arbitrary-scribbles.blogspot.com/2020/09/download-ebook-cavalletti-for-dressage.html
48 kB URL arbitrary-scribbles.blogspot.com/2020/09/download-ebook-cavalletti-for-dressage.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6283), with CRLF, LF line terminators
Hash ff61f51a062a8cbf771fed82d620e08c
f9872f9ff0cb71fc0abcd6513170e142fe5e1e1e
069c33c4dc4d7a370f12def44e56ccdb8b437577243bf109fe506dae9f0ce231
GET /2020/09/download-ebook-cavalletti-for-dressage.html HTTP/1.1
Host: arbitrary-scribbles.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Tue, 05 Dec 2023 17:51:48 GMT
date: Tue, 05 Dec 2023 17:51:48 GMT
cache-control: private, max-age=0
last-modified: Tue, 05 Dec 2023 10:37:33 GMT
etag: W/"dc130acbbdec2d1038e7827b207ab62f411e2be2a0ca9e40242b5aae0c23c1c8"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 47821
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
arbitrary-scribbles.blogspot.com/js/cookienotice.js
2.0 kB URL arbitrary-scribbles.blogspot.com/js/cookienotice.js
IP
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
GET /js/cookienotice.js HTTP/1.1
Host: arbitrary-scribbles.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/2020/09/download-ebook-cavalletti-for-dressage.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Tue, 05 Dec 2023 17:51:49 GMT
expires: Tue, 12 Dec 2023 17:51:49 GMT
cache-control: public, max-age=604800
last-modified: Tue, 05 Dec 2023 15:59:13 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/js/platform.js
22 kB URL apis.google.com/js/platform.js
IP
File type ASCII text, with very long lines (2664)
Hash fd67324a3d81895bdf76b073089663b1
5abb1b0a36c645085e31830e6647faa790ad4e91
8eaa06f95fa0ac44c2c186f200874f2f3ebc3aaa92412f0d0c096f517d3581d1
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 21930
date: Tue, 05 Dec 2023 17:51:49 GMT
expires: Tue, 05 Dec 2023 17:51:49 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "bccfddc1dce4fb76"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=DWsKnDML16TBhKADyNZ5p6ZeXZdoDKUfGW2NB22a_ZpKtpYVoBg9Mfh4wk7HOC1Yr0MRlYCcVhCZK_Vp6dgp5VZybL-0KLQWbK8wrq9H6Ncpcsankn4KHq21VCv7oc03-GZUwQZfjh8AamlBfw-DPS5K8G9AoD7TOhLTIK7EFCk; expires=Wed, 05-Jun-2024 17:51:49 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-ad-0.1.js
23 kB URL cdn.ampproject.org/v0/amp-ad-0.1.js
IP
File type ASCII text, with very long lines (65534)
Hash 91e97606aa83cfa8700b2eff9fe9de24
74d695ee570cba745e2afce06a2d3659149cf523
e3bb5c4c7e8374c09a71c311ceb84321f80ad0d6b811873af0e4dedf3e7c07e7
GET /v0/amp-ad-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 23129
date: Tue, 05 Dec 2023 17:51:49 GMT
expires: Tue, 05 Dec 2023 17:51:49 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "f4c844bd31ac7613"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-form-0.1.js
15 kB URL cdn.ampproject.org/v0/amp-form-0.1.js
IP
File type Unicode text, UTF-8 text, with very long lines (50557)
Hash 336fdda692aedfab58bc771627c63a06
6553d482a6a1048a76be3b078a81a060611da587
2baf3b308e2c655d9c31a96a801c4a8c5fe7571b73236f5e276c97db8e4dbbcd
GET /v0/amp-form-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 14969
date: Tue, 05 Dec 2023 17:51:49 GMT
expires: Tue, 05 Dec 2023 17:51:49 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "9861f05f46b65040"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/v0.js
73 kB IP
File type Unicode text, UTF-8 text, with very long lines (64684)
Hash df3b844c80e523b9b84badc2e8efeec1
242fa02a53432806f0de571b36e0c81c9836385e
0d686f2ab1157df64803644aceb025dda3e21438ee6167951feb732b82c163c5
GET /v0.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 73067
date: Tue, 05 Dec 2023 17:51:49 GMT
expires: Tue, 05 Dec 2023 17:51:49 GMT
cache-control: private, max-age=3000, stale-while-revalidate=1206600
etag: "1283125788d1ffce"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-social-share-0.1.js
4.7 kB URL cdn.ampproject.org/v0/amp-social-share-0.1.js
IP
File type Unicode text, UTF-8 text, with very long lines (13909)
Hash 2d1bf829b61cb7b02259a167f8d33421
b12ca7509b6bdeb87512ff061ac6abae163d1754
704717b850344b943d6d4848ea23561feb990e21449a0a193e255c170ed2a201
GET /v0/amp-social-share-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 4740
date: Tue, 05 Dec 2023 17:51:49 GMT
expires: Tue, 05 Dec 2023 17:51:49 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "0657f7a786b94a3e"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-iframe-0.1.js
8.9 kB URL cdn.ampproject.org/v0/amp-iframe-0.1.js
IP
File type ASCII text, with very long lines (25607)
Hash 22cbf532a86bfeb9938430233aeac9f2
7771513b95d2ae699630fff0b7e78668d5a431b7
6bebb5a3a14000a9c601f0c5b84508fba2e35d68ed495f8bc83edd5336c40735
GET /v0/amp-iframe-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 8935
date: Tue, 05 Dec 2023 17:51:49 GMT
expires: Tue, 05 Dec 2023 17:51:49 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "1fde9125c05045bb"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-analytics-0.1.js
32 kB URL cdn.ampproject.org/v0/amp-analytics-0.1.js
IP
File type ASCII text, with very long lines (65534)
Hash fc7097894aa0e2130e1979ef907129ba
d171ba2dd1aafc66fc89ca8b9444d3ff13ebba10
fcc44c1f86ee04baf5c9f6282f887200d328a419667d1d1e5cd3a3423a057e6e
GET /v0/amp-analytics-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 32240
date: Tue, 05 Dec 2023 17:51:49 GMT
expires: Tue, 05 Dec 2023 17:51:49 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "6c561bf69fb7c6ef"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/3754116945-widgets.js
59 kB URL www.blogger.com/static/v1/widgets/3754116945-widgets.js
IP
File type ASCII text, with very long lines (2258)
Hash 0f3580b0033bbd151cdb647634be7404
4d8508ef28b0e50fa8c28ccaeb1f2a6855a75bdc
38d944d88c98612f76ed693afb143f1c032ca27ba56ec46a6714ab3dc511f974
GET /static/v1/widgets/3754116945-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 59286
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 01 Dec 2023 02:02:59 GMT
expires: Sat, 30 Nov 2024 02:02:59 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Nov 2023 23:28:54 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 402530
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
nulltag.com/game/otakly.js
707 B URL nulltag.com/game/otakly.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /game/otakly.js HTTP/1.1
Host: nulltag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 707
date: Tue, 05 Dec 2023 17:51:49 GMT
server: LiteSpeed
location: https://www.nulltag.com/game/otakly.js
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
www.nulltag.com/game/delabooko.js
186 B URL www.nulltag.com/game/delabooko.js
IP
File type ASCII text, with CRLF line terminators
Hash 04e950e51779e792a3be3cd0242f473e
d9c2525ff534d9c1182ccd9c911d731acf0ee92b
234f9275dcc949aaa29bbe08ae5240712a66c0544ef73f2cd2a793486e11b592
GET /game/delabooko.js HTTP/1.1
Host: www.nulltag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 12 Dec 2023 17:51:49 GMT
content-type: application/javascript
last-modified: Thu, 01 Jul 2021 02:47:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 186
date: Tue, 05 Dec 2023 17:51:49 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
blogspot.mm.bing.net/th?q=Cavalletti:%20For%20Dressage%20and%20Jumping
47 kB URL blogspot.mm.bing.net/th?q=Cavalletti:%20For%20Dressage%20and%20Jumping
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x315, components 3\012- data
Hash 22899d613849f3a11e7c3953dc6d8061
da0e1434b7d5932d3a4138c09acbc78cfb9efde7
978f7dd4caf62ed57d460c7d427696c1c5ac80a4d35679aad5c6bc4d221a4592
GET /th?q=Cavalletti:%20For%20Dressage%20and%20Jumping HTTP/1.1
Host: blogspot.mm.bing.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 46843
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 11E6DE5242A640BB8437E0B2F169D381 Ref B: OSL30EDGE0111 Ref C: 2023-12-05T17:51:49Z
date: Tue, 05 Dec 2023 17:51:49 GMT
X-Firefox-Spdy: h2
1.bp.blogspot.com/-FxxoZkxtk_U/WKAvV2Gd6iI/AAAAAAAACd0/UTrLC-1x23k1E0oqRLErM2XliW2XDiBlQCK4B/s1600/dif.jpg
7.2 kB URL 1.bp.blogspot.com/-FxxoZkxtk_U/WKAvV2Gd6iI/AAAAAAAACd0/UTrLC-1x23k1E0oqRLErM2XliW2XDiBlQCK4B/s1600/dif.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 728x372, components 3\012- data
Hash 662c7cacbc730116ff1e997b43263d7c
85f1287aecfcf6d69b6970a73e409e46506a0f66
a84d5df3cfc90606cce657129d51d6c3c9c4630c622b7413a691be498af65bb0
GET /-FxxoZkxtk_U/WKAvV2Gd6iI/AAAAAAAACd0/UTrLC-1x23k1E0oqRLErM2XliW2XDiBlQCK4B/s1600/dif.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v9de"
expires: Wed, 06 Dec 2023 17:51:49 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="dif.jpg"
x-content-type-options: nosniff
date: Tue, 05 Dec 2023 17:51:49 GMT
server: fife
content-length: 7170
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/-AEFnhyvGPs4/XnobVYZxG6I/AAAAAAAAAFI/4foB6B3T81gqdRmpEK8TanUXOJB4GH8pACLcBGAsYHQ/h95/book.png
20 kB URL lh3.googleusercontent.com/-AEFnhyvGPs4/XnobVYZxG6I/AAAAAAAAAFI/4foB6B3T81gqdRmpEK8TanUXOJB4GH8pACLcBGAsYHQ/h95/book.png
IP
File type PNG image data, 358 x 95, 8-bit/color RGBA, non-interlaced\012- data
Hash 8c1d3f1438a93bacc791e8321e1d63cf
1710cb20bb5ec0dcf50ebea0f683b2b0f3522fa8
e9bd218b65dc4889d696639258b71a6757e48ff6e4549e5fff54e5b6b4df6c05
GET /-AEFnhyvGPs4/XnobVYZxG6I/AAAAAAAAAFI/4foB6B3T81gqdRmpEK8TanUXOJB4GH8pACLcBGAsYHQ/h95/book.png HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="book.png"
x-content-type-options: nosniff
server: fife
content-length: 20228
x-xss-protection: 0
date: Tue, 05 Dec 2023 14:53:58 GMT
expires: Wed, 06 Dec 2023 14:53:58 GMT
cache-control: public, max-age=86400, no-transform
etag: "v53"
content-type: image/png
vary: Origin
age: 10672
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.nulltag.com/game/otakly.js
708 B URL www.nulltag.com/game/otakly.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 2382378378c002d88b9a507c712c3349
2e894db3808b554abadc8b144338ad9e2ea937ba
37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa
GET /game/otakly.js HTTP/1.1
Host: www.nulltag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://arbitrary-scribbles.blogspot.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 708
date: Tue, 05 Dec 2023 17:51:50 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v6/pxiEyp8kv8JHgFVrJJfecg.woff2
8.0 kB URL fonts.gstatic.com/s/poppins/v6/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7968, version 1.0\012- data
Hash 1a280523d375e9358d5229df34fc8e94
eec7a97bc1319b123a7addb438fa8a231469b511
fab32ccef85408b763c899ad7c0b910c96c76dc9ed7158ce304fdcd3c0bf8388
GET /s/poppins/v6/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbitrary-scribbles.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7968
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 01:18:59 GMT
expires: Fri, 29 Nov 2024 01:18:59 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Feb 2019 22:29:05 GMT
content-type: font/woff2
age: 491572
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v6/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
7.8 kB URL fonts.gstatic.com/s/poppins/v6/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7836, version 1.0\012- data
Hash aa4405ed937295296cf8510f437628e0
3b83f2e166868a65d6000c86a34dfbeb4cb1482b
07d2b7c2df967b7820b8ce99be3f7db1a1db5a82797826cd9a06e6489e89f71a
GET /s/poppins/v6/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbitrary-scribbles.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7836
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 05:15:36 GMT
expires: Wed, 04 Dec 2024 05:15:36 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Feb 2019 22:28:13 GMT
content-type: font/woff2
age: 45375
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v6/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
7.9 kB URL fonts.gstatic.com/s/poppins/v6/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7924, version 1.0\012- data
Hash e535f7856b24153e0f3146e8f90a45c5
e5da5f96d38b08cc6ed2973735b5a9b9af066458
56a522e79770e488da6015ed10f8c2bdafbcd87a7c6d443f7a293579bd0ef58d
GET /s/poppins/v6/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbitrary-scribbles.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 23:16:55 GMT
expires: Tue, 03 Dec 2024 23:16:55 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Feb 2019 22:26:39 GMT
content-type: font/woff2
age: 66896
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v6/pxiEyp8kv8JHgFVrJJfecg.woff2
8.0 kB URL fonts.gstatic.com/s/poppins/v6/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7968, version 1.0\012- data
Hash 1a280523d375e9358d5229df34fc8e94
eec7a97bc1319b123a7addb438fa8a231469b511
fab32ccef85408b763c899ad7c0b910c96c76dc9ed7158ce304fdcd3c0bf8388
GET /s/poppins/v6/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbitrary-scribbles.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7968
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 01:18:59 GMT
expires: Fri, 29 Nov 2024 01:18:59 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Feb 2019 22:29:05 GMT
content-type: font/woff2
age: 491572
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v6/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
7.8 kB URL fonts.gstatic.com/s/poppins/v6/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7836, version 1.0\012- data
Hash aa4405ed937295296cf8510f437628e0
3b83f2e166868a65d6000c86a34dfbeb4cb1482b
07d2b7c2df967b7820b8ce99be3f7db1a1db5a82797826cd9a06e6489e89f71a
GET /s/poppins/v6/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbitrary-scribbles.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7836
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 05:15:36 GMT
expires: Wed, 04 Dec 2024 05:15:36 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Feb 2019 22:28:13 GMT
content-type: font/woff2
age: 45375
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v6/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
7.9 kB URL fonts.gstatic.com/s/poppins/v6/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7924, version 1.0\012- data
Hash e535f7856b24153e0f3146e8f90a45c5
e5da5f96d38b08cc6ed2973735b5a9b9af066458
56a522e79770e488da6015ed10f8c2bdafbcd87a7c6d443f7a293579bd0ef58d
GET /s/poppins/v6/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://arbitrary-scribbles.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 23:16:55 GMT
expires: Tue, 03 Dec 2024 23:16:55 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Feb 2019 22:26:39 GMT
content-type: font/woff2
age: 66896
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
arbitrary-scribbles.blogspot.com/favicon.ico
412 B URL arbitrary-scribbles.blogspot.com/favicon.ico
IP
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f
GET /favicon.ico HTTP/1.1
Host: arbitrary-scribbles.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://arbitrary-scribbles.blogspot.com/2020/09/download-ebook-cavalletti-for-dressage.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Tue, 05 Dec 2023 17:51:51 GMT
date: Tue, 05 Dec 2023 17:51:51 GMT
cache-control: private, max-age=86400
last-modified: Tue, 05 Dec 2023 10:37:33 GMT
etag: W/"dc130acbbdec2d1038e7827b207ab62f411e2be2a0ca9e40242b5aae0c23c1c8"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
dodeem.xyz/Cavalletti:%20For%20Dressage%20and%20Jumping
516 B URL dodeem.xyz/Cavalletti:%20For%20Dressage%20and%20Jumping
IP
ASN #46475 LIMESTONENETWORKS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (516), with no line terminators
Hash 414b2aa38970cb64ea16a1e3270fc760
7d73e74b74f93d56e66bf7ad0acd5c20baa44d34
43035d21ecb55402ee6c3d8a02c8d8d513af004a27a52ca797fde707877ebfd6
GET /Cavalletti:%20For%20Dressage%20and%20Jumping HTTP/1.1
Host: dodeem.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
content-length: 516
content-type: text/html; charset=utf-8
date: Tue, 05 Dec 2023 17:51:51 GMT
server: Cowboy
set-cookie: sid=f89103bc-9396-11ee-98b2-e08e7902bac2; path=/; domain=.dodeem.xyz; expires=Sun, 23 Dec 2091 21:05:58 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
dodeem.xyz/favicon.ico
9 B IP
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /favicon.ico HTTP/1.1
Host: dodeem.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dodeem.xyz/Cavalletti:%20For%20Dressage%20and%20Jumping
Cookie: sid=f89103bc-9396-11ee-98b2-e08e7902bac2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: max-age=0, private, must-revalidate
content-length: 9
date: Tue, 05 Dec 2023 17:51:52 GMT
server: Cowboy
X-Firefox-Spdy: h2
dodeem.xyz/Cavalletti:%20For%20Dressage%20and%20Jumping?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTcwMTgwNTkxMSwiaWF0IjoxNzAxNzk4NzExLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydWYwMXFicTZtM3ViZDZ0NWsxa3Z0OGciLCJuYmYiOjE3MDE3OTg3MTEsInRzIjoxNzAxNzk4NzExOTcwMjk0fQ.uEjE28RYEQqVT4TUr1yAF_LbHbEd0mquAU-bhxLZGHU&sid=f89103bc-9396-11ee-98b2-e08e7902bac2
302 Found 11 B URL User Request GET HTTP/2 dodeem.xyz/Cavalletti:%20For%20Dressage%20and%20Jumping?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTcwMTgwNTkxMSwiaWF0IjoxNzAxNzk4NzExLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydWYwMXFicTZtM3ViZDZ0NWsxa3Z0OGciLCJuYmYiOjE3MDE3OTg3MTEsInRzIjoxNzAxNzk4NzExOTcwMjk0fQ.uEjE28RYEQqVT4TUr1yAF_LbHbEd0mquAU-bhxLZGHU&sid=f89103bc-9396-11ee-98b2-e08e7902bac2
IP
ASN #46475 LIMESTONENETWORKS
Certificate IssuerLet's Encrypt
Subjectdodeem.xyz
Fingerprint93:CB:94:7D:6E:7C:BB:70:21:25:2B:79:EA:DB:7F:94:F6:7F:45:EA
ValidityWed, 29 Nov 2023 06:51:15 GMT - Tue, 27 Feb 2024 06:51:14 GMT
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /Cavalletti:%20For%20Dressage%20and%20Jumping?ch=1&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTcwMTgwNTkxMSwiaWF0IjoxNzAxNzk4NzExLCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydWYwMXFicTZtM3ViZDZ0NWsxa3Z0OGciLCJuYmYiOjE3MDE3OTg3MTEsInRzIjoxNzAxNzk4NzExOTcwMjk0fQ.uEjE28RYEQqVT4TUr1yAF_LbHbEd0mquAU-bhxLZGHU&sid=f89103bc-9396-11ee-98b2-e08e7902bac2 HTTP/1.1
Host: dodeem.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dodeem.xyz/Cavalletti:%20For%20Dressage%20and%20Jumping
Cookie: sid=f89103bc-9396-11ee-98b2-e08e7902bac2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 11
date: Tue, 05 Dec 2023 17:51:52 GMT
location: http://ww1.dodeem.xyz/?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2
server: Cowboy
set-cookie: sid=f89103bc-9396-11ee-98b2-e08e7902bac2; path=/; domain=.dodeem.xyz; expires=Sun, 23 Dec 2091 21:05:59 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
ww1.dodeem.xyz/?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2
200 OK 7.3 kB URL User Request GET HTTP/1.1 ww1.dodeem.xyz/?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10263)
Hash 71e856feffd34f281208e7b06525201b
ffc80efd283a03b17a0e36d9808acccb4b69c6dd
19fce4c6c82c585117563e582502cb9eafdd0e7c56241d05150f85059409633d
GET /?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2 HTTP/1.1
Host: ww1.dodeem.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Tue, 05 Dec 2023 17:51:57 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.17
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_GnzztY9O4mHUVI84AnnLApTuaA2dDwHrUAon5KikAfts8xZSAjn+xSAVqrffxQWmIvgMYNrMze/67RG8x6Km9Q==
last-modified: Tue, 05 Dec 2023 17:51:56 GMT
x-cache-miss-from: parking-698fb476bf-mbx66
server: NginX
content-encoding: gzip
img.sedoparking.com/templates/bg/arrows.png
200 OK 13 kB URL GET HTTP/1.1 img.sedoparking.com/templates/bg/arrows.png
IP
Requested by http://ww1.dodeem.xyz/?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2
File type PNG image data, 426 x 475, 8-bit/color RGBA, non-interlaced\012- data
Hash 6dc0bad9aa452ff871b282dabd47131e
01411e6726e033240caa3926141a6adbc18a2d73
3059fbd6cd3550047483dca4071c93e5cf4cc79ce8bafc4388166fbc5279644b
GET /templates/bg/arrows.png HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww1.dodeem.xyz/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 17:51:57 GMT
Content-Type: image/png
Content-Length: 12642
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=604800
Expires: Tue, 12 Dec 2023 17:51:57 GMT
X-CFHash: "6dc0bad9aa452ff871b282dabd47131e"
X-CFF: B
Last-Modified: Mon, 11 Oct 2021 05:39:44 GMT
X-CF3: H
CF4Age: 252010
x-cf-tsc: 1701794698
CF4ttl: 31283990.000
X-CF2: H
Server: CFS 1124
X-CF-ReqID: f4ace4a4555238539cf1bf10133314ae
X-CF1: 11696:fA.arn1:cf:cacheN.arn1-01:H
Accept-Ranges: bytes
www.google.com/adsense/domains/caf.js
200 OK 54 kB URL GET HTTP/1.1 www.google.com/adsense/domains/caf.js
IP
Requested by http://ww1.dodeem.xyz/?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2
File type ASCII text, with very long lines (1888)
Hash 0808101bcc6e1191c5b6073e31bcb441
325317ef7ae2592656dcabfb8462b40f3e3ebc08
39359651a0d752d1e777094fd9deed5e4c5993ff6b2aebfd855761f41369b13e
GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww1.dodeem.xyz/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/javascript; charset=UTF-8
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui"
Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
Date: Tue, 05 Dec 2023 17:51:57 GMT
Expires: Tue, 05 Dec 2023 17:51:57 GMT
Cache-Control: private, max-age=3600
ETag: "12169742205723775177"
X-Content-Type-Options: nosniff
Link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 0
ww1.dodeem.xyz/search/tsc.php?200=NDExMTY0MzI2&21=OTEuOTAuNDIuMTU0&681=MTcwMTc5ODcxNjU5OWFiYmE1ZTdhZDE0YzFiNWVkMDMzOTk3MmUxYWUy&crc=f5dbbbc3dab799d6adad485a2178112436963198&cv=1
200 OK 0 B URL GET HTTP/1.1 ww1.dodeem.xyz/search/tsc.php?200=NDExMTY0MzI2&21=OTEuOTAuNDIuMTU0&681=MTcwMTc5ODcxNjU5OWFiYmE1ZTdhZDE0YzFiNWVkMDMzOTk3MmUxYWUy&crc=f5dbbbc3dab799d6adad485a2178112436963198&cv=1
IP
Requested by http://ww1.dodeem.xyz/?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /search/tsc.php?200=NDExMTY0MzI2&21=OTEuOTAuNDIuMTU0&681=MTcwMTc5ODcxNjU5OWFiYmE1ZTdhZDE0YzFiNWVkMDMzOTk3MmUxYWUy&crc=f5dbbbc3dab799d6adad485a2178112436963198&cv=1 HTTP/1.1
Host: ww1.dodeem.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww1.dodeem.xyz/?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Tue, 05 Dec 2023 17:51:57 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.17
x-cache-miss-from: parking-698fb476bf-lvhcl
server: NginX
img.sedoparking.com/templates/logos/sedo_logo.png
200 OK 15 kB URL GET HTTP/1.1 img.sedoparking.com/templates/logos/sedo_logo.png
IP
Requested by http://ww1.dodeem.xyz/?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash def00c11b1596db4efee6a9fbe64fc27
bd298981e6d8d7e4ffa18abcf687041f4246672d
95c427fa3143b1896faf42a6406686ce7602cb39052081bb32d12b51c9e047e4
GET /templates/logos/sedo_logo.png HTTP/1.1
Host: img.sedoparking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww1.dodeem.xyz/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 17:51:57 GMT
Content-Type: image/png
Content-Length: 15086
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=604800
Expires: Tue, 12 Dec 2023 17:51:57 GMT
X-CFHash: "def00c11b1596db4efee6a9fbe64fc27"
X-CFF: B
Last-Modified: Mon, 11 Jan 2021 07:44:34 GMT
X-CF3: H
CF4Age: 2436
x-cf-tsc: 1701545420
CF4ttl: 31533564.000
X-CF2: M
Server: CFS 1124
X-CF-ReqID: c11dded061f1f4b48b09301c4db4495c
X-CF1: 11696:fA.arn1:cf:cacheN.arn1-01:H
Accept-Ranges: bytes
www.adsensecustomsearchads.com/afs/ads/i/iframe.html
200 OK 728 B URL GET HTTP/2 www.adsensecustomsearchads.com/afs/ads/i/iframe.html
IP
Requested by http://ww1.dodeem.xyz/?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1559)
Hash 5a1c84deb93b04fa89a44aff37cdd3bb
3f359bd27855d51be221c8c847a2e3c256b23870
95b628101e39feeed346406eddf4f90f91f298e3cf72a10379fec83cc9d9cc8a
GET /afs/ads/i/iframe.html HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww1.dodeem.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-5iDIVtk6_-gyDvXbb2Wwlw' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui; base-uri 'none'
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
content-length: 728
date: Tue, 05 Dec 2023 17:51:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Tue, 14 Nov 2023 07:00:00 GMT
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=9618345430&channel=cl-047%2Cexp-0051%2Cauxa-control-1%2C187408&client=dp-sedo92_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww1.dodeem.xyz%2Fcaf%2F%3Fses%3DY3JlPTE3MDE3OTg3MTcmdGNpZD13dzEuZG9kZWVtLnh5ejY1NmY2MzNjZGI0MDY4LjM2MjQxMjMzJnRhc2s9c2VhcmNoJmRvbWFpbj1kb2RlZW0ueHl6JmFfaWQ9MyZzZXNzaW9uPURtQ0d6T2oySjQ5VFRfRUpBWFdk&type=3&uiopt=false&swp=as-drid-2445610912134376&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301383&format=r3%7Cs&nocache=9041701798723194&num=0&output=afd_ads&domain_name=ww1.dodeem.xyz&v=3&bsl=8&pac=0&u_his=4&u_tz=0&dt=1701798723206&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=999&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fww1.dodeem.xyz%2F%3Fsub1%3Df89103bc-9396-11ee-98b2-e08e7902bac2
200 OK 2.9 kB URL GET HTTP/2 www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=9618345430&channel=cl-047%2Cexp-0051%2Cauxa-control-1%2C187408&client=dp-sedo92_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww1.dodeem.xyz%2Fcaf%2F%3Fses%3DY3JlPTE3MDE3OTg3MTcmdGNpZD13dzEuZG9kZWVtLnh5ejY1NmY2MzNjZGI0MDY4LjM2MjQxMjMzJnRhc2s9c2VhcmNoJmRvbWFpbj1kb2RlZW0ueHl6JmFfaWQ9MyZzZXNzaW9uPURtQ0d6T2oySjQ5VFRfRUpBWFdk&type=3&uiopt=false&swp=as-drid-2445610912134376&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301383&format=r3%7Cs&nocache=9041701798723194&num=0&output=afd_ads&domain_name=ww1.dodeem.xyz&v=3&bsl=8&pac=0&u_his=4&u_tz=0&dt=1701798723206&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=999&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fww1.dodeem.xyz%2F%3Fsub1%3Df89103bc-9396-11ee-98b2-e08e7902bac2
IP
Requested by http://ww1.dodeem.xyz/?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13611)
Hash c01a1b50e3ba568783e50e7ed14aaa46
27df588dc95538d1a90a4adf644e9a7ffbd2eeec
ed8fa5f3fac108c01892eee66c3163e529c94ba7f97bdabff409db37430f88ec
GET /afs/ads?adsafe=low&adtest=off&psid=9618345430&channel=cl-047%2Cexp-0051%2Cauxa-control-1%2C187408&client=dp-sedo92_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww1.dodeem.xyz%2Fcaf%2F%3Fses%3DY3JlPTE3MDE3OTg3MTcmdGNpZD13dzEuZG9kZWVtLnh5ejY1NmY2MzNjZGI0MDY4LjM2MjQxMjMzJnRhc2s9c2VhcmNoJmRvbWFpbj1kb2RlZW0ueHl6JmFfaWQ9MyZzZXNzaW9uPURtQ0d6T2oySjQ5VFRfRUpBWFdk&type=3&uiopt=false&swp=as-drid-2445610912134376&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301383&format=r3%7Cs&nocache=9041701798723194&num=0&output=afd_ads&domain_name=ww1.dodeem.xyz&v=3&bsl=8&pac=0&u_his=4&u_tz=0&dt=1701798723206&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=999&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fww1.dodeem.xyz%2F%3Fsub1%3Df89103bc-9396-11ee-98b2-e08e7902bac2 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww1.dodeem.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Tue, 05 Dec 2023 17:51:57 GMT
expires: Tue, 05 Dec 2023 17:51:57 GMT
cache-control: private, max-age=3600
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-Kxqx9jgcd-MFXUdbXZ_5WA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2922
x-xss-protection: 0
set-cookie: CONSENT=PENDING+209; expires=Thu, 04-Dec-2025 17:51:57 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.adsensecustomsearchads.com/adsense/domains/caf.js
200 OK 55 kB URL GET HTTP/3 www.adsensecustomsearchads.com/adsense/domains/caf.js
IP
Requested by https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=9618345430&channel=cl-047%2Cexp-0051%2Cauxa-control-1%2C187408&client=dp-sedo92_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww1.dodeem.xyz%2Fcaf%2F%3Fses%3DY3JlPTE3MDE3OTg3MTcmdGNpZD13dzEuZG9kZWVtLnh5ejY1NmY2MzNjZGI0MDY4LjM2MjQxMjMzJnRhc2s9c2VhcmNoJmRvbWFpbj1kb2RlZW0ueHl6JmFfaWQ9MyZzZXNzaW9uPURtQ0d6T2oySjQ5VFRfRUpBWFdk&type=3&uiopt=false&swp=as-drid-2445610912134376&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301383&format=r3%7Cs&nocache=9041701798723194&num=0&output=afd_ads&domain_name=ww1.dodeem.xyz&v=3&bsl=8&pac=0&u_his=4&u_tz=0&dt=1701798723206&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=999&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fww1.dodeem.xyz%2F%3Fsub1%3Df89103bc-9396-11ee-98b2-e08e7902bac2
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
File type gzip compressed data, max compression\012- data
Hash ea35154ed0a10a6d87f7f27ac7b0621c
61c834982c3d5d2da80ddaf7aba194221ce2fb84
e0e59878cf2eb033fa1158bf0516b104b523d279b781acb4e2e1f1b12b542882
GET /adsense/domains/caf.js HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Tue, 05 Dec 2023 17:51:57 GMT
expires: Tue, 05 Dec 2023 17:51:57 GMT
cache-control: private, max-age=3600
etag: "17662540289770248759"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
200 OK 174 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
IP
Requested by https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=9618345430&channel=cl-047%2Cexp-0051%2Cauxa-control-1%2C187408&client=dp-sedo92_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww1.dodeem.xyz%2Fcaf%2F%3Fses%3DY3JlPTE3MDE3OTg3MTcmdGNpZD13dzEuZG9kZWVtLnh5ejY1NmY2MzNjZGI0MDY4LjM2MjQxMjMzJnRhc2s9c2VhcmNoJmRvbWFpbj1kb2RlZW0ueHl6JmFfaWQ9MyZzZXNzaW9uPURtQ0d6T2oySjQ5VFRfRUpBWFdk&type=3&uiopt=false&swp=as-drid-2445610912134376&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301383&format=r3%7Cs&nocache=9041701798723194&num=0&output=afd_ads&domain_name=ww1.dodeem.xyz&v=3&bsl=8&pac=0&u_his=4&u_tz=0&dt=1701798723206&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=999&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fww1.dodeem.xyz%2F%3Fsub1%3Df89103bc-9396-11ee-98b2-e08e7902bac2
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 11b3089d616633ca6b73b57aa877eeb4
07632f63e06b30d9b63c97177d3a8122629bda9b
809fb4619d2a2f1a85dbda8cc69a7f1659215212d708a098d62150eee57070c1
GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 01:15:24 GMT
expires: Wed, 06 Dec 2023 00:15:24 GMT
cache-control: public, max-age=82800
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 59793
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff
200 OK 270 B URL GET HTTP/2 afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff
IP
Requested by https://www.adsensecustomsearchads.com/afs/ads?adsafe=low&adtest=off&psid=9618345430&channel=cl-047%2Cexp-0051%2Cauxa-control-1%2C187408&client=dp-sedo92_3ph&r=m&hl=no&rpbu=http%3A%2F%2Fww1.dodeem.xyz%2Fcaf%2F%3Fses%3DY3JlPTE3MDE3OTg3MTcmdGNpZD13dzEuZG9kZWVtLnh5ejY1NmY2MzNjZGI0MDY4LjM2MjQxMjMzJnRhc2s9c2VhcmNoJmRvbWFpbj1kb2RlZW0ueHl6JmFfaWQ9MyZzZXNzaW9uPURtQ0d6T2oySjQ5VFRfRUpBWFdk&type=3&uiopt=false&swp=as-drid-2445610912134376&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301383&format=r3%7Cs&nocache=9041701798723194&num=0&output=afd_ads&domain_name=ww1.dodeem.xyz&v=3&bsl=8&pac=0&u_his=4&u_tz=0&dt=1701798723206&u_w=1280&u_h=1024&biw=1280&bih=1024&psw=1280&psh=999&frm=0&cl=579967862&uio=--&cont=rb-default&jsid=caf&jsv=579967862&rurl=http%3A%2F%2Fww1.dodeem.xyz%2F%3Fsub1%3Df89103bc-9396-11ee-98b2-e08e7902bac2
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390)
Hash 8959ddcd9712196961d93f58064ed655
62ab1e38e7e9fbf58a04381b76c2d96a9c829f24
17c7a89bf169c2ee400e31b042cea68513f06b9cd7d1e8990dbec800f0d771c7
GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.adsensecustomsearchads.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 270
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 01:49:04 GMT
expires: Wed, 06 Dec 2023 00:49:04 GMT
cache-control: public, max-age=82800
age: 57773
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo92_3ph&output=uds_ads_only&zx=stavwbhom20n&aqid=PWNvZeipGZy1xdwPy66P6AI&psid=9618345430&pbt=bs&adbx=406.66668701171875&adby=134.64999389648438&adbh=604&adbw=467&adbah=226%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo92_3ph&errv=579967862&csala=20%7C0%7C239%7C65%7C39&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo92_3ph&output=uds_ads_only&zx=stavwbhom20n&aqid=PWNvZeipGZy1xdwPy66P6AI&psid=9618345430&pbt=bs&adbx=406.66668701171875&adby=134.64999389648438&adbh=604&adbw=467&adbah=226%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo92_3ph&errv=579967862&csala=20%7C0%7C239%7C65%7C39&lle=0&ifv=1&hpt=0
IP
Requested by http://ww1.dodeem.xyz/?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo92_3ph&output=uds_ads_only&zx=stavwbhom20n&aqid=PWNvZeipGZy1xdwPy66P6AI&psid=9618345430&pbt=bs&adbx=406.66668701171875&adby=134.64999389648438&adbh=604&adbw=467&adbah=226%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo92_3ph&errv=579967862&csala=20%7C0%7C239%7C65%7C39&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww1.dodeem.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-eNB0mhxWviLM0rCaZw_ZbA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Tue, 05 Dec 2023 17:51:59 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+294; expires=Thu, 04-Dec-2025 17:51:59 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo92_3ph&output=uds_ads_only&zx=egtbfo2mz32h&aqid=PWNvZeipGZy1xdwPy66P6AI&pbt=bs&adbx=490&adby=807.6500244140625&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo92_3ph&errv=579967862&csala=6%7C0%7C253%7C65%7C40&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo92_3ph&output=uds_ads_only&zx=egtbfo2mz32h&aqid=PWNvZeipGZy1xdwPy66P6AI&pbt=bs&adbx=490&adby=807.6500244140625&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo92_3ph&errv=579967862&csala=6%7C0%7C253%7C65%7C40&lle=0&ifv=1&hpt=0
IP
Requested by http://ww1.dodeem.xyz/?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo92_3ph&output=uds_ads_only&zx=egtbfo2mz32h&aqid=PWNvZeipGZy1xdwPy66P6AI&pbt=bs&adbx=490&adby=807.6500244140625&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo92_3ph&errv=579967862&csala=6%7C0%7C253%7C65%7C40&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww1.dodeem.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-Avqjqy6UB9abWS5Bac-jRQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Tue, 05 Dec 2023 17:51:59 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+838; expires=Thu, 04-Dec-2025 17:51:59 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo92_3ph&output=uds_ads_only&zx=1zae2ibf6zdy&aqid=PWNvZeipGZy1xdwPy66P6AI&psid=9618345430&pbt=bv&adbx=406.66668701171875&adby=134.64999389648438&adbh=604&adbw=467&adbah=226%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo92_3ph&errv=579967862&csala=20%7C0%7C239%7C65%7C39&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo92_3ph&output=uds_ads_only&zx=1zae2ibf6zdy&aqid=PWNvZeipGZy1xdwPy66P6AI&psid=9618345430&pbt=bv&adbx=406.66668701171875&adby=134.64999389648438&adbh=604&adbw=467&adbah=226%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo92_3ph&errv=579967862&csala=20%7C0%7C239%7C65%7C39&lle=0&ifv=1&hpt=0
IP
Requested by http://ww1.dodeem.xyz/?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo92_3ph&output=uds_ads_only&zx=1zae2ibf6zdy&aqid=PWNvZeipGZy1xdwPy66P6AI&psid=9618345430&pbt=bv&adbx=406.66668701171875&adby=134.64999389648438&adbh=604&adbw=467&adbah=226%2C178%2C178&adbn=master-1&eawp=partner-dp-sedo92_3ph&errv=579967862&csala=20%7C0%7C239%7C65%7C39&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww1.dodeem.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-z3mlE1NO7-HJ7Z4mJ6XZtw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Tue, 05 Dec 2023 17:51:59 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+189; expires=Thu, 04-Dec-2025 17:51:59 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo92_3ph&output=uds_ads_only&zx=tak0vmsr8yye&aqid=PWNvZeipGZy1xdwPy66P6AI&pbt=bv&adbx=490&adby=807.6500244140625&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo92_3ph&errv=579967862&csala=6%7C0%7C253%7C65%7C40&lle=0&ifv=1&hpt=0
204 No Content 0 B URL GET HTTP/3 www.adsensecustomsearchads.com/afs/gen_204?client=dp-sedo92_3ph&output=uds_ads_only&zx=tak0vmsr8yye&aqid=PWNvZeipGZy1xdwPy66P6AI&pbt=bv&adbx=490&adby=807.6500244140625&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo92_3ph&errv=579967862&csala=6%7C0%7C253%7C65%7C40&lle=0&ifv=1&hpt=0
IP
Requested by http://ww1.dodeem.xyz/?sub1=f89103bc-9396-11ee-98b2-e08e7902bac2
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /afs/gen_204?client=dp-sedo92_3ph&output=uds_ads_only&zx=tak0vmsr8yye&aqid=PWNvZeipGZy1xdwPy66P6AI&pbt=bv&adbx=490&adby=807.6500244140625&adbh=17&adbw=300&adbn=slave-1-1&eawp=partner-dp-sedo92_3ph&errv=579967862&csala=6%7C0%7C253%7C65%7C40&lle=0&ifv=1&hpt=0 HTTP/1.1
Host: www.adsensecustomsearchads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww1.dodeem.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-jAeoa_Ikd1PAVDD7RUMJGA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Tue, 05 Dec 2023 17:51:59 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+874; expires=Thu, 04-Dec-2025 17:51:59 GMT; path=/; domain=.adsensecustomsearchads.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
172.217.21.161
64.190.63.136