASY1NsmzkVuS0YqXbtuJjNj46kUF4pt067tZZYai60C8wSg0bm4C2KTwvszTns_24Ml_v1aM7aR3QEuPrphxsNrDvovvlJvT9C60LC:1ozlvz:gTrkzlaIVKvoGfskPuK05B6fQiQ/1/ HTTP/1.1
Host: cdn.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://cdn.widgetserver.com/
Connection: keep-alive
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Mon, 28 Nov 2022 21:45:03 GMT
content-type: text/html; charset=utf-8
content-length: 252
x-mtm-path: 4
x-mtm-prov: 1:4.06;70:0.00
x-mtm-rd: 0.19
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJjZG4ud2lkZ2V0c2VydmVyLmNvbSIsImh0dHA6Ly93d3cxLndpZGdldHNlcnZlci5jb20vP3RtPTEmc3ViaWQ0PTE2Njk2NzE5MDMuMDI3MDIxMDAwMCZLVzE9RXVyb3BlJTIwRGVkaWNhdGVkJTIwU2VydmVycyZLVzI9Tm9yd2F5JTIwRGVkaWNhdGVkJTIwU2VydmVycyZLVzM9UmVnaW9uYWwlMjBEZWRpY2F0ZWQlMjBTZXJ2ZXJzJktXND1Mb2NhbCUyMERlZGljYXRlZCUyMFNlcnZlcnMmS1c1PUN1c3RvbSUyMERlZGljYXRlZCUyMFNlcnZlcnMmc2VhcmNoYm94PTAmYmFja2ZpbGw9MCIsMSwiMjAyMi0xMS0yOCAyMTo0NTowMyIsMSwiMTY2OTY3MTkwMy4wMjcwMjEwMDAwIiwxLG51bGwsbnVsbF0:1ozlvz:o7cbea6th2_rB5m6Ic6AqF8JZB4; expires=Mon, 28-Nov-2022 22:45:03 GMT; Max-Age=3600; Path=/
connection: close
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12836
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Mon, 28 Nov 2022 21:45:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12836
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Mon, 28 Nov 2022 21:45:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12836
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Mon, 28 Nov 2022 21:45:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12836
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Mon, 28 Nov 2022 21:45:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12836
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Mon, 28 Nov 2022 21:45:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78b1389f425425d0450c94d900404dc4
53b12a8702f7c5b7cc697e2a24da824d9434be65
0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6376
x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGeaoAMFb_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:26 GMT
age: 85417
etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:43 GMT
age: 86000
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:16 GMT
age: 85427
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a1a4e00f1f15827cf651f373863c379
70c2a238f06ca7e56ef80c83738e081bf0de3330
3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 08:11:39 GMT
age: 48805
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a11c6ec-01ab-453a-a13d-c7804535dc69.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a11c6ec-01ab-453a-a13d-c7804535dc69.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b0bd385532089b45a14e461abbecc1af
3da359b1ba09138a425094715b9f3a2f8d0257fe
803001528f2aefc1ea90e585d48de435975862861a1cbe8d898e5cd7ebd297dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a11c6ec-01ab-453a-a13d-c7804535dc69.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8771
x-amzn-requestid: 995d3904-9be1-4b40-9813-ff47e60639ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_MEAPoAMF0xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d861-3fdb7958064e0c4b1aed2136;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vrBB4JkuL3nbZnDWitQ4dvTruO9M6hSt8mw9NuJliCmcNOw8xvfWhw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:20:34 GMT
age: 84270
etag: "3da359b1ba09138a425094715b9f3a2f8d0257fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 15bd53848c7082464273007e010c54e0
9a3ca698ca1aeae695923277ed2244465e01a1ea
36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U_gitOWWMPO7M5Dd0WktaigfRERa93d86MhziLjZ2qnuON_K5NauyQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:54:37 GMT
age: 85827
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www1.widgetserver.com/?tm=1&subid4=1669671903.0270210000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0
99.83.136.84200 OK 2.5 kB URL HTTP/1.1 www1.widgetserver.com/?tm=1&subid4=1669671903.0270210000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0
IP 99.83.136.84:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2258)
Hash bb6aa465f4ec4f6fd1a087dae4779566
fdc29c692d83c53d88b17ba1697b55abdd4979e8
28f0657681ed9338abac828a498419eaa85d71edb80bfab341776c7cef035e67
GET /?tm=1&subid4=1669671903.0270210000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0 HTTP/1.1
Host: www1.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.widgetserver.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 21:45:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Redirect: zeropark_zeroclick
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip
d38psrni17bvxu.cloudfront.net/scripts/js3.js
54.230.245.8200 OK 1.1 kB URL HTTP/1.1 d38psrni17bvxu.cloudfront.net/scripts/js3.js
IP 54.230.245.8:0
File type ASCII text, with very long lines (506)
Hash 64b79b43df8fbf2c5d082964b9116a68
dc3c763519baf0f4c32bb60bfc429651a491ea01
c57e9feec209e3ea5eb1d75a1ba6fa277242a3df250055be8446052b51e58637
Analyzer Verdict Alert fortinet Malware
GET /scripts/js3.js HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.widgetserver.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1134
Connection: keep-alive
Server: nginx
Date: Mon, 28 Nov 2022 04:54:34 GMT
Last-Modified: Tue, 17 Aug 2021 09:17:22 GMT
Accept-Ranges: bytes
ETag: "611b7ea2-46e"
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0wz0EjeAGVZH8eoaQ0mL3GX0XNCUH5gd9oc2Ihjdp5pUIy1a_HwRYA==
Age: 60630
www1.widgetserver.com/track.php?domain=widgetserver.com&toggle=browserjs&uid=MTY2OTY3MTkwNC4yNzQ6M2FiMTY3ZDU4N2U1MmY0YmYxZjRhZmI3MmYyOTE5ODQwMzM3ZTNlYTc4OTI4YTllY2NmMWU0ZWFiZjczMmFlZTo2Mzg1MmJlMDQyZTUy
99.83.136.84200 OK 20 B URL HTTP/1.1 www1.widgetserver.com/track.php?domain=widgetserver.com&toggle=browserjs&uid=MTY2OTY3MTkwNC4yNzQ6M2FiMTY3ZDU4N2U1MmY0YmYxZjRhZmI3MmYyOTE5ODQwMzM3ZTNlYTc4OTI4YTllY2NmMWU0ZWFiZjczMmFlZTo2Mzg1MmJlMDQyZTUy
IP 99.83.136.84:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?domain=widgetserver.com&toggle=browserjs&uid=MTY2OTY3MTkwNC4yNzQ6M2FiMTY3ZDU4N2U1MmY0YmYxZjRhZmI3MmYyOTE5ODQwMzM3ZTNlYTc4OTI4YTllY2NmMWU0ZWFiZjczMmFlZTo2Mzg1MmJlMDQyZTUy HTTP/1.1
Host: www1.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.widgetserver.com/?tm=1&subid4=1669671903.0270210000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 21:45:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
www1.widgetserver.com/ls.php
99.83.136.84201 Created 0 B URL HTTP/1.1 www1.widgetserver.com/ls.php
IP 99.83.136.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
POST /ls.php HTTP/1.1
Host: www1.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 2210
Origin: http://www1.widgetserver.com
Connection: keep-alive
Referer: http://www1.widgetserver.com/?tm=1&subid4=1669671903.0270210000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0
HTTP/1.1 201 Created
Date: Mon, 28 Nov 2022 21:45:05 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 63852be1bdc085631e773679
Charset: utf-8
Access-Control-Allow-Origin: http://www1.widgetserver.com
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_pKsGZ9jse8MmrSRzij3dTfaR684b8YATpMGvIieCZ2znGDJ+5cJyZJ4DsQwMexX79XMAJZN3XBdUNWTap8395w==
www1.widgetserver.com/track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=widgetserver.com&uid=MTY2OTY3MTkwNC4yNzQ6M2FiMTY3ZDU4N2U1MmY0YmYxZjRhZmI3MmYyOTE5ODQwMzM3ZTNlYTc4OTI4YTllY2NmMWU0ZWFiZjczMmFlZTo2Mzg1MmJlMDQyZTUy&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2Mzg1MmJlMDQyZTNkfHx8MTY2OTY3MTkwNC41NzE0fDllOTk0ZjgxZWY1NGRhOTc0ZjMzNTBkOTRiNDcxMTY0ZDViZDE3NmV8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw5Y2YxYjFhMjAxYjFhOWRlNGY3ZmRkODBiZmM5ZTQzNWMzYjk1ZmFkfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off
99.83.136.84200 OK 20 B URL HTTP/1.1 www1.widgetserver.com/track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=widgetserver.com&uid=MTY2OTY3MTkwNC4yNzQ6M2FiMTY3ZDU4N2U1MmY0YmYxZjRhZmI3MmYyOTE5ODQwMzM3ZTNlYTc4OTI4YTllY2NmMWU0ZWFiZjczMmFlZTo2Mzg1MmJlMDQyZTUy&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2Mzg1MmJlMDQyZTNkfHx8MTY2OTY3MTkwNC41NzE0fDllOTk0ZjgxZWY1NGRhOTc0ZjMzNTBkOTRiNDcxMTY0ZDViZDE3NmV8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw5Y2YxYjFhMjAxYjFhOWRlNGY3ZmRkODBiZmM5ZTQzNWMzYjk1ZmFkfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off
IP 99.83.136.84:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=widgetserver.com&uid=MTY2OTY3MTkwNC4yNzQ6M2FiMTY3ZDU4N2U1MmY0YmYxZjRhZmI3MmYyOTE5ODQwMzM3ZTNlYTc4OTI4YTllY2NmMWU0ZWFiZjczMmFlZTo2Mzg1MmJlMDQyZTUy&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2Mzg1MmJlMDQyZTNkfHx8MTY2OTY3MTkwNC41NzE0fDllOTk0ZjgxZWY1NGRhOTc0ZjMzNTBkOTRiNDcxMTY0ZDViZDE3NmV8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXw5Y2YxYjFhMjAxYjFhOWRlNGY3ZmRkODBiZmM5ZTQzNWMzYjk1ZmFkfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off HTTP/1.1
Host: www1.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.widgetserver.com/?tm=1&subid4=1669671903.0270210000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 21:45:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-View-Match: true
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
dipaka-ead.com/zcvisitor/eb0e5b05-6f65-11ed-b6f5-122211ef4cad/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=eb1c64c6-6f65-11ed-b6f5-122211ef4cad
3.212.50.125200 1.1 kB URL HTTP/1.1 dipaka-ead.com/zcvisitor/eb0e5b05-6f65-11ed-b6f5-122211ef4cad/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=eb1c64c6-6f65-11ed-b6f5-122211ef4cad
IP 3.212.50.125:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9ff4fce40c057f93b5914ea0c5d1edd0
d69346247ae35d37244a806f68dab458265b6b30
d0e625234ef3e77f41114e032a813c822e367ef03372e487e4c1687f4f1623d4
GET /zcvisitor/eb0e5b05-6f65-11ed-b6f5-122211ef4cad/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=eb1c64c6-6f65-11ed-b6f5-122211ef4cad HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.widgetserver.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Mon, 28 Nov 2022 21:45:05 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: YgEKmAuU
dipaka-ead.com/zcredirect?visitid=eb0e5b05-6f65-11ed-b6f5-122211ef4cad&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
3.212.50.125200 344 B URL HTTP/1.1 dipaka-ead.com/zcredirect?visitid=eb0e5b05-6f65-11ed-b6f5-122211ef4cad&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP 3.212.50.125:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e9fadcf0fe9d085a19865b9c5c38ddb5
14c4f60742cd04dd091a78865c342418d9a0c74a
a1b270d2ce8b98951e5cfe0b09c49f2927945bda03589ae0217aa9018fdaccaa
GET /zcredirect?visitid=eb0e5b05-6f65-11ed-b6f5-122211ef4cad&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcvisitor/eb0e5b05-6f65-11ed-b6f5-122211ef4cad/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=eb1c64c6-6f65-11ed-b6f5-122211ef4cad
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Mon, 28 Nov 2022 21:45:06 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: ilhfRuJb
dipaka-ead.com/favicon.ico
3.212.50.125404 653 B URL HTTP/1.1 dipaka-ead.com/favicon.ico
IP 3.212.50.125:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcredirect?visitid=eb0e5b05-6f65-11ed-b6f5-122211ef4cad&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
HTTP/1.1 404
Date: Mon, 28 Nov 2022 21:45:06 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: biwrGmDN
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 19e3d659bc68824fdf9008eeb30e0525
f61e07f045e543992554a9cdfa1736331330b31e
e922e8cb2cbc15a444b331d51d6e368287fb9db7115287b865a20e7e5ce524fe
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=146352
Date: Mon, 28 Nov 2022 21:45:06 GMT
Etag: "6384c089-1d7"
Expires: Wed, 30 Nov 2022 14:24:18 GMT
Last-Modified: Mon, 28 Nov 2022 14:07:05 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yzKQ1kv5wgW5uHQ_3JA5lWQvoQj1wegvqqKVRVrkHv5MsM0sYsrfOA==
Age: 1033
drivegoals-1.net/api/v1/px?xmlid=N3jxHNZ5sfyhv5PFTfpnRGG6oV9wEPVQa9c0GkVl
3.33.192.145200 OK 89 kB URL HTTP/2 drivegoals-1.net/api/v1/px?xmlid=N3jxHNZ5sfyhv5PFTfpnRGG6oV9wEPVQa9c0GkVl
IP 3.33.192.145:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (653)
Hash e40522aedbed98249108ecf899c5d5ea
7d0d4d478dd5729c1ec6543e4b426486a8e367c6
4be4a0f7279a4ec8712defd27ba784b46b4d825458848c76e4ce3d727051c8fb
GET /api/v1/px?xmlid=N3jxHNZ5sfyhv5PFTfpnRGG6oV9wEPVQa9c0GkVl HTTP/1.1
Host: drivegoals-1.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dipaka-ead.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 21:45:06 GMT
content-type: text/html; charset=utf-8
content-length: 89172
access-control-allow-origin: *
etag: W/"15c54-fQ1NR43VcpwexlQ+S0JkhqjjZ8Y"
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 178adcada555838ee9c6ddc11da3b42b
1d2a8662ef6eae08ce708220f7c35d4151b757e4
498d61c9dbf11fa5340e9665f32fe99325182e0754cb893179af15c9e8b38151
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 28 Nov 2022 21:45:07 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 28 Nov 2022 02:52:27 GMT
Expires: Tue, 29 Nov 2022 02:52:27 GMT
ETag: "1d2a8662ef6eae08ce708220f7c35d4151b757e4"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 178adcada555838ee9c6ddc11da3b42b
1d2a8662ef6eae08ce708220f7c35d4151b757e4
498d61c9dbf11fa5340e9665f32fe99325182e0754cb893179af15c9e8b38151
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 28 Nov 2022 21:45:07 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 28 Nov 2022 02:52:27 GMT
Expires: Tue, 29 Nov 2022 02:52:27 GMT
ETag: "1d2a8662ef6eae08ce708220f7c35d4151b757e4"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 178adcada555838ee9c6ddc11da3b42b
1d2a8662ef6eae08ce708220f7c35d4151b757e4
498d61c9dbf11fa5340e9665f32fe99325182e0754cb893179af15c9e8b38151
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 28 Nov 2022 21:45:07 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 28 Nov 2022 02:52:27 GMT
Expires: Tue, 29 Nov 2022 02:52:27 GMT
ETag: "1d2a8662ef6eae08ce708220f7c35d4151b757e4"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
drivegoals-1.net/api/v1/pxcheck?impId=N3jxHNZ5sfyhv5PFTfpnRGG6oV9wEPVQa9c0GkVl&minfo=eyJjb29raWVEaXNhYmxlZCI6ZmFsc2UsInVhIjoiTW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjAiLCJpZnJhbWUiOmZhbHNlLCJkZXZpY2VQaXhlbFJhdGlvIjoxLCJ3bmRMb2NIcmVmIjoiaHR0cHM6Ly9kcml2ZWdvYWxzLTEubmV0L2FwaS92MS9weD94bWxpZD1OM2p4SE5aNXNmeWh2NVBGVGZwblJHRzZvVjl3RVBWUWE5YzBHa1ZsIiwiZGV2aWNlU3JlZW5TaXplIjoiMTAwMngxMjgwIiwiZGV2aWNlV2luZG93U2l6ZSI6IjkzOXgxMjgwIiwid25kMnNyY1JhdGlvTHdyMDYiOmZhbHNlLCJpc0JvdCI6Im9uIn0=
3.33.192.145204 No Content 0 B URL HTTP/2 drivegoals-1.net/api/v1/pxcheck?impId=N3jxHNZ5sfyhv5PFTfpnRGG6oV9wEPVQa9c0GkVl&minfo=eyJjb29raWVEaXNhYmxlZCI6ZmFsc2UsInVhIjoiTW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjAiLCJpZnJhbWUiOmZhbHNlLCJkZXZpY2VQaXhlbFJhdGlvIjoxLCJ3bmRMb2NIcmVmIjoiaHR0cHM6Ly9kcml2ZWdvYWxzLTEubmV0L2FwaS92MS9weD94bWxpZD1OM2p4SE5aNXNmeWh2NVBGVGZwblJHRzZvVjl3RVBWUWE5YzBHa1ZsIiwiZGV2aWNlU3JlZW5TaXplIjoiMTAwMngxMjgwIiwiZGV2aWNlV2luZG93U2l6ZSI6IjkzOXgxMjgwIiwid25kMnNyY1JhdGlvTHdyMDYiOmZhbHNlLCJpc0JvdCI6Im9uIn0=
IP 3.33.192.145:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v1/pxcheck?impId=N3jxHNZ5sfyhv5PFTfpnRGG6oV9wEPVQa9c0GkVl&minfo=eyJjb29raWVEaXNhYmxlZCI6ZmFsc2UsInVhIjoiTW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjAiLCJpZnJhbWUiOmZhbHNlLCJkZXZpY2VQaXhlbFJhdGlvIjoxLCJ3bmRMb2NIcmVmIjoiaHR0cHM6Ly9kcml2ZWdvYWxzLTEubmV0L2FwaS92MS9weD94bWxpZD1OM2p4SE5aNXNmeWh2NVBGVGZwblJHRzZvVjl3RVBWUWE5YzBHa1ZsIiwiZGV2aWNlU3JlZW5TaXplIjoiMTAwMngxMjgwIiwiZGV2aWNlV2luZG93U2l6ZSI6IjkzOXgxMjgwIiwid25kMnNyY1JhdGlvTHdyMDYiOmZhbHNlLCJpc0JvdCI6Im9uIn0= HTTP/1.1
Host: drivegoals-1.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drivegoals-1.net/api/v1/px?xmlid=N3jxHNZ5sfyhv5PFTfpnRGG6oV9wEPVQa9c0GkVl
Cookie: __ssds=2; __ssuzjsr2=a9be0cd8e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Mon, 28 Nov 2022 21:45:07 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
app.box.com/embed_widget/s/140ml5t7o6788w2gxvbo?theme=blue
74.112.186.144302 Found 0 B URL HTTP/2 app.box.com/embed_widget/s/140ml5t7o6788w2gxvbo?theme=blue
IP 74.112.186.144:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /embed_widget/s/140ml5t7o6788w2gxvbo?theme=blue HTTP/1.1
Host: app.box.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 28 Nov 2022 21:45:02 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
set-cookie: z=hufkbcvq8s76dft7f7dq98v76o; path=/; domain=.app.box.com; secure; HttpOnly
z=hufkbcvq8s76dft7f7dq98v76o; Path=/; Domain=.app.box.com; Secure; HttpOnly; SameSite=None
box_visitor_id=63852bdec20ce1.78308869; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.box.com; secure
bv=OPS-45718; expires=Mon, 05-Dec-2022 21:45:02 GMT; Max-Age=604800; path=/; domain=.app.box.com; secure
cn=19; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.app.box.com; secure
site_preference=desktop; path=/; domain=.box.com; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://app.box.com/embed/s/140ml5t7o6788w2gxvbo?view=list&sortColumn=date&sortDirection=ASC&showItemFeedActions=true&showParentPath=true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.box.com/embed_widget/s/6o22pf3joo23yn2hfpzl?theme=blue
74.112.186.144302 Found 0 B URL HTTP/2 app.box.com/embed_widget/s/6o22pf3joo23yn2hfpzl?theme=blue
IP 74.112.186.144:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /embed_widget/s/6o22pf3joo23yn2hfpzl?theme=blue HTTP/1.1
Host: app.box.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 28 Nov 2022 21:45:02 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
set-cookie: z=1n4re36d1pkkq3ngdrqec4mte7; path=/; domain=.app.box.com; secure; HttpOnly
z=1n4re36d1pkkq3ngdrqec4mte7; Path=/; Domain=.app.box.com; Secure; HttpOnly; SameSite=None
box_visitor_id=63852bdec024c1.73634320; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.box.com; secure
bv=OPS-45718; expires=Mon, 05-Dec-2022 21:45:02 GMT; Max-Age=604800; path=/; domain=.app.box.com; secure
cn=32; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.app.box.com; secure
site_preference=desktop; path=/; domain=.box.com; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://app.box.com/embed/s/6o22pf3joo23yn2hfpzl?view=list&sortColumn=date&sortDirection=ASC&showItemFeedActions=true&showParentPath=true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.box.com/embed_widget/s/xvth78blz2gjim4845kd?theme=blue
74.112.186.144302 Found 0 B URL HTTP/2 app.box.com/embed_widget/s/xvth78blz2gjim4845kd?theme=blue
IP 74.112.186.144:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /embed_widget/s/xvth78blz2gjim4845kd?theme=blue HTTP/1.1
Host: app.box.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 28 Nov 2022 21:45:02 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
set-cookie: z=il9lll3cbl2rt8ljhtl5ma36dp; path=/; domain=.app.box.com; secure; HttpOnly
z=il9lll3cbl2rt8ljhtl5ma36dp; Path=/; Domain=.app.box.com; Secure; HttpOnly; SameSite=None
box_visitor_id=63852bdec8ae44.59208040; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.box.com; secure
bv=OPS-45718; expires=Mon, 05-Dec-2022 21:45:02 GMT; Max-Age=604800; path=/; domain=.app.box.com; secure
cn=63; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.app.box.com; secure
site_preference=desktop; path=/; domain=.box.com; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://app.box.com/embed/s/xvth78blz2gjim4845kd?view=list&sortColumn=date&sortDirection=ASC&showItemFeedActions=true&showParentPath=true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.box.com/embed_widget/s/0jq4cc82udey35pgmyh5?theme=blue
74.112.186.144302 Found 0 B URL HTTP/2 app.box.com/embed_widget/s/0jq4cc82udey35pgmyh5?theme=blue
IP 74.112.186.144:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /embed_widget/s/0jq4cc82udey35pgmyh5?theme=blue HTTP/1.1
Host: app.box.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 28 Nov 2022 21:45:02 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
set-cookie: z=1fjhifo8vjdj2dk2uuag8l21bh; path=/; domain=.app.box.com; secure; HttpOnly
z=1fjhifo8vjdj2dk2uuag8l21bh; Path=/; Domain=.app.box.com; Secure; HttpOnly; SameSite=None
box_visitor_id=63852bdec57564.70679332; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.box.com; secure
bv=OPS-45718; expires=Mon, 05-Dec-2022 21:45:02 GMT; Max-Age=604800; path=/; domain=.app.box.com; secure
cn=26; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.app.box.com; secure
site_preference=desktop; path=/; domain=.box.com; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://app.box.com/embed/s/0jq4cc82udey35pgmyh5?view=list&sortColumn=date&sortDirection=ASC&showItemFeedActions=true&showParentPath=true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.box.com/embed_widget/s/v6s57bkiycqfgju124r1?theme=blue
74.112.186.144302 Found 0 B URL HTTP/2 app.box.com/embed_widget/s/v6s57bkiycqfgju124r1?theme=blue
IP 74.112.186.144:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /embed_widget/s/v6s57bkiycqfgju124r1?theme=blue HTTP/1.1
Host: app.box.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 28 Nov 2022 21:45:03 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
set-cookie: z=v7f0st0jj7u89bp8n7eudabbj2; path=/; domain=.app.box.com; secure; HttpOnly
z=v7f0st0jj7u89bp8n7eudabbj2; Path=/; Domain=.app.box.com; Secure; HttpOnly; SameSite=None
box_visitor_id=63852bdf084988.79661141; expires=Tue, 28-Nov-2023 21:45:03 GMT; Max-Age=31536000; path=/; domain=.box.com; secure
bv=OPS-45718; expires=Mon, 05-Dec-2022 21:45:03 GMT; Max-Age=604800; path=/; domain=.app.box.com; secure
cn=33; expires=Tue, 28-Nov-2023 21:45:03 GMT; Max-Age=31536000; path=/; domain=.app.box.com; secure
site_preference=desktop; path=/; domain=.box.com; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://app.box.com/embed/s/v6s57bkiycqfgju124r1?view=list&sortColumn=date&sortDirection=ASC&showItemFeedActions=true&showParentPath=true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.box.com/embed_widget/s/82jzuvlu1641vqgcqs01m6vr8jk404rc?theme=blue
74.112.186.144302 Found 0 B URL HTTP/2 app.box.com/embed_widget/s/82jzuvlu1641vqgcqs01m6vr8jk404rc?theme=blue
IP 74.112.186.144:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /embed_widget/s/82jzuvlu1641vqgcqs01m6vr8jk404rc?theme=blue HTTP/1.1
Host: app.box.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 28 Nov 2022 21:45:02 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
set-cookie: z=p8snvebn1p1hj0i2165doh6uvl; path=/; domain=.app.box.com; secure; HttpOnly
z=p8snvebn1p1hj0i2165doh6uvl; Path=/; Domain=.app.box.com; Secure; HttpOnly; SameSite=None
box_visitor_id=63852bdee5b074.56935016; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.box.com; secure
bv=OPS-45718; expires=Mon, 05-Dec-2022 21:45:02 GMT; Max-Age=604800; path=/; domain=.app.box.com; secure
cn=60; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.app.box.com; secure
site_preference=desktop; path=/; domain=.box.com; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://app.box.com/embed/s/82jzuvlu1641vqgcqs01m6vr8jk404rc?view=list&sortColumn=date&sortDirection=ASC&showItemFeedActions=true&showParentPath=true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.box.com/embed_widget/s/xyopjyis7qpsnykiw16t?theme=blue
74.112.186.144302 Found 0 B URL HTTP/2 app.box.com/embed_widget/s/xyopjyis7qpsnykiw16t?theme=blue
IP 74.112.186.144:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /embed_widget/s/xyopjyis7qpsnykiw16t?theme=blue HTTP/1.1
Host: app.box.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 28 Nov 2022 21:45:02 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
set-cookie: z=d45kd9dds0v9m51a4epl9ce4l5; path=/; domain=.app.box.com; secure; HttpOnly
z=d45kd9dds0v9m51a4epl9ce4l5; Path=/; Domain=.app.box.com; Secure; HttpOnly; SameSite=None
box_visitor_id=63852bdec1e185.49784462; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.box.com; secure
bv=OPS-45718; expires=Mon, 05-Dec-2022 21:45:02 GMT; Max-Age=604800; path=/; domain=.app.box.com; secure
cn=92; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.app.box.com; secure
site_preference=desktop; path=/; domain=.box.com; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://app.box.com/embed/s/xyopjyis7qpsnykiw16t?view=list&sortColumn=date&sortDirection=ASC&showItemFeedActions=true&showParentPath=true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.box.com/embed_widget/s/59zpeq6o12ucln6rre6g?theme=blue
74.112.186.144302 Found 0 B URL HTTP/2 app.box.com/embed_widget/s/59zpeq6o12ucln6rre6g?theme=blue
IP 74.112.186.144:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /embed_widget/s/59zpeq6o12ucln6rre6g?theme=blue HTTP/1.1
Host: app.box.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 28 Nov 2022 21:45:02 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
set-cookie: z=7r0q7gbmctrc28k3n56kacv853; path=/; domain=.app.box.com; secure; HttpOnly
z=7r0q7gbmctrc28k3n56kacv853; Path=/; Domain=.app.box.com; Secure; HttpOnly; SameSite=None
box_visitor_id=63852bdec3d358.66697119; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.box.com; secure
bv=OPS-45718; expires=Mon, 05-Dec-2022 21:45:02 GMT; Max-Age=604800; path=/; domain=.app.box.com; secure
cn=55; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.app.box.com; secure
site_preference=desktop; path=/; domain=.box.com; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://app.box.com/embed/s/59zpeq6o12ucln6rre6g?view=list&sortColumn=date&sortDirection=ASC&showItemFeedActions=true&showParentPath=true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.box.com/embed_widget/s/kzpn7wcllnlqwmkvjcax?theme=blue
74.112.186.144302 Found 0 B URL HTTP/2 app.box.com/embed_widget/s/kzpn7wcllnlqwmkvjcax?theme=blue
IP 74.112.186.144:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /embed_widget/s/kzpn7wcllnlqwmkvjcax?theme=blue HTTP/1.1
Host: app.box.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aylelpla.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 28 Nov 2022 21:45:02 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
set-cookie: z=7681afjvm7qjogcojf9mgn0iq0; path=/; domain=.app.box.com; secure; HttpOnly
z=7681afjvm7qjogcojf9mgn0iq0; Path=/; Domain=.app.box.com; Secure; HttpOnly; SameSite=None
box_visitor_id=63852bdec52984.36246346; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.box.com; secure
bv=OPS-45718; expires=Mon, 05-Dec-2022 21:45:02 GMT; Max-Age=604800; path=/; domain=.app.box.com; secure
cn=53; expires=Tue, 28-Nov-2023 21:45:02 GMT; Max-Age=31536000; path=/; domain=.app.box.com; secure
site_preference=desktop; path=/; domain=.box.com; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://app.box.com/embed/s/kzpn7wcllnlqwmkvjcax?view=list&sortColumn=date&sortDirection=ASC&showItemFeedActions=true&showParentPath=true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2